Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow Comp & Redirects


  • Please log in to reply
13 replies to this topic

#1 afroken

afroken

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 25 October 2012 - 04:58 PM

Hello,

I'm required an infection that hid all my desktop icons, made my computer slow, and redirects when using Google. I've was able to make the desktop icons visible again but I'm still having trouble with the other two. I've also tried to run TDSS and FixTDSS by normal means, renaming, and in safe mode but they both won't run at all.

I'm running Windows 7 and seen redirects with Internet Explorer and Google Chrome. It's takes a good 5 tries to get to a page.

Thanks in advance!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 25 October 2012 - 06:38 PM

Download Listparts from here

For 32 bit

List parts 32

For 64 bit

List parts 64

Launch it,click on SCAN,post the log


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 25 October 2012 - 07:02 PM.


#3 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 25 October 2012 - 11:07 PM

Thank you!

There were no threats from ESET Online Scanner.

Here is the log from ListParts64:

ListParts by Farbar Version: 16-10-2012
Ran by Me (administrator) on 25-10-2012 at 17:14:40
Windows 7 (X64)
Running From: C:\Users\Me\Desktop
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 35%
Total physical RAM: 4094.49 MB
Available physical RAM: 2645.57 MB
Total Pagefile: 8187.18 MB
Available Pagefile: 6479.6 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

======================= Partitions =========================

1 Drive c: (COMPAQ) (Fixed) (Total:455.02 GB) (Free:385.37 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.62 GB) (Free:1.55 GB) NTFS ==>[System with boot components (obtained from reading drive)]
4 Drive g: (ADOBE_CS55_TRIAL) (CDROM) (Total:6.91 GB) (Free:0 GB) UDF

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 455 GB 101 MB
Partition 4 Primary 10 GB 455 GB
Partition 3 Primary 4112 KB 465 GB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 SYSTEM NTFS Partition 100 MB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 C COMPAQ NTFS Partition 455 GB Healthy Boot

======================================================================================================

Disk: 0
Partition 4
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 D FACTORY_IMA NTFS Partition 10 GB Healthy

======================================================================================================

Disk: 0
Partition 3
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

======================================================================================================

****** End Of Log ******

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 25 October 2012 - 11:14 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Edited by narenxp, 26 October 2012 - 05:58 PM.


#5 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 26 October 2012 - 05:37 AM

Thanks for the quick reply. Here's what I did so far:

I downloaded the undetectable TDSSKiller that you provided with the first link. I was confused because you called it TDSSFix. So I ran it and the computer was able to scan. It didn't show any results (please see the following log).

I then downloaded the 2nd file that you provided but again was confused because it was the same program. At first it didn't run and it looked as though it would start but then it didn't do anything. I then tried this in Safe Mode with Networking; again same thing. I decided to try using the TDSSFix that I had downloaded before. To my amazement it started and ran and deleted the rootkit. *yay!*

I was then able to run aswMBR (which also wasn't able to run earlier) and I've also included the log. I then noticed as I was going to reply to this post that Google searches weren't redirecting anymore and that Internet Explorer and Google Chrome ran a lot faster! *crosses fingers* :)


TDSSKiller Log:

