Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

winrscmde,spam audio,redirects, and computer crashing


  • Please log in to reply
32 replies to this topic

#1 simplesimpleton

simplesimpleton

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 27 October 2012 - 02:04 PM

As mentioned in the title,my computer has been suffering from spam audio which seems to pop up everytime i have an internet connection.Due to my family and I being lazy,we never seriously addressed this problem but would instead open up the sound settings from the control panel and see the running processes that were making the sound.Usually the presumed virus was called "name unavailable" or something of that nature until a few days ago the name has changed to winrscmde.The audio emitted seems to be just regular local advertising that will start to play in the background.

Along with the audio,our computer continuously redirects us to spam sites most frequently occuring while I click on google search results(or avg safe search results b/c my computer will redirect me to that search engine as well).I usually just backspace out of the site and click the link again and am sent to the correct address.

I'm just posting all of the symptoms im experiencing because im not sure what is the main cause of my computer problems but due to these issues we've stopped shutting down our computer because it will try to install updates upon shutting down,fail,then restart and crash with another failed attempt at self repair.Instead we just started to manually hold the power off button on the computer tower.

It also might help to know that this computer was previously infected by another virus,I can barely recall the name but i think it was a "windows32 blaster worm" or something like that.

Anyways I have windows 7 32 bit computer.
Any help or advice would be much appreciated on where to go from here.Thanks

BC AdBot (Login to Remove)

 


#2 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 27 October 2012 - 02:08 PM

PS I forgot to mention during previous anti virus cleanings I might have gone and deleted some run dlls.

Im not receiving messages during the startup of my computer saying "C:\Windows\system32\config\systemprofile\AppData\Roaming\vplas.dll ("failed to start"?Sorry I didnt copy all of the text just this main source file outside the parentheses) as well as "C:\Windows\system32\config\systemprofile\AppData\Roaming\derpr.dll"

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:21 AM

Posted 27 October 2012 - 05:12 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#4 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 28 October 2012 - 04:35 PM

kaspersky report:


14:32:16.0160 5012 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
14:32:16.0570 5012 ============================================================
14:32:16.0570 5012 Current date / time: 2012/10/28 14:32:16.0570
14:32:16.0570 5012 SystemInfo:
14:32:16.0570 5012
14:32:16.0570 5012 OS Version: 6.1.7600 ServicePack: 0.0
14:32:16.0570 5012 Product type: Workstation
14:32:16.0570 5012 ComputerName: BLAZA-PC
14:32:16.0570 5012 UserName: blaza
14:32:16.0570 5012 Windows directory: C:\Windows
14:32:16.0570 5012 System windows directory: C:\Windows
14:32:16.0570 5012 Running under WOW64
14:32:16.0570 5012 Processor architecture: Intel x64
14:32:16.0570 5012 Number of processors: 2
14:32:16.0570 5012 Page size: 0x1000
14:32:16.0570 5012 Boot type: Normal boot
14:32:16.0570 5012 ============================================================
14:32:18.0422 5012 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xC9E1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
14:32:18.0442 5012 ============================================================
14:32:18.0442 5012 \Device\Harddisk0\DR0:
14:32:18.0442 5012 MBR partitions:
14:32:18.0442 5012 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:32:18.0442 5012 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x2E906000
14:32:18.0442 5012 ============================================================
14:32:18.0482 5012 C: <-> \Device\Harddisk0\DR0\Partition2
14:32:18.0622 5012 ============================================================
14:32:18.0622 5012 Initialize success
14:32:18.0622 5012 ============================================================
14:32:29.0510 5736 ============================================================
14:32:29.0510 5736 Scan started
14:32:29.0510 5736 Mode: Manual;
14:32:29.0510 5736 ============================================================
14:32:31.0912 5736 ================ Scan system memory ========================
14:32:31.0922 5736 System memory - ok
14:32:31.0922 5736 ================ Scan services =============================
14:32:32.0114 5736 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
14:32:32.0114 5736 1394ohci - ok
14:32:32.0164 5736 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys
14:32:32.0164 5736 61883 - ok
14:32:32.0234 5736 [ 5F22132C9153639762708909F156B33D ] aaksrv C:\Windows\system32\afd.dll
14:32:32.0234 5736 aaksrv ( Backdoor.Multi.ZAccess.gen ) - infected
14:32:32.0234 5736 aaksrv - detected Backdoor.Multi.ZAccess.gen (0)
14:32:32.0264 5736 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
14:32:32.0264 5736 ACPI - ok
14:32:32.0294 5736 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
14:32:32.0294 5736 AcpiPmi - ok
14:32:32.0434 5736 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:32:32.0434 5736 AdobeARMservice - ok
14:32:32.0554 5736 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:32:32.0554 5736 AdobeFlashPlayerUpdateSvc - ok
14:32:32.0594 5736 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:32:32.0614 5736 adp94xx - ok
14:32:32.0664 5736 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:32:32.0674 5736 adpahci - ok
14:32:32.0684 5736 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:32:32.0684 5736 adpu320 - ok
14:32:32.0714 5736 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:32:32.0714 5736 AeLookupSvc - ok
14:32:32.0754 5736 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
14:32:32.0764 5736 AFD - ok
14:32:32.0784 5736 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
14:32:32.0784 5736 agp440 - ok
14:32:32.0804 5736 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
14:32:32.0804 5736 ALG - ok
14:32:32.0834 5736 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
14:32:32.0834 5736 aliide - ok
14:32:32.0844 5736 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
14:32:32.0844 5736 amdide - ok
14:32:32.0864 5736 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:32:32.0864 5736 AmdK8 - ok
14:32:32.0880 5736 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:32:32.0882 5736 AmdPPM - ok
14:32:32.0893 5736 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
14:32:32.0895 5736 amdsata - ok
14:32:32.0909 5736 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:32:32.0912 5736 amdsbs - ok
14:32:32.0925 5736 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
14:32:32.0927 5736 amdxata - ok
14:32:32.0938 5736 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
14:32:32.0940 5736 AppID - ok
14:32:32.0946 5736 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:32:32.0946 5736 AppIDSvc - ok
14:32:32.0966 5736 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
14:32:32.0966 5736 Appinfo - ok
14:32:33.0026 5736 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:32:33.0026 5736 Apple Mobile Device - ok
14:32:33.0066 5736 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
14:32:33.0076 5736 AppMgmt - ok
14:32:33.0106 5736 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
14:32:33.0106 5736 arc - ok
14:32:33.0126 5736 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:32:33.0129 5736 arcsas - ok
14:32:33.0178 5736 [ 21C9835D0E5AD2FF0F16134BCB32CC71 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
14:32:33.0178 5736 aswMonFlt - ok
14:32:33.0228 5736 [ 1B96A5867ABD4FA6135D8298FCCCF9C6 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
14:32:33.0238 5736 aswRdr - ok
14:32:33.0268 5736 [ 6E98BB288696777A3A8A07A52B0EAEE9 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
14:32:33.0288 5736 aswSnx - ok
14:32:33.0328 5736 [ 7352BB9A564B94BBD7C9CBF165F55006 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
14:32:33.0338 5736 aswTdi - ok
14:32:33.0358 5736 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:32:33.0358 5736 AsyncMac - ok
14:32:33.0398 5736 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
14:32:33.0398 5736 atapi - ok
14:32:33.0448 5736 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:32:33.0468 5736 AudioEndpointBuilder - ok
14:32:33.0478 5736 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
14:32:33.0488 5736 AudioSrv - ok
14:32:33.0520 5736 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys
14:32:33.0520 5736 Avc - ok
14:32:33.0580 5736 AVG Security Toolbar Service - ok
14:32:33.0640 5736 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
14:32:33.0660 5736 AVGIDSEH - ok
14:32:33.0750 5736 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
14:32:33.0760 5736 Avgtdia - ok
14:32:33.0820 5736 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
14:32:33.0820 5736 avgtp - ok
14:32:33.0880 5736 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
14:32:33.0890 5736 avgwd - ok
14:32:33.0940 5736 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:32:33.0940 5736 AxInstSV - ok
14:32:34.0000 5736 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
14:32:34.0010 5736 b06bdrv - ok
14:32:34.0080 5736 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
14:32:34.0090 5736 b57nd60a - ok
14:32:34.0140 5736 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
14:32:34.0140 5736 BDESVC - ok
14:32:34.0160 5736 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
14:32:34.0160 5736 Beep - ok
14:32:34.0200 5736 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
14:32:34.0220 5736 BITS - ok
14:32:34.0250 5736 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:32:34.0250 5736 blbdrive - ok
14:32:34.0330 5736 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
14:32:34.0350 5736 Bonjour Service - ok
14:32:34.0442 5736 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:32:34.0442 5736 bowser - ok
14:32:34.0462 5736 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:32:34.0462 5736 BrFiltLo - ok
14:32:34.0472 5736 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:32:34.0482 5736 BrFiltUp - ok
14:32:34.0502 5736 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
14:32:34.0502 5736 Browser - ok
14:32:34.0552 5736 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:32:34.0562 5736 Brserid - ok
14:32:34.0562 5736 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:32:34.0572 5736 BrSerWdm - ok
14:32:34.0572 5736 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:32:34.0582 5736 BrUsbMdm - ok
14:32:34.0592 5736 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:32:34.0592 5736 BrUsbSer - ok
14:32:34.0602 5736 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:32:34.0602 5736 BTHMODEM - ok
14:32:34.0632 5736 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
14:32:34.0632 5736 bthserv - ok
14:32:34.0662 5736 CAXHWBS2 - ok
14:32:34.0672 5736 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:32:34.0672 5736 cdfs - ok
14:32:34.0712 5736 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:32:34.0722 5736 cdrom - ok
14:32:34.0822 5736 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
14:32:34.0852 5736 CertPropSvc - ok
14:32:34.0922 5736 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:32:34.0932 5736 circlass - ok
14:32:34.0962 5736 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
14:32:34.0962 5736 CLFS - ok
14:32:35.0012 5736 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:32:35.0012 5736 clr_optimization_v2.0.50727_32 - ok
14:32:35.0078 5736 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:32:35.0081 5736 clr_optimization_v2.0.50727_64 - ok
14:32:35.0167 5736 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:32:35.0170 5736 clr_optimization_v4.0.30319_32 - ok
14:32:35.0272 5736 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:32:35.0276 5736 clr_optimization_v4.0.30319_64 - ok
14:32:35.0345 5736 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:32:35.0346 5736 CmBatt - ok
14:32:35.0374 5736 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
14:32:35.0374 5736 cmdide - ok
14:32:35.0424 5736 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
14:32:35.0448 5736 CNG - ok
14:32:35.0496 5736 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:32:35.0496 5736 Compbatt - ok
14:32:35.0516 5736 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
14:32:35.0516 5736 CompositeBus - ok
14:32:35.0536 5736 COMSysApp - ok
14:32:35.0566 5736 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:32:35.0566 5736 crcdisk - ok
14:32:35.0626 5736 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:32:35.0636 5736 CryptSvc - ok
14:32:35.0686 5736 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
14:32:35.0706 5736 CSC - ok
14:32:35.0786 5736 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
14:32:35.0806 5736 CscService - ok
14:32:35.0856 5736 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:32:35.0866 5736 DcomLaunch - ok
14:32:35.0966 5736 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
14:32:35.0966 5736 defragsvc - ok
14:32:36.0006 5736 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:32:36.0006 5736 DfsC - ok
14:32:36.0036 5736 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
14:32:36.0036 5736 Dhcp - ok
14:32:36.0096 5736 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
14:32:36.0106 5736 discache - ok
14:32:36.0126 5736 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:32:36.0126 5736 Disk - ok
14:32:36.0166 5736 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:32:36.0166 5736 Dnscache - ok
14:32:36.0206 5736 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
14:32:36.0216 5736 dot3svc - ok
14:32:36.0246 5736 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
14:32:36.0256 5736 DPS - ok
14:32:36.0296 5736 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:32:36.0296 5736 drmkaud - ok
14:32:36.0346 5736 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:32:36.0376 5736 DXGKrnl - ok
14:32:36.0416 5736 [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
14:32:36.0426 5736 E1G60 - ok
14:32:36.0456 5736 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
14:32:36.0456 5736 EapHost - ok
14:32:36.0548 5736 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
14:32:36.0618 5736 ebdrv - ok
14:32:36.0658 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
14:32:36.0658 5736 EFS - ok
14:32:36.0727 5736 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:32:36.0740 5736 ehRecvr - ok
14:32:36.0770 5736 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
14:32:36.0770 5736 ehSched - ok
14:32:36.0800 5736 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:32:36.0816 5736 elxstor - ok
14:32:36.0832 5736 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
14:32:36.0832 5736 ErrDev - ok
14:32:36.0872 5736 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
14:32:36.0882 5736 EventSystem - ok
14:32:36.0902 5736 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
14:32:36.0902 5736 exfat - ok
14:32:36.0942 5736 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:32:36.0952 5736 fastfat - ok
14:32:36.0992 5736 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
14:32:37.0002 5736 Fax - ok
14:32:37.0012 5736 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:32:37.0012 5736 fdc - ok
14:32:37.0022 5736 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
14:32:37.0022 5736 fdPHost - ok
14:32:37.0042 5736 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
14:32:37.0042 5736 FDResPub - ok
14:32:37.0062 5736 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:32:37.0062 5736 FileInfo - ok
14:32:37.0082 5736 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:32:37.0082 5736 Filetrace - ok
14:32:37.0092 5736 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:32:37.0092 5736 flpydisk - ok
14:32:37.0122 5736 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:32:37.0132 5736 FltMgr - ok
14:32:37.0202 5736 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
14:32:37.0252 5736 FontCache - ok
14:32:37.0312 5736 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:32:37.0312 5736 FontCache3.0.0.0 - ok
14:32:37.0332 5736 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:32:37.0332 5736 FsDepends - ok
14:32:37.0352 5736 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:32:37.0352 5736 Fs_Rec - ok
14:32:37.0392 5736 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:32:37.0402 5736 fvevol - ok
14:32:37.0412 5736 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:32:37.0412 5736 gagp30kx - ok
14:32:37.0452 5736 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:32:37.0462 5736 GEARAspiWDM - ok
14:32:37.0527 5736 [ 22B6BE519C112FD9C6ADA3C96B54EC15 ] Generalusbserialser20675 C:\Windows\system32\DRIVERS\CT_U_USBSER.sys
14:32:37.0529 5736 Generalusbserialser20675 - ok
14:32:37.0584 5736 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
14:32:37.0604 5736 gpsvc - ok
14:32:37.0734 5736 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:32:37.0734 5736 gupdate - ok
14:32:37.0764 5736 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:32:37.0764 5736 gupdatem - ok
14:32:37.0814 5736 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:32:37.0814 5736 hcw85cir - ok
14:32:37.0874 5736 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:32:37.0894 5736 HdAudAddService - ok
14:32:37.0914 5736 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:32:37.0914 5736 HDAudBus - ok
14:32:37.0924 5736 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:32:37.0924 5736 HidBatt - ok
14:32:37.0944 5736 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:32:37.0944 5736 HidBth - ok
14:32:37.0964 5736 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:32:37.0974 5736 HidIr - ok
14:32:37.0994 5736 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
14:32:37.0994 5736 hidserv - ok
14:32:38.0024 5736 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:32:38.0024 5736 HidUsb - ok
14:32:38.0054 5736 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
14:32:38.0054 5736 hkmsvc - ok
14:32:38.0074 5736 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:32:38.0084 5736 HomeGroupListener - ok
14:32:38.0104 5736 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:32:38.0114 5736 HomeGroupProvider - ok
14:32:38.0134 5736 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
14:32:38.0134 5736 HpSAMD - ok
14:32:38.0144 5736 HSF_DPV - ok
14:32:38.0174 5736 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:32:38.0204 5736 HTTP - ok
14:32:38.0214 5736 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:32:38.0214 5736 hwpolicy - ok
14:32:38.0234 5736 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:32:38.0244 5736 i8042prt - ok
14:32:38.0274 5736 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
14:32:38.0274 5736 iaStorV - ok
14:32:38.0324 5736 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:32:38.0364 5736 idsvc - ok
14:32:38.0384 5736 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:32:38.0394 5736 iirsp - ok
14:32:38.0444 5736 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
14:32:38.0474 5736 IKEEXT - ok
14:32:38.0484 5736 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
14:32:38.0494 5736 intelide - ok
14:32:38.0514 5736 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:32:38.0514 5736 intelppm - ok
14:32:38.0534 5736 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:32:38.0534 5736 IPBusEnum - ok
14:32:38.0544 5736 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:32:38.0554 5736 IpFilterDriver - ok