21:42:00.0229 1904 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
21:42:00.0292 1904 ============================================================
21:42:00.0292 1904 Current date / time: 2012/10/25 21:42:00.0292
21:42:00.0292 1904 SystemInfo:
21:42:00.0292 1904
21:42:00.0292 1904 OS Version: 6.1.7601 ServicePack: 1.0
21:42:00.0292 1904 Product type: Workstation
21:42:00.0292 1904 ComputerName: DRFUNKCOMPUTER
21:42:00.0292 1904 UserName: DrFunk
21:42:00.0292 1904 Windows directory: C:\Windows
21:42:00.0292 1904 System windows directory: C:\Windows
21:42:00.0292 1904 Running under WOW64
21:42:00.0292 1904 Processor architecture: Intel x64
21:42:00.0292 1904 Number of processors: 1
21:42:00.0292 1904 Page size: 0x1000
21:42:00.0292 1904 Boot type: Safe boot with network
21:42:00.0292 1904 ============================================================
21:42:01.0540 1904 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000020
21:42:01.0540 1904 ============================================================
21:42:01.0540 1904 \Device\Harddisk0\DR0:
21:42:01.0540 1904 MBR partitions:
21:42:01.0540 1904 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:42:01.0540 1904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38E0C000
21:42:01.0540 1904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x38E3E800, BlocksNum 0x1540030
21:42:01.0540 1904 ============================================================
21:42:01.0555 1904 C: <-> \Device\Harddisk0\DR0\Partition1
21:42:01.0586 1904 D: <-> \Device\Harddisk0\DR0\Partition2
21:42:01.0586 1904 ============================================================
21:42:01.0586 1904 Initialize success
21:42:01.0586 1904 ============================================================
21:42:11.0196 1936 ============================================================
21:42:11.0196 1936 Scan started
21:42:11.0196 1936 Mode: Manual;
21:42:11.0196 1936 ============================================================
21:42:11.0945 1936 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:42:11.0960 1936 1394ohci - ok
21:42:11.0976 1936 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:42:11.0976 1936 ACPI - ok
21:42:12.0007 1936 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:42:12.0007 1936 AcpiPmi - ok
21:42:12.0132 1936 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:42:12.0132 1936 AdobeARMservice - ok
21:42:12.0179 1936 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:42:12.0194 1936 adp94xx - ok
21:42:12.0226 1936 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:42:12.0226 1936 adpahci - ok
21:42:12.0241 1936 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:42:12.0257 1936 adpu320 - ok
21:42:12.0272 1936 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:42:12.0272 1936 AeLookupSvc - ok
21:42:12.0335 1936 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:42:12.0335 1936 AFD - ok
21:42:12.0366 1936 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:42:12.0366 1936 agp440 - ok
21:42:12.0382 1936 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:42:12.0382 1936 ALG - ok
21:42:12.0397 1936 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:42:12.0397 1936 aliide - ok
21:42:12.0428 1936 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:42:12.0428 1936 amdide - ok
21:42:12.0444 1936 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:42:12.0444 1936 AmdK8 - ok
21:42:12.0475 1936 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:42:12.0475 1936 AmdPPM - ok
21:42:12.0491 1936 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
21:42:12.0491 1936 amdsata - ok
21:42:12.0538 1936 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:42:12.0538 1936 amdsbs - ok
21:42:12.0553 1936 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
21:42:12.0553 1936 amdxata - ok
21:42:12.0569 1936 anodlwf (4ccf421e6c4b2a4cbce000715911f7cc) C:\Windows\system32\DRIVERS\anodlwfx.sys
21:42:12.0584 1936 anodlwf - ok
21:42:12.0647 1936 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:42:12.0662 1936 AntiVirSchedulerService - ok
21:42:12.0678 1936 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:42:12.0678 1936 AntiVirService - ok
21:42:12.0725 1936 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:42:12.0725 1936 AppID - ok
21:42:12.0756 1936 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:42:12.0756 1936 AppIDSvc - ok
21:42:12.0787 1936 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:42:12.0787 1936 Appinfo - ok
21:42:12.0850 1936 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:42:12.0850 1936 Apple Mobile Device - ok
21:42:12.0896 1936 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:42:12.0912 1936 arc - ok
21:42:12.0928 1936 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:42:12.0928 1936 arcsas - ok
21:42:12.0959 1936 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:42:12.0959 1936 AsyncMac - ok
21:42:13.0006 1936 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:42:13.0006 1936 atapi - ok
21:42:13.0068 1936 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:42:13.0068 1936 AudioEndpointBuilder - ok
21:42:13.0084 1936 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:42:13.0084 1936 AudioSrv - ok
21:42:13.0130 1936 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys
21:42:13.0130 1936 avgntflt - ok
21:42:13.0162 1936 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys
21:42:13.0162 1936 avipbb - ok
21:42:13.0208 1936 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:42:13.0208 1936 AxInstSV - ok
21:42:13.0255 1936 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:42:13.0255 1936 b06bdrv - ok
21:42:13.0286 1936 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:42:13.0302 1936 b57nd60a - ok
21:42:13.0333 1936 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:42:13.0333 1936 BDESVC - ok
21:42:13.0349 1936 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:42:13.0349 1936 Beep - ok
21:42:13.0396 1936 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:42:13.0411 1936 BFE - ok
21:42:13.0536 1936 BHDrvx64 (446b2c459a7d11cd71350235d6977e2a) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20110114.001\BHDrvx64.sys
21:42:13.0552 1936 BHDrvx64 - ok
21:42:13.0645 1936 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
21:42:13.0645 1936 BITS - ok
21:42:13.0692 1936 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:42:13.0692 1936 blbdrive - ok
21:42:13.0770 1936 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:42:13.0770 1936 Bonjour Service - ok
21:42:13.0817 1936 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:42:13.0817 1936 bowser - ok
21:42:13.0848 1936 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:42:13.0848 1936 BrFiltLo - ok
21:42:13.0848 1936 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:42:13.0864 1936 BrFiltUp - ok
21:42:13.0895 1936 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:42:13.0895 1936 BridgeMP - ok
21:42:13.0926 1936 Browser (05f5a0d14a2ee1d8255c2aa0e9e8e694) C:\Windows\System32\browser.dll
21:42:13.0926 1936 Browser - ok
21:42:13.0942 1936 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:42:13.0957 1936 Brserid - ok
21:42:13.0973 1936 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:42:13.0973 1936 BrSerWdm - ok
21:42:13.0988 1936 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:42:13.0988 1936 BrUsbMdm - ok
21:42:14.0004 1936 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:42:14.0004 1936 BrUsbSer - ok
21:42:14.0020 1936 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:42:14.0020 1936 BTHMODEM - ok
21:42:14.0051 1936 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:42:14.0066 1936 bthserv - ok
21:42:14.0113 1936 Bulk (d8bd549336593ca304b3524ff2f42717) C:\Windows\system32\Drivers\HDJBulk.sys
21:42:14.0113 1936 Bulk - ok
21:42:14.0160 1936 catchme - ok
21:42:14.0191 1936 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:42:14.0191 1936 cdfs - ok
21:42:14.0238 1936 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:42:14.0238 1936 cdrom - ok
21:42:14.0285 1936 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:42:14.0285 1936 CertPropSvc - ok
21:42:14.0316 1936 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:42:14.0316 1936 circlass - ok
21:42:14.0347 1936 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:42:14.0363 1936 CLFS - ok
21:42:14.0410 1936 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:42:14.0425 1936 clr_optimization_v2.0.50727_32 - ok
21:42:14.0441 1936 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:42:14.0456 1936 clr_optimization_v2.0.50727_64 - ok
21:42:14.0488 1936 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:42:14.0488 1936 CmBatt - ok
21:42:14.0519 1936 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:42:14.0519 1936 cmdide - ok
21:42:14.0566 1936 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:42:14.0566 1936 CNG - ok
21:42:14.0581 1936 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:42:14.0581 1936 Compbatt - ok
21:42:14.0612 1936 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:42:14.0612 1936 CompositeBus - ok
21:42:14.0644 1936 COMSysApp - ok
21:42:14.0659 1936 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:42:14.0659 1936 crcdisk - ok
21:42:14.0706 1936 CryptSvc (9c01375be382e834cc26d1b7eaf2c4fe) C:\Windows\system32\cryptsvc.dll
21:42:14.0706 1936 CryptSvc - ok
21:42:14.0753 1936 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:42:14.0753 1936 DcomLaunch - ok
21:42:14.0800 1936 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:42:14.0800 1936 defragsvc - ok
21:42:14.0831 1936 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:42:14.0831 1936 DfsC - ok
21:42:14.0862 1936 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:42:14.0878 1936 Dhcp - ok
21:42:14.0893 1936 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:42:14.0893 1936 discache - ok
21:42:14.0924 1936 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:42:14.0924 1936 Disk - ok
21:42:14.0971 1936 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:42:14.0971 1936 Dnscache - ok
21:42:15.0002 1936 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:42:15.0018 1936 dot3svc - ok
21:42:15.0034 1936 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:42:15.0034 1936 DPS - ok
21:42:15.0080 1936 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:42:15.0080 1936 drmkaud - ok
21:42:15.0127 1936 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:42:15.0143 1936 DXGKrnl - ok
21:42:15.0205 1936 D_Link_DWA-125 (f195fbc375342bd25c936982245a8fb0) C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
21:42:15.0205 1936 D_Link_DWA-125 - ok
21:42:15.0221 1936 D_Link_DWA-125_WPS (4db0907d750e0810309f8d8fa36625a6) C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
21:42:15.0221 1936 D_Link_DWA-125_WPS - ok
21:42:15.0252 1936 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:42:15.0252 1936 EapHost - ok
21:42:15.0361 1936 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:42:15.0424 1936 ebdrv - ok
21:42:15.0517 1936 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:42:15.0517 1936 eeCtrl - ok
21:42:15.0595 1936 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:42:15.0595 1936 EFS - ok
21:42:15.0673 1936 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:42:15.0673 1936 ehRecvr - ok
21:42:15.0704 1936 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:42:15.0704 1936 ehSched - ok
21:42:15.0751 1936 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:42:15.0751 1936 elxstor - ok
21:42:15.0782 1936 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:42:15.0782 1936 ErrDev - ok
21:42:15.0845 1936 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:42:15.0845 1936 EventSystem - ok
21:42:15.0876 1936 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:42:15.0876 1936 exfat - ok
21:42:15.0907 1936 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:42:15.0907 1936 fastfat - ok
21:42:15.0954 1936 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:42:15.0970 1936 Fax - ok
21:42:16.0001 1936 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:42:16.0001 1936 fdc - ok
21:42:16.0032 1936 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:42:16.0032 1936 fdPHost - ok
21:42:16.0048 1936 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:42:16.0063 1936 FDResPub - ok
21:42:16.0094 1936 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:42:16.0094 1936 FileInfo - ok
21:42:16.0094 1936 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:42:16.0110 1936 Filetrace - ok
21:42:16.0126 1936 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:42:16.0126 1936 flpydisk - ok
21:42:16.0172 1936 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:42:16.0172 1936 FltMgr - ok
21:42:16.0235 1936 FontCache (b4447f606bb19fd8ad0bafb59b90f5d9) C:\Windows\system32\FntCache.dll
21:42:16.0250 1936 FontCache - ok
21:42:16.0313 1936 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:42:16.0313 1936 FontCache3.0.0.0 - ok
21:42:16.0344 1936 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:42:16.0344 1936 FsDepends - ok
21:42:16.0375 1936 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:42:16.0375 1936 Fs_Rec - ok
21:42:16.0422 1936 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:42:16.0422 1936 fvevol - ok
21:42:16.0453 1936 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:42:16.0453 1936 gagp30kx - ok
21:42:16.0516 1936 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:42:16.0516 1936 GameConsoleService - ok
21:42:16.0578 1936 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:42:16.0578 1936 GEARAspiWDM - ok
21:42:16.0625 1936 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:42:16.0640 1936 gpsvc - ok
21:42:16.0703 1936 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:16.0703 1936 gupdate - ok
21:42:16.0718 1936 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:16.0718 1936 gupdatem - ok
21:42:16.0765 1936 gusvc (5d4bc124faae6730ac002cdb67bf1a1c) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:42:16.0765 1936 gusvc - ok
21:42:16.0796 1936 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:42:16.0796 1936 hcw85cir - ok
21:42:16.0843 1936 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:42:16.0843 1936 HdAudAddService - ok
21:42:16.0874 1936 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:42:16.0874 1936 HDAudBus - ok
21:42:16.0921 1936 HDJMidi (f10b45171f7e8618e0868f3a0c9efe84) C:\Windows\system32\DRIVERS\HDJMidi.sys
21:42:16.0921 1936 HDJMidi - ok
21:42:16.0968 1936 HerculesDJControlMP3 (4141c2cbd8d6c9f3f4004fe842c48e79) C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
21:42:16.0968 1936 HerculesDJControlMP3 - ok
21:42:16.0984 1936 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:42:16.0984 1936 HidBatt - ok
21:42:17.0015 1936 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:42:17.0015 1936 HidBth - ok
21:42:17.0030 1936 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:42:17.0030 1936 HidIr - ok
21:42:17.0077 1936 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:42:17.0077 1936 hidserv - ok
21:42:17.0124 1936 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:42:17.0124 1936 HidUsb - ok
21:42:17.0155 1936 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:42:17.0155 1936 hkmsvc - ok
21:42:17.0202 1936 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:42:17.0202 1936 HomeGroupListener - ok
21:42:17.0233 1936 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:42:17.0233 1936 HomeGroupProvider - ok
21:42:17.0342 1936 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:42:17.0342 1936 HP Support Assistant Service - ok
21:42:17.0389 1936 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:42:17.0389 1936 HPDrvMntSvc.exe - ok
21:42:17.0436 1936 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:42:17.0452 1936 hpqwmiex - ok
21:42:17.0498 1936 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:42:17.0498 1936 HpSAMD - ok
21:42:17.0545 1936 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:42:17.0545 1936 HTTP - ok
21:42:17.0576 1936 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:42:17.0576 1936 hwpolicy - ok
21:42:17.0608 1936 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:42:17.0608 1936 i8042prt - ok
21:42:17.0654 1936 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
21:42:17.0654 1936 iaStorV - ok
21:42:17.0717 1936 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:42:17.0732 1936 idsvc - ok
21:42:17.0826 1936 IDSVia64 (6f9b281bc4afff5fe784d7da699d347f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20110120.001\IDSvia64.sys
21:42:17.0842 1936 IDSVia64 - ok
21:42:17.0904 1936 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:42:17.0904 1936 iirsp - ok
21:42:17.0951 1936 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:42:17.0966 1936 IKEEXT - ok
21:42:18.0060 1936 IntcAzAudAddService (ef75c94792187a143871fbb87611b0b7) C:\Windows\system32\drivers\RTKVHD64.sys
21:42:18.0091 1936 IntcAzAudAddService - ok
21:42:18.0169 1936 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:42:18.0169 1936 intelide - ok
21:42:18.0216 1936 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:42:18.0216 1936 intelppm - ok
21:42:18.0232 1936 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:42:18.0232 1936 IPBusEnum - ok
21:42:18.0263 1936 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:42:18.0278 1936 IpFilterDriver - ok
21:42:18.0294 1936 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:42:18.0310 1936 iphlpsvc - ok
21:42:18.0325 1936 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:42:18.0325 1936 IPMIDRV - ok
21:42:18.0356 1936 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:42:18.0356 1936 IPNAT - ok
21:42:18.0434 1936 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
21:42:18.0450 1936 iPod Service - ok
21:42:18.0481 1936 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:42:18.0481 1936 IRENUM - ok
21:42:18.0512 1936 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:42:18.0512 1936 isapnp - ok
21:42:18.0544 1936 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:42:18.0544 1936 iScsiPrt - ok
21:42:18.0575 1936 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:42:18.0575 1936 kbdclass - ok
21:42:18.0575 1936 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:42:18.0590 1936 kbdhid - ok
21:42:18.0622 1936 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:18.0622 1936 KeyIso - ok
21:42:18.0622 1936 KMService - ok
21:42:18.0668 1936 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:42:18.0668 1936 KSecDD - ok
21:42:18.0684 1936 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:42:18.0700 1936 KSecPkg - ok
21:42:18.0731 1936 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:42:18.0731 1936 ksthunk - ok
21:42:18.0762 1936 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:42:18.0778 1936 KtmRm - ok
21:42:18.0824 1936 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:42:18.0824 1936 LanmanServer - ok
21:42:18.0856 1936 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:42:18.0856 1936 LanmanWorkstation - ok
21:42:18.0949 1936 LightScribeService (b1e1c8bb1392537e4d415fcdcb93b1d3) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:42:18.0949 1936 LightScribeService - ok
21:42:18.0980 1936 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:42:18.0980 1936 lltdio - ok
21:42:19.0012 1936 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:42:19.0012 1936 lltdsvc - ok
21:42:19.0027 1936 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:42:19.0027 1936 lmhosts - ok
21:42:19.0074 1936 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:42:19.0074 1936 LSI_FC - ok
21:42:19.0090 1936 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:42:19.0090 1936 LSI_SAS - ok
21:42:19.0105 1936 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:42:19.0105 1936 LSI_SAS2 - ok
21:42:19.0136 1936 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:42:19.0136 1936 LSI_SCSI - ok
21:42:19.0168 1936 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:42:19.0183 1936 luafv - ok
21:42:19.0261 1936 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
21:42:19.0261 1936 McComponentHostService - ok
21:42:19.0308 1936 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
21:42:19.0308 1936 mcdbus - ok
21:42:19.0339 1936 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:42:19.0339 1936 Mcx2Svc - ok
21:42:19.0370 1936 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:42:19.0370 1936 megasas - ok
21:42:19.0402 1936 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:42:19.0402 1936 MegaSR - ok
21:42:19.0464 1936 Microsoft SharePoint Workspace Audit Service - ok
21:42:19.0480 1936 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:42:19.0480 1936 MMCSS - ok
21:42:19.0511 1936 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:42:19.0511 1936 Modem - ok
21:42:19.0542 1936 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:42:19.0542 1936 monitor - ok
21:42:19.0589 1936 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:42:19.0589 1936 mouclass - ok
21:42:19.0620 1936 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:42:19.0620 1936 mouhid - ok
21:42:19.0651 1936 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:42:19.0651 1936 mountmgr - ok
21:42:19.0682 1936 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:42:19.0682 1936 mpio - ok
21:42:19.0714 1936 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:42:19.0714 1936 mpsdrv - ok
21:42:19.0760 1936 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:42:19.0760 1936 MpsSvc - ok
21:42:19.0807 1936 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:42:19.0807 1936 MRxDAV - ok
21:42:19.0838 1936 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:42:19.0838 1936 mrxsmb - ok
21:42:19.0885 1936 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:42:19.0885 1936 mrxsmb10 - ok
21:42:19.0916 1936 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:42:19.0916 1936 mrxsmb20 - ok
21:42:19.0948 1936 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:42:19.0948 1936 msahci - ok
21:42:19.0979 1936 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:42:19.0979 1936 msdsm - ok
21:42:19.0994 1936 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:42:20.0010 1936 MSDTC - ok
21:42:20.0026 1936 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:42:20.0026 1936 Msfs - ok
21:42:20.0057 1936 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:42:20.0057 1936 mshidkmdf - ok
21:42:20.0072 1936 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:42:20.0072 1936 msisadrv - ok
21:42:20.0104 1936 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:42:20.0104 1936 MSiSCSI - ok
21:42:20.0119 1936 msiserver - ok
21:42:20.0150 1936 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:42:20.0150 1936 MSKSSRV - ok
21:42:20.0166 1936 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:42:20.0166 1936 MSPCLOCK - ok
21:42:20.0166 1936 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:42:20.0166 1936 MSPQM - ok
21:42:20.0213 1936 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:42:20.0228 1936 MsRPC - ok
21:42:20.0260 1936 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:42:20.0260 1936 mssmbios - ok
21:42:20.0260 1936 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:42:20.0275 1936 MSTEE - ok
21:42:20.0306 1936 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:42:20.0306 1936 MTConfig - ok
21:42:20.0322 1936 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:42:20.0322 1936 Mup - ok
21:42:20.0353 1936 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:42:20.0353 1936 napagent - ok
21:42:20.0400 1936 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:42:20.0400 1936 NativeWifiP - ok
21:42:20.0494 1936 NAVENG (7be93dbb02b66e72872ff76d8a92e662) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\ENG64.SYS
21:42:20.0494 1936 NAVENG - ok
21:42:20.0556 1936 NAVEX15 (be99edbba322ca59b3f2fe17b9bf987a) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\EX64.SYS
21:42:20.0587 1936 NAVEX15 - ok
21:42:20.0696 1936 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:42:20.0712 1936 NDIS - ok
21:42:20.0743 1936 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:42:20.0743 1936 NdisCap - ok
21:42:20.0759 1936 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:42:20.0759 1936 NdisTapi - ok
21:42:20.0790 1936 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:42:20.0790 1936 Ndisuio - ok
21:42:20.0837 1936 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:42:20.0837 1936 NdisWan - ok
21:42:20.0868 1936 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:42:20.0868 1936 NDProxy - ok
21:42:20.0884 1936 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:42:20.0884 1936 NetBIOS - ok
21:42:20.0915 1936 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:42:20.0915 1936 NetBT - ok
21:42:20.0946 1936 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:20.0946 1936 Netlogon - ok
21:42:20.0993 1936 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:42:21.0008 1936 Netman - ok
21:42:21.0040 1936 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:42:21.0055 1936 netprofm - ok
21:42:21.0102 1936 netr28ux (eed1fbde98cf5f6d5c0c5b27ab1f68ec) C:\Windows\system32\DRIVERS\Dnetr28ux.sys
21:42:21.0133 1936 netr28ux - ok
21:42:21.0180 1936 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:42:21.0180 1936 NetTcpPortSharing - ok
21:42:21.0211 1936 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:42:21.0211 1936 nfrd960 - ok
21:42:21.0305 1936 NIS (18654d5e0dc33b7f0f895264a5de80da) C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
21:42:21.0305 1936 NIS - ok
21:42:21.0352 1936 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:42:21.0352 1936 NlaSvc - ok
21:42:21.0367 1936 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:42:21.0367 1936 Npfs - ok
21:42:21.0414 1936 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:42:21.0414 1936 nsi - ok
21:42:21.0430 1936 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:42:21.0430 1936 nsiproxy - ok
21:42:21.0476 1936 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
21:42:21.0508 1936 Ntfs - ok
21:42:21.0586 1936 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:42:21.0586 1936 Null - ok
21:42:21.0632 1936 NVHDA (960e39a54e525df58cb29193147dffa1) C:\Windows\system32\drivers\nvhda64v.sys
21:42:21.0632 1936 NVHDA - ok
21:42:21.0991 1936 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:42:22.0241 1936 nvlddmkm - ok
21:42:22.0319 1936 NVNET (909eedcbd365bb81027d8e742e6b3416) C:\Windows\system32\DRIVERS\nvmf6264.sys
21:42:22.0319 1936 NVNET - ok
21:42:22.0366 1936 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
21:42:22.0366 1936 nvraid - ok
21:42:22.0381 1936 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
21:42:22.0381 1936 nvstor - ok
21:42:22.0428 1936 nvstor64 (1e45f96342429d63dc30e0d9117da3d8) C:\Windows\system32\DRIVERS\nvstor64.sys
21:42:22.0428 1936 nvstor64 - ok
21:42:22.0568 1936 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
21:42:22.0600 1936 nvUpdatusService - ok
21:42:22.0693 1936 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:42:22.0693 1936 nv_agp - ok
21:42:22.0740 1936 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:42:22.0740 1936 ohci1394 - ok
21:42:22.0818 1936 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:42:22.0818 1936 ose - ok
21:42:23.0005 1936 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:42:23.0099 1936 osppsvc - ok
21:42:23.0177 1936 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:42:23.0177 1936 p2pimsvc - ok
21:42:23.0239 1936 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:42:23.0239 1936 p2psvc - ok
21:42:23.0286 1936 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:42:23.0302 1936 Parport - ok
21:42:23.0333 1936 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:42:23.0333 1936 partmgr - ok
21:42:23.0348 1936 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:42:23.0364 1936 PcaSvc - ok
21:42:23.0395 1936 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:42:23.0395 1936 pci - ok
21:42:23.0411 1936 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:42:23.0411 1936 pciide - ok
21:42:23.0442 1936 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:42:23.0442 1936 pcmcia - ok
21:42:23.0473 1936 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:42:23.0473 1936 pcw - ok
21:42:23.0504 1936 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:42:23.0504 1936 PEAUTH - ok
21:42:23.0551 1936 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:42:23.0551 1936 PerfHost - ok
21:42:23.0629 1936 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:42:23.0660 1936 pla - ok
21:42:23.0707 1936 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:42:23.0723 1936 PlugPlay - ok
21:42:23.0738 1936 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:42:23.0738 1936 PNRPAutoReg - ok
21:42:23.0770 1936 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:42:23.0770 1936 PNRPsvc - ok
21:42:23.0801 1936 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:42:23.0801 1936 PolicyAgent - ok
21:42:23.0832 1936 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:42:23.0832 1936 Power - ok
21:42:23.0910 1936 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:42:23.0910 1936 PptpMiniport - ok
21:42:23.0926 1936 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:42:23.0926 1936 Processor - ok
21:42:23.0957 1936 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:42:23.0972 1936 ProfSvc - ok
21:42:24.0004 1936 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:24.0004 1936 ProtectedStorage - ok
21:42:24.0035 1936 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:42:24.0035 1936 Psched - ok
21:42:24.0097 1936 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:42:24.0128 1936 ql2300 - ok
21:42:24.0206 1936 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:42:24.0206 1936 ql40xx - ok
21:42:24.0238 1936 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:42:24.0253 1936 QWAVE - ok
21:42:24.0284 1936 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:42:24.0284 1936 QWAVEdrv - ok
21:42:24.0300 1936 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:42:24.0300 1936 RasAcd - ok
21:42:24.0316 1936 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:42:24.0316 1936 RasAgileVpn - ok
21:42:24.0331 1936 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:42:24.0331 1936 RasAuto - ok
21:42:24.0378 1936 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:42:24.0378 1936 Rasl2tp - ok
21:42:24.0394 1936 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:42:24.0409 1936 RasMan - ok
21:42:24.0425 1936 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:42:24.0425 1936 RasPppoe - ok
21:42:24.0440 1936 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:42:24.0456 1936 RasSstp - ok
21:42:24.0472 1936 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:42:24.0472 1936 rdbss - ok
21:42:24.0503 1936 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:42:24.0503 1936 rdpbus - ok
21:42:24.0518 1936 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:42:24.0518 1936 RDPCDD - ok
21:42:24.0550 1936 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:42:24.0550 1936 RDPENCDD - ok
21:42:24.0581 1936 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:42:24.0581 1936 RDPREFMP - ok
21:42:24.0612 1936 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:42:24.0612 1936 RDPWD - ok
21:42:24.0659 1936 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:42:24.0659 1936 rdyboost - ok
21:42:24.0674 1936 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:42:24.0690 1936 RemoteAccess - ok
21:42:24.0706 1936 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:42:24.0721 1936 RemoteRegistry - ok
21:42:24.0737 1936 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:42:24.0737 1936 RpcEptMapper - ok
21:42:24.0752 1936 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:42:24.0752 1936 RpcLocator - ok
21:42:24.0799 1936 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:42:24.0799 1936 RpcSs - ok
21:42:24.0846 1936 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:42:24.0846 1936 rspndr - ok
21:42:24.0877 1936 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:24.0877 1936 SamSs - ok
21:42:24.0924 1936 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:42:24.0924 1936 sbp2port - ok
21:42:24.0955 1936 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:42:24.0955 1936 SCardSvr - ok
21:42:24.0986 1936 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:42:24.0986 1936 scfilter - ok
21:42:25.0049 1936 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:42:25.0064 1936 Schedule - ok
21:42:25.0096 1936 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:42:25.0096 1936 SCPolicySvc - ok
21:42:25.0127 1936 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:42:25.0127 1936 SDRSVC - ok
21:42:25.0174 1936 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:42:25.0174 1936 secdrv - ok
21:42:25.0189 1936 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:42:25.0189 1936 seclogon - ok
21:42:25.0220 1936 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:42:25.0220 1936 SENS - ok
21:42:25.0236 1936 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:42:25.0236 1936 SensrSvc - ok
21:42:25.0267 1936 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:42:25.0267 1936 Serenum - ok
21:42:25.0283 1936 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:42:25.0283 1936 Serial - ok
21:42:25.0330 1936 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:42:25.0330 1936 sermouse - ok
21:42:25.0361 1936 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:42:25.0361 1936 SessionEnv - ok
21:42:25.0376 1936 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:42:25.0376 1936 sffdisk - ok
21:42:25.0392 1936 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:42:25.0408 1936 sffp_mmc - ok
21:42:25.0408 1936 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:42:25.0423 1936 sffp_sd - ok
21:42:25.0439 1936 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:42:25.0439 1936 sfloppy - ok
21:42:25.0486 1936 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:42:25.0486 1936 SharedAccess - ok
21:42:25.0532 1936 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:42:25.0532 1936 ShellHWDetection - ok
21:42:25.0564 1936 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:42:25.0564 1936 SiSRaid2 - ok
21:42:25.0579 1936 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:42:25.0579 1936 SiSRaid4 - ok
21:42:25.0626 1936 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:42:25.0626 1936 Smb - ok
21:42:25.0657 1936 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:42:25.0657 1936 SNMPTRAP - ok
21:42:25.0673 1936 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:42:25.0673 1936 spldr - ok
21:42:25.0704 1936 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:42:25.0720 1936 Spooler - ok
21:42:25.0829 1936 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:42:25.0891 1936 sppsvc - ok
21:42:25.0969 1936 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:42:25.0969 1936 sppuinotify - ok
21:42:26.0063 1936 SRTSP (9a359fb3d10c9de23edc427ada8ac8be) C:\Windows\System32\Drivers\NISx64\1205000.07D\SRTSP64.SYS
21:42:26.0063 1936 SRTSP - ok
21:42:26.0094 1936 SRTSPX (a14a9aaa8005d411ef1657601f55776d) C:\Windows\system32\drivers\NISx64\1205000.07D\SRTSPX64.SYS
21:42:26.0094 1936 SRTSPX - ok
21:42:26.0125 1936 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:42:26.0141 1936 srv - ok
21:42:26.0172 1936 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:42:26.0188 1936 srv2 - ok
21:42:26.0203 1936 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:42:26.0203 1936 srvnet - ok
21:42:26.0234 1936 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:42:26.0250 1936 SSDPSRV - ok
21:42:26.0266 1936 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:42:26.0266 1936 SstpSvc - ok
21:42:26.0359 1936 Stereo Service (6086b60f2e36d06a063cb07ed0524332) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:42:26.0375 1936 Stereo Service - ok
21:42:26.0390 1936 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:42:26.0406 1936 stexstor - ok
21:42:26.0437 1936 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:42:26.0453 1936 stisvc - ok
21:42:26.0484 1936 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:42:26.0484 1936 swenum - ok
21:42:26.0593 1936 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:42:26.0609 1936 SwitchBoard - ok
21:42:26.0640 1936 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:42:26.0656 1936 swprv - ok
21:42:26.0718 1936 SymDS (6d33d1669b3b6193658129d1767a4aff) C:\Windows\system32\drivers\NISx64\1205000.07D\SYMDS64.SYS
21:42:26.0718 1936 SymDS - ok
21:42:26.0749 1936 SymEFA (9acc52c79420236dcb1ab1a17ed0df2e) C:\Windows\system32\drivers\NISx64\1205000.07D\SYMEFA64.SYS
21:42:26.0765 1936 SymEFA - ok
21:42:26.0796 1936 SymEvent (84e27ca1a5af320a705e767ea53086e5) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:42:26.0796 1936 SymEvent - ok
21:42:26.0827 1936 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\NISx64\1205000.07D\Ironx64.SYS
21:42:26.0827 1936 SymIRON - ok
21:42:26.0843 1936 SymNetS (af56ca02f9dc706709c0a7df5c1dab82) C:\Windows\System32\Drivers\NISx64\1205000.07D\SYMNETS.SYS
21:42:26.0843 1936 SymNetS - ok
21:42:26.0921 1936 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:42:26.0968 1936 SysMain - ok
21:42:27.0046 1936 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:42:27.0046 1936 TabletInputService - ok
21:42:27.0077 1936 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:42:27.0077 1936 TapiSrv - ok
21:42:27.0108 1936 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:42:27.0108 1936 TBS - ok
21:42:27.0202 1936 Tcpip (f782cad3cedbb3f9ffe3bf2775d92ddc) C:\Windows\system32\drivers\tcpip.sys
21:42:27.0233 1936 Tcpip - ok
21:42:27.0342 1936 TCPIP6 (f782cad3cedbb3f9ffe3bf2775d92ddc) C:\Windows\system32\DRIVERS\tcpip.sys
21:42:27.0358 1936 TCPIP6 - ok
21:42:27.0436 1936 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:42:27.0436 1936 tcpipreg - ok
21:42:27.0482 1936 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:42:27.0482 1936 TDPIPE - ok
21:42:27.0514 1936 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:42:27.0529 1936 TDTCP - ok
21:42:27.0560 1936 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:42:27.0560 1936 tdx - ok
21:42:27.0607 1936 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:42:27.0607 1936 TermDD - ok
21:42:27.0638 1936 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:42:27.0654 1936 TermService - ok
21:42:27.0670 1936 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:42:27.0685 1936 Themes - ok
21:42:27.0716 1936 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:42:27.0716 1936 THREADORDER - ok
21:42:27.0732 1936 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:42:27.0732 1936 TrkWks - ok
21:42:27.0794 1936 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:42:27.0794 1936 TrustedInstaller - ok
21:42:27.0826 1936 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:42:27.0826 1936 tssecsrv - ok
21:42:27.0872 1936 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:42:27.0872 1936 TsUsbFlt - ok
21:42:27.0919 1936 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:42:27.0919 1936 tunnel - ok
21:42:27.0950 1936 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:42:27.0950 1936 uagp35 - ok
21:42:27.0997 1936 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:42:27.0997 1936 udfs - ok
21:42:28.0028 1936 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:42:28.0028 1936 UI0Detect - ok
21:42:28.0060 1936 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:42:28.0075 1936 uliagpkx - ok
21:42:28.0122 1936 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:42:28.0122 1936 umbus - ok
21:42:28.0153 1936 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:42:28.0153 1936 UmPass - ok
21:42:28.0184 1936 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:42:28.0184 1936 upnphost - ok
21:42:28.0231 1936 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:42:28.0247 1936 USBAAPL64 - ok
21:42:28.0294 1936 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:42:28.0294 1936 usbaudio - ok
21:42:28.0325 1936 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
21:42:28.0325 1936 usbccgp - ok
21:42:28.0340 1936 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:42:28.0340 1936 usbcir - ok
21:42:28.0356 1936 usbehci (74ee782b1d9c241efe425565854c661c) C:\Windows\system32\drivers\usbehci.sys
21:42:28.0356 1936 usbehci - ok
21:42:28.0387 1936 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\drivers\usbhub.sys
21:42:28.0387 1936 usbhub - ok
21:42:28.0403 1936 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
21:42:28.0403 1936 usbohci - ok
21:42:28.0418 1936 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:42:28.0434 1936 usbprint - ok
21:42:28.0450 1936 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:42:28.0450 1936 USBSTOR - ok
21:42:28.0465 1936 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
21:42:28.0465 1936 usbuhci - ok
21:42:28.0496 1936 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:42:28.0496 1936 UxSms - ok
21:42:28.0528 1936 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:28.0543 1936 VaultSvc - ok
21:42:28.0574 1936 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:42:28.0574 1936 vdrvroot - ok
21:42:28.0637 1936 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:42:28.0637 1936 vds - ok
21:42:28.0668 1936 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:42:28.0684 1936 vga - ok
21:42:28.0699 1936 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:42:28.0699 1936 VgaSave - ok
21:42:28.0730 1936 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:42:28.0730 1936 vhdmp - ok
21:42:28.0746 1936 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:42:28.0746 1936 viaide - ok
21:42:28.0762 1936 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:42:28.0762 1936 volmgr - ok
21:42:28.0808 1936 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:42:28.0824 1936 volmgrx - ok
21:42:28.0840 1936 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:42:28.0840 1936 volsnap - ok
21:42:28.0871 1936 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:42:28.0871 1936 vsmraid - ok
21:42:28.0933 1936 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:42:28.0964 1936 VSS - ok
21:42:29.0042 1936 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:42:29.0042 1936 vwifibus - ok
21:42:29.0074 1936 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:42:29.0074 1936 vwififlt - ok
21:42:29.0105 1936 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:42:29.0105 1936 W32Time - ok
21:42:29.0136 1936 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:42:29.0136 1936 WacomPen - ok
21:42:29.0183 1936 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:29.0183 1936 WANARP - ok
21:42:29.0198 1936 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:29.0198 1936 Wanarpv6 - ok
21:42:29.0261 1936 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:42:29.0292 1936 WatAdminSvc - ok
21:42:29.0354 1936 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:42:29.0386 1936 wbengine - ok
21:42:29.0495 1936 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:42:29.0510 1936 WbioSrvc - ok
21:42:29.0713 1936 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:42:29.0713 1936 wcncsvc - ok
21:42:29.0744 1936 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:42:29.0760 1936 WcsPlugInService - ok
21:42:29.0807 1936 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:42:29.0807 1936 Wd - ok
21:42:29.0916 1936 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:42:29.0932 1936 Wdf01000 - ok
21:42:29.0947 1936 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:29.0947 1936 WdiServiceHost - ok
21:42:29.0947 1936 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:29.0963 1936 WdiSystemHost - ok
21:42:29.0994 1936 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:42:29.0994 1936 WebClient - ok
21:42:30.0025 1936 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:42:30.0041 1936 Wecsvc - ok
21:42:30.0056 1936 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:42:30.0056 1936 wercplsupport - ok
21:42:30.0088 1936 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:42:30.0088 1936 WerSvc - ok
21:42:30.0150 1936 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:42:30.0150 1936 WfpLwf - ok
21:42:30.0166 1936 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:42:30.0181 1936 WIMMount - ok
21:42:30.0197 1936 WinDefend - ok
21:42:30.0212 1936 WinHttpAutoProxySvc - ok
21:42:30.0259 1936 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:42:30.0259 1936 Winmgmt - ok
21:42:30.0353 1936 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:42:30.0400 1936 WinRM - ok
21:42:30.0493 1936 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:42:30.0493 1936 WinUsb - ok
21:42:30.0540 1936 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:42:30.0556 1936 Wlansvc - ok
21:42:30.0556 1936 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:42:30.0571 1936 WmiAcpi - ok
21:42:30.0634 1936 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:42:30.0634 1936 wmiApSrv - ok
21:42:30.0649 1936 WMPNetworkSvc - ok
21:42:30.0680 1936 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:42:30.0680 1936 WPCSvc - ok
21:42:30.0712 1936 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:42:30.0712 1936 WPDBusEnum - ok
21:42:30.0743 1936 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:42:30.0743 1936 ws2ifsl - ok
21:42:30.0758 1936 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:42:30.0758 1936 wscsvc - ok
21:42:30.0774 1936 WSearch - ok
21:42:30.0868 1936 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:42:30.0899 1936 wuauserv - ok
21:42:30.0992 1936 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:42:30.0992 1936 WudfPf - ok
21:42:31.0008 1936 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:42:31.0008 1936 WUDFRd - ok
21:42:31.0039 1936 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:42:31.0039 1936 wudfsvc - ok
21:42:31.0102 1936 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:42:31.0102 1936 WwanSvc - ok
21:42:31.0148 1936 MBR (0x1B8) (9e2f02b7c9789ce941493f99d9e955c2) \Device\Harddisk0\DR0