14:32:38.0588 5736 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:32:38.0592 5736 IPMIDRV - ok
14:32:38.0636 5736 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:32:38.0636 5736 IPNAT - ok
14:32:38.0846 5736 [ 9B812A3484D89EB934982D67FB7D9313 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:32:38.0866 5736 iPod Service - ok
14:32:38.0896 5736 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:32:38.0896 5736 IRENUM - ok
14:32:38.0916 5736 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
14:32:38.0916 5736 isapnp - ok
14:32:38.0956 5736 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
14:32:38.0956 5736 iScsiPrt - ok
14:32:38.0976 5736 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:32:38.0976 5736 kbdclass - ok
14:32:38.0996 5736 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:32:39.0006 5736 kbdhid - ok
14:32:39.0016 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
14:32:39.0016 5736 KeyIso - ok
14:32:39.0036 5736 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:32:39.0036 5736 KSecDD - ok
14:32:39.0108 5736 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:32:39.0118 5736 KSecPkg - ok
14:32:39.0159 5736 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
14:32:39.0162 5736 ksthunk - ok
14:32:39.0270 5736 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
14:32:39.0290 5736 KtmRm - ok
14:32:39.0360 5736 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
14:32:39.0380 5736 LanmanServer - ok
14:32:39.0420 5736 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:32:39.0430 5736 LanmanWorkstation - ok
14:32:39.0480 5736 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:32:39.0490 5736 lltdio - ok
14:32:39.0520 5736 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:32:39.0520 5736 lltdsvc - ok
14:32:39.0570 5736 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:32:39.0570 5736 lmhosts - ok
14:32:39.0620 5736 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:32:39.0620 5736 LSI_FC - ok
14:32:39.0640 5736 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:32:39.0640 5736 LSI_SAS - ok
14:32:39.0650 5736 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:32:39.0650 5736 LSI_SAS2 - ok
14:32:39.0670 5736 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:32:39.0670 5736 LSI_SCSI - ok
14:32:39.0690 5736 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
14:32:39.0700 5736 luafv - ok
14:32:39.0710 5736 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:32:39.0720 5736 Mcx2Svc - ok
14:32:39.0720 5736 mdmxsdk - ok
14:32:39.0740 5736 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:32:39.0740 5736 megasas - ok
14:32:39.0780 5736 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:32:39.0790 5736 MegaSR - ok
14:32:39.0860 5736 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
14:32:39.0870 5736 Microsoft Office Groove Audit Service - ok
14:32:39.0910 5736 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
14:32:39.0930 5736 MMCSS - ok
14:32:39.0970 5736 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
14:32:39.0970 5736 Modem - ok
14:32:40.0020 5736 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:32:40.0020 5736 monitor - ok
14:32:40.0070 5736 [ A70BF78713B104C46C4E6E7858B6F02E ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
14:32:40.0080 5736 motccgp - ok
14:32:40.0100 5736 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
14:32:40.0100 5736 motccgpfl - ok
14:32:40.0160 5736 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
14:32:40.0160 5736 motmodem - ok
14:32:40.0260 5736 [ 705568B735847B3304F9602834DEF733 ] MotoHelper C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
14:32:40.0260 5736 MotoHelper - ok
14:32:40.0290 5736 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motport C:\Windows\system32\DRIVERS\motport.sys
14:32:40.0290 5736 motport - ok
14:32:40.0340 5736 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:32:40.0340 5736 mouclass - ok
14:32:40.0370 5736 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:32:40.0370 5736 mouhid - ok
14:32:40.0380 5736 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:32:40.0380 5736 mountmgr - ok
14:32:40.0480 5736 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:32:40.0490 5736 MozillaMaintenance - ok
14:32:40.0520 5736 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
14:32:40.0530 5736 mpio - ok
14:32:40.0550 5736 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:32:40.0560 5736 mpsdrv - ok
14:32:40.0589 5736 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:32:40.0593 5736 MRxDAV - ok
14:32:40.0632 5736 [ B7F3D2C40BDF8FFB73EBFB19C77734E2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:32:40.0632 5736 mrxsmb - ok
14:32:40.0652 5736 [ 86C6F88B5168CE21CF8D69D0B3FF5D19 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:32:40.0662 5736 mrxsmb10 - ok
14:32:40.0702 5736 [ B081069251C8E9F42CB8769D07148F9C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:32:40.0702 5736 mrxsmb20 - ok
14:32:40.0722 5736 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
14:32:40.0722 5736 msahci - ok
14:32:40.0732 5736 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
14:32:40.0742 5736 msdsm - ok
14:32:40.0752 5736 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
14:32:40.0762 5736 MSDTC - ok
14:32:40.0812 5736 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys
14:32:40.0812 5736 MSDV - ok
14:32:40.0832 5736 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:32:40.0832 5736 Msfs - ok
14:32:40.0852 5736 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:32:40.0852 5736 mshidkmdf - ok
14:32:40.0862 5736 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
14:32:40.0872 5736 msisadrv - ok
14:32:40.0902 5736 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:32:40.0912 5736 MSiSCSI - ok
14:32:40.0912 5736 msiserver - ok
14:32:40.0932 5736 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:32:40.0932 5736 MSKSSRV - ok
14:32:40.0952 5736 MsMpSvc - ok
14:32:40.0972 5736 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:32:40.0972 5736 MSPCLOCK - ok
14:32:40.0992 5736 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:32:40.0992 5736 MSPQM - ok
14:32:41.0012 5736 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:32:41.0022 5736 MsRPC - ok
14:32:41.0032 5736 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:32:41.0042 5736 mssmbios - ok
14:32:41.0042 5736 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:32:41.0042 5736 MSTEE - ok
14:32:41.0062 5736 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:32:41.0062 5736 MTConfig - ok
14:32:41.0082 5736 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
14:32:41.0082 5736 Mup - ok
14:32:41.0122 5736 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
14:32:41.0142 5736 napagent - ok
14:32:41.0192 5736 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:32:41.0202 5736 NativeWifiP - ok
14:32:41.0292 5736 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
14:32:41.0322 5736 NAUpdate - ok
14:32:41.0392 5736 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
14:32:41.0432 5736 NDIS - ok
14:32:41.0504 5736 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:32:41.0504 5736 NdisCap - ok
14:32:41.0544 5736 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:32:41.0544 5736 NdisTapi - ok
14:32:41.0554 5736 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:32:41.0554 5736 Ndisuio - ok
14:32:41.0574 5736 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:32:41.0574 5736 NdisWan - ok
14:32:41.0594 5736 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:32:41.0594 5736 NDProxy - ok
14:32:41.0604 5736 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:32:41.0604 5736 NetBIOS - ok
14:32:41.0624 5736 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:32:41.0624 5736 NetBT - ok
14:32:41.0644 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
14:32:41.0644 5736 Netlogon - ok
14:32:41.0674 5736 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
14:32:41.0694 5736 Netman - ok
14:32:41.0734 5736 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
14:32:41.0754 5736 netprofm - ok
14:32:41.0774 5736 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:32:41.0774 5736 NetTcpPortSharing - ok
14:32:41.0804 5736 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:32:41.0804 5736 nfrd960 - ok
14:32:41.0834 5736 [ 3713E8452B88D3E0BE095E06B6FBC776 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:32:41.0834 5736 NisDrv - ok
14:32:41.0844 5736 NisSrv - ok
14:32:41.0864 5736 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:32:41.0874 5736 NlaSvc - ok
14:32:41.0884 5736 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:32:41.0894 5736 Npfs - ok
14:32:41.0904 5736 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
14:32:41.0904 5736 nsi - ok
14:32:41.0914 5736 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:32:41.0914 5736 nsiproxy - ok
14:32:41.0984 5736 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:32:42.0024 5736 Ntfs - ok
14:32:42.0034 5736 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
14:32:42.0034 5736 Null - ok
14:32:42.0394 5736 [ E55CAB397F77D5208DB18A78B1B7C0D5 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:32:42.0660 5736 nvlddmkm - ok
14:32:42.0715 5736 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
14:32:42.0718 5736 nvraid - ok
14:32:42.0739 5736 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
14:32:42.0741 5736 nvstor - ok
14:32:42.0793 5736 [ 43BC8151893AE6AFE42E149D663C2221 ] nvsvc C:\Windows\system32\nvvsvc.exe
14:32:42.0798 5736 nvsvc - ok
14:32:42.0825 5736 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
14:32:42.0828 5736 nv_agp - ok
14:32:42.0916 5736 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:32:42.0936 5736 odserv - ok
14:32:42.0946 5736 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
14:32:42.0946 5736 ohci1394 - ok
14:32:42.0986 5736 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:32:42.0996 5736 ose - ok
14:32:43.0026 5736 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:32:43.0036 5736 p2pimsvc - ok
14:32:43.0056 5736 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
14:32:43.0076 5736 p2psvc - ok
14:32:43.0146 5736 [ 3A6DCEB1848470320E4A3C12D7A35B1C ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
14:32:43.0166 5736 PAC207 - ok
14:32:43.0196 5736 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:32:43.0196 5736 Parport - ok
14:32:43.0236 5736 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:32:43.0236 5736 partmgr - ok
14:32:43.0256 5736 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:32:43.0266 5736 PcaSvc - ok
14:32:43.0306 5736 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
14:32:43.0306 5736 pci - ok
14:32:43.0346 5736 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
14:32:43.0346 5736 pciide - ok
14:32:43.0386 5736 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:32:43.0396 5736 pcmcia - ok
14:32:43.0446 5736 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
14:32:43.0446 5736 pcw - ok
14:32:43.0476 5736 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:32:43.0486 5736 PEAUTH - ok
14:32:43.0546 5736 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:32:43.0586 5736 PeerDistSvc - ok
14:32:43.0676 5736 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
14:32:43.0676 5736 PerfHost - ok
14:32:43.0748 5736 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
14:32:43.0788 5736 pla - ok
14:32:43.0828 5736 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:32:43.0838 5736 PlugPlay - ok
14:32:43.0858 5736 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:32:43.0858 5736 PNRPAutoReg - ok
14:32:43.0878 5736 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:32:43.0888 5736 PNRPsvc - ok
14:32:43.0918 5736 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:32:43.0928 5736 PolicyAgent - ok
14:32:43.0958 5736 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
14:32:43.0958 5736 Power - ok
14:32:43.0998 5736 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:32:44.0008 5736 PptpMiniport - ok
14:32:44.0028 5736 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:32:44.0028 5736 Processor - ok
14:32:44.0038 5736 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
14:32:44.0048 5736 ProfSvc - ok
14:32:44.0058 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
14:32:44.0058 5736 ProtectedStorage - ok
14:32:44.0088 5736 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:32:44.0088 5736 Psched - ok
14:32:44.0138 5736 [ 452C20382DF763F966C12DC48259F34E ] PTUMWBus C:\Windows\system32\DRIVERS\PTUMWBus.sys
14:32:44.0138 5736 PTUMWBus - ok
14:32:44.0178 5736 [ 3754C646BBDAEDAFC09F793C6B38E877 ] PTUMWCDF C:\Windows\system32\DRIVERS\PTUMWCDF.sys
14:32:44.0188 5736 PTUMWCDF - ok
14:32:44.0208 5736 [ AC86BB916FBEA16B0005EFC3BA3ADB58 ] PTUMWFLT C:\Windows\system32\DRIVERS\PTUMWFLT.sys
14:32:44.0208 5736 PTUMWFLT - ok
14:32:44.0238 5736 [ CB146794BC3B96661A32CBD68673B479 ] PTUMWMdm C:\Windows\system32\DRIVERS\PTUMWMdm.sys
14:32:44.0238 5736 PTUMWMdm - ok
14:32:44.0288 5736 [ 329E77868A92BB6F97C119050D97E9EC ] PTUMWNET C:\Windows\system32\DRIVERS\PTUMWNET.sys
14:32:44.0298 5736 PTUMWNET - ok
14:32:44.0338 5736 [ 4FFD7E6D2CB293849C1181D08717EA09 ] PTUMWVsp C:\Windows\system32\DRIVERS\PTUMWVsp.sys
14:32:44.0338 5736 PTUMWVsp - ok
14:32:44.0368 5736 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
14:32:44.0378 5736 PxHlpa64 - ok
14:32:44.0438 5736 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:32:44.0468 5736 ql2300 - ok
14:32:44.0488 5736 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:32:44.0488 5736 ql40xx - ok
14:32:44.0538 5736 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
14:32:44.0558 5736 QWAVE - ok
14:32:44.0588 5736 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:32:44.0608 5736 QWAVEdrv - ok
14:32:44.0648 5736 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:32:44.0658 5736 RasAcd - ok
14:32:44.0698 5736 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:32:44.0698 5736 RasAgileVpn - ok
14:32:44.0718 5736 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
14:32:44.0718 5736 RasAuto - ok
14:32:44.0738 5736 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:32:44.0748 5736 Rasl2tp - ok
14:32:44.0768 5736 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
14:32:44.0778 5736 RasMan - ok
14:32:44.0798 5736 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:32:44.0798 5736 RasPppoe - ok
14:32:44.0808 5736 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:32:44.0808 5736 RasSstp - ok
14:32:44.0828 5736 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:32:44.0838 5736 rdbss - ok
14:32:44.0848 5736 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:32:44.0848 5736 rdpbus - ok
14:32:44.0858 5736 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:32:44.0858 5736 RDPCDD - ok
14:32:44.0878 5736 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:32:44.0878 5736 RDPDR - ok
14:32:44.0898 5736 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:32:44.0908 5736 RDPENCDD - ok
14:32:44.0928 5736 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:32:44.0928 5736 RDPREFMP - ok
14:32:44.0948 5736 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:32:44.0948 5736 RDPWD - ok
14:32:44.0978 5736 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:32:44.0978 5736 rdyboost - ok
14:32:45.0008 5736 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:32:45.0018 5736 RemoteAccess - ok
14:32:45.0038 5736 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:32:45.0038 5736 RemoteRegistry - ok
14:32:45.0058 5736 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:32:45.0058 5736 RpcEptMapper - ok
14:32:45.0078 5736 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
14:32:45.0078 5736 RpcLocator - ok
14:32:45.0108 5736 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
14:32:45.0128 5736 RpcSs - ok
14:32:45.0158 5736 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:32:45.0168 5736 rspndr - ok
14:32:45.0208 5736 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
14:32:45.0208 5736 s3cap - ok
14:32:45.0248 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
14:32:45.0248 5736 SamSs - ok
14:32:45.0278 5736 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
14:32:45.0288 5736 sbp2port - ok
14:32:45.0408 5736 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
14:32:45.0438 5736 SBSDWSCService - ok
14:32:45.0478 5736 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:32:45.0478 5736 SCardSvr - ok
14:32:45.0528 5736 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:32:45.0528 5736 scfilter - ok
14:32:45.0578 5736 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
14:32:45.0618 5736 Schedule - ok
14:32:45.0668 5736 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
14:32:45.0668 5736 SCPolicySvc - ok
14:32:45.0678 5736 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:32:45.0688 5736 SDRSVC - ok
14:32:45.0708 5736 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:32:45.0708 5736 secdrv - ok
14:32:45.0728 5736 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
14:32:45.0728 5736 seclogon - ok
14:32:45.0768 5736 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
14:32:45.0768 5736 SENS - ok
14:32:45.0778 5736 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:32:45.0788 5736 SensrSvc - ok