21:42:31.0258 1936 \Device\Harddisk0\DR0 - ok
21:42:31.0258 1936 Boot (0x1200) (c8981b0bdb9e52d75b39ab6b1b4ba166) \Device\Harddisk0\DR0\Partition0
21:42:31.0258 1936 \Device\Harddisk0\DR0\Partition0 - ok
21:42:31.0273 1936 Boot (0x1200) (b41da79f266b8395694e959fe6ada434) \Device\Harddisk0\DR0\Partition1
21:42:31.0273 1936 \Device\Harddisk0\DR0\Partition1 - ok
21:42:31.0320 1936 Boot (0x1200) (b559ec8bba4ab21d04df477fa3d3553b) \Device\Harddisk0\DR0\Partition2
21:42:31.0320 1936 \Device\Harddisk0\DR0\Partition2 - ok
21:42:31.0320 1936 ============================================================
21:42:31.0320 1936 Scan finished
21:42:31.0320 1936 ============================================================
21:42:31.0336 1928 Detected object count: 0
21:42:31.0336 1928 Actual detected object count: 0
21:42:41.0148 2028 ============================================================
21:42:41.0148 2028 Scan started
21:42:41.0148 2028 Mode: Manual; TDLFS;
21:42:41.0148 2028 ============================================================
21:42:41.0304 2028 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:42:41.0304 2028 1394ohci - ok
21:42:41.0335 2028 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:42:41.0335 2028 ACPI - ok
21:42:41.0351 2028 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:42:41.0351 2028 AcpiPmi - ok
21:42:41.0444 2028 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:42:41.0444 2028 AdobeARMservice - ok
21:42:41.0491 2028 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:42:41.0491 2028 adp94xx - ok
21:42:41.0538 2028 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:42:41.0538 2028 adpahci - ok
21:42:41.0554 2028 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:42:41.0554 2028 adpu320 - ok
21:42:41.0569 2028 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:42:41.0569 2028 AeLookupSvc - ok
21:42:41.0616 2028 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:42:41.0632 2028 AFD - ok
21:42:41.0663 2028 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:42:41.0663 2028 agp440 - ok
21:42:41.0678 2028 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:42:41.0678 2028 ALG - ok
21:42:41.0694 2028 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:42:41.0694 2028 aliide - ok
21:42:41.0710 2028 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:42:41.0710 2028 amdide - ok
21:42:41.0725 2028 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:42:41.0741 2028 AmdK8 - ok
21:42:41.0756 2028 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:42:41.0756 2028 AmdPPM - ok
21:42:41.0772 2028 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
21:42:41.0772 2028 amdsata - ok
21:42:41.0803 2028 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:42:41.0803 2028 amdsbs - ok
21:42:41.0819 2028 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
21:42:41.0819 2028 amdxata - ok
21:42:41.0850 2028 anodlwf (4ccf421e6c4b2a4cbce000715911f7cc) C:\Windows\system32\DRIVERS\anodlwfx.sys
21:42:41.0850 2028 anodlwf - ok
21:42:41.0912 2028 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:42:41.0912 2028 AntiVirSchedulerService - ok
21:42:41.0944 2028 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:42:41.0944 2028 AntiVirService - ok
21:42:41.0975 2028 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:42:41.0975 2028 AppID - ok
21:42:42.0006 2028 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:42:42.0006 2028 AppIDSvc - ok
21:42:42.0037 2028 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:42:42.0037 2028 Appinfo - ok
21:42:42.0100 2028 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:42:42.0100 2028 Apple Mobile Device - ok
21:42:42.0131 2028 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:42:42.0131 2028 arc - ok
21:42:42.0146 2028 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:42:42.0146 2028 arcsas - ok
21:42:42.0162 2028 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:42:42.0162 2028 AsyncMac - ok
21:42:42.0193 2028 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:42:42.0193 2028 atapi - ok
21:42:42.0256 2028 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:42:42.0256 2028 AudioEndpointBuilder - ok
21:42:42.0271 2028 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:42:42.0271 2028 AudioSrv - ok
21:42:42.0302 2028 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys
21:42:42.0302 2028 avgntflt - ok
21:42:42.0318 2028 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys
21:42:42.0318 2028 avipbb - ok
21:42:42.0349 2028 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:42:42.0349 2028 AxInstSV - ok
21:42:42.0380 2028 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:42:42.0396 2028 b06bdrv - ok
21:42:42.0427 2028 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:42:42.0427 2028 b57nd60a - ok
21:42:42.0458 2028 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:42:42.0458 2028 BDESVC - ok
21:42:42.0474 2028 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:42:42.0474 2028 Beep - ok
21:42:42.0521 2028 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:42:42.0521 2028 BFE - ok
21:42:42.0646 2028 BHDrvx64 (446b2c459a7d11cd71350235d6977e2a) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20110114.001\BHDrvx64.sys
21:42:42.0646 2028 BHDrvx64 - ok
21:42:42.0755 2028 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
21:42:42.0755 2028 BITS - ok
21:42:42.0802 2028 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:42:42.0802 2028 blbdrive - ok
21:42:42.0864 2028 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:42:42.0864 2028 Bonjour Service - ok
21:42:42.0911 2028 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:42:42.0911 2028 bowser - ok
21:42:42.0926 2028 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:42:42.0926 2028 BrFiltLo - ok
21:42:42.0942 2028 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:42:42.0942 2028 BrFiltUp - ok
21:42:42.0973 2028 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:42:42.0973 2028 BridgeMP - ok
21:42:43.0004 2028 Browser (05f5a0d14a2ee1d8255c2aa0e9e8e694) C:\Windows\System32\browser.dll
21:42:43.0004 2028 Browser - ok
21:42:43.0020 2028 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:42:43.0036 2028 Brserid - ok
21:42:43.0036 2028 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:42:43.0036 2028 BrSerWdm - ok
21:42:43.0051 2028 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:42:43.0067 2028 BrUsbMdm - ok
21:42:43.0067 2028 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:42:43.0067 2028 BrUsbSer - ok
21:42:43.0098 2028 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:42:43.0098 2028 BTHMODEM - ok
21:42:43.0114 2028 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:42:43.0114 2028 bthserv - ok
21:42:43.0160 2028 Bulk (d8bd549336593ca304b3524ff2f42717) C:\Windows\system32\Drivers\HDJBulk.sys
21:42:43.0160 2028 Bulk - ok
21:42:43.0192 2028 catchme - ok
21:42:43.0207 2028 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:42:43.0207 2028 cdfs - ok
21:42:43.0254 2028 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:42:43.0254 2028 cdrom - ok
21:42:43.0285 2028 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:42:43.0285 2028 CertPropSvc - ok
21:42:43.0316 2028 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:42:43.0316 2028 circlass - ok
21:42:43.0348 2028 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:42:43.0348 2028 CLFS - ok
21:42:43.0410 2028 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:42:43.0410 2028 clr_optimization_v2.0.50727_32 - ok
21:42:43.0441 2028 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:42:43.0441 2028 clr_optimization_v2.0.50727_64 - ok
21:42:43.0457 2028 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:42:43.0457 2028 CmBatt - ok
21:42:43.0504 2028 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:42:43.0504 2028 cmdide - ok
21:42:43.0535 2028 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:42:43.0550 2028 CNG - ok
21:42:43.0550 2028 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:42:43.0550 2028 Compbatt - ok
21:42:43.0566 2028 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:42:43.0566 2028 CompositeBus - ok
21:42:43.0582 2028 COMSysApp - ok
21:42:43.0597 2028 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:42:43.0597 2028 crcdisk - ok
21:42:43.0644 2028 CryptSvc (9c01375be382e834cc26d1b7eaf2c4fe) C:\Windows\system32\cryptsvc.dll
21:42:43.0644 2028 CryptSvc - ok
21:42:43.0691 2028 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:42:43.0691 2028 DcomLaunch - ok
21:42:43.0722 2028 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:42:43.0722 2028 defragsvc - ok
21:42:43.0769 2028 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:42:43.0769 2028 DfsC - ok
21:42:43.0784 2028 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:42:43.0784 2028 Dhcp - ok
21:42:43.0816 2028 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:42:43.0816 2028 discache - ok
21:42:43.0847 2028 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:42:43.0847 2028 Disk - ok
21:42:43.0878 2028 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:42:43.0878 2028 Dnscache - ok
21:42:43.0925 2028 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:42:43.0925 2028 dot3svc - ok
21:42:43.0940 2028 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:42:43.0956 2028 DPS - ok
21:42:43.0972 2028 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:42:43.0972 2028 drmkaud - ok
21:42:44.0018 2028 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:42:44.0034 2028 DXGKrnl - ok
21:42:44.0096 2028 D_Link_DWA-125 (f195fbc375342bd25c936982245a8fb0) C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
21:42:44.0096 2028 D_Link_DWA-125 - ok
21:42:44.0112 2028 D_Link_DWA-125_WPS (4db0907d750e0810309f8d8fa36625a6) C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
21:42:44.0112 2028 D_Link_DWA-125_WPS - ok
21:42:44.0128 2028 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:42:44.0128 2028 EapHost - ok
21:42:44.0237 2028 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:42:44.0268 2028 ebdrv - ok
21:42:44.0346 2028 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:42:44.0346 2028 eeCtrl - ok
21:42:44.0424 2028 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:42:44.0424 2028 EFS - ok
21:42:44.0502 2028 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:42:44.0502 2028 ehRecvr - ok
21:42:44.0533 2028 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:42:44.0533 2028 ehSched - ok
21:42:44.0580 2028 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:42:44.0580 2028 elxstor - ok
21:42:44.0611 2028 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:42:44.0611 2028 ErrDev - ok
21:42:44.0658 2028 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:42:44.0658 2028 EventSystem - ok
21:42:44.0705 2028 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:42:44.0705 2028 exfat - ok
21:42:44.0736 2028 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:42:44.0736 2028 fastfat - ok
21:42:44.0783 2028 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:42:44.0783 2028 Fax - ok
21:42:44.0814 2028 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:42:44.0814 2028 fdc - ok
21:42:44.0830 2028 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:42:44.0845 2028 fdPHost - ok
21:42:44.0861 2028 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:42:44.0861 2028 FDResPub - ok
21:42:44.0892 2028 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:42:44.0892 2028 FileInfo - ok
21:42:44.0908 2028 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:42:44.0908 2028 Filetrace - ok
21:42:44.0939 2028 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:42:44.0939 2028 flpydisk - ok
21:42:44.0970 2028 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:42:44.0970 2028 FltMgr - ok
21:42:45.0032 2028 FontCache (b4447f606bb19fd8ad0bafb59b90f5d9) C:\Windows\system32\FntCache.dll
21:42:45.0048 2028 FontCache - ok
21:42:45.0110 2028 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:42:45.0110 2028 FontCache3.0.0.0 - ok
21:42:45.0157 2028 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:42:45.0157 2028 FsDepends - ok
21:42:45.0173 2028 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:42:45.0173 2028 Fs_Rec - ok
21:42:45.0220 2028 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:42:45.0220 2028 fvevol - ok
21:42:45.0251 2028 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:42:45.0251 2028 gagp30kx - ok
21:42:45.0298 2028 GameConsoleService (c1bbce4b30b45410178ee674c818d10c) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:42:45.0313 2028 GameConsoleService - ok
21:42:45.0344 2028 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:42:45.0344 2028 GEARAspiWDM - ok
21:42:45.0391 2028 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:42:45.0407 2028 gpsvc - ok
21:42:45.0469 2028 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:45.0469 2028 gupdate - ok
21:42:45.0469 2028 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:45.0469 2028 gupdatem - ok
21:42:45.0500 2028 gusvc (5d4bc124faae6730ac002cdb67bf1a1c) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:42:45.0500 2028 gusvc - ok
21:42:45.0532 2028 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:42:45.0532 2028 hcw85cir - ok
21:42:45.0563 2028 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:42:45.0563 2028 HdAudAddService - ok
21:42:45.0578 2028 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:42:45.0578 2028 HDAudBus - ok
21:42:45.0610 2028 HDJMidi (f10b45171f7e8618e0868f3a0c9efe84) C:\Windows\system32\DRIVERS\HDJMidi.sys
21:42:45.0610 2028 HDJMidi - ok
21:42:45.0656 2028 HerculesDJControlMP3 (4141c2cbd8d6c9f3f4004fe842c48e79) C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
21:42:45.0656 2028 HerculesDJControlMP3 - ok
21:42:45.0672 2028 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:42:45.0672 2028 HidBatt - ok
21:42:45.0688 2028 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:42:45.0688 2028 HidBth - ok
21:42:45.0703 2028 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:42:45.0703 2028 HidIr - ok
21:42:45.0750 2028 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:42:45.0750 2028 hidserv - ok
21:42:45.0766 2028 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:42:45.0766 2028 HidUsb - ok
21:42:45.0797 2028 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:42:45.0797 2028 hkmsvc - ok
21:42:45.0844 2028 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:42:45.0844 2028 HomeGroupListener - ok
21:42:45.0875 2028 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:42:45.0875 2028 HomeGroupProvider - ok
21:42:45.0953 2028 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
21:42:45.0953 2028 HP Support Assistant Service - ok
21:42:45.0984 2028 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
21:42:45.0984 2028 HPDrvMntSvc.exe - ok
21:42:46.0031 2028 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:42:46.0046 2028 hpqwmiex - ok
21:42:46.0093 2028 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:42:46.0093 2028 HpSAMD - ok
21:42:46.0140 2028 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:42:46.0140 2028 HTTP - ok
21:42:46.0171 2028 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:42:46.0171 2028 hwpolicy - ok
21:42:46.0202 2028 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:42:46.0202 2028 i8042prt - ok
21:42:46.0234 2028 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
21:42:46.0234 2028 iaStorV - ok
21:42:46.0296 2028 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:42:46.0296 2028 idsvc - ok
21:42:46.0405 2028 IDSVia64 (6f9b281bc4afff5fe784d7da699d347f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20110120.001\IDSvia64.sys
21:42:46.0421 2028 IDSVia64 - ok
21:42:46.0468 2028 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:42:46.0483 2028 iirsp - ok
21:42:46.0530 2028 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:42:46.0530 2028 IKEEXT - ok
21:42:46.0608 2028 IntcAzAudAddService (ef75c94792187a143871fbb87611b0b7) C:\Windows\system32\drivers\RTKVHD64.sys
21:42:46.0624 2028 IntcAzAudAddService - ok
21:42:46.0702 2028 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:42:46.0702 2028 intelide - ok
21:42:46.0733 2028 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:42:46.0733 2028 intelppm - ok
21:42:46.0764 2028 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:42:46.0764 2028 IPBusEnum - ok
21:42:46.0795 2028 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:42:46.0795 2028 IpFilterDriver - ok
21:42:46.0811 2028 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:42:46.0826 2028 iphlpsvc - ok
21:42:46.0842 2028 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:42:46.0858 2028 IPMIDRV - ok
21:42:46.0873 2028 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:42:46.0873 2028 IPNAT - ok
21:42:46.0951 2028 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
21:42:46.0951 2028 iPod Service - ok
21:42:46.0967 2028 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:42:46.0967 2028 IRENUM - ok
21:42:47.0014 2028 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:42:47.0014 2028 isapnp - ok
21:42:47.0029 2028 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:42:47.0045 2028 iScsiPrt - ok
21:42:47.0060 2028 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:42:47.0060 2028 kbdclass - ok
21:42:47.0076 2028 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:42:47.0076 2028 kbdhid - ok
21:42:47.0107 2028 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:47.0107 2028 KeyIso - ok
21:42:47.0123 2028 KMService - ok
21:42:47.0154 2028 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:42:47.0154 2028 KSecDD - ok
21:42:47.0185 2028 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:42:47.0185 2028 KSecPkg - ok
21:42:47.0201 2028 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:42:47.0201 2028 ksthunk - ok
21:42:47.0248 2028 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:42:47.0248 2028 KtmRm - ok
21:42:47.0294 2028 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:42:47.0294 2028 LanmanServer - ok
21:42:47.0326 2028 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:42:47.0326 2028 LanmanWorkstation - ok
21:42:47.0419 2028 LightScribeService (b1e1c8bb1392537e4d415fcdcb93b1d3) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:42:47.0419 2028 LightScribeService - ok
21:42:47.0435 2028 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:42:47.0435 2028 lltdio - ok
21:42:47.0482 2028 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:42:47.0482 2028 lltdsvc - ok
21:42:47.0497 2028 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:42:47.0513 2028 lmhosts - ok
21:42:47.0528 2028 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:42:47.0528 2028 LSI_FC - ok
21:42:47.0560 2028 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:42:47.0575 2028 LSI_SAS - ok
21:42:47.0575 2028 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:42:47.0575 2028 LSI_SAS2 - ok
21:42:47.0606 2028 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:42:47.0606 2028 LSI_SCSI - ok
21:42:47.0638 2028 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:42:47.0638 2028 luafv - ok
21:42:47.0700 2028 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
21:42:47.0700 2028 McComponentHostService - ok
21:42:47.0747 2028 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
21:42:47.0747 2028 mcdbus - ok
21:42:47.0778 2028 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:42:47.0778 2028 Mcx2Svc - ok
21:42:47.0809 2028 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:42:47.0809 2028 megasas - ok
21:42:47.0825 2028 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:42:47.0825 2028 MegaSR - ok
21:42:47.0872 2028 Microsoft SharePoint Workspace Audit Service - ok
21:42:47.0903 2028 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:42:47.0903 2028 MMCSS - ok
21:42:47.0934 2028 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:42:47.0934 2028 Modem - ok
21:42:47.0965 2028 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:42:47.0965 2028 monitor - ok
21:42:47.0996 2028 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:42:47.0996 2028 mouclass - ok
21:42:48.0028 2028 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:42:48.0028 2028 mouhid - ok
21:42:48.0059 2028 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:42:48.0059 2028 mountmgr - ok
21:42:48.0074 2028 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:42:48.0074 2028 mpio - ok
21:42:48.0121 2028 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:42:48.0121 2028 mpsdrv - ok
21:42:48.0168 2028 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:42:48.0168 2028 MpsSvc - ok
21:42:48.0199 2028 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:42:48.0199 2028 MRxDAV - ok
21:42:48.0230 2028 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:42:48.0230 2028 mrxsmb - ok
21:42:48.0277 2028 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:42:48.0277 2028 mrxsmb10 - ok
21:42:48.0324 2028 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:42:48.0324 2028 mrxsmb20 - ok
21:42:48.0355 2028 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:42:48.0355 2028 msahci - ok
21:42:48.0371 2028 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:42:48.0371 2028 msdsm - ok
21:42:48.0402 2028 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:42:48.0402 2028 MSDTC - ok
21:42:48.0433 2028 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:42:48.0433 2028 Msfs - ok
21:42:48.0449 2028 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:42:48.0449 2028 mshidkmdf - ok
21:42:48.0464 2028 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:42:48.0464 2028 msisadrv - ok
21:42:48.0480 2028 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:42:48.0480 2028 MSiSCSI - ok
21:42:48.0496 2028 msiserver - ok
21:42:48.0511 2028 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:42:48.0511 2028 MSKSSRV - ok
21:42:48.0527 2028 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:42:48.0527 2028 MSPCLOCK - ok
21:42:48.0527 2028 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:42:48.0527 2028 MSPQM - ok
21:42:48.0589 2028 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:42:48.0589 2028 MsRPC - ok
21:42:48.0605 2028 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:42:48.0605 2028 mssmbios - ok
21:42:48.0620 2028 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:42:48.0620 2028 MSTEE - ok
21:42:48.0652 2028 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:42:48.0652 2028 MTConfig - ok
21:42:48.0683 2028 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:42:48.0683 2028 Mup - ok
21:42:48.0698 2028 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:42:48.0714 2028 napagent - ok
21:42:48.0730 2028 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:42:48.0730 2028 NativeWifiP - ok
21:42:48.0823 2028 NAVENG (7be93dbb02b66e72872ff76d8a92e662) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\ENG64.SYS
21:42:48.0823 2028 NAVENG - ok
21:42:48.0886 2028 NAVEX15 (be99edbba322ca59b3f2fe17b9bf987a) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\EX64.SYS
21:42:48.0901 2028 NAVEX15 - ok
21:42:49.0026 2028 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:42:49.0042 2028 NDIS - ok
21:42:49.0073 2028 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:42:49.0073 2028 NdisCap - ok
21:42:49.0088 2028 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:42:49.0088 2028 NdisTapi - ok
21:42:49.0120 2028 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:42:49.0120 2028 Ndisuio - ok
21:42:49.0151 2028 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:42:49.0151 2028 NdisWan - ok
21:42:49.0166 2028 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:42:49.0166 2028 NDProxy - ok
21:42:49.0182 2028 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:42:49.0182 2028 NetBIOS - ok
21:42:49.0229 2028 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:42:49.0229 2028 NetBT - ok
21:42:49.0260 2028 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:49.0260 2028 Netlogon - ok
21:42:49.0307 2028 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:42:49.0307 2028 Netman - ok
21:42:49.0338 2028 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:42:49.0338 2028 netprofm - ok
21:42:49.0432 2028 netr28ux (eed1fbde98cf5f6d5c0c5b27ab1f68ec) C:\Windows\system32\DRIVERS\Dnetr28ux.sys
21:42:49.0432 2028 netr28ux - ok
21:42:49.0510 2028 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:42:49.0510 2028 NetTcpPortSharing - ok
21:42:49.0525 2028 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:42:49.0525 2028 nfrd960 - ok
21:42:49.0619 2028 NIS (18654d5e0dc33b7f0f895264a5de80da) C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
21:42:49.0619 2028 NIS - ok
21:42:49.0650 2028 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:42:49.0666 2028 NlaSvc - ok
21:42:49.0681 2028 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:42:49.0681 2028 Npfs - ok
21:42:49.0712 2028 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:42:49.0712 2028 nsi - ok
21:42:49.0728 2028 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:42:49.0728 2028 nsiproxy - ok
21:42:49.0790 2028 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
21:42:49.0790 2028 Ntfs - ok
21:42:49.0868 2028 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:42:49.0868 2028 Null - ok
21:42:49.0900 2028 NVHDA (960e39a54e525df58cb29193147dffa1) C:\Windows\system32\drivers\nvhda64v.sys
21:42:49.0915 2028 NVHDA - ok
21:42:50.0305 2028 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:42:50.0383 2028 nvlddmkm - ok
21:42:50.0461 2028 NVNET (909eedcbd365bb81027d8e742e6b3416) C:\Windows\system32\DRIVERS\nvmf6264.sys
21:42:50.0461 2028 NVNET - ok
21:42:50.0492 2028 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
21:42:50.0508 2028 nvraid - ok
21:42:50.0524 2028 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
21:42:50.0524 2028 nvstor - ok
21:42:50.0555 2028 nvstor64 (1e45f96342429d63dc30e0d9117da3d8) C:\Windows\system32\DRIVERS\nvstor64.sys
21:42:50.0570 2028 nvstor64 - ok
21:42:50.0680 2028 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
21:42:50.0695 2028 nvUpdatusService - ok
21:42:50.0789 2028 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:42:50.0789 2028 nv_agp - ok
21:42:50.0820 2028 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:42:50.0820 2028 ohci1394 - ok
21:42:50.0867 2028 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:42:50.0867 2028 ose - ok
21:42:51.0054 2028 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:42:51.0085 2028 osppsvc - ok
21:42:51.0163 2028 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:42:51.0163 2028 p2pimsvc - ok
21:42:51.0194 2028 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:42:51.0194 2028 p2psvc - ok
21:42:51.0241 2028 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:42:51.0241 2028 Parport - ok
21:42:51.0272 2028 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:42:51.0272 2028 partmgr - ok
21:42:51.0304 2028 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:42:51.0304 2028 PcaSvc - ok
21:42:51.0335 2028 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:42:51.0350 2028 pci - ok
21:42:51.0366 2028 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:42:51.0366 2028 pciide - ok
21:42:51.0382 2028 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:42:51.0397 2028 pcmcia - ok
21:42:51.0413 2028 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:42:51.0413 2028 pcw - ok
21:42:51.0460 2028 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:42:51.0460 2028 PEAUTH - ok
21:42:51.0522 2028 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:42:51.0522 2028 PerfHost - ok
21:42:51.0600 2028 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:42:51.0616 2028 pla - ok
21:42:51.0647 2028 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:42:51.0647 2028 PlugPlay - ok
21:42:51.0678 2028 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:42:51.0678 2028 PNRPAutoReg - ok
21:42:51.0709 2028 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:42:51.0709 2028 PNRPsvc - ok
21:42:51.0740 2028 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:42:51.0756 2028 PolicyAgent - ok
21:42:51.0787 2028 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:42:51.0787 2028 Power - ok
21:42:51.0818 2028 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:42:51.0818 2028 PptpMiniport - ok
21:42:51.0834 2028 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:42:51.0834 2028 Processor - ok
21:42:51.0865 2028 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:42:51.0865 2028 ProfSvc - ok
21:42:51.0896 2028 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:51.0896 2028 ProtectedStorage - ok
21:42:51.0928 2028 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:42:51.0928 2028 Psched - ok
21:42:51.0990 2028 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:42:52.0006 2028 ql2300 - ok
21:42:52.0084 2028 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:42:52.0084 2028 ql40xx - ok
21:42:52.0115 2028 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:42:52.0115 2028 QWAVE - ok
21:42:52.0146 2028 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:42:52.0146 2028 QWAVEdrv - ok
21:42:52.0162 2028 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:42:52.0162 2028 RasAcd - ok
21:42:52.0177 2028 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:42:52.0177 2028 RasAgileVpn - ok
21:42:52.0193 2028 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:42:52.0208 2028 RasAuto - ok
21:42:52.0240 2028 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:42:52.0240 2028 Rasl2tp - ok
21:42:52.0255 2028 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:42:52.0271 2028 RasMan - ok
21:42:52.0286 2028 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:42:52.0286 2028 RasPppoe - ok
21:42:52.0302 2028 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:42:52.0302 2028 RasSstp - ok
21:42:52.0333 2028 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:42:52.0333 2028 rdbss - ok
21:42:52.0349 2028 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:42:52.0349 2028 rdpbus - ok
21:42:52.0364 2028 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:42:52.0380 2028 RDPCDD - ok
21:42:52.0396 2028 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:42:52.0396 2028 RDPENCDD - ok
21:42:52.0411 2028 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:42:52.0411 2028 RDPREFMP - ok
21:42:52.0442 2028 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:42:52.0442 2028 RDPWD - ok
21:42:52.0489 2028 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:42:52.0489 2028 rdyboost - ok
21:42:52.0536 2028 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:42:52.0536 2028 RemoteAccess - ok
21:42:52.0552 2028 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:42:52.0567 2028 RemoteRegistry - ok
21:42:52.0583 2028 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:42:52.0583 2028 RpcEptMapper - ok
21:42:52.0598 2028 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:42:52.0598 2028 RpcLocator - ok
21:42:52.0645 2028 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:42:52.0645 2028 RpcSs - ok
21:42:52.0676 2028 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:42:52.0676 2028 rspndr - ok
21:42:52.0723 2028 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:52.0723 2028 SamSs - ok
21:42:52.0754 2028 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:42:52.0754 2028 sbp2port - ok
21:42:52.0786 2028 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:42:52.0801 2028 SCardSvr - ok
21:42:52.0832 2028 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:42:52.0832 2028 scfilter - ok
21:42:52.0879 2028 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:42:52.0895 2028 Schedule - ok
21:42:52.0926 2028 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:42:52.0926 2028 SCPolicySvc - ok
21:42:52.0957 2028 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:42:52.0957 2028 SDRSVC - ok
21:42:52.0988 2028 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:42:52.0988 2028 secdrv - ok
21:42:53.0020 2028 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:42:53.0020 2028 seclogon - ok
21:42:53.0035 2028 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:42:53.0035 2028 SENS - ok
21:42:53.0051 2028 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:42:53.0051 2028 SensrSvc - ok
21:42:53.0082 2028 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:42:53.0082 2028 Serenum - ok
21:42:53.0113 2028 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:42:53.0113 2028 Serial - ok
21:42:53.0160 2028 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:42:53.0160 2028 sermouse - ok
21:42:53.0207 2028 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:42:53.0207 2028 SessionEnv - ok
21:42:53.0222 2028 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:42:53.0222 2028 sffdisk - ok
21:42:53.0222 2028 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:42:53.0222 2028 sffp_mmc - ok
21:42:53.0238 2028 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:42:53.0238 2028 sffp_sd - ok
21:42:53.0269 2028 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:42:53.0269 2028 sfloppy - ok
21:42:53.0300 2028 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:42:53.0300 2028 SharedAccess - ok
21:42:53.0347 2028 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:42:53.0347 2028 ShellHWDetection - ok
21:42:53.0378 2028 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:42:53.0378 2028 SiSRaid2 - ok
21:42:53.0394 2028 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:42:53.0394 2028 SiSRaid4 - ok
21:42:53.0425 2028 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:42:53.0425 2028 Smb - ok
21:42:53.0456 2028 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:42:53.0456 2028 SNMPTRAP - ok
21:42:53.0456 2028 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:42:53.0456 2028 spldr - ok
21:42:53.0488 2028 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:42:53.0488 2028 Spooler - ok
21:42:53.0612 2028 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:42:53.0628 2028 sppsvc - ok
21:42:53.0706 2028 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:42:53.0706 2028 sppuinotify - ok
21:42:53.0784 2028 SRTSP (9a359fb3d10c9de23edc427ada8ac8be) C:\Windows\System32\Drivers\NISx64\1205000.07D\SRTSP64.SYS
21:42:53.0800 2028 SRTSP - ok
21:42:53.0815 2028 SRTSPX (a14a9aaa8005d411ef1657601f55776d) C:\Windows\system32\drivers\NISx64\1205000.07D\SRTSPX64.SYS
21:42:53.0815 2028 SRTSPX - ok
21:42:53.0862 2028 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:42:53.0862 2028 srv - ok
21:42:53.0893 2028 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:42:53.0893 2028 srv2 - ok
21:42:53.0924 2028 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:42:53.0924 2028 srvnet - ok
21:42:53.0940 2028 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:42:53.0956 2028 SSDPSRV - ok
21:42:53.0971 2028 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:42:53.0971 2028 SstpSvc - ok
21:42:54.0049 2028 Stereo Service (6086b60f2e36d06a063cb07ed0524332) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:42:54.0065 2028 Stereo Service - ok
21:42:54.0080 2028 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:42:54.0080 2028 stexstor - ok
21:42:54.0127 2028 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:42:54.0143 2028 stisvc - ok
21:42:54.0174 2028 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:42:54.0174 2028 swenum - ok
21:42:54.0252 2028 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:42:54.0252 2028 SwitchBoard - ok
21:42:54.0299 2028 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:42:54.0299 2028 swprv - ok
21:42:54.0361 2028 SymDS (6d33d1669b3b6193658129d1767a4aff) C:\Windows\system32\drivers\NISx64\1205000.07D\SYMDS64.SYS
21:42:54.0361 2028 SymDS - ok
21:42:54.0392 2028 SymEFA (9acc52c79420236dcb1ab1a17ed0df2e) C:\Windows\system32\drivers\NISx64\1205000.07D\SYMEFA64.SYS
21:42:54.0408 2028 SymEFA - ok
21:42:54.0424 2028 SymEvent (84e27ca1a5af320a705e767ea53086e5) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:42:54.0424 2028 SymEvent - ok
21:42:54.0455 2028 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\NISx64\1205000.07D\Ironx64.SYS
21:42:54.0455 2028 SymIRON - ok
21:42:54.0470 2028 SymNetS (af56ca02f9dc706709c0a7df5c1dab82) C:\Windows\System32\Drivers\NISx64\1205000.07D\SYMNETS.SYS
21:42:54.0470 2028 SymNetS - ok
21:42:54.0564 2028 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:42:54.0580 2028 SysMain - ok
21:42:54.0658 2028 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:42:54.0658 2028 TabletInputService - ok
21:42:54.0689 2028 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:42:54.0689 2028 TapiSrv - ok
21:42:54.0720 2028 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:42:54.0720 2028 TBS - ok
21:42:54.0798 2028 Tcpip (f782cad3cedbb3f9ffe3bf2775d92ddc) C:\Windows\system32\drivers\tcpip.sys
21:42:54.0814 2028 Tcpip - ok
21:42:54.0923 2028 TCPIP6 (f782cad3cedbb3f9ffe3bf2775d92ddc) C:\Windows\system32\DRIVERS\tcpip.sys
21:42:54.0923 2028 TCPIP6 - ok
21:42:55.0001 2028 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:42:55.0001 2028 tcpipreg - ok
21:42:55.0048 2028 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:42:55.0048 2028 TDPIPE - ok
21:42:55.0079 2028 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:42:55.0079 2028 TDTCP - ok
21:42:55.0110 2028 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:42:55.0110 2028 tdx - ok
21:42:55.0157 2028 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:42:55.0157 2028 TermDD - ok
21:42:55.0188 2028 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:42:55.0188 2028 TermService - ok
21:42:55.0219 2028 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:42:55.0219 2028 Themes - ok
21:42:55.0235 2028 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:42:55.0235 2028 THREADORDER - ok
21:42:55.0250 2028 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:42:55.0266 2028 TrkWks - ok
21:42:55.0313 2028 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:42:55.0313 2028 TrustedInstaller - ok
21:42:55.0344 2028 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:42:55.0344 2028 tssecsrv - ok
21:42:55.0391 2028 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:42:55.0391 2028 TsUsbFlt - ok
21:42:55.0422 2028 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:42:55.0422 2028 tunnel - ok
21:42:55.0453 2028 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:42:55.0453 2028 uagp35 - ok
21:42:55.0500 2028 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:42:55.0500 2028 udfs - ok
21:42:55.0531 2028 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:42:55.0531 2028 UI0Detect - ok
21:42:55.0562 2028 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:42:55.0562 2028 uliagpkx - ok
21:42:55.0578 2028 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:42:55.0578 2028 umbus - ok
21:42:55.0609 2028 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:42:55.0609 2028 UmPass - ok
21:42:55.0640 2028 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:42:55.0640 2028 upnphost - ok
21:42:55.0672 2028 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:42:55.0672 2028 USBAAPL64 - ok
21:42:55.0687 2028 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
21:42:55.0687 2028 usbaudio - ok
21:42:55.0703 2028 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
21:42:55.0703 2028 usbccgp - ok
21:42:55.0734 2028 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:42:55.0734 2028 usbcir - ok
21:42:55.0750 2028 usbehci (74ee782b1d9c241efe425565854c661c) C:\Windows\system32\drivers\usbehci.sys
21:42:55.0750 2028 usbehci - ok
21:42:55.0765 2028 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\drivers\usbhub.sys
21:42:55.0765 2028 usbhub - ok
21:42:55.0796 2028 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
21:42:55.0796 2028 usbohci - ok
21:42:55.0812 2028 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:42:55.0812 2028 usbprint - ok
21:42:55.0828 2028 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:42:55.0828 2028 USBSTOR - ok
21:42:55.0843 2028 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
21:42:55.0843 2028 usbuhci - ok
21:42:55.0874 2028 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:42:55.0874 2028 UxSms - ok
21:42:55.0921 2028 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:42:55.0921 2028 VaultSvc - ok
21:42:55.0937 2028 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:42:55.0937 2028 vdrvroot - ok
21:42:55.0999 2028 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:42:55.0999 2028 vds - ok
21:42:56.0030 2028 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:42:56.0030 2028 vga - ok
21:42:56.0046 2028 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:42:56.0046 2028 VgaSave - ok
21:42:56.0077 2028 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:42:56.0077 2028 vhdmp - ok
21:42:56.0093 2028 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:42:56.0093 2028 viaide - ok
21:42:56.0108 2028 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:42:56.0108 2028 volmgr - ok
21:42:56.0155 2028 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:42:56.0171 2028 volmgrx - ok
21:42:56.0186 2028 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:42:56.0186 2028 volsnap - ok
21:42:56.0218 2028 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:42:56.0218 2028 vsmraid - ok
21:42:56.0280 2028 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:42:56.0296 2028 VSS - ok
21:42:56.0389 2028 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:42:56.0389 2028 vwifibus - ok
21:42:56.0405 2028 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:42:56.0405 2028 vwififlt - ok
21:42:56.0436 2028 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:42:56.0436 2028 W32Time - ok
21:42:56.0467 2028 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:42:56.0467 2028 WacomPen - ok
21:42:56.0498 2028 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:56.0498 2028 WANARP - ok
21:42:56.0514 2028 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:42:56.0514 2028 Wanarpv6 - ok
21:42:56.0561 2028 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:42:56.0576 2028 WatAdminSvc - ok
21:42:56.0639 2028 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:42:56.0654 2028 wbengine - ok
21:42:56.0717 2028 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:42:56.0717 2028 WbioSrvc - ok
21:42:56.0764 2028 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:42:56.0764 2028 wcncsvc - ok
21:42:56.0795 2028 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:42:56.0795 2028 WcsPlugInService - ok
21:42:56.0826 2028 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:42:56.0826 2028 Wd - ok
21:42:56.0873 2028 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:42:56.0888 2028 Wdf01000 - ok
21:42:56.0904 2028 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:56.0904 2028 WdiServiceHost - ok
21:42:56.0904 2028 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:42:56.0920 2028 WdiSystemHost - ok
21:42:56.0951 2028 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:42:56.0966 2028 WebClient - ok
21:42:56.0998 2028 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:42:56.0998 2028 Wecsvc - ok
21:42:57.0013 2028 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:42:57.0013 2028 wercplsupport - ok
21:42:57.0044 2028 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:42:57.0044 2028 WerSvc - ok
21:42:57.0076 2028 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:42:57.0076 2028 WfpLwf - ok
21:42:57.0091 2028 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:42:57.0091 2028 WIMMount - ok
21:42:57.0122 2028 WinDefend - ok
21:42:57.0138 2028 WinHttpAutoProxySvc - ok
21:42:57.0185 2028 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:42:57.0185 2028 Winmgmt - ok
21:42:57.0263 2028 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:42:57.0278 2028 WinRM - ok
21:42:57.0372 2028 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:42:57.0372 2028 WinUsb - ok
21:42:57.0419 2028 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:42:57.0434 2028 Wlansvc - ok
21:42:57.0450 2028 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:42:57.0450 2028 WmiAcpi - ok
21:42:57.0512 2028 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:42:57.0512 2028 wmiApSrv - ok
21:42:57.0528 2028 WMPNetworkSvc - ok
21:42:57.0559 2028 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:42:57.0559 2028 WPCSvc - ok
21:42:57.0590 2028 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:42:57.0590 2028 WPDBusEnum - ok
21:42:57.0622 2028 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:42:57.0622 2028 ws2ifsl - ok
21:42:57.0637 2028 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:42:57.0637 2028 wscsvc - ok
21:42:57.0653 2028 WSearch - ok
21:42:57.0746 2028 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:42:57.0762 2028 wuauserv - ok
21:42:57.0856 2028 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:42:57.0856 2028 WudfPf - ok
21:42:57.0871 2028 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:42:57.0871 2028 WUDFRd - ok
21:42:57.0887 2028 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:42:57.0902 2028 wudfsvc - ok
21:42:57.0949 2028 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:42:57.0949 2028 WwanSvc - ok
21:42:57.0980 2028 MBR (0x1B8) (9e2f02b7c9789ce941493f99d9e955c2) \Device\Harddisk0\DR0
21:42:58.0152 2028 \Device\Harddisk0\DR0 - ok
21:42:58.0168 2028 Boot (0x1200) (c8981b0bdb9e52d75b39ab6b1b4ba166) \Device\Harddisk0\DR0\Partition0
21:42:58.0168 2028 \Device\Harddisk0\DR0\Partition0 - ok
21:42:58.0199 2028 Boot (0x1200) (b41da79f266b8395694e959fe6ada434) \Device\Harddisk0\DR0\Partition1
21:42:58.0199 2028 \Device\Harddisk0\DR0\Partition1 - ok
21:42:58.0230 2028 Boot (0x1200) (b559ec8bba4ab21d04df477fa3d3553b) \Device\Harddisk0\DR0\Partition2
21:42:58.0246 2028 \Device\Harddisk0\DR0\Partition2 - ok
21:42:58.0246 2028 ============================================================
21:42:58.0246 2028 Scan finished
21:42:58.0246 2028 ============================================================
21:42:58.0261 2020 Detected object count: 0
21:42:58.0261 2020 Actual detected object count: 0
21:43:01.0225 1900 Deinitialize success