14:32:45.0828 5736 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:32:45.0828 5736 Serenum - ok
14:32:45.0848 5736 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:32:45.0848 5736 Serial - ok
14:32:45.0868 5736 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:32:45.0868 5736 sermouse - ok
14:32:45.0908 5736 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
14:32:45.0908 5736 SessionEnv - ok
14:32:45.0938 5736 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
14:32:45.0948 5736 sffdisk - ok
14:32:45.0958 5736 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:32:45.0958 5736 sffp_mmc - ok
14:32:45.0968 5736 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
14:32:45.0978 5736 sffp_sd - ok
14:32:45.0988 5736 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:32:45.0988 5736 sfloppy - ok
14:32:46.0038 5736 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:32:46.0048 5736 SharedAccess - ok
14:32:46.0078 5736 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:32:46.0088 5736 ShellHWDetection - ok
14:32:46.0098 5736 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:32:46.0098 5736 SiSRaid2 - ok
14:32:46.0118 5736 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:32:46.0118 5736 SiSRaid4 - ok
14:32:46.0138 5736 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:32:46.0138 5736 Smb - ok
14:32:46.0168 5736 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:32:46.0178 5736 SNMPTRAP - ok
14:32:46.0188 5736 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
14:32:46.0188 5736 spldr - ok
14:32:46.0248 5736 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
14:32:46.0278 5736 Spooler - ok
14:32:46.0398 5736 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
14:32:46.0488 5736 sppsvc - ok
14:32:46.0498 5736 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:32:46.0508 5736 sppuinotify - ok
14:32:46.0548 5736 [ 148D50904D2A0DF29A19778715EB35BB ] srv C:\Windows\system32\DRIVERS\srv.sys
14:32:46.0558 5736 srv - ok
14:32:46.0578 5736 [ CE2189FE31D36678AC9EB7DDEE08EC96 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:32:46.0578 5736 srv2 - ok
14:32:46.0628 5736 [ 93132C69394A99D992095D8CFE464801 ] SrvHsfPCI C:\Windows\system32\DRIVERS\VSTBS26.SYS
14:32:46.0638 5736 SrvHsfPCI - ok
14:32:46.0678 5736 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
14:32:46.0718 5736 SrvHsfV92 - ok
14:32:46.0748 5736 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
14:32:46.0758 5736 SrvHsfWinac - ok
14:32:46.0798 5736 [ CB69EDEB069A49577592835659CD0E46 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:32:46.0808 5736 srvnet - ok
14:32:46.0838 5736 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:32:46.0838 5736 SSDPSRV - ok
14:32:46.0858 5736 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:32:46.0868 5736 SstpSvc - ok
14:32:46.0898 5736 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:32:46.0908 5736 stexstor - ok
14:32:46.0938 5736 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
14:32:46.0968 5736 stisvc - ok
14:32:46.0978 5736 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
14:32:46.0978 5736 storflt - ok
14:32:46.0998 5736 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
14:32:46.0998 5736 storvsc - ok
14:32:47.0018 5736 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:32:47.0018 5736 swenum - ok
14:32:47.0138 5736 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:32:47.0158 5736 SwitchBoard - ok
14:32:47.0198 5736 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
14:32:47.0228 5736 swprv - ok
14:32:47.0288 5736 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
14:32:47.0368 5736 SysMain - ok
14:32:47.0388 5736 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:32:47.0388 5736 TabletInputService - ok
14:32:47.0418 5736 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
14:32:47.0438 5736 TapiSrv - ok
14:32:47.0458 5736 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
14:32:47.0468 5736 TBS - ok
14:32:47.0538 5736 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:32:47.0578 5736 Tcpip - ok
14:32:47.0648 5736 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:32:47.0658 5736 TCPIP6 - ok
14:32:47.0708 5736 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:32:47.0708 5736 tcpipreg - ok
14:32:47.0728 5736 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:32:47.0728 5736 TDPIPE - ok
14:32:47.0738 5736 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:32:47.0738 5736 TDTCP - ok
14:32:47.0758 5736 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:32:47.0758 5736 tdx - ok
14:32:47.0768 5736 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:32:47.0768 5736 TermDD - ok
14:32:47.0798 5736 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
14:32:47.0818 5736 TermService - ok
14:32:47.0838 5736 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
14:32:47.0848 5736 Themes - ok
14:32:47.0868 5736 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
14:32:47.0868 5736 THREADORDER - ok
14:32:47.0898 5736 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
14:32:47.0898 5736 TrkWks - ok
14:32:47.0938 5736 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:32:47.0948 5736 TrustedInstaller - ok
14:32:47.0988 5736 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:32:47.0988 5736 tssecsrv - ok
14:32:48.0018 5736 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:32:48.0018 5736 tunnel - ok
14:32:48.0038 5736 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:32:48.0038 5736 uagp35 - ok
14:32:48.0048 5736 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:32:48.0058 5736 udfs - ok
14:32:48.0128 5736 [ 54A4A93A984E5C30B5CAB9257A0A05BF ] UDisk Monitor C:\Program Files (x86)\Froyo_Android_Driver\Bin\MonServiceUDisk.exe
14:32:48.0148 5736 UDisk Monitor - ok
14:32:48.0208 5736 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:32:48.0218 5736 UI0Detect - ok
14:32:48.0238 5736 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
14:32:48.0238 5736 uliagpkx - ok
14:32:48.0258 5736 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:32:48.0258 5736 umbus - ok
14:32:48.0268 5736 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:32:48.0268 5736 UmPass - ok
14:32:48.0288 5736 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
14:32:48.0298 5736 UmRdpService - ok
14:32:48.0318 5736 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
14:32:48.0328 5736 upnphost - ok
14:32:48.0378 5736 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
14:32:48.0378 5736 USBAAPL64 - ok
14:32:48.0408 5736 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:32:48.0418 5736 usbaudio - ok
14:32:48.0448 5736 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:32:48.0448 5736 usbccgp - ok
14:32:48.0468 5736 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
14:32:48.0468 5736 usbcir - ok
14:32:48.0508 5736 [ DF9F9AFC9AAABD8ED47975D44E38169A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:32:48.0508 5736 usbehci - ok
14:32:48.0548 5736 [ 372A91BC3C6603080A793880B0873785 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:32:48.0558 5736 usbhub - ok
14:32:48.0588 5736 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
14:32:48.0588 5736 usbohci - ok
14:32:48.0618 5736 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:32:48.0628 5736 usbprint - ok
14:32:48.0658 5736 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:32:48.0668 5736 usbscan - ok
14:32:48.0688 5736 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:32:48.0688 5736 USBSTOR - ok
14:32:48.0708 5736 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
14:32:48.0708 5736 usbuhci - ok
14:32:48.0758 5736 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:32:48.0768 5736 usbvideo - ok
14:32:48.0788 5736 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
14:32:48.0798 5736 UxSms - ok
14:32:48.0808 5736 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
14:32:48.0808 5736 VaultSvc - ok
14:32:48.0828 5736 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
14:32:48.0828 5736 vdrvroot - ok
14:32:48.0848 5736 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
14:32:48.0868 5736 vds - ok
14:32:48.0888 5736 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:32:48.0888 5736 vga - ok
14:32:48.0908 5736 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
14:32:48.0908 5736 VgaSave - ok
14:32:48.0918 5736 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
14:32:48.0918 5736 vhdmp - ok
14:32:48.0938 5736 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
14:32:48.0938 5736 viaide - ok
14:32:48.0958 5736 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
14:32:48.0968 5736 vmbus - ok
14:32:48.0968 5736 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
14:32:48.0968 5736 VMBusHID - ok
14:32:48.0988 5736 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
14:32:48.0998 5736 volmgr - ok
14:32:49.0018 5736 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:32:49.0018 5736 volmgrx - ok
14:32:49.0048 5736 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
14:32:49.0048 5736 volsnap - ok
14:32:49.0068 5736 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:32:49.0078 5736 vsmraid - ok
14:32:49.0148 5736 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
14:32:49.0208 5736 VSS - ok
14:32:49.0340 5736 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
14:32:49.0350 5736 vToolbarUpdater12.2.6 - ok
14:32:49.0400 5736 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
14:32:49.0400 5736 vwifibus - ok
14:32:49.0430 5736 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
14:32:49.0440 5736 W32Time - ok
14:32:49.0470 5736 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:32:49.0470 5736 WacomPen - ok
14:32:49.0500 5736 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:32:49.0500 5736 WANARP - ok
14:32:49.0520 5736 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:32:49.0530 5736 Wanarpv6 - ok
14:32:49.0580 5736 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
14:32:49.0610 5736 wbengine - ok
14:32:49.0660 5736 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:32:49.0670 5736 WbioSrvc - ok
14:32:49.0710 5736 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:32:49.0720 5736 wcncsvc - ok
14:32:49.0750 5736 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:32:49.0750 5736 WcsPlugInService - ok
14:32:49.0790 5736 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:32:49.0790 5736 Wd - ok
14:32:49.0820 5736 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:32:49.0840 5736 Wdf01000 - ok
14:32:49.0870 5736 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:32:49.0880 5736 WdiServiceHost - ok
14:32:49.0880 5736 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:32:49.0890 5736 WdiSystemHost - ok
14:32:49.0970 5736 Web Assistant Updater - ok
14:32:50.0030 5736 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
14:32:50.0050 5736 WebClient - ok
14:32:50.0090 5736 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:32:50.0100 5736 Wecsvc - ok
14:32:50.0140 5736 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:32:50.0150 5736 wercplsupport - ok
14:32:50.0170 5736 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
14:32:50.0180 5736 WerSvc - ok
14:32:50.0220 5736 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:32:50.0220 5736 WfpLwf - ok
14:32:50.0240 5736 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:32:50.0240 5736 WIMMount - ok
14:32:50.0250 5736 winachsf - ok
14:32:50.0260 5736 WinHttpAutoProxySvc - ok
14:32:50.0360 5736 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:32:50.0370 5736 Winmgmt - ok
14:32:50.0430 5736 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
14:32:50.0480 5736 WinRM - ok
14:32:50.0540 5736 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:32:50.0540 5736 WinUsb - ok
14:32:50.0580 5736 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
14:32:50.0600 5736 Wlansvc - ok
14:32:50.0740 5736 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:32:50.0802 5736 wlidsvc - ok
14:32:50.0842 5736 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
14:32:50.0842 5736 WmiAcpi - ok
14:32:50.0902 5736 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:32:50.0902 5736 wmiApSrv - ok
14:32:50.0932 5736 WMPNetworkSvc - ok
14:32:50.0952 5736 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:32:50.0962 5736 WPCSvc - ok
14:32:50.0982 5736 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:32:50.0992 5736 WPDBusEnum - ok
14:32:51.0002 5736 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:32:51.0002 5736 ws2ifsl - ok
14:32:51.0022 5736 WSearch - ok
14:32:51.0092 5736 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
14:32:51.0152 5736 wuauserv - ok
14:32:51.0162 5736 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:32:51.0172 5736 WudfPf - ok
14:32:51.0182 5736 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:32:51.0192 5736 WUDFRd - ok
14:32:51.0212 5736 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:32:51.0212 5736 wudfsvc - ok
14:32:51.0232 5736 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:32:51.0242 5736 WwanSvc - ok
14:32:51.0292 5736 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
14:32:51.0292 5736 yukonw7 - ok
14:32:51.0322 5736 ================ Scan global ===============================
14:32:51.0342 5736 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:32:51.0382 5736 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
14:32:51.0412 5736 [ 6BF2039986AF96D98E08824AC6C383FD ] C:\Windows\system32\consrv.dll
14:32:51.0522 5736 C:\Windows\system32\consrv.dll ( Backdoor.Multi.ZAccess.genb ) - infected
14:32:51.0522 5736 C:\Windows\system32\consrv.dll - detected Backdoor.Multi.ZAccess.genb (0)
14:32:51.0562 5736 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:32:51.0592 5736 ================ Scan MBR ==================================
14:32:51.0632 5736 [ 0F84F2562620C40D8A3E1908C8075675 ] \Device\Harddisk0\DR0
14:32:51.0632 5736 Suspicious mbr (Forged): \Device\Harddisk0\DR0
14:32:51.0672 5736 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
14:32:51.0672 5736 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
14:32:51.0672 5736 ================ Scan VBR ==================================
14:32:51.0682 5736 [ 644091CFCAA7084E0C1815B75D7DAA5B ] \Device\Harddisk0\DR0\Partition1
14:32:51.0682 5736 \Device\Harddisk0\DR0\Partition1 - ok
14:32:51.0702 5736 [ 12B0269A1E7D7319523822160E4DF231 ] \Device\Harddisk0\DR0\Partition2
14:32:51.0702 5736 \Device\Harddisk0\DR0\Partition2 - ok
14:32:51.0702 5736 ============================================================
14:32:51.0702 5736 Scan finished
14:32:51.0702 5736 ============================================================
14:32:51.0722 5712 Detected object count: 3
14:32:51.0722 5712 Actual detected object count: 3
14:33:57.0280 5712 C:\Windows\system32\afd.dll - copied to quarantine
14:33:57.0290 5712 HKLM\SYSTEM\ControlSet001\services\aaksrv - will be deleted on reboot
14:33:57.0320 5712 HKLM\SYSTEM\ControlSet002\services\aaksrv - will be deleted on reboot
14:33:57.0420 5712 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\svchost:netsvcs - will be cured on reboot
14:33:57.0462 5712 C:\Windows\system32\afd.dll - will be deleted on reboot
14:33:57.0462 5712 aaksrv ( Backdoor.Multi.ZAccess.gen ) - User select action: Delete
14:33:57.0512 5712 C:\Windows\system32\consrv.dll - copied to quarantine
14:33:58.0992 5712 C:\Windows\assembly\GAC_32\desktop.ini - copied to quarantine
14:33:59.0022 5712 C:\Windows\assembly\GAC_64\desktop.ini - copied to quarantine
14:34:00.0174 5712 HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems:Windows - will be cured on reboot
14:34:00.0174 5712 C:\Windows\system32\consrv.dll - will be deleted on reboot
14:34:00.0224 5712 C:\Windows\assembly\GAC_32\desktop.ini - will be deleted on reboot
14:34:00.0224 5712 C:\Windows\assembly\GAC_64\desktop.ini - will be deleted on reboot
14:34:00.0244 5712 C:\Windows\system32\consrv.dll ( Backdoor.Multi.ZAccess.genb ) - User select action: Delete
14:34:00.0674 5712 \Device\Harddisk0\DR0\# - copied to quarantine
14:34:00.0674 5712 \Device\Harddisk0\DR0 - copied to quarantine
14:34:00.0744 5712 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
14:34:00.0744 5712 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
14:34:00.0754 5712 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
14:34:00.0764 5712 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
14:34:00.0774 5712 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
14:34:00.0784 5712 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
14:34:00.0794 5712 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
14:34:00.0794 5712 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
14:34:00.0804 5712 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
14:34:00.0804 5712 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
14:34:00.0814 5712 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
14:34:00.0814 5712 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
14:34:00.0834 5712 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
14:34:00.0834 5712 \Device\Harddisk0\DR0 - ok
14:34:00.0984 5712 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure

#5 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 28 October 2012 - 05:27 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-28 14:37:38
-----------------------------
14:37:38.206 OS Version: Windows x64 6.1.7600
14:37:38.206 Number of processors: 2 586 0x6B02
14:37:38.206 ComputerName: BLAZA-PC UserName: blaza
14:37:39.036 Initialize success
14:41:37.558 AVAST engine defs: 12102801
14:42:09.270 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006f
14:42:09.270 Disk 0 Vendor: WDC_WD40 12.0 Size: 381554MB BusType: 3
14:42:09.270 Device \Driver\nvstor -> MajorFunction fffffa800395b5c4
14:42:09.280 Disk 0 MBR read successfully
14:42:09.280 Disk 0 MBR scan
14:42:09.330 Disk 0 Windows 7 default MBR code
14:42:09.350 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
14:42:09.360 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 381452 MB offset 206848
14:42:09.420 Disk 0 scanning C:\Windows\system32\drivers
14:42:18.952 Service scanning
14:42:19.952 Service 94610900 C:\Windows\system32\drivers\43656114.sys **HIDDEN**
14:42:20.042 Service aaksrv C:\Windows\system32\afd.dll **INFECTED** Win64:ZAccess-E [Rtk]
14:42:41.256 Modules scanning
14:42:41.286 Disk 0 trace - called modules:
14:42:41.296 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80044a0d10]<<93199327.sys >>UNKNOWN [0xfffffa800395b5c4]<<
14:42:41.306 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003473060]
14:42:41.316 3 CLASSPNP.SYS[fffff8800196543f] -> nt!IofCallDriver -> [0xfffffa80022bde40]
14:42:41.316 5 ACPI.sys[fffff88000e6b781] -> nt!IofCallDriver -> \Device\0000006f[0xfffffa8002cfc060]
14:42:41.326 \Driver\nvstor[0xfffffa80038b6da0] -> IRP_MJ_CREATE -> 0xfffffa800395b5c4
14:42:42.546 AVAST engine scan C:\
14:42:42.666 File: C:\$Recycle.Bin\S-1-5-18\$555f9bef0112e7aeae77e5d8d4bdca82\n **INFECTED** Win32:Sirefef-PL [Rtk]
14:55:41.072 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0000.dta **INFECTED** Win32:Malware-gen
14:55:41.132 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0002.dta **INFECTED** Win32:Alureon-MJ@mbr [Rtk]
14:55:41.162 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0003.dta **INFECTED** Win32:Malware-gen
14:55:41.202 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0004.dta **INFECTED** Win32:Aluroot-C [Rtk]
14:55:41.222 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0005.dta **INFECTED** MBR:Alureon-M [Rtk]
14:55:41.272 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0009.dta **INFECTED** Win32:Alureon-ANW [Rtk]
14:55:41.312 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0010.dta **INFECTED** Win32:Alureon-ANW [Rtk]
14:55:41.352 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zaea0000\svc0000\tsk0000.dta **INFECTED** Win64:ZAccess-E [Rtk]
14:55:41.402 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\file0000\tsk0000.dta **INFECTED** Win32:Sirefef-HO [Rtk]
14:55:41.422 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\zafs0000\tsk0000.dta **INFECTED** Win32:Sirefef-FQ [Drp]
14:55:41.462 File: C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\zafs0000\tsk0001.dta **INFECTED** Win32:Sirefef-HO [Rtk]
15:13:17.383 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-FQ [Drp]
15:13:20.033 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-HO [Rtk]
15:19:30.764 File: C:\Windows\System32\afd.dll **INFECTED** Win64:ZAccess-E [Rtk]
15:20:13.899 File: C:\Windows\System32\consrv.dll **INFECTED** Win32:Sirefef-HO [Rtk]
15:24:47.423 File: C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\3794\RstrtMgr.exe **INFECTED** Win32:Kryptik-KKT [Trj]
15:25:47.892 Disk 0 MBR has been saved successfully to "C:\Users\blaza\Desktop\MBR.dat"
15:25:47.942 The log file has been saved successfully to "C:\Users\blaza\Desktop\aswMBR.txt"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:21 AM