aswMBR

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-26 02:57:32
-----------------------------
02:57:32.912 OS Version: Windows x64 6.1.7601 Service Pack 1
02:57:32.912 Number of processors: 1 586 0x603
02:57:32.912 ComputerName: DRFUNKCOMPUTER UserName: DrFunk
02:57:34.473 Initialize success
02:57:52.975 AVAST engine defs: 12102600
02:57:57.561 The log file has been saved successfully to "C:\Users\DrFunk\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-26 02:57:32
-----------------------------
02:57:32.912 OS Version: Windows x64 6.1.7601 Service Pack 1
02:57:32.912 Number of processors: 1 586 0x603
02:57:32.912 ComputerName: DRFUNKCOMPUTER UserName: DrFunk
02:57:34.473 Initialize success
02:57:52.975 AVAST engine defs: 12102600
02:57:57.561 The log file has been saved successfully to "C:\Users\DrFunk\Desktop\aswMBR.txt"
02:58:06.787 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000060
02:58:06.787 Disk 0 Vendor: ST350041 HP35 Size: 476940MB BusType: 3
02:58:06.818 Disk 0 MBR read successfully
02:58:06.818 Disk 0 MBR scan
02:58:06.849 Disk 0 unknown MBR code
02:58:06.865 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
02:58:06.896 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 465944 MB offset 206848
02:58:06.927 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 10880 MB offset 954460160
02:58:06.974 Disk 0 scanning C:\Windows\system32\drivers
02:58:33.839 Service scanning
02:59:03.604 Modules scanning
02:59:03.620 Disk 0 trace - called modules:
02:59:04.150 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor64.sys
02:59:04.150 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b69060]
02:59:04.166 3 CLASSPNP.SYS[fffff8800100143f] -> nt!IofCallDriver -> [0xfffffa80049f59c0]
02:59:04.181 5 ACPI.sys[fffff88000e0e7a1] -> nt!IofCallDriver -> \Device\00000060[0xfffffa80049f5140]
02:59:11.919 AVAST engine scan C:\Windows
02:59:18.128 AVAST engine scan C:\Windows\system32
03:03:14.815 AVAST engine scan C:\Windows\system32\drivers
03:03:30.165 AVAST engine scan C:\Users\DrFunk
03:07:39.366 AVAST engine scan C:\ProgramData
03:09:58.365 Scan finished successfully
03:15:57.946 Disk 0 MBR has been saved successfully to "C:\Users\DrFunk\Desktop\MBR.dat"
03:15:57.946 The log file has been saved successfully to "C:\Users\DrFunk\Desktop\aswMBR.txt"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 26 October 2012 - 07:36 AM

Please post the log of new version

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#7 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 26 October 2012 - 05:08 PM

I was able to run TDSSKiller without a problem. I did however run into a problem when running ESET Online Scanner. It said "Can not get update. Is proxy configured?" I checked my Internet Options under Internet Explorer LAN settings and it is checked for "Automatically detect settings."

New TDSSKiller Log:

14:44:59.0719 4076 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
14:44:59.0953 4076 ============================================================
14:44:59.0953 4076 Current date / time: 2012/10/26 14:44:59.0953
14:44:59.0953 4076 SystemInfo:
14:44:59.0953 4076
14:44:59.0953 4076 OS Version: 6.1.7601 ServicePack: 1.0
14:44:59.0953 4076 Product type: Workstation
14:44:59.0953 4076 ComputerName: DRFUNKCOMPUTER
14:44:59.0953 4076 UserName: DrFunk
14:44:59.0953 4076 Windows directory: C:\Windows
14:44:59.0953 4076 System windows directory: C:\Windows
14:44:59.0953 4076 Running under WOW64
14:44:59.0953 4076 Processor architecture: Intel x64
14:44:59.0953 4076 Number of processors: 1
14:44:59.0953 4076 Page size: 0x1000
14:44:59.0953 4076 Boot type: Normal boot
14:44:59.0953 4076 ============================================================
14:45:01.0919 4076 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
14:45:01.0919 4076 ============================================================
14:45:01.0919 4076 \Device\Harddisk0\DR0:
14:45:01.0919 4076 MBR partitions:
14:45:01.0919 4076 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:45:01.0919 4076 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38E0C000
14:45:01.0919 4076 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38E3E800, BlocksNum 0x1540030
14:45:01.0919 4076 ============================================================
14:45:01.0950 4076 C: <-> \Device\Harddisk0\DR0\Partition2
14:45:01.0981 4076 D: <-> \Device\Harddisk0\DR0\Partition3
14:45:01.0981 4076 ============================================================
14:45:01.0981 4076 Initialize success
14:45:01.0981 4076 ============================================================
14:45:08.0658 2124 ============================================================
14:45:08.0658 2124 Scan started
14:45:08.0658 2124 Mode: Manual; TDLFS;
14:45:08.0658 2124 ============================================================
14:45:09.0391 2124 ================ Scan system memory ========================
14:45:09.0391 2124 System memory - ok
14:45:09.0391 2124 ================ Scan services =============================
14:45:09.0532 2124 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:45:09.0563 2124 1394ohci - ok
14:45:09.0594 2124 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:45:09.0594 2124 ACPI - ok
14:45:09.0610 2124 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:45:09.0625 2124 AcpiPmi - ok
14:45:09.0766 2124 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:45:09.0766 2124 AdobeARMservice - ok
14:45:09.0828 2124 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:45:09.0891 2124 adp94xx - ok
14:45:09.0922 2124 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:45:09.0937 2124 adpahci - ok
14:45:09.0969 2124 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:45:09.0984 2124 adpu320 - ok
14:45:10.0015 2124 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:45:10.0015 2124 AeLookupSvc - ok
14:45:10.0078 2124 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
14:45:10.0078 2124 AFD - ok
14:45:10.0109 2124 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:45:10.0125 2124 agp440 - ok
14:45:10.0156 2124 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:45:10.0156 2124 ALG - ok
14:45:10.0187 2124 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
14:45:10.0187 2124 aliide - ok
14:45:10.0218 2124 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
14:45:10.0218 2124 amdide - ok
14:45:10.0265 2124 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:45:10.0281 2124 AmdK8 - ok
14:45:10.0296 2124 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:45:10.0296 2124 AmdPPM - ok
14:45:10.0327 2124 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:45:10.0359 2124 amdsata - ok
14:45:10.0374 2124 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:45:10.0390 2124 amdsbs - ok
14:45:10.0405 2124 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:45:10.0405 2124 amdxata - ok
14:45:10.0452 2124 [ 4CCF421E6C4B2A4CBCE000715911F7CC ] anodlwf C:\Windows\system32\DRIVERS\anodlwfx.sys
14:45:10.0452 2124 anodlwf - ok
14:45:10.0530 2124 [ B4837FE56D76B2E9EA90E5365CF6A2BE ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
14:45:10.0530 2124 AntiVirSchedulerService - ok
14:45:10.0608 2124 [ DF5A3016052755C910A206058B4A1729 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
14:45:10.0608 2124 AntiVirService - ok
14:45:10.0655 2124 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
14:45:10.0655 2124 AppID - ok
14:45:10.0686 2124 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:45:10.0702 2124 AppIDSvc - ok
14:45:10.0733 2124 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
14:45:10.0733 2124 Appinfo - ok
14:45:10.0795 2124 [ D8E18021F91AD79CA8491CB5A5DA22D4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:45:10.0795 2124 Apple Mobile Device - ok
14:45:10.0842 2124 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:45:10.0858 2124 arc - ok
14:45:10.0889 2124 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:45:10.0905 2124 arcsas - ok
14:45:10.0936 2124 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:45:10.0951 2124 AsyncMac - ok
14:45:10.0983 2124 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
14:45:10.0983 2124 atapi - ok
14:45:11.0029 2124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:45:11.0045 2124 AudioEndpointBuilder - ok
14:45:11.0061 2124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:45:11.0076 2124 AudioSrv - ok
14:45:11.0092 2124 [ B1224E6B086CD6548315B04AB575A23E ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
14:45:11.0092 2124 avgntflt - ok
14:45:11.0123 2124 [ ED45F12CFA62B83765C9C1496758CC87 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
14:45:11.0139 2124 avipbb - ok
14:45:11.0170 2124 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:45:11.0185 2124 AxInstSV - ok
14:45:11.0263 2124 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:45:11.0279 2124 b06bdrv - ok
14:45:11.0310 2124 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:45:11.0326 2124 b57nd60a - ok
14:45:11.0357 2124 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:45:11.0373 2124 BDESVC - ok
14:45:11.0388 2124 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:45:11.0388 2124 Beep - ok
14:45:11.0435 2124 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
14:45:11.0451 2124 BFE - ok
14:45:11.0607 2124 [ 446B2C459A7D11CD71350235D6977E2A ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\BASHDefs\20110114.001\BHDrvx64.sys
14:45:11.0622 2124 BHDrvx64 - ok
14:45:11.0716 2124 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
14:45:11.0731 2124 BITS - ok
14:45:11.0763 2124 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:45:11.0778 2124 blbdrive - ok
14:45:11.0872 2124 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:45:11.0887 2124 Bonjour Service - ok
14:45:11.0919 2124 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:45:11.0934 2124 bowser - ok
14:45:11.0950 2124 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:45:11.0965 2124 BrFiltLo - ok
14:45:11.0981 2124 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:45:11.0981 2124 BrFiltUp - ok
14:45:12.0012 2124 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
14:45:12.0028 2124 BridgeMP - ok
14:45:12.0059 2124 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
14:45:12.0059 2124 Browser - ok
14:45:12.0121 2124 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:45:12.0137 2124 Brserid - ok
14:45:12.0153 2124 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:45:12.0168 2124 BrSerWdm - ok
14:45:12.0199 2124 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:45:12.0199 2124 BrUsbMdm - ok
14:45:12.0215 2124 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:45:12.0215 2124 BrUsbSer - ok
14:45:12.0262 2124 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:45:12.0277 2124 BTHMODEM - ok
14:45:12.0324 2124 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:45:12.0324 2124 bthserv - ok
14:45:12.0371 2124 [ D8BD549336593CA304B3524FF2F42717 ] Bulk C:\Windows\system32\Drivers\HDJBulk.sys
14:45:12.0387 2124 Bulk - ok
14:45:12.0433 2124 catchme - ok
14:45:12.0465 2124 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:45:12.0496 2124 cdfs - ok
14:45:12.0558 2124 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:45:12.0574 2124 cdrom - ok
14:45:12.0621 2124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
14:45:12.0621 2124 CertPropSvc - ok
14:45:12.0667 2124 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:45:12.0667 2124 circlass - ok
14:45:12.0730 2124 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:45:12.0730 2124 CLFS - ok
14:45:12.0792 2124 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:45:12.0808 2124 clr_optimization_v2.0.50727_32 - ok
14:45:12.0839 2124 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:45:12.0855 2124 clr_optimization_v2.0.50727_64 - ok
14:45:12.0870 2124 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:45:12.0886 2124 CmBatt - ok
14:45:12.0901 2124 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:45:12.0901 2124 cmdide - ok
14:45:12.0948 2124 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
14:45:12.0979 2124 CNG - ok
14:45:13.0011 2124 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:45:13.0042 2124 Compbatt - ok
14:45:13.0073 2124 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:45:13.0104 2124 CompositeBus - ok
14:45:13.0135 2124 COMSysApp - ok
14:45:13.0151 2124 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:45:13.0167 2124 crcdisk - ok
14:45:13.0229 2124 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:45:13.0229 2124 CryptSvc - ok
14:45:13.0291 2124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:45:13.0307 2124 DcomLaunch - ok
14:45:13.0323 2124 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:45:13.0354 2124 defragsvc - ok
14:45:13.0401 2124 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:45:13.0416 2124 DfsC - ok
14:45:13.0447 2124 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
14:45:13.0447 2124 Dhcp - ok
14:45:13.0479 2124 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:45:13.0479 2124 discache - ok
14:45:13.0525 2124 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:45:13.0525 2124 Disk - ok
14:45:13.0572 2124 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:45:13.0588 2124 Dnscache - ok
14:45:13.0619 2124 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
14:45:13.0650 2124 dot3svc - ok
14:45:13.0681 2124 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
14:45:13.0681 2124 DPS - ok
14:45:13.0728 2124 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:45:13.0744 2124 drmkaud - ok
14:45:13.0806 2124 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:45:13.0822 2124 DXGKrnl - ok
14:45:13.0884 2124 [ F195FBC375342BD25C936982245A8FB0 ] D_Link_DWA-125 C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWZCSdS.exe
14:45:13.0884 2124 D_Link_DWA-125 - ok
14:45:13.0900 2124 [ 4DB0907D750E0810309F8D8FA36625A6 ] D_Link_DWA-125_WPS C:\Program Files (x86)\D-Link\DWA-125 revA\ANIWConnService.exe
14:45:13.0915 2124 D_Link_DWA-125_WPS - ok
14:45:13.0947 2124 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:45:13.0947 2124 EapHost - ok
14:45:14.0056 2124 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:45:14.0134 2124 ebdrv - ok
14:45:14.0181 2124 [ 066108AE4C35835081598827A1A7D08D ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:45:14.0212 2124 eeCtrl - ok
14:45:14.0259 2124 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
14:45:14.0259 2124 EFS - ok
14:45:14.0321 2124 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:45:14.0352 2124 ehRecvr - ok
14:45:14.0383 2124 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:45:14.0399 2124 ehSched - ok
14:45:14.0446 2124 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:45:14.0461 2124 elxstor - ok
14:45:14.0493 2124 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:45:14.0493 2124 ErrDev - ok
14:45:14.0586 2124 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:45:14.0602 2124 EventSystem - ok
14:45:14.0633 2124 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:45:14.0649 2124 exfat - ok
14:45:14.0664 2124 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:45:14.0680 2124 fastfat - ok
14:45:14.0727 2124 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
14:45:14.0742 2124 Fax - ok
14:45:14.0758 2124 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:45:14.0773 2124 fdc - ok
14:45:14.0805 2124 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:45:14.0805 2124 fdPHost - ok
14:45:14.0836 2124 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:45:14.0836 2124 FDResPub - ok
14:45:14.0867 2124 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:45:14.0883 2124 FileInfo - ok
14:45:14.0914 2124 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:45:14.0914 2124 Filetrace - ok
14:45:14.0929 2124 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:45:14.0945 2124 flpydisk - ok
14:45:14.0976 2124 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:45:14.0992 2124 FltMgr - ok
14:45:15.0070 2124 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\Windows\system32\FntCache.dll
14:45:15.0085 2124 FontCache - ok
14:45:15.0148 2124 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:45:15.0163 2124 FontCache3.0.0.0 - ok
14:45:15.0195 2124 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:45:15.0226 2124 FsDepends - ok
14:45:15.0257 2124 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:45:15.0288 2124 Fs_Rec - ok
14:45:15.0319 2124 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:45:15.0319 2124 fvevol - ok
14:45:15.0335 2124 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:45:15.0351 2124 gagp30kx - ok
14:45:15.0397 2124 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
14:45:15.0413 2124 GameConsoleService - ok
14:45:15.0460 2124 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:45:15.0475 2124 GEARAspiWDM - ok
14:45:15.0507 2124 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
14:45:15.0522 2124 gpsvc - ok
14:45:15.0631 2124 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:45:15.0647 2124 gupdate - ok
14:45:15.0663 2124 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:45:15.0678 2124 gupdatem - ok
14:45:15.0709 2124 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:45:15.0725 2124 gusvc - ok
14:45:15.0772 2124 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:45:15.0772 2124 hcw85cir - ok
14:45:15.0850 2124 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:45:15.0881 2124 HdAudAddService - ok
14:45:15.0912 2124 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:45:15.0912 2124 HDAudBus - ok
14:45:15.0959 2124 [ F10B45171F7E8618E0868F3A0C9EFE84 ] HDJMidi C:\Windows\system32\DRIVERS\HDJMidi.sys
14:45:15.0959 2124 HDJMidi - ok
14:45:16.0021 2124 [ 4141C2CBD8D6C9F3F4004FE842C48E79 ] HerculesDJControlMP3 C:\Program Files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE
14:45:16.0021 2124 HerculesDJControlMP3 - ok
14:45:16.0037 2124 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:45:16.0037 2124 HidBatt - ok
14:45:16.0068 2124 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:45:16.0084 2124 HidBth - ok
14:45:16.0115 2124 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:45:16.0131 2124 HidIr - ok
14:45:16.0146 2124 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
14:45:16.0146 2124 hidserv - ok
14:45:16.0193 2124 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:45:16.0209 2124 HidUsb - ok
14:45:16.0255 2124 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:45:16.0255 2124 hkmsvc - ok
14:45:16.0318 2124 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:45:16.0365 2124 HomeGroupListener - ok
14:45:16.0396 2124 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:45:16.0411 2124 HomeGroupProvider - ok
14:45:16.0521 2124 [ 13BB1114451C63BFB41BA7DAA4D70A29 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
14:45:16.0521 2124 HP Support Assistant Service - ok
14:45:16.0567 2124 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
14:45:16.0567 2124 HPDrvMntSvc.exe - ok
14:45:16.0614 2124 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
14:45:16.0661 2124 hpqwmiex - ok
14:45:16.0692 2124 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:45:16.0708 2124 HpSAMD - ok
14:45:16.0770 2124 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:45:16.0786 2124 HTTP - ok
14:45:16.0817 2124 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:45:16.0833 2124 hwpolicy - ok
14:45:16.0848 2124 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:45:16.0864 2124 i8042prt - ok
14:45:16.0895 2124 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:45:16.0911 2124 iaStorV - ok
14:45:17.0020 2124 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:45:17.0067 2124 idsvc - ok
14:45:17.0145 2124 [ 6F9B281BC4AFFF5FE784D7DA699D347F ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\IPSDefs\20110120.001\IDSvia64.sys
14:45:17.0176 2124 IDSVia64 - ok
14:45:17.0191 2124 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:45:17.0207 2124 iirsp - ok
14:45:17.0269 2124 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
14:45:17.0269 2124 IKEEXT - ok
14:45:17.0394 2124 [ EF75C94792187A143871FBB87611B0B7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:45:17.0425 2124 IntcAzAudAddService - ok
14:45:17.0472 2124 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
14:45:17.0488 2124 intelide - ok
14:45:17.0519 2124 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:45:17.0535 2124 intelppm - ok
14:45:17.0550 2124 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:45:17.0566 2124 IPBusEnum - ok
14:45:17.0613 2124 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:45:17.0628 2124 IpFilterDriver - ok
14:45:17.0675 2124 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:45:17.0675 2124 iphlpsvc - ok
14:45:17.0706 2124 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:45:17.0722 2124 IPMIDRV - ok
14:45:17.0753 2124 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:45:17.0753 2124 IPNAT - ok
14:45:17.0815 2124 [ 3C0D4B3E80FC4854CA325DD123CC4DED ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:45:17.0815 2124 iPod Service - ok
14:45:17.0847 2124 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:45:17.0847 2124 IRENUM - ok
14:45:17.0862 2124 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:45:17.0878 2124 isapnp - ok
14:45:17.0909 2124 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:45:17.0909 2124 iScsiPrt - ok
14:45:17.0940 2124 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:45:17.0956 2124 kbdclass - ok
14:45:17.0971 2124 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:45:17.0987 2124 kbdhid - ok
14:45:18.0003 2124 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
14:45:18.0003 2124 KeyIso - ok
14:45:18.0003 2124 KMService - ok
14:45:18.0049 2124 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:45:18.0065 2124 KSecDD - ok
14:45:18.0081 2124 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:45:18.0096 2124 KSecPkg - ok
14:45:18.0127 2124 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:45:18.0127 2124 ksthunk - ok
14:45:18.0159 2124 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:45:18.0174 2124 KtmRm - ok
14:45:18.0221 2124 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
14:45:18.0221 2124 LanmanServer - ok
14:45:18.0252 2124 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:45:18.0268 2124 LanmanWorkstation - ok
14:45:18.0330 2124 [ B1E1C8BB1392537E4D415FCDCB93B1D3 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
14:45:18.0330 2124 LightScribeService - ok
14:45:18.0377 2124 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:45:18.0393 2124 lltdio - ok
14:45:18.0439 2124 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:45:18.0455 2124 lltdsvc - ok
14:45:18.0471 2124 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:45:18.0486 2124 lmhosts - ok
14:45:18.0517 2124 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:45:18.0533 2124 LSI_FC - ok
14:45:18.0564 2124 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:45:18.0564 2124 LSI_SAS - ok
14:45:18.0580 2124 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:45:18.0595 2124 LSI_SAS2 - ok
14:45:18.0611 2124 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:45:18.0627 2124 LSI_SCSI - ok
14:45:18.0658 2124 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:45:18.0658 2124 luafv - ok
14:45:18.0736 2124 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
14:45:18.0767 2124 McComponentHostService - ok
14:45:18.0814 2124 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
14:45:18.0829 2124 mcdbus - ok
14:45:18.0861 2124 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:45:18.0892 2124 Mcx2Svc - ok
14:45:18.0907 2124 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:45:18.0907 2124 megasas - ok
14:45:18.0939 2124 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:45:18.0954 2124 MegaSR - ok
14:45:19.0001 2124 Microsoft SharePoint Workspace Audit Service - ok
14:45:19.0032 2124 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:45:19.0032 2124 MMCSS - ok
14:45:19.0063 2124 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:45:19.0063 2124 Modem - ok
14:45:19.0110 2124 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:45:19.0110 2124 monitor - ok
14:45:19.0173 2124 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:45:19.0188 2124 mouclass - ok
14:45:19.0235 2124 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:45:19.0235 2124 mouhid - ok
14:45:19.0266 2124 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:45:19.0266 2124 mountmgr - ok
14:45:19.0297 2124 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
14:45:19.0313 2124 mpio - ok
14:45:19.0344 2124 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:45:19.0344 2124 mpsdrv - ok
14:45:19.0391 2124 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:45:19.0407 2124 MpsSvc - ok
14:45:19.0438 2124 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:45:19.0438 2124 MRxDAV - ok
14:45:19.0469 2124 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:45:19.0485 2124 mrxsmb - ok
14:45:19.0516 2124 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:45:19.0531 2124 mrxsmb10 - ok
14:45:19.0563 2124 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:45:19.0563 2124 mrxsmb20 - ok
14:45:19.0578 2124 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
14:45:19.0594 2124 msahci - ok
14:45:19.0625 2124 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:45:19.0641 2124 msdsm - ok
14:45:19.0656 2124 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:45:19.0656 2124 MSDTC - ok
14:45:19.0687 2124 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:45:19.0703 2124 Msfs - ok
14:45:19.0719 2124 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:45:19.0719 2124 mshidkmdf - ok
14:45:19.0750 2124 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:45:19.0765 2124 msisadrv - ok
14:45:19.0797 2124 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:45:19.0797 2124 MSiSCSI - ok
14:45:19.0812 2124 msiserver - ok
14:45:19.0828 2124 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:45:19.0843 2124 MSKSSRV - ok
14:45:19.0843 2124 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:45:19.0859 2124 MSPCLOCK - ok
14:45:19.0875 2124 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:45:19.0875 2124 MSPQM - ok
14:45:19.0906 2124 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:45:19.0921 2124 MsRPC - ok
14:45:19.0953 2124 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:45:19.0953 2124 mssmbios - ok
14:45:19.0968 2124 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:45:19.0984 2124 MSTEE - ok
14:45:19.0999 2124 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:45:20.0015 2124 MTConfig - ok
14:45:20.0015 2124 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:45:20.0031 2124 Mup - ok
14:45:20.0062 2124 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
14:45:20.0077 2124 napagent - ok
14:45:20.0109 2124 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:45:20.0124 2124 NativeWifiP - ok
14:45:20.0187 2124 [ 7BE93DBB02B66E72872FF76D8A92E662 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\ENG64.SYS
14:45:20.0218 2124 NAVENG - ok
14:45:20.0265 2124 [ BE99EDBBA322CA59B3F2FE17B9BF987A ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.0.0.128\Definitions\VirusDefs\20110123.003\EX64.SYS
14:45:20.0327 2124 NAVEX15 - ok
14:45:20.0389 2124 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
14:45:20.0389 2124 NDIS - ok
14:45:20.0421 2124 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:45:20.0436 2124 NdisCap - ok
14:45:20.0452 2124 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:45:20.0452 2124 NdisTapi - ok
14:45:20.0483 2124 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:45:20.0499 2124 Ndisuio - ok
14:45:20.0530 2124 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:45:20.0545 2124 NdisWan - ok
14:45:20.0561 2124 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:45:20.0577 2124 NDProxy - ok
14:45:20.0592 2124 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:45:20.0592 2124 NetBIOS - ok
14:45:20.0639 2124 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:45:20.0639 2124 NetBT - ok
14:45:20.0655 2124 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
14:45:20.0670 2124 Netlogon - ok
14:45:20.0701 2124 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:45:20.0701 2124 Netman - ok
14:45:20.0733 2124 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:45:20.0733 2124 netprofm - ok
14:45:20.0795 2124 [ EED1FBDE98CF5F6D5C0C5B27AB1F68EC ] netr28ux C:\Windows\system32\DRIVERS\Dnetr28ux.sys
14:45:20.0811 2124 netr28ux - ok
14:45:20.0842 2124 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:45:20.0857 2124 NetTcpPortSharing - ok
14:45:20.0873 2124 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:45:20.0889 2124 nfrd960 - ok
14:45:20.0951 2124 [ 18654D5E0DC33B7F0F895264A5DE80DA ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.5.0.125\ccSvcHst.exe
14:45:20.0951 2124 NIS - ok
14:45:21.0013 2124 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:45:21.0013 2124 NlaSvc - ok
14:45:21.0029 2124 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:45:21.0029 2124 Npfs - ok
14:45:21.0045 2124 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:45:21.0060 2124 nsi - ok
14:45:21.0076 2124 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:45:21.0076 2124 nsiproxy - ok
14:45:21.0123 2124 [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:45:21.0185 2124 Ntfs - ok
14:45:21.0216 2124 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:45:21.0216 2124 Null - ok
14:45:21.0279 2124 [ 960E39A54E525DF58CB29193147DFFA1 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
14:45:21.0294 2124 NVHDA - ok
14:45:21.0669 2124 [ B34E9BFBD9C61048EF6281C3E7EC210A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:45:21.0793 2124 nvlddmkm - ok
14:45:21.0840 2124 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
14:45:21.0871 2124 NVNET - ok
14:45:21.0903 2124 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:45:21.0934 2124 nvraid - ok
14:45:21.0949 2124 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:45:21.0965 2124 nvstor - ok
14:45:21.0996 2124 [ 1E45F96342429D63DC30E0D9117DA3D8 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
14:45:21.0996 2124 nvstor64 - ok
14:45:22.0183 2124 [ E7818CD4FB51284C948D68A7A85A69B8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
14:45:22.0215 2124 nvUpdatusService - ok
14:45:22.0246 2124 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:45:22.0277 2124 nv_agp - ok
14:45:22.0293 2124 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:45:22.0308 2124 ohci1394 - ok
14:45:22.0355 2124 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:45:22.0371 2124 ose - ok
14:45:22.0573 2124 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:45:22.0698 2124 osppsvc - ok
14:45:22.0761 2124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:45:22.0761 2124 p2pimsvc - ok
14:45:22.0807 2124 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:45:22.0823 2124 p2psvc - ok
14:45:22.0854 2124 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:45:22.0870 2124 Parport - ok
14:45:22.0901 2124 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:45:22.0917 2124 partmgr - ok
14:45:22.0932 2124 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:45:22.0932 2124 PcaSvc - ok
14:45:22.0948 2124 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
14:45:22.0979 2124 pci - ok
14:45:23.0026 2124 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
14:45:23.0026 2124 pciide - ok
14:45:23.0073 2124 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:45:23.0119 2124 pcmcia - ok
14:45:23.0151 2124 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:45:23.0151 2124 pcw - ok
14:45:23.0229 2124 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:45:23.0260 2124 PEAUTH - ok
14:45:23.0338 2124 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:45:23.0353 2124 PerfHost - ok
14:45:23.0509 2124 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
14:45:23.0556 2124 pla - ok
14:45:23.0665 2124 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:45:23.0681 2124 PlugPlay - ok
14:45:23.0697 2124 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:45:23.0712 2124 PNRPAutoReg - ok
14:45:23.0743 2124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:45:23.0743 2124 PNRPsvc - ok
14:45:23.0775 2124 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:45:23.0853 2124 PolicyAgent - ok
14:45:23.0884 2124 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:45:23.0884 2124 Power - ok
14:45:23.0931 2124 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:45:23.0931 2124 PptpMiniport - ok
14:45:23.0962 2124 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:45:23.0977 2124 Processor - ok
14:45:24.0009 2124 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
14:45:24.0009 2124 ProfSvc - ok
14:45:24.0024 2124 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:45:24.0024 2124 ProtectedStorage - ok
14:45:24.0087 2124 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:45:24.0087 2124 Psched - ok
14:45:24.0118 2124 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:45:24.0180 2124 ql2300 - ok
14:45:24.0196 2124 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:45:24.0211 2124 ql40xx - ok
14:45:24.0258 2124 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:45:24.0289 2124 QWAVE - ok
14:45:24.0305 2124 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:45:24.0321 2124 QWAVEdrv - ok
14:45:24.0352 2124 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:45:24.0383 2124 RasAcd - ok
14:45:24.0399 2124 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:45:24.0414 2124 RasAgileVpn - ok
14:45:24.0430 2124 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:45:24.0445 2124 RasAuto - ok
14:45:24.0492 2124 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:45:24.0492 2124 Rasl2tp - ok
14:45:24.0523 2124 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
14:45:24.0523 2124 RasMan - ok
14:45:24.0555 2124 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:45:24.0570 2124 RasPppoe - ok
14:45:24.0586 2124 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:45:24.0586 2124 RasSstp - ok
14:45:24.0617 2124 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:45:24.0633 2124 rdbss - ok
14:45:24.0648 2124 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:45:24.0648 2124 rdpbus - ok
14:45:24.0664 2124 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:45:24.0664 2124 RDPCDD - ok
14:45:24.0695 2124 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:45:24.0695 2124 RDPENCDD - ok
14:45:24.0726 2124 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:45:24.0726 2124 RDPREFMP - ok
14:45:24.0773 2124 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:45:24.0789 2124 RDPWD - ok
14:45:24.0820 2124 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:45:24.0835 2124 rdyboost - ok
14:45:24.0867 2124 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:45:24.0882 2124 RemoteAccess - ok
14:45:24.0898 2124 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:45:24.0913 2124 RemoteRegistry - ok
14:45:24.0945 2124 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:45:24.0945 2124 RpcEptMapper - ok
14:45:24.0960 2124 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:45:24.0976 2124 RpcLocator - ok
14:45:25.0038 2124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
14:45:25.0054 2124 RpcSs - ok
14:45:25.0085 2124 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:45:25.0147 2124 rspndr - ok
14:45:25.0179 2124 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
14:45:25.0179 2124 SamSs - ok
14:45:25.0210 2124 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:45:25.0257 2124 sbp2port - ok
14:45:25.0288 2124 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:45:25.0303 2124 SCardSvr - ok
14:45:25.0335 2124 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:45:25.0335 2124 scfilter - ok
14:45:25.0381 2124 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
14:45:25.0397 2124 Schedule - ok
14:45:25.0428 2124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:45:25.0428 2124 SCPolicySvc - ok
14:45:25.0459 2124 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:45:25.0506 2124 SDRSVC - ok
14:45:25.0553 2124 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:45:25.0569 2124 secdrv - ok
14:45:25.0600 2124 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
14:45:25.0600 2124 seclogon - ok
14:45:25.0631 2124 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
14:45:25.0631 2124 SENS - ok
14:45:25.0647 2124 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:45:25.0647 2124 SensrSvc - ok
14:45:25.0678 2124 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:45:25.0678 2124 Serenum - ok
14:45:25.0693 2124 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:45:25.0693 2124 Serial - ok
14:45:25.0709 2124 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:45:25.0725 2124 sermouse - ok
14:45:25.0771 2124 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
14:45:25.0787 2124 SessionEnv - ok
14:45:25.0803 2124 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:45:25.0803 2124 sffdisk - ok
14:45:25.0818 2124 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:45:25.0834 2124 sffp_mmc - ok
14:45:25.0834 2124 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:45:25.0849 2124 sffp_sd - ok
14:45:25.0865 2124 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:45:25.0865 2124 sfloppy - ok
14:45:25.0896 2124 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:45:25.0912 2124 SharedAccess - ok
14:45:25.0974 2124 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:45:25.0974 2124 ShellHWDetection - ok
14:45:25.0990 2124 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:45:26.0005 2124 SiSRaid2 - ok
14:45:26.0021 2124 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:45:26.0037 2124 SiSRaid4 - ok
14:45:26.0068 2124 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:45:26.0068 2124 Smb - ok
14:45:26.0099 2124 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:45:26.0115 2124 SNMPTRAP - ok
14:45:26.0130 2124 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:45:26.0130 2124 spldr - ok
14:45:26.0208 2124 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
14:45:26.0224 2124 Spooler - ok
14:45:26.0317 2124 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
14:45:26.0349 2124 sppsvc - ok
14:45:26.0364 2124 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:45:26.0380 2124 sppuinotify - ok
14:45:26.0489 2124 [ 9A359FB3D10C9DE23EDC427ADA8AC8BE ] SRTSP C:\Windows\System32\Drivers\NISx64\1205000.07D\SRTSP64.SYS
14:45:26.0551 2124 SRTSP - ok
14:45:26.0567 2124 [ A14A9AAA8005D411EF1657601F55776D ] SRTSPX C:\Windows\system32\drivers\NISx64\1205000.07D\SRTSPX64.SYS
14:45:26.0583 2124 SRTSPX - ok
14:45:26.0661 2124 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
14:45:26.0692 2124 srv - ok
14:45:26.0707 2124 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:45:26.0723 2124 srv2 - ok
14:45:26.0754 2124 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:45:26.0754 2124 srvnet - ok
14:45:26.0785 2124 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:45:26.0801 2124 SSDPSRV - ok
14:45:26.0817 2124 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:45:26.0832 2124 SstpSvc - ok
14:45:26.0941 2124 [ 6086B60F2E36D06A063CB07ED0524332 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:45:26.0941 2124 Stereo Service - ok
14:45:26.0988 2124 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:45:27.0004 2124 stexstor - ok
14:45:27.0051 2124 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
14:45:27.0051 2124 stisvc - ok
14:45:27.0097 2124 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
14:45:27.0097 2124 swenum - ok
14:45:27.0207 2124 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:45:27.0238 2124 SwitchBoard - ok
14:45:27.0285 2124 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:45:27.0316 2124 swprv - ok
14:45:27.0347 2124 [ 6D33D1669B3B6193658129D1767A4AFF ] SymDS C:\Windows\system32\drivers\NISx64\1205000.07D\SYMDS64.SYS
14:45:27.0394 2124 SymDS - ok
14:45:27.0425 2124 [ 9ACC52C79420236DCB1AB1A17ED0DF2E ] SymEFA C:\Windows\system32\drivers\NISx64\1205000.07D\SYMEFA64.SYS
14:45:27.0441 2124 SymEFA - ok
14:45:27.0487 2124 [ 84E27CA1A5AF320A705E767EA53086E5 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
14:45:27.0503 2124 SymEvent - ok
14:45:27.0534 2124 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NISx64\1205000.07D\Ironx64.SYS
14:45:27.0565 2124 SymIRON - ok
14:45:27.0597 2124 [ AF56CA02F9DC706709C0A7DF5C1DAB82 ] SymNetS C:\Windows\System32\Drivers\NISx64\1205000.07D\SYMNETS.SYS
14:45:27.0612 2124 SymNetS - ok
14:45:27.0659 2124 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
14:45:27.0690 2124 SysMain - ok
14:45:27.0706 2124 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:45:27.0706 2124 TabletInputService - ok
14:45:27.0737 2124 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:45:27.0737 2124 TapiSrv - ok
14:45:27.0768 2124 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:45:27.0784 2124 TBS - ok
14:45:27.0831 2124 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:45:27.0893 2124 Tcpip - ok
14:45:27.0955 2124 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:45:27.0971 2124 TCPIP6 - ok
14:45:28.0018 2124 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:45:28.0018 2124 tcpipreg - ok
14:45:28.0049 2124 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:45:28.0065 2124 TDPIPE - ok
14:45:28.0080 2124 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:45:28.0096 2124 TDTCP - ok
14:45:28.0127 2124 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:45:28.0143 2124 tdx - ok
14:45:28.0158 2124 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:45:28.0158 2124 TermDD - ok
14:45:28.0205 2124 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
14:45:28.0205 2124 TermService - ok
14:45:28.0236 2124 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:45:28.0236 2124 Themes - ok
14:45:28.0267 2124 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:45:28.0267 2124 THREADORDER - ok
14:45:28.0299 2124 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:45:28.0299 2124 TrkWks - ok
14:45:28.0345 2124 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:45:28.0345 2124 TrustedInstaller - ok
14:45:28.0392 2124 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:45:28.0408 2124 tssecsrv - ok
14:45:28.0439 2124 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:45:28.0455 2124 TsUsbFlt - ok
14:45:28.0501 2124 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:45:28.0501 2124 tunnel - ok
14:45:28.0533 2124 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:45:28.0533 2124 uagp35 - ok
14:45:28.0579 2124 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:45:28.0595 2124 udfs - ok
14:45:28.0626 2124 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:45:28.0642 2124 UI0Detect - ok
14:45:28.0673 2124 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:45:28.0689 2124 uliagpkx - ok
14:45:28.0735 2124 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
14:45:28.0735 2124 umbus - ok
14:45:28.0767 2124 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:45:28.0767 2124 UmPass - ok
14:45:28.0798 2124 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:45:28.0813 2124 upnphost - ok
14:45:28.0860 2124 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:45:28.0876 2124 USBAAPL64 - ok
14:45:28.0923 2124 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:45:28.0938 2124 usbaudio - ok
14:45:28.0954 2124 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:45:28.0954 2124 usbccgp - ok
14:45:28.0985 2124 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:45:29.0001 2124 usbcir - ok
14:45:29.0016 2124 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:45:29.0032 2124 usbehci - ok
14:45:29.0063 2124 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\drivers\usbhub.sys
14:45:29.0079 2124 usbhub - ok
14:45:29.0079 2124 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:45:29.0094 2124 usbohci - ok
14:45:29.0125 2124 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:45:29.0125 2124 usbprint - ok
14:45:29.0157 2124 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:45:29.0157 2124 USBSTOR - ok
14:45:29.0188 2124 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:45:29.0188 2124 usbuhci - ok
14:45:29.0219 2124 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:45:29.0219 2124 UxSms - ok
14:45:29.0235 2124 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
14:45:29.0235 2124 VaultSvc - ok
14:45:29.0266 2124 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:45:29.0266 2124 vdrvroot - ok
14:45:29.0328 2124 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
14:45:29.0344 2124 vds - ok
14:45:29.0375 2124 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:45:29.0375 2124 vga - ok
14:45:29.0406 2124 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:45:29.0406 2124 VgaSave - ok
14:45:29.0437 2124 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:45:29.0453 2124 vhdmp - ok
14:45:29.0469 2124 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
14:45:29.0469 2124 viaide - ok
14:45:29.0484 2124 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:45:29.0500 2124 volmgr - ok
14:45:29.0547 2124 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:45:29.0547 2124 volmgrx - ok
14:45:29.0578 2124 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:45:29.0593 2124 volsnap - ok
14:45:29.0625 2124 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:45:29.0640 2124 vsmraid - ok
14:45:29.0718 2124 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
14:45:29.0749 2124 VSS - ok
14:45:29.0781 2124 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:45:29.0796 2124 vwifibus - ok
14:45:29.0812 2124 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:45:29.0827 2124 vwififlt - ok
14:45:29.0859 2124 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:45:29.0859 2124 W32Time - ok
14:45:29.0890 2124 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:45:29.0890 2124 WacomPen - ok
14:45:29.0921 2124 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:45:29.0937 2124 WANARP - ok
14:45:29.0937 2124 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:45:29.0937 2124 Wanarpv6 - ok
14:45:29.0999 2124 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:45:30.0061 2124 WatAdminSvc - ok
14:45:30.0155 2124 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
14:45:30.0202 2124 wbengine - ok
14:45:30.0233 2124 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:45:30.0233 2124 WbioSrvc - ok
14:45:30.0280 2124 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:45:30.0295 2124 wcncsvc - ok
14:45:30.0327 2124 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:45:30.0342 2124 WcsPlugInService - ok
14:45:30.0389 2124 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:45:30.0389 2124 Wd - ok
14:45:30.0420 2124 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:45:30.0451 2124 Wdf01000 - ok
14:45:30.0483 2124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:45:30.0483 2124 WdiServiceHost - ok
14:45:30.0483 2124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:45:30.0498 2124 WdiSystemHost - ok
14:45:30.0529 2124 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
14:45:30.0561 2124 WebClient - ok
14:45:30.0623 2124 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:45:30.0639 2124 Wecsvc - ok
14:45:30.0654 2124 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:45:30.0654 2124 wercplsupport - ok
14:45:30.0685 2124 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:45:30.0701 2124 WerSvc - ok
14:45:30.0732 2124 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:45:30.0732 2124 WfpLwf - ok
14:45:30.0763 2124 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:45:30.0779 2124 WIMMount - ok
14:45:30.0779 2124 WinDefend - ok
14:45:30.0795 2124 WinHttpAutoProxySvc - ok
14:45:30.0966 2124 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:45:30.0997 2124 Winmgmt - ok
14:45:31.0075 2124 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
14:45:31.0169 2124 WinRM - ok
14:45:31.0247 2124 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:45:31.0247 2124 WinUsb - ok
14:45:31.0278 2124 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:45:31.0309 2124 Wlansvc - ok
14:45:31.0341 2124 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:45:31.0341 2124 WmiAcpi - ok
14:45:31.0387 2124 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:45:31.0387 2124 wmiApSrv - ok
14:45:31.0419 2124 WMPNetworkSvc - ok
14:45:31.0434 2124 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:45:31.0450 2124 WPCSvc - ok
14:45:31.0481 2124 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:45:31.0481 2124 WPDBusEnum - ok
14:45:31.0512 2124 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:45:31.0512 2124 ws2ifsl - ok
14:45:31.0528 2124 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
14:45:31.0543 2124 wscsvc - ok
14:45:31.0543 2124 WSearch - ok
14:45:31.0699 2124 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
14:45:31.0746 2124 wuauserv - ok
14:45:31.0762 2124 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:45:31.0777 2124 WudfPf - ok
14:45:31.0809 2124 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:45:31.0824 2124 WUDFRd - ok
14:45:31.0871 2124 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:45:31.0871 2124 wudfsvc - ok
14:45:31.0918 2124 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:45:32.0027 2124 WwanSvc - ok
14:45:32.0074 2124 ================ Scan global ===============================
14:45:32.0105 2124 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:45:32.0167 2124 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:45:32.0199 2124 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
14:45:32.0214 2124 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:45:32.0245 2124 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:45:32.0261 2124 [Global] - ok
14:45:32.0261 2124 ================ Scan MBR ==================================
14:45:32.0277 2124 [ 9E2F02B7C9789CE941493F99D9E955C2 ] \Device\Harddisk0\DR0
14:45:32.0745 2124 \Device\Harddisk0\DR0 - ok
14:45:32.0760 2124 ================ Scan VBR ==================================
14:45:32.0760 2124 [ C8981B0BDB9E52D75B39AB6B1B4BA166 ] \Device\Harddisk0\DR0\Partition1
14:45:32.0760 2124 \Device\Harddisk0\DR0\Partition1 - ok
14:45:32.0776 2124 [ B41DA79F266B8395694E959FE6ADA434 ] \Device\Harddisk0\DR0\Partition2
14:45:32.0776 2124 \Device\Harddisk0\DR0\Partition2 - ok
14:45:32.0807 2124 [ B559EC8BBA4AB21D04DF477FA3D3553B ] \Device\Harddisk0\DR0\Partition3
14:45:32.0823 2124 \Device\Harddisk0\DR0\Partition3 - ok
14:45:32.0823 2124 ============================================================
14:45:32.0823 2124 Scan finished
14:45:32.0823 2124 ============================================================
14:45:32.0838 2152 Detected object count: 0
14:45:32.0838 2152 Actual detected object count: 0
14:46:17.0485 3396 Deinitialize success