Posted 28 October 2012 - 06:41 PM

Run TDSSkiller again and post the new log

ESET LOG?

#7 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 28 October 2012 - 06:47 PM

the eset log is 94% and been running almost 60 minutes now.

TDSSkiller:

15:35:20.0160 2756 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
15:35:21.0377 2756 ============================================================
15:35:21.0377 2756 Current date / time: 2012/10/28 15:35:21.0377
15:35:21.0377 2756 SystemInfo:
15:35:21.0377 2756
15:35:21.0377 2756 OS Version: 6.1.7600 ServicePack: 0.0
15:35:21.0377 2756 Product type: Workstation
15:35:21.0377 2756 ComputerName: BLAZA-PC
15:35:21.0377 2756 UserName: blaza
15:35:21.0377 2756 Windows directory: C:\Windows
15:35:21.0377 2756 System windows directory: C:\Windows
15:35:21.0377 2756 Running under WOW64
15:35:21.0377 2756 Processor architecture: Intel x64
15:35:21.0377 2756 Number of processors: 2
15:35:21.0377 2756 Page size: 0x1000
15:35:21.0377 2756 Boot type: Normal boot
15:35:21.0377 2756 ============================================================
15:35:26.0516 2756 BG loaded
15:35:27.0452 2756 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xC9E1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:35:27.0499 2756 ============================================================
15:35:27.0499 2756 \Device\Harddisk0\DR0:
15:35:27.0530 2756 MBR partitions:
15:35:27.0530 2756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:35:27.0530 2756 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x2E906000
15:35:27.0530 2756 ============================================================
15:35:27.0889 2756 C: <-> \Device\Harddisk0\DR0\Partition2
15:35:27.0889 2756 ============================================================
15:35:27.0889 2756 Initialize success
15:35:27.0889 2756 ============================================================
15:35:37.0826 2964 ============================================================
15:35:37.0826 2964 Scan started
15:35:37.0826 2964 Mode: Manual;
15:35:37.0826 2964 ============================================================
15:35:39.0761 2964 ================ Scan system memory ========================
15:35:39.0761 2964 System memory - ok
15:35:39.0761 2964 ================ Scan services =============================
15:35:42.0662 2964 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:35:42.0662 2964 1394ohci - ok
15:35:42.0756 2964 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys
15:35:42.0771 2964 61883 - ok
15:35:42.0865 2964 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
15:35:42.0881 2964 ACPI - ok
15:35:42.0959 2964 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
15:35:42.0990 2964 AcpiPmi - ok
15:35:43.0520 2964 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:35:43.0520 2964 AdobeARMservice - ok
15:35:44.0565 2964 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:35:44.0831 2964 AdobeFlashPlayerUpdateSvc - ok
15:35:44.0987 2964 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:35:45.0221 2964 adp94xx - ok
15:35:45.0377 2964 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:35:45.0408 2964 adpahci - ok
15:35:45.0486 2964 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:35:45.0501 2964 adpu320 - ok
15:35:45.0595 2964 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:35:45.0595 2964 AeLookupSvc - ok
15:35:45.0782 2964 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
15:35:45.0798 2964 AFD - ok
15:35:45.0860 2964 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:35:46.0016 2964 agp440 - ok
15:35:46.0157 2964 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:35:46.0235 2964 ALG - ok
15:35:46.0406 2964 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
15:35:46.0469 2964 aliide - ok
15:35:46.0562 2964 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
15:35:46.0609 2964 amdide - ok
15:35:46.0703 2964 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:35:46.0703 2964 AmdK8 - ok
15:35:46.0749 2964 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:35:46.0781 2964 AmdPPM - ok
15:35:46.0827 2964 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
15:35:46.0843 2964 amdsata - ok
15:35:46.0952 2964 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:35:46.0952 2964 amdsbs - ok
15:35:46.0983 2964 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
15:35:46.0983 2964 amdxata - ok
15:35:47.0046 2964 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
15:35:47.0093 2964 AppID - ok
15:35:47.0155 2964 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:35:47.0171 2964 AppIDSvc - ok
15:35:47.0311 2964 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
15:35:47.0342 2964 Appinfo - ok
15:35:47.0670 2964 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:35:47.0701 2964 Apple Mobile Device - ok
15:35:47.0795 2964 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:35:47.0841 2964 AppMgmt - ok
15:35:47.0919 2964 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:35:47.0966 2964 arc - ok
15:35:48.0044 2964 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:35:48.0091 2964 arcsas - ok
15:35:48.0278 2964 [ 21C9835D0E5AD2FF0F16134BCB32CC71 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
15:35:48.0278 2964 aswMonFlt - ok
15:35:48.0434 2964 [ 1B96A5867ABD4FA6135D8298FCCCF9C6 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
15:35:48.0434 2964 aswRdr - ok
15:35:48.0575 2964 [ 6E98BB288696777A3A8A07A52B0EAEE9 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
15:35:48.0575 2964 aswSnx - ok
15:35:48.0653 2964 [ 7352BB9A564B94BBD7C9CBF165F55006 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
15:35:48.0653 2964 aswTdi - ok
15:35:48.0699 2964 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:35:48.0699 2964 AsyncMac - ok
15:35:48.0793 2964 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
15:35:48.0809 2964 atapi - ok
15:35:48.0871 2964 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:35:48.0871 2964 AudioEndpointBuilder - ok
15:35:48.0933 2964 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:35:48.0933 2964 AudioSrv - ok
15:35:48.0965 2964 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys
15:35:48.0965 2964 Avc - ok
15:35:49.0105 2964 AVG Security Toolbar Service - ok
15:35:49.0199 2964 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
15:35:49.0214 2964 AVGIDSEH - ok
15:35:49.0323 2964 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
15:35:49.0323 2964 Avgtdia - ok
15:35:49.0370 2964 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
15:35:49.0370 2964 avgtp - ok
15:35:49.0479 2964 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
15:35:49.0479 2964 avgwd - ok
15:35:49.0511 2964 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:35:49.0511 2964 AxInstSV - ok
15:35:49.0635 2964 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:35:49.0651 2964 b06bdrv - ok
15:35:49.0713 2964 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:35:49.0713 2964 b57nd60a - ok
15:35:49.0745 2964 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:35:49.0745 2964 BDESVC - ok
15:35:49.0776 2964 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:35:49.0776 2964 Beep - ok
15:35:49.0823 2964 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
15:35:49.0823 2964 BITS - ok
15:35:49.0869 2964 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:35:49.0869 2964 blbdrive - ok
15:35:49.0963 2964 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
15:35:49.0979 2964 Bonjour Service - ok
15:35:50.0025 2964 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:35:50.0025 2964 bowser - ok
15:35:50.0072 2964 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:35:50.0088 2964 BrFiltLo - ok
15:35:50.0103 2964 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:35:50.0103 2964 BrFiltUp - ok
15:35:50.0119 2964 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
15:35:50.0119 2964 Browser - ok
15:35:50.0150 2964 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:35:50.0665 2964 Brserid - ok
15:35:50.0759 2964 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:35:50.0759 2964 BrSerWdm - ok
15:35:50.0774 2964 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:35:50.0774 2964 BrUsbMdm - ok
15:35:50.0790 2964 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:35:50.0790 2964 BrUsbSer - ok
15:35:50.0805 2964 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:35:50.0805 2964 BTHMODEM - ok
15:35:50.0821 2964 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:35:50.0821 2964 bthserv - ok
15:35:50.0852 2964 CAXHWBS2 - ok
15:35:50.0883 2964 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:35:50.0899 2964 cdfs - ok
15:35:50.0930 2964 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:35:50.0930 2964 cdrom - ok
15:35:51.0039 2964 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
15:35:51.0039 2964 CertPropSvc - ok
15:35:51.0055 2964 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:35:51.0055 2964 circlass - ok
15:35:51.0086 2964 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:35:51.0086 2964 CLFS - ok
15:35:51.0273 2964 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:35:51.0585 2964 clr_optimization_v2.0.50727_32 - ok
15:35:51.0944 2964 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:35:51.0960 2964 clr_optimization_v2.0.50727_64 - ok
15:35:52.0319 2964 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:35:52.0443 2964 clr_optimization_v4.0.30319_32 - ok
15:35:52.0568 2964 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:35:52.0568 2964 clr_optimization_v4.0.30319_64 - ok
15:35:52.0646 2964 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:35:52.0662 2964 CmBatt - ok
15:35:52.0677 2964 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
15:35:52.0693 2964 cmdide - ok
15:35:52.0755 2964 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
15:35:52.0787 2964 CNG - ok
15:35:52.0833 2964 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:35:52.0833 2964 Compbatt - ok
15:35:52.0849 2964 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:35:52.0849 2964 CompositeBus - ok
15:35:52.0880 2964 COMSysApp - ok
15:35:52.0911 2964 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:35:52.0911 2964 crcdisk - ok
15:35:53.0005 2964 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:35:53.0021 2964 CryptSvc - ok
15:35:53.0052 2964 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
15:35:53.0052 2964 CSC - ok
15:35:53.0083 2964 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
15:35:53.0083 2964 CscService - ok
15:35:53.0130 2964 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:35:53.0145 2964 DcomLaunch - ok
15:35:53.0286 2964 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:35:53.0301 2964 defragsvc - ok
15:35:53.0364 2964 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:35:53.0364 2964 DfsC - ok
15:35:53.0520 2964 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
15:35:53.0520 2964 Dhcp - ok
15:35:53.0567 2964 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:35:53.0567 2964 discache - ok
15:35:53.0676 2964 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:35:53.0676 2964 Disk - ok
15:35:53.0738 2964 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:35:53.0738 2964 Dnscache - ok
15:35:53.0847 2964 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
15:35:53.0847 2964 dot3svc - ok
15:35:53.0879 2964 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
15:35:53.0894 2964 DPS - ok
15:35:53.0941 2964 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:35:53.0957 2964 drmkaud - ok
15:35:54.0222 2964 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:35:54.0237 2964 DXGKrnl - ok
15:35:54.0315 2964 [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
15:35:54.0315 2964 E1G60 - ok
15:35:54.0331 2964 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:35:54.0347 2964 EapHost - ok
15:35:55.0095 2964 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:35:55.0127 2964 ebdrv - ok
15:35:55.0158 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
15:35:55.0158 2964 EFS - ok
15:35:55.0298 2964 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:35:55.0329 2964 ehRecvr - ok
15:35:55.0361 2964 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:35:55.0376 2964 ehSched - ok
15:35:55.0439 2964 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:35:55.0454 2964 elxstor - ok
15:35:55.0470 2964 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
15:35:55.0470 2964 ErrDev - ok
15:35:55.0548 2964 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:35:55.0548 2964 EventSystem - ok
15:35:55.0641 2964 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:35:55.0641 2964 exfat - ok
15:35:55.0688 2964 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:35:55.0688 2964 fastfat - ok
15:35:55.0719 2964 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
15:35:55.0735 2964 Fax - ok
15:35:55.0735 2964 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:35:55.0735 2964 fdc - ok
15:35:55.0766 2964 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:35:55.0766 2964 fdPHost - ok
15:35:55.0782 2964 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:35:55.0782 2964 FDResPub - ok
15:35:55.0797 2964 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:35:55.0797 2964 FileInfo - ok
15:35:55.0813 2964 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:35:55.0813 2964 Filetrace - ok
15:35:55.0829 2964 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:35:55.0829 2964 flpydisk - ok
15:35:55.0844 2964 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:35:55.0860 2964 FltMgr - ok
15:35:55.0922 2964 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
15:35:55.0953 2964 FontCache - ok
15:35:56.0000 2964 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:35:56.0000 2964 FontCache3.0.0.0 - ok
15:35:56.0031 2964 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:35:56.0031 2964 FsDepends - ok
15:35:56.0063 2964 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:35:56.0063 2964 Fs_Rec - ok
15:35:56.0109 2964 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:35:56.0109 2964 fvevol - ok
15:35:56.0141 2964 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:35:56.0141 2964 gagp30kx - ok
15:35:56.0172 2964 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:35:56.0172 2964 GEARAspiWDM - ok
15:35:56.0234 2964 [ 22B6BE519C112FD9C6ADA3C96B54EC15 ] Generalusbserialser20675 C:\Windows\system32\DRIVERS\CT_U_USBSER.sys
15:35:56.0234 2964 Generalusbserialser20675 - ok
15:35:56.0297 2964 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
15:35:56.0312 2964 gpsvc - ok
15:35:56.0406 2964 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:35:56.0406 2964 gupdate - ok
15:35:56.0453 2964 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:35:56.0453 2964 gupdatem - ok
15:35:56.0499 2964 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:35:56.0499 2964 hcw85cir - ok
15:35:56.0577 2964 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:35:56.0577 2964 HdAudAddService - ok
15:35:56.0624 2964 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:35:56.0624 2964 HDAudBus - ok
15:35:56.0655 2964 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:35:56.0655 2964 HidBatt - ok
15:35:56.0655 2964 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:35:56.0671 2964 HidBth - ok
15:35:56.0671 2964 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:35:56.0671 2964 HidIr - ok
15:35:56.0687 2964 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:35:56.0687 2964 hidserv - ok
15:35:56.0718 2964 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:35:56.0718 2964 HidUsb - ok
15:35:56.0733 2964 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:35:56.0749 2964 hkmsvc - ok
15:35:56.0765 2964 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:35:56.0765 2964 HomeGroupListener - ok
15:35:56.0796 2964 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:35:56.0811 2964 HomeGroupProvider - ok
15:35:56.0811 2964 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
15:35:56.0827 2964 HpSAMD - ok
15:35:56.0827 2964 HSF_DPV - ok
15:35:56.0858 2964 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:35:56.0874 2964 HTTP - ok
15:35:56.0889 2964 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:35:56.0905 2964 hwpolicy - ok
15:35:56.0936 2964 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:35:56.0936 2964 i8042prt - ok
15:35:56.0967 2964 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
15:35:56.0967 2964 iaStorV - ok
15:35:57.0014 2964 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:35:57.0030 2964 idsvc - ok
15:35:57.0061 2964 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:35:57.0061 2964 iirsp - ok
15:35:57.0092 2964 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
15:35:57.0123 2964 IKEEXT - ok
15:35:57.0139 2964 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:35:57.0139 2964 intelide - ok
15:35:57.0155 2964 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:35:57.0155 2964 intelppm - ok
15:35:57.0186 2964 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:35:57.0186 2964 IPBusEnum - ok
15:35:57.0186 2964 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:35:57.0186 2964 IpFilterDriver - ok
15:35:57.0201 2964 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:35:57.0217 2964 IPMIDRV - ok
15:35:57.0217 2964 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:35:57.0217 2964 IPNAT - ok
15:35:57.0326 2964 [ 9B812A3484D89EB934982D67FB7D9313 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:35:57.0342 2964 iPod Service - ok
15:35:57.0357 2964 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:35:57.0357 2964 IRENUM - ok
15:35:57.0389 2964 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
15:35:57.0389 2964 isapnp - ok
15:35:57.0420 2964 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:35:57.0420 2964 iScsiPrt - ok
15:35:57.0451 2964 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:35:57.0451 2964 kbdclass - ok
15:35:57.0467 2964 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:35:57.0467 2964 kbdhid - ok
15:35:57.0482 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
15:35:57.0482 2964 KeyIso - ok
15:35:57.0513 2964 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:35:57.0513 2964 KSecDD - ok
15:35:57.0560 2964 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:35:57.0560 2964 KSecPkg - ok
15:35:57.0576 2964 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:35:57.0576 2964 ksthunk - ok
15:35:57.0607 2964 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:35:57.0623 2964 KtmRm - ok
15:35:57.0654 2964 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:35:57.0669 2964 LanmanServer - ok
15:35:57.0701 2964 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:35:57.0701 2964 LanmanWorkstation - ok
15:35:57.0732 2964 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:35:57.0732 2964 lltdio - ok
15:35:57.0763 2964 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:35:57.0779 2964 lltdsvc - ok
15:35:57.0794 2964 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:35:57.0794 2964 lmhosts - ok
15:35:57.0841 2964 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:35:57.0857 2964 LSI_FC - ok
15:35:57.0872 2964 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:35:57.0872 2964 LSI_SAS - ok
15:35:57.0888 2964 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:35:57.0888 2964 LSI_SAS2 - ok
15:35:57.0903 2964 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:35:57.0903 2964 LSI_SCSI - ok
15:35:57.0919 2964 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:35:57.0919 2964 luafv - ok
15:35:57.0950 2964 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:35:57.0950 2964 Mcx2Svc - ok
15:35:57.0950 2964 mdmxsdk - ok
15:35:57.0966 2964 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:35:57.0966 2964 megasas - ok
15:35:57.0981 2964 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:35:57.0997 2964 MegaSR - ok
15:35:58.0091 2964 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
15:35:58.0091 2964 Microsoft Office Groove Audit Service - ok
15:35:58.0106 2964 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:35:58.0106 2964 MMCSS - ok
15:35:58.0122 2964 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:35:58.0122 2964 Modem - ok
15:35:58.0169 2964 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:35:58.0169 2964 monitor - ok
15:35:58.0231 2964 [ A70BF78713B104C46C4E6E7858B6F02E ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
15:35:58.0231 2964 motccgp - ok
15:35:58.0262 2964 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
15:35:58.0262 2964 motccgpfl - ok
15:35:58.0309 2964 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
15:35:58.0309 2964 motmodem - ok
15:35:58.0434 2964 [ 705568B735847B3304F9602834DEF733 ] MotoHelper C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
15:35:58.0434 2964 MotoHelper - ok
15:35:58.0481 2964 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motport C:\Windows\system32\DRIVERS\motport.sys
15:35:58.0481 2964 motport - ok
15:35:58.0527 2964 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:35:58.0527 2964 mouclass - ok
15:35:58.0543 2964 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:35:58.0543 2964 mouhid - ok
15:35:58.0559 2964 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:35:58.0574 2964 mountmgr - ok
15:35:58.0637 2964 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:35:58.0637 2964 MozillaMaintenance - ok
15:35:58.0652 2964 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
15:35:58.0668 2964 mpio - ok
15:35:58.0683 2964 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:35:58.0683 2964 mpsdrv - ok
15:35:58.0715 2964 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:35:58.0715 2964 MRxDAV - ok
15:35:58.0746 2964 [ B7F3D2C40BDF8FFB73EBFB19C77734E2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:35:58.0761 2964 mrxsmb - ok
15:35:58.0777 2964 [ 86C6F88B5168CE21CF8D69D0B3FF5D19 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:35:58.0793 2964 mrxsmb10 - ok
15:35:58.0824 2964 [ B081069251C8E9F42CB8769D07148F9C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:35:58.0824 2964 mrxsmb20 - ok
15:35:58.0855 2964 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
15:35:58.0871 2964 msahci - ok
15:35:58.0886 2964 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
15:35:58.0886 2964 msdsm - ok
15:35:58.0917 2964 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:35:58.0917 2964 MSDTC - ok
15:35:58.0980 2964 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys
15:35:58.0980 2964 MSDV - ok
15:35:59.0042 2964 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:35:59.0042 2964 Msfs - ok
15:35:59.0073 2964 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:35:59.0089 2964 mshidkmdf - ok
15:35:59.0105 2964 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
15:35:59.0105 2964 msisadrv - ok
15:35:59.0136 2964 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:35:59.0136 2964 MSiSCSI - ok
15:35:59.0151 2964 msiserver - ok
15:35:59.0167 2964 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:35:59.0167 2964 MSKSSRV - ok
15:35:59.0183 2964 MsMpSvc - ok
15:35:59.0198 2964 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:35:59.0198 2964 MSPCLOCK - ok
15:35:59.0214 2964 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:35:59.0214 2964 MSPQM - ok
15:35:59.0245 2964 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:35:59.0245 2964 MsRPC - ok
15:35:59.0261 2964 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:35:59.0261 2964 mssmbios - ok
15:35:59.0276 2964 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:35:59.0276 2964 MSTEE - ok
15:35:59.0307 2964 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:35:59.0307 2964 MTConfig - ok
15:35:59.0323 2964 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:35:59.0323 2964 Mup - ok
15:35:59.0354 2964 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
15:35:59.0370 2964 napagent - ok
15:35:59.0448 2964 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:35:59.0463 2964 NativeWifiP - ok
15:35:59.0573 2964 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
15:35:59.0588 2964 NAUpdate - ok
15:35:59.0635 2964 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
15:35:59.0666 2964 NDIS - ok
15:35:59.0697 2964 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:35:59.0713 2964 NdisCap - ok
15:35:59.0729 2964 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:35:59.0744 2964 NdisTapi - ok
15:35:59.0760 2964 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:35:59.0760 2964 Ndisuio - ok
15:35:59.0775 2964 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:35:59.0775 2964 NdisWan - ok
15:35:59.0791 2964 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:35:59.0791 2964 NDProxy - ok
15:35:59.0807 2964 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:35:59.0807 2964 NetBIOS - ok
15:35:59.0822 2964 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:35:59.0822 2964 NetBT - ok
15:35:59.0838 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
15:35:59.0838 2964 Netlogon - ok
15:35:59.0869 2964 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:35:59.0869 2964 Netman - ok
15:35:59.0916 2964 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:35:59.0916 2964 netprofm - ok
15:35:59.0947 2964 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:35:59.0947 2964 NetTcpPortSharing - ok
15:35:59.0978 2964 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:35:59.0978 2964 nfrd960 - ok
15:36:00.0009 2964 [ 3713E8452B88D3E0BE095E06B6FBC776 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:36:00.0009 2964 NisDrv - ok
15:36:00.0025 2964 NisSrv - ok
15:36:00.0041 2964 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:36:00.0056 2964 NlaSvc - ok
15:36:00.0072 2964 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:36:00.0072 2964 Npfs - ok
15:36:00.0087 2964 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:36:00.0087 2964 nsi - ok
15:36:00.0103 2964 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:36:00.0103 2964 nsiproxy - ok
15:36:00.0243 2964 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:36:00.0306 2964 Ntfs - ok
15:36:00.0337 2964 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:36:00.0337 2964 Null - ok
15:36:00.0914 2964 [ E55CAB397F77D5208DB18A78B1B7C0D5 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:36:00.0992 2964 nvlddmkm - ok
15:36:01.0055 2964 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
15:36:01.0055 2964 nvraid - ok
15:36:01.0070 2964 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
15:36:01.0070 2964 nvstor - ok
15:36:01.0117 2964 [ 43BC8151893AE6AFE42E149D663C2221 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:36:01.0117 2964 nvsvc - ok
15:36:01.0148 2964 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
15:36:01.0148 2964 nv_agp - ok
15:36:01.0335 2964 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:36:01.0351 2964 odserv - ok
15:36:01.0382 2964 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:36:01.0382 2964 ohci1394 - ok
15:36:01.0429 2964 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:36:01.0429 2964 ose - ok
15:36:01.0460 2964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:36:01.0476 2964 p2pimsvc - ok
15:36:01.0523 2964 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:36:01.0554 2964 p2psvc - ok
15:36:01.0632 2964 [ 3A6DCEB1848470320E4A3C12D7A35B1C ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
15:36:01.0663 2964 PAC207 - ok
15:36:01.0679 2964 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:36:01.0679 2964 Parport - ok
15:36:01.0694 2964 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:36:01.0710 2964 partmgr - ok
15:36:01.0725 2964 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:36:01.0725 2964 PcaSvc - ok
15:36:01.0757 2964 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
15:36:01.0757 2964 pci - ok
15:36:01.0757 2964 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
15:36:01.0772 2964 pciide - ok
15:36:01.0788 2964 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:36:01.0788 2964 pcmcia - ok
15:36:01.0803 2964 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:36:01.0803 2964 pcw - ok
15:36:01.0835 2964 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:36:01.0835 2964 PEAUTH - ok
15:36:01.0897 2964 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:36:01.0928 2964 PeerDistSvc - ok
15:36:02.0006 2964 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:36:02.0006 2964 PerfHost - ok
15:36:02.0069 2964 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
15:36:02.0100 2964 pla - ok
15:36:02.0162 2964 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:36:02.0178 2964 PlugPlay - ok
15:36:02.0193 2964 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:36:02.0209 2964 PNRPAutoReg - ok
15:36:02.0256 2964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:36:02.0256 2964 PNRPsvc - ok
15:36:02.0381 2964 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:36:02.0396 2964 PolicyAgent - ok
15:36:02.0427 2964 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:36:02.0427 2964 Power - ok
15:36:02.0474 2964 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:36:02.0474 2964 PptpMiniport - ok
15:36:02.0505 2964 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:36:02.0505 2964 Processor - ok
15:36:02.0537 2964 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
15:36:02.0552 2964 ProfSvc - ok
15:36:02.0568 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
15:36:02.0568 2964 ProtectedStorage - ok
15:36:02.0583 2964 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:36:02.0583 2964 Psched - ok
15:36:02.0646 2964 [ 452C20382DF763F966C12DC48259F34E ] PTUMWBus C:\Windows\system32\DRIVERS\PTUMWBus.sys
15:36:02.0661 2964 PTUMWBus - ok
15:36:02.0677 2964 [ 3754C646BBDAEDAFC09F793C6B38E877 ] PTUMWCDF C:\Windows\system32\DRIVERS\PTUMWCDF.sys
15:36:02.0677 2964 PTUMWCDF - ok
15:36:02.0693 2964 [ AC86BB916FBEA16B0005EFC3BA3ADB58 ] PTUMWFLT C:\Windows\system32\DRIVERS\PTUMWFLT.sys
15:36:02.0708 2964 PTUMWFLT - ok
15:36:02.0708 2964 [ CB146794BC3B96661A32CBD68673B479 ] PTUMWMdm C:\Windows\system32\DRIVERS\PTUMWMdm.sys
15:36:02.0724 2964 PTUMWMdm - ok
15:36:02.0739 2964 [ 329E77868A92BB6F97C119050D97E9EC ] PTUMWNET C:\Windows\system32\DRIVERS\PTUMWNET.sys
15:36:02.0739 2964 PTUMWNET - ok
15:36:02.0755 2964 [ 4FFD7E6D2CB293849C1181D08717EA09 ] PTUMWVsp C:\Windows\system32\DRIVERS\PTUMWVsp.sys
15:36:02.0755 2964 PTUMWVsp - ok
15:36:02.0786 2964 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
15:36:02.0802 2964 PxHlpa64 - ok
15:36:03.0098 2964 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:36:03.0129 2964 ql2300 - ok
15:36:03.0145 2964 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:36:03.0145 2964 ql40xx - ok
15:36:03.0207 2964 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:36:03.0223 2964 QWAVE - ok
15:36:03.0223 2964 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:36:03.0239 2964 QWAVEdrv - ok
15:36:03.0254 2964 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:36:03.0254 2964 RasAcd - ok
15:36:03.0285 2964 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:36:03.0285 2964 RasAgileVpn - ok
15:36:03.0301 2964 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:36:03.0317 2964 RasAuto - ok
15:36:03.0332 2964 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:36:03.0332 2964 Rasl2tp - ok
15:36:03.0395 2964 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
15:36:03.0410 2964 RasMan - ok
15:36:03.0426 2964 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:36:03.0426 2964 RasPppoe - ok
15:36:03.0441 2964 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:36:03.0441 2964 RasSstp - ok
15:36:03.0488 2964 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:36:03.0488 2964 rdbss - ok
15:36:03.0519 2964 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:36:03.0519 2964 rdpbus - ok
15:36:03.0535 2964 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:36:03.0535 2964 RDPCDD - ok
15:36:03.0597 2964 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:36:03.0613 2964 RDPDR - ok
15:36:03.0660 2964 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:36:03.0660 2964 RDPENCDD - ok
15:36:03.0691 2964 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:36:03.0691 2964 RDPREFMP - ok
15:36:03.0707 2964 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:36:03.0722 2964 RDPWD - ok
15:36:03.0753 2964 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:36:03.0753 2964 rdyboost - ok
15:36:03.0800 2964 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:36:03.0816 2964 RemoteAccess - ok
15:36:03.0847 2964 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:36:03.0863 2964 RemoteRegistry - ok
15:36:03.0878 2964 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:36:03.0878 2964 RpcEptMapper - ok
15:36:03.0894 2964 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:36:03.0894 2964 RpcLocator - ok
15:36:03.0956 2964 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
15:36:03.0956 2964 RpcSs - ok
15:36:04.0003 2964 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:36:04.0003 2964 rspndr - ok
15:36:04.0034 2964 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
15:36:04.0034 2964 s3cap - ok
15:36:04.0050 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
15:36:04.0050 2964 SamSs - ok
15:36:04.0065 2964 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
15:36:04.0065 2964 sbp2port - ok
15:36:04.0237 2964 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
15:36:04.0284 2964 SBSDWSCService - ok
15:36:04.0315 2964 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:36:04.0315 2964 SCardSvr - ok
15:36:04.0346 2964 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:36:04.0362 2964 scfilter - ok
15:36:04.0409 2964 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
15:36:04.0424 2964 Schedule - ok
15:36:04.0455 2964 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:36:04.0455 2964 SCPolicySvc - ok
15:36:04.0471 2964 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:36:04.0487 2964 SDRSVC - ok
15:36:04.0502 2964 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:36:04.0502 2964 secdrv - ok
15:36:04.0518 2964 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
15:36:04.0518 2964 seclogon - ok
15:36:04.0533 2964 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:36:04.0533 2964 SENS - ok
15:36:04.0565 2964 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:36:04.0565 2964 SensrSvc - ok
15:36:04.0596 2964 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:36:04.0596 2964 Serenum - ok
15:36:04.0596 2964 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:36:04.0611 2964 Serial - ok
15:36:04.0627 2964 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:36:04.0643 2964 sermouse - ok
15:36:04.0705 2964 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
15:36:04.0721 2964 SessionEnv - ok
15:36:04.0752 2964 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
15:36:04.0752 2964 sffdisk - ok
15:36:04.0767 2964 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:36:04.0783 2964 sffp_mmc - ok
15:36:04.0814 2964 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
15:36:04.0814 2964 sffp_sd - ok
15:36:04.0830 2964 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:36:04.0830 2964 sfloppy - ok
15:36:04.0877 2964 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:36:04.0877 2964 SharedAccess - ok
15:36:04.0908 2964 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:36:04.0908 2964 ShellHWDetection - ok
15:36:04.0939 2964 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:36:04.0939 2964 SiSRaid2 - ok
15:36:04.0955 2964 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:36:04.0955 2964 SiSRaid4 - ok
15:36:04.0970 2964 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:36:04.0970 2964 Smb - ok
15:36:05.0001 2964 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:36:05.0001 2964 SNMPTRAP - ok
15:36:05.0017 2964 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:36:05.0017 2964 spldr - ok
15:36:05.0142 2964 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
15:36:05.0142 2964 Spooler - ok
15:36:05.0516 2964 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
15:36:05.0547 2964 sppsvc - ok
15:36:05.0579 2964 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:36:05.0594 2964 sppuinotify - ok
15:36:05.0625 2964 [ 148D50904D2A0DF29A19778715EB35BB ] srv C:\Windows\system32\DRIVERS\srv.sys
15:36:05.0641 2964 srv - ok
15:36:05.0672 2964 [ CE2189FE31D36678AC9EB7DDEE08EC96 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:36:05.0672 2964 srv2 - ok
15:36:05.0735 2964 [ 93132C69394A99D992095D8CFE464801 ] SrvHsfPCI C:\Windows\system32\DRIVERS\VSTBS26.SYS
15:36:05.0735 2964 SrvHsfPCI - ok
15:36:05.0781 2964 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:36:05.0797 2964 SrvHsfV92 - ok
15:36:05.0875 2964 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:36:05.0875 2964 SrvHsfWinac - ok
15:36:05.0937 2964 [ CB69EDEB069A49577592835659CD0E46 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:36:05.0953 2964 srvnet - ok
15:36:06.0015 2964 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:36:06.0015 2964 SSDPSRV - ok
15:36:06.0031 2964 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:36:06.0047 2964 SstpSvc - ok
15:36:06.0078 2964 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:36:06.0078 2964 stexstor - ok
15:36:06.0109 2964 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
15:36:06.0125 2964 stisvc - ok
15:36:06.0140 2964 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
15:36:06.0156 2964 storflt - ok
15:36:06.0171 2964 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
15:36:06.0171 2964 storvsc - ok
15:36:06.0187 2964 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:36:06.0187 2964 swenum - ok
15:36:06.0296 2964 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:36:06.0312 2964 SwitchBoard - ok
15:36:06.0405 2964 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:36:06.0437 2964 swprv - ok
15:36:06.0483 2964 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
15:36:06.0499 2964 SysMain - ok
15:36:06.0515 2964 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:36:06.0530 2964 TabletInputService - ok
15:36:06.0561 2964 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
15:36:06.0577 2964 TapiSrv - ok
15:36:06.0608 2964 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:36:06.0624 2964 TBS - ok
15:36:06.0702 2964 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:36:06.0749 2964 Tcpip - ok
15:36:06.0827 2964 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:36:06.0842 2964 TCPIP6 - ok
15:36:06.0889 2964 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:36:06.0889 2964 tcpipreg - ok
15:36:06.0905 2964 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:36:06.0920 2964 TDPIPE - ok
15:36:06.0936 2964 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:36:06.0936 2964 TDTCP - ok
15:36:06.0967 2964 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:36:06.0967 2964 tdx - ok
15:36:06.0983 2964 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:36:06.0983 2964 TermDD - ok