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 26 October 2012 - 05:59 PM

Try to run ESET in safemode with networking

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#9 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 27 October 2012 - 05:54 AM

I was able to run ESET Online Scanner after running one of the other programs first. There were no threats found.

Malwarebytes Log:

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.27.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
DrFunk :: DRFUNKCOMPUTER [administrator]

10/27/2012 12:15:39 AM
mbam-log-2012-10-27 (01-11-47).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 385918
Time elapsed: 53 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\DrFunk\Desktop\logs\tdssfix.exe (Heuristics.Shuriken) -> No action taken.

(end)


Mini ToolBox Log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by DrFunk (administrator) on 27-10-2012 at 01:26:51
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce 10/100 Mbps Ethernet = Local Area Connection (Connecting)
D-Link DWA-125 Wireless N 150 USB Adapter(rev.A2) = Wireless Network Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : DrFunkComputer
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ph.cox.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : ph.cox.net
Description . . . . . . . . . . . : D-Link DWA-125 Wireless N 150 USB Adapter(rev.A2)
Physical Address. . . . . . . . . : 1C-BD-B9-32-D3-A5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d40a:1f9f:5f6a:ff0c%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, October 27, 2012 1:13:39 AM
Lease Expires . . . . . . . . . . : Sunday, October 28, 2012 1:16:27 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 320650681
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-31-97-F0-70-71-BC-A1-06-3A
DNS Servers . . . . . . . . . . . : 68.105.28.12
68.105.29.12
68.105.28.11
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : ph.cox.net
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physical Address. . . . . . . . . : 70-71-BC-A1-06-3A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e5f2:f6ef:8529:dcae%10(Deprecated)
Autoconfiguration IPv4 Address. . : 169.254.220.174(Tentative)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 68.105.28.12
68.105.29.12
68.105.28.11
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.ph.cox.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : ph.cox.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:2c6e:3e94:3f57:fe9a(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c6e:3e94:3f57:fe9a%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: cdns2.cox.net
Address: 68.105.28.12

Name: google.com
Addresses: 2607:f8b0:4007:801::1007
74.125.224.230
74.125.224.231
74.125.224.232
74.125.224.233
74.125.224.238
74.125.224.224
74.125.224.225
74.125.224.226
74.125.224.227
74.125.224.228
74.125.224.229


Pinging google.com [74.125.224.163] with 32 bytes of data:
Reply from 74.125.224.163: bytes=32 time=24ms TTL=56
Reply from 74.125.224.163: bytes=32 time=25ms TTL=56

Ping statistics for 74.125.224.163:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 24ms, Maximum = 25ms, Average = 24ms
Server: cdns2.cox.net
Address: 68.105.28.12

Name: yahoo.com
Addresses: 98.138.253.109
98.139.183.24
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=72ms TTL=55
Reply from 72.30.38.140: bytes=32 time=42ms TTL=55

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 42ms, Maximum = 72ms, Average = 57ms
Server: cdns2.cox.net
Address: 68.105.28.12

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...1c bd b9 32 d3 a5 ......D-Link DWA-125 Wireless N 150 USB Adapter(rev.A2)
10...70 71 bc a1 06 3a ......NVIDIA nForce 10/100 Mbps Ethernet
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 281
192.168.1.101 255.255.255.255 On-link 192.168.1.101 281
192.168.1.255 255.255.255.255 On-link 192.168.1.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:9d38:953c:2c6e:3e94:3f57:fe9a/128
On-link
11 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::2c6e:3e94:3f57:fe9a/128
On-link
11 281 fe80::d40a:1f9f:5f6a:ff0c/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/27/2012 00:11:35 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 05:41:38 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 05:40:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 04:44:21 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 03:11:31 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: The Cryptographic Services service failed to initialize the VSS backup "System Writer" object.

Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.
.

Error: (10/26/2012 03:11:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 03:10:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 03:02:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 03:02:51 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/26/2012 03:02:51 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (10/27/2012 01:13:51 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
SymIRON

Error: (10/26/2012 11:56:52 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
SymIRON

Error: (10/26/2012 04:44:25 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (10/26/2012 04:44:24 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (10/26/2012 04:44:22 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/26/2012 04:44:16 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (10/26/2012 04:06:53 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
avipbb
BHDrvx64
discache
eeCtrl
IDSVia64
spldr
SRTSPX
SymIRON
SymNetS
Wanarpv6

Error: (10/26/2012 04:05:58 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
BHDrvx64
SymIRON

Error: (10/26/2012 03:10:57 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (10/26/2012 03:10:57 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}


Microsoft Office Sessions:
=========================
Error: (10/27/2012 00:11:35 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 05:41:38 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 05:40:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 04:44:21 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 03:11:31 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
Could not query the status of the EventSystem service.

System Error:
A system shutdown is in progress.

Error: (10/26/2012 03:11:04 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 03:10:53 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 03:02:54 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 03:02:51 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe

Error: (10/26/2012 03:02:51 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\DrFunk\Desktop\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

Adobe AIR (Version: 2.7.0.19480)
Adobe Community Help (Version: 3.4.980)
Adobe Creative Suite 5.5 Master Collection (Version: 5.5)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Story (Version: 1.0.571)
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
Avira AntiVir Personal - Free Antivirus (Version: 10.2.0.707)
Bonjour (Version: 3.0.0.10)
Coupon Printer for Windows (Version: 5.0.0.1)
CyberLink DVD Suite Deluxe (Version: 7.0.2115)
D-Link DWA-125
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DJ Control MP3 e2 Manual (Version: 0.9)
ESET Online Scanner v3
Google Chrome (Version: 22.0.1229.94)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
Hercules DJ Products Series drivers (Version: 4.HDJS.2009)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP Advisor (Version: 3.4.10262.3295)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.0.71)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.11.0)
HP Remote Solution (Version: 1.1.12.0)
HP Setup (Version: 8.1.4186.3400)
HP Support Assistant (Version: 6.1.12.1)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.002.003.003)
HP Vision Hardware Diagnostics (Version: 2.1.2.27173)
Hulu Desktop (Version: 0.9.10)
IBM SPSS Statistics 19 (Version: 19.0.0)
iTunes (Version: 10.5.0.142)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8089.726)
LabelPrint (Version: 2.5.2017)
LightScribe System Software (Version: 1.18.17.1)
MagicDisc 2.7.106
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
McAfee Security Scan Plus (Version: 2.0.181.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.4734.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000)
Microsoft Silverlight (Version: 3.0.40624.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MSVCRT (Version: 14.0.1468.721)
Norton Internet Security (Version: 18.5.0.125)
Norton Online Backup (Version: 1.2.20.0)
NVIDIA 3D Vision Controller Driver (Version: 275.33)
NVIDIA 3D Vision Controller Driver 275.33 (Version: 275.33)
NVIDIA 3D Vision Driver 275.33 (Version: 275.33)
NVIDIA Control Panel 275.33 (Version: 275.33)
NVIDIA Drivers (Version: 1.5)
NVIDIA Graphics Driver 275.33 (Version: 275.33)
NVIDIA HD Audio Driver 1.2.23.3 (Version: 1.2.23.3)
NVIDIA Install Application (Version: 2.275.80.0)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA PhysX System Software 9.10.0514 (Version: 9.10.0514)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.7533)
NVIDIA Update 1.3.5 (Version: 1.3.5)
NVIDIA Update Components (Version: 1.3.5)
PASW Statistics Student Version 18.0 (Version: 18.0.0)
PictureMover (Version: 3.3.1.19)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Power2Go (Version: 6.0.3304)
PowerDirector (Version: 7.0.3503)
Realtek High Definition Audio Driver (Version: 6.0.1.5938)
Recovery Manager (Version: 5.5.2216)
SPSS Inc. Data Access Pack 6.0 for Windows (Version: 6.00.0000)
VirtualDJ PRO Full (Version: 7.0.5)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WinRAR 4.00 beta 7 (64-bit) (Version: 4.00.7)

========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 4094.49 MB
Available physical RAM: 2767.71 MB
Total Pagefile: 8187.18 MB
Available Pagefile: 6552.41 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.51 MB

========================= Partitions: =====================================

1 Drive c: (COMPAQ) (Fixed) (Total:455.02 GB) (Free:385.24 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.62 GB) (Free:1.55 GB) NTFS
4 Drive g: (ADOBE_CS55_TRIAL) (CDROM) (Total:6.91 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\DRFUNKCOMPUTER

Administrator DrFunk Guest
UpdatusUser

========================= Restore Points ==================================

28-09-2012 16:35:18 Windows Update
05-10-2012 22:53:06 Windows Update
10-10-2012 00:23:23 Windows Update
10-10-2012 10:00:27 Windows Update
16-10-2012 23:42:45 Windows Update
19-10-2012 23:50:03 Windows Update
24-10-2012 00:01:32 Windows Update

**** End of log ****


Farbar Service Scanner Log:

Farbar Service Scanner Version: 26-10-2012
Ran by DrFunk (administrator) on 27-10-2012 at 01:28:58
Running from "C:\Users\DrFunk\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Adware Cleaner Log:

# AdwCleaner v2.005 - Logfile created 10/27/2012 at 01:32:54
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : DrFunk - DRFUNKCOMPUTER
# Boot Mode : Normal
# Running from : C:\Users\DrFunk\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Software

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\DrFunk\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1125 octets] - [27/10/2012 01:32:54]

########## EOF - C:\AdwCleaner[S1].txt - [1185 octets] ##########


Junkware Removal Tool Log:

Junkware Removal Tool (JRT) by Thisisu
Version: 2.2.1 (10.26.2012)
OS: Windows 7 Home Premium x64
Ran by DrFunk on Sat 10/27/2012 at 1:38:41.96
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files: 0 Detections



*** Folders: 0 Detections



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Sat 10/27/2012 at 2:03:45.73
End of Report

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 27 October 2012 - 06:06 AM

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#11 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 27 October 2012 - 12:44 PM

RKill Log:

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/27/2012 10:34:42 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 10/27/2012 10:34:56 AM
Execution time: 0 hours(s), 0 minute(s), and 13 seconds(s)


AutoRuns Log:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AdobeCS5.5ServiceManager" "Adobe CS5.5 Service Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\cs5.5servicemanager\cs5.5servicemanager.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "avgnt" "Antivirus System Tray Tool" "Avira GmbH" "c:\program files (x86)\avira\antivir desktop\avgnt.exe"
+ "BCSSync" "Microsoft Office 2010 component" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\bcssync.exe"
+ "D-Link D-Link DWA-125" "D-Link WLAN Application" "D-Link Corp." "c:\program files (x86)\d-link\dwa-125 reva\airgcfg.exe"
+ "Hercules DJ Series" "DJ Series Control Panel" "Hercules®" "c:\program files\hercules\audio\dj console series\hdjseriescpl.exe"
+ "HP Remote Solution" "HP Remote Solution" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp remote solution\hp_remote_solution.exe"
+ "HP Software Update" "hpwuSchd Application" "Hewlett-Packard" "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "hpsysdrv" "hpsysdrv" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp odometer\hpsysdrv.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "NortonOnlineBackupReminder" "Norton Online Backup Service" "Symantec Corporation" "c:\program files (x86)\symantec\norton online backup\activation\nobuactivation.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "SwitchBoard" "SwitchBoard Server (32 bit)" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
+ "WZCSLDR2" "ANIWZCS2 launcher for Windows." "Wireless Service" "c:\program files (x86)\d-link\dwa-125 reva\wzcsldr2.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "McAfee Security Scan Plus.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\ssscheduler.exe"
+ "PictureMover.lnk" "PictureMover Application" "Hewlett-Packard Company" "c:\program files (x86)\picturemover\bin\picturemover.exe"
"C:\Users\DrFunk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "MagicDisc.lnk" "MagicISO Virtual CD/DVD Manager" "MagicISO, Inc." "c:\program files (x86)\magicdisc\magicdisc.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "HPAdvisorDock" "HP Advisor Dock" "" "c:\program files (x86)\hewlett-packard\hp advisor\dock\hpadvisordock.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce" "" "" ""
+ "FlashPlayerUpdate" "Adobe® Flash® Player Installer/Uninstaller 11.1 r102" "Adobe Systems, Inc." "c:\windows\syswow64\macromed\flash\flashutil11e_activex.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" ""
+ "Groove GFS Stub Execution Hook" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira GmbH" "c:\program files (x86)\avira\antivir desktop\shlext64.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine64\18.5.0.125\navshext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira GmbH" "c:\program files (x86)\avira\antivir desktop\shlext64.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine64\18.5.0.125\navshext.dll"
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
+ "XXX Groove GFS Context Menu Handler XXX" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files\winrar\rarext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files\winrar\rarext32.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files\microsoft office\office14\grooveex.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files\microsoft office\office14\urlredir.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Groove GFS Browser Helper" "Microsoft SharePoint Workspace Extensions" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\grooveex.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Microsoft Live Search Toolbar Helper" "MSN® Shell Extender" "Microsoft Corp." "c:\program files (x86)\msn\toolbar\3.0.0566.0\msneshellx.dll"
+ "Office Document Cache Handler" "Microsoft Office Document Cache Handler" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "Symantec Intrusion Prevention" "IPS Browser Helper DLL" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine\18.5.0.125\ips\ipsbho.dll"
+ "Symantec NCO BHO" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine\18.5.0.125\coieplg.dll"
+ "Windows Live Sign-in Helper" "WindowsLiveLogin.dll" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_64.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files (x86)\google\google toolbar\googletoolbar_32.dll"
+ "Microsoft Live Search Toolbar" "MSN® Shell Extender" "Microsoft Corp." "c:\program files (x86)\msn\toolbar\3.0.0566.0\msneshellx.dll"
+ "Norton Toolbar" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine\18.5.0.125\coieplg.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office14\onbttnie.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "OneNote Lin&ked Notes" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote" "Microsoft OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
"Task Scheduler" "" "" ""
+ "\AdobeAAMUpdater-1.0-DrFunkComputer-DrFunk" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\HPCeeScheduleForDrFunk" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\RecoveryCDWin7" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\ServicePlan" "ESAdvRemIntegrator" "" "c:\program files (x86)\hewlett-packard\hp setup\remengine.exe"
+ "\Symantec\Norton Error Analyzer 18.5.0.125" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine\18.5.0.125\symerr.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AntiVirSchedulerService" "Service to schedule Avira AntiVir Personal - Free Antivirus jobs and updates." "Avira GmbH" "c:\program files (x86)\avira\antivir desktop\sched.exe"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the AntiVir search engine." "Avira GmbH" "c:\program files (x86)\avira\antivir desktop\avguard.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "D_Link_DWA-125" "ANIWZCS2 Service Launcher" "Wireless Service" "c:\program files (x86)\d-link\dwa-125 reva\aniwzcsds.exe"
+ "D_Link_DWA-125_WPS" "ANIWConnService" "" "c:\program files (x86)\d-link\dwa-125 reva\aniwconnservice.exe"
+ "GameConsoleService" "GameConsole management services" "WildTangent, Inc." "c:\program files (x86)\hp games\hp game console\gameconsoleservice.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HerculesDJControlMP3" "DJ Control MP3 Filter Injector." "" "c:\program files\hercules\audio\dj console series\herculesdjcontrolmp3.exe"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "HPDrvMntSvc.exe" "HP Quick Synchronization Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe"
+ "hpqwmiex" "hpqwmiex Module" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "KMService" "Software licensing service" "" "c:\windows\syswow64\srvany.exe"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lssrvc.exe"
+ "McComponentHostService" "McAfee Security Scan Component Host Service" "McAfee, Inc." "c:\program files (x86)\mcafee security scan\2.0.181\mcchsvc.exe"
+ "Microsoft SharePoint Workspace Audit Service" "Microsoft SharePoint Workspace" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office14\groove.exe"
+ "NIS" "Norton Internet Security" "Symantec Corporation" "c:\program files (x86)\norton internet security\engine\18.5.0.125\ccsvchst.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia updatus\daemonu.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "SwitchBoard" "Adobe SwitchBoard" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\switchboard\switchboard.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "anodlwf" "ANOD Network Security Filter driver" "" "c:\windows\system32\drivers\anodlwfx.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "avgntflt" "Avira mini-filter driver" "Avira GmbH" "c:\windows\system32\drivers\avgntflt.sys"
+ "avipbb" "Avira Security Enhancement Driver" "Avira GmbH" "c:\windows\system32\drivers\avipbb.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BHDrvx64" "SONAR Engine Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.0.0.128\definitions\bashdefs\20110114.001\bhdrvx64.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "Bulk" "DJ Series Bulk driver" "© Guillemot R&D, 2009. All rights reserved." "c:\windows\system32\drivers\hdjbulk.sys"
+ "catchme" "" "" "File not found: C:\ComboFix\catchme.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files (x86)\common files\symantec shared\eengine\eectrl64.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HDJMidi" "DJ Series MIDI kernel driver" "© Guillemot R&D, 2009. All rights reserved." "c:\windows\system32\drivers\hdjmidi.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "IDSVia64" "Symantec Intrusion Prevention Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.0.0.128\definitions\ipsdefs\20110120.001\idsvia64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "mcdbus" "MagicISO SCSI Host Controller" "MagicISO, Inc." "c:\windows\system32\drivers\mcdbus.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "NAVENG" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.0.0.128\definitions\virusdefs\20110123.003\eng64.sys"
+ "NAVEX15" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.0.0.128\definitions\virusdefs\20110123.003\ex64.sys"
+ "netr28ux" "Ralink 802.11n Wireless Adapter Driver" "Ralink Technology Corp." "c:\windows\system32\drivers\dnetr28ux.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 275.33 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "NVNET" "NVIDIA MCP Networking Function Driver." "NVIDIA Corporation" "c:\windows\system32\drivers\nvmf6264.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "nvstor64" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Serial" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SRTSP" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\srtsp64.sys"
+ "SRTSPX" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\srtspx64.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SymDS" "Symantec Data Store" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\symds64.sys"
+ "SymEFA" "Symantec Extended File Attributes" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\symefa64.sys"
+ "SymEvent" "Symantec Event Library" "Symantec Corporation" "c:\windows\system32\drivers\symevent64x86.sys"
+ "SymIRON" "Iron Driver" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\ironx64.sys"
+ "SymNetS" "Network Security Driver" "Symantec Corporation" "c:\windows\system32\drivers\nisx64\1205000.07d\symnets.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder " "CyberLink Corp. " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "HPLJ1018LM" "Spooler Language Monitor for HP LaserJet Series 1018/1020/2600" "Zenographics, Inc." "c:\windows\system32\zlhp1018.dll"

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 27 October 2012 - 05:19 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#13 afroken

afroken
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:36 PM

Posted 31 October 2012 - 04:57 PM

Thank you so much Narenxp! Your such a big help! :thumbsup:

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 PM

Posted 31 October 2012 - 10:26 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users