15:36:07.0029 2964 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
15:36:07.0076 2964 TermService - ok
15:36:07.0092 2964 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:36:07.0107 2964 Themes - ok
15:36:07.0139 2964 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:36:07.0154 2964 THREADORDER - ok
15:36:07.0185 2964 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:36:07.0185 2964 TrkWks - ok
15:36:07.0279 2964 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:36:07.0295 2964 TrustedInstaller - ok
15:36:07.0326 2964 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:36:07.0341 2964 tssecsrv - ok
15:36:07.0373 2964 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:36:07.0373 2964 tunnel - ok
15:36:07.0388 2964 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:36:07.0388 2964 uagp35 - ok
15:36:07.0404 2964 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:36:07.0404 2964 udfs - ok
15:36:07.0482 2964 [ 54A4A93A984E5C30B5CAB9257A0A05BF ] UDisk Monitor C:\Program Files (x86)\Froyo_Android_Driver\Bin\MonServiceUDisk.exe
15:36:07.0482 2964 UDisk Monitor - ok
15:36:07.0513 2964 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:36:07.0513 2964 UI0Detect - ok
15:36:07.0529 2964 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
15:36:07.0529 2964 uliagpkx - ok
15:36:07.0544 2964 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:36:07.0544 2964 umbus - ok
15:36:07.0544 2964 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:36:07.0544 2964 UmPass - ok
15:36:07.0575 2964 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
15:36:07.0575 2964 UmRdpService - ok
15:36:07.0591 2964 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:36:07.0622 2964 upnphost - ok
15:36:07.0653 2964 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:36:07.0653 2964 USBAAPL64 - ok
15:36:07.0700 2964 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:36:07.0700 2964 usbaudio - ok
15:36:07.0747 2964 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:36:07.0747 2964 usbccgp - ok
15:36:07.0763 2964 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
15:36:07.0778 2964 usbcir - ok
15:36:07.0825 2964 [ DF9F9AFC9AAABD8ED47975D44E38169A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:36:07.0825 2964 usbehci - ok
15:36:07.0856 2964 [ 372A91BC3C6603080A793880B0873785 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:36:07.0856 2964 usbhub - ok
15:36:07.0872 2964 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:36:07.0872 2964 usbohci - ok
15:36:07.0903 2964 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:36:07.0903 2964 usbprint - ok
15:36:07.0934 2964 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:36:07.0934 2964 usbscan - ok
15:36:07.0965 2964 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:36:07.0965 2964 USBSTOR - ok
15:36:07.0981 2964 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:36:07.0981 2964 usbuhci - ok
15:36:08.0028 2964 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:36:08.0043 2964 usbvideo - ok
15:36:08.0075 2964 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:36:08.0075 2964 UxSms - ok
15:36:08.0090 2964 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
15:36:08.0090 2964 VaultSvc - ok
15:36:08.0106 2964 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
15:36:08.0106 2964 vdrvroot - ok
15:36:08.0137 2964 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
15:36:08.0153 2964 vds - ok
15:36:08.0184 2964 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:36:08.0184 2964 vga - ok
15:36:08.0199 2964 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:36:08.0199 2964 VgaSave - ok
15:36:08.0215 2964 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
15:36:08.0215 2964 vhdmp - ok
15:36:08.0231 2964 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
15:36:08.0231 2964 viaide - ok
15:36:08.0246 2964 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
15:36:08.0246 2964 vmbus - ok
15:36:08.0293 2964 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
15:36:08.0293 2964 VMBusHID - ok
15:36:08.0309 2964 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
15:36:08.0309 2964 volmgr - ok
15:36:08.0324 2964 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:36:08.0340 2964 volmgrx - ok
15:36:08.0355 2964 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
15:36:08.0355 2964 volsnap - ok
15:36:08.0387 2964 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:36:08.0387 2964 vsmraid - ok
15:36:08.0433 2964 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
15:36:08.0480 2964 VSS - ok
15:36:08.0605 2964 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
15:36:08.0621 2964 vToolbarUpdater12.2.6 - ok
15:36:08.0652 2964 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:36:08.0667 2964 vwifibus - ok
15:36:08.0699 2964 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:36:08.0714 2964 W32Time - ok
15:36:08.0730 2964 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:36:08.0745 2964 WacomPen - ok
15:36:08.0761 2964 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:36:08.0777 2964 WANARP - ok
15:36:08.0792 2964 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:36:08.0792 2964 Wanarpv6 - ok
15:36:08.0823 2964 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
15:36:08.0870 2964 wbengine - ok
15:36:08.0886 2964 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:36:08.0901 2964 WbioSrvc - ok
15:36:08.0933 2964 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:36:08.0948 2964 wcncsvc - ok
15:36:08.0964 2964 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:36:08.0964 2964 WcsPlugInService - ok
15:36:09.0011 2964 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:36:09.0026 2964 Wd - ok
15:36:09.0057 2964 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:36:09.0089 2964 Wdf01000 - ok
15:36:09.0104 2964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:36:09.0104 2964 WdiServiceHost - ok
15:36:09.0104 2964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:36:09.0120 2964 WdiSystemHost - ok
15:36:09.0167 2964 Web Assistant Updater - ok
15:36:09.0198 2964 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
15:36:09.0213 2964 WebClient - ok
15:36:09.0229 2964 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:36:09.0245 2964 Wecsvc - ok
15:36:09.0260 2964 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:36:09.0260 2964 wercplsupport - ok
15:36:09.0291 2964 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:36:09.0291 2964 WerSvc - ok
15:36:09.0323 2964 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:36:09.0323 2964 WfpLwf - ok
15:36:09.0338 2964 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:36:09.0338 2964 WIMMount - ok
15:36:09.0354 2964 winachsf - ok
15:36:09.0354 2964 WinHttpAutoProxySvc - ok
15:36:09.0416 2964 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:36:09.0432 2964 Winmgmt - ok
15:36:09.0510 2964 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
15:36:09.0557 2964 WinRM - ok
15:36:09.0619 2964 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:36:09.0619 2964 WinUsb - ok
15:36:09.0666 2964 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:36:09.0681 2964 Wlansvc - ok
15:36:09.0806 2964 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:36:09.0822 2964 wlidsvc - ok
15:36:09.0853 2964 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:36:09.0853 2964 WmiAcpi - ok
15:36:09.0900 2964 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:36:09.0900 2964 wmiApSrv - ok
15:36:09.0915 2964 WMPNetworkSvc - ok
15:36:09.0947 2964 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:36:09.0947 2964 WPCSvc - ok
15:36:09.0962 2964 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:36:09.0962 2964 WPDBusEnum - ok
15:36:09.0978 2964 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:36:09.0978 2964 ws2ifsl - ok
15:36:09.0993 2964 WSearch - ok
15:36:10.0071 2964 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
15:36:10.0149 2964 wuauserv - ok
15:36:10.0181 2964 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:36:10.0181 2964 WudfPf - ok
15:36:10.0243 2964 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:36:10.0243 2964 WUDFRd - ok
15:36:10.0259 2964 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:36:10.0259 2964 wudfsvc - ok
15:36:10.0274 2964 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:36:10.0290 2964 WwanSvc - ok
15:36:10.0337 2964 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
15:36:10.0352 2964 yukonw7 - ok
15:36:10.0383 2964 ================ Scan global ===============================
15:36:10.0415 2964 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:36:10.0446 2964 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
15:36:10.0461 2964 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
15:36:10.0508 2964 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:36:10.0571 2964 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:36:10.0586 2964 [Global] - ok
15:36:10.0586 2964 ================ Scan MBR ==================================
15:36:10.0602 2964 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:36:10.0867 2964 \Device\Harddisk0\DR0 - ok
15:36:10.0867 2964 ================ Scan VBR ==================================
15:36:10.0867 2964 [ 644091CFCAA7084E0C1815B75D7DAA5B ] \Device\Harddisk0\DR0\Partition1
15:36:10.0867 2964 \Device\Harddisk0\DR0\Partition1 - ok
15:36:10.0898 2964 [ 12B0269A1E7D7319523822160E4DF231 ] \Device\Harddisk0\DR0\Partition2
15:36:10.0914 2964 \Device\Harddisk0\DR0\Partition2 - ok
15:36:10.0914 2964 ============================================================
15:36:10.0914 2964 Scan finished
15:36:10.0914 2964 ============================================================
15:36:10.0929 2840 Detected object count: 0
15:36:10.0929 2840 Actual detected object count: 0
15:36:32.0582 3980 ============================================================
15:36:32.0582 3980 Scan started
15:36:32.0582 3980 Mode: Manual; TDLFS;
15:36:32.0582 3980 ============================================================
15:36:33.0284 3980 ================ Scan system memory ========================
15:36:33.0284 3980 System memory - ok
15:36:33.0284 3980 ================ Scan services =============================
15:36:33.0409 3980 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
15:36:33.0425 3980 1394ohci - ok
15:36:33.0456 3980 [ E0A8525A951ADDB4655BC2068566407D ] 61883 C:\Windows\system32\DRIVERS\61883.sys
15:36:33.0456 3980 61883 - ok
15:36:33.0487 3980 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
15:36:33.0487 3980 ACPI - ok
15:36:33.0503 3980 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
15:36:33.0503 3980 AcpiPmi - ok
15:36:33.0612 3980 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:36:33.0612 3980 AdobeARMservice - ok
15:36:33.0721 3980 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:36:33.0737 3980 AdobeFlashPlayerUpdateSvc - ok
15:36:33.0768 3980 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:36:33.0783 3980 adp94xx - ok
15:36:33.0799 3980 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:36:33.0799 3980 adpahci - ok
15:36:33.0815 3980 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:36:33.0815 3980 adpu320 - ok
15:36:33.0846 3980 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:36:33.0846 3980 AeLookupSvc - ok
15:36:33.0877 3980 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
15:36:33.0877 3980 AFD - ok
15:36:33.0893 3980 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
15:36:33.0893 3980 agp440 - ok
15:36:33.0908 3980 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:36:33.0908 3980 ALG - ok
15:36:33.0908 3980 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
15:36:33.0924 3980 aliide - ok
15:36:33.0924 3980 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
15:36:33.0924 3980 amdide - ok
15:36:33.0939 3980 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:36:33.0939 3980 AmdK8 - ok
15:36:33.0955 3980 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:36:33.0955 3980 AmdPPM - ok
15:36:33.0971 3980 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
15:36:33.0971 3980 amdsata - ok
15:36:33.0971 3980 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:36:33.0971 3980 amdsbs - ok
15:36:33.0986 3980 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
15:36:33.0986 3980 amdxata - ok
15:36:34.0002 3980 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
15:36:34.0002 3980 AppID - ok
15:36:34.0017 3980 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:36:34.0017 3980 AppIDSvc - ok
15:36:34.0033 3980 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
15:36:34.0033 3980 Appinfo - ok
15:36:34.0080 3980 [ 018857EAD9A077A56AEDFC0E5EF7A24A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:36:34.0080 3980 Apple Mobile Device - ok
15:36:34.0095 3980 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:36:34.0095 3980 AppMgmt - ok
15:36:34.0111 3980 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:36:34.0111 3980 arc - ok
15:36:34.0127 3980 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:36:34.0127 3980 arcsas - ok
15:36:34.0158 3980 [ 21C9835D0E5AD2FF0F16134BCB32CC71 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
15:36:34.0173 3980 aswMonFlt - ok
15:36:34.0205 3980 [ 1B96A5867ABD4FA6135D8298FCCCF9C6 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
15:36:34.0205 3980 aswRdr - ok
15:36:34.0236 3980 [ 6E98BB288696777A3A8A07A52B0EAEE9 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
15:36:34.0251 3980 aswSnx - ok
15:36:34.0298 3980 [ 7352BB9A564B94BBD7C9CBF165F55006 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
15:36:34.0298 3980 aswTdi - ok
15:36:34.0314 3980 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:36:34.0314 3980 AsyncMac - ok
15:36:34.0314 3980 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
15:36:34.0314 3980 atapi - ok
15:36:34.0361 3980 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:36:34.0361 3980 AudioEndpointBuilder - ok
15:36:34.0376 3980 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:36:34.0392 3980 AudioSrv - ok
15:36:34.0407 3980 [ 16FABE84916623D0607E4A975544032C ] Avc C:\Windows\system32\DRIVERS\avc.sys
15:36:34.0407 3980 Avc - ok
15:36:34.0454 3980 AVG Security Toolbar Service - ok
15:36:34.0470 3980 [ 1553B388E0F0462C25AD8F30C3C29E83 ] AVGIDSEH C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
15:36:34.0485 3980 AVGIDSEH - ok
15:36:34.0517 3980 [ 0D49ADCEBE243B79366EA523B647519A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
15:36:34.0532 3980 Avgtdia - ok
15:36:34.0595 3980 [ A313C4AE276E3C975A1BC27170AA23C6 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
15:36:34.0595 3980 avgtp - ok
15:36:34.0641 3980 [ FC2BC51120A945F7C70376495E4E7737 ] avgwd C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
15:36:34.0641 3980 avgwd - ok
15:36:34.0673 3980 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:36:34.0673 3980 AxInstSV - ok
15:36:34.0719 3980 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:36:34.0719 3980 b06bdrv - ok
15:36:34.0766 3980 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:36:34.0766 3980 b57nd60a - ok
15:36:34.0797 3980 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:36:34.0797 3980 BDESVC - ok
15:36:34.0813 3980 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:36:34.0813 3980 Beep - ok
15:36:34.0860 3980 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
15:36:34.0875 3980 BITS - ok
15:36:34.0891 3980 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:36:34.0891 3980 blbdrive - ok
15:36:34.0953 3980 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
15:36:34.0953 3980 Bonjour Service - ok
15:36:34.0985 3980 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:36:34.0985 3980 bowser - ok
15:36:35.0000 3980 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:36:35.0000 3980 BrFiltLo - ok
15:36:35.0016 3980 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:36:35.0016 3980 BrFiltUp - ok
15:36:35.0047 3980 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
15:36:35.0047 3980 Browser - ok
15:36:35.0063 3980 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:36:35.0063 3980 Brserid - ok
15:36:35.0078 3980 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:36:35.0078 3980 BrSerWdm - ok
15:36:35.0078 3980 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:36:35.0078 3980 BrUsbMdm - ok
15:36:35.0094 3980 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:36:35.0094 3980 BrUsbSer - ok
15:36:35.0094 3980 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:36:35.0109 3980 BTHMODEM - ok
15:36:35.0125 3980 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:36:35.0125 3980 bthserv - ok
15:36:35.0125 3980 CAXHWBS2 - ok
15:36:35.0156 3980 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:36:35.0156 3980 cdfs - ok
15:36:35.0203 3980 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:36:35.0203 3980 cdrom - ok
15:36:35.0219 3980 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
15:36:35.0219 3980 CertPropSvc - ok
15:36:35.0234 3980 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:36:35.0234 3980 circlass - ok
15:36:35.0250 3980 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:36:35.0265 3980 CLFS - ok
15:36:35.0312 3980 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:36:35.0312 3980 clr_optimization_v2.0.50727_32 - ok
15:36:35.0359 3980 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:36:35.0359 3980 clr_optimization_v2.0.50727_64 - ok
15:36:35.0421 3980 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:36:35.0421 3980 clr_optimization_v4.0.30319_32 - ok
15:36:35.0484 3980 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:36:35.0484 3980 clr_optimization_v4.0.30319_64 - ok
15:36:35.0531 3980 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:36:35.0531 3980 CmBatt - ok
15:36:35.0546 3980 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
15:36:35.0546 3980 cmdide - ok
15:36:35.0593 3980 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
15:36:35.0593 3980 CNG - ok
15:36:35.0609 3980 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:36:35.0609 3980 Compbatt - ok
15:36:35.0624 3980 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:36:35.0624 3980 CompositeBus - ok
15:36:35.0640 3980 COMSysApp - ok
15:36:35.0655 3980 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:36:35.0655 3980 crcdisk - ok
15:36:35.0687 3980 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:36:35.0687 3980 CryptSvc - ok
15:36:35.0718 3980 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
15:36:35.0718 3980 CSC - ok
15:36:35.0733 3980 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
15:36:35.0749 3980 CscService - ok
15:36:35.0780 3980 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:36:35.0796 3980 DcomLaunch - ok
15:36:35.0827 3980 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:36:35.0827 3980 defragsvc - ok
15:36:35.0843 3980 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:36:35.0843 3980 DfsC - ok
15:36:35.0858 3980 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
15:36:35.0858 3980 Dhcp - ok
15:36:35.0874 3980 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:36:35.0874 3980 discache - ok
15:36:35.0889 3980 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:36:35.0889 3980 Disk - ok
15:36:35.0921 3980 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:36:35.0936 3980 Dnscache - ok
15:36:35.0952 3980 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
15:36:35.0952 3980 dot3svc - ok
15:36:35.0967 3980 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
15:36:35.0967 3980 DPS - ok
15:36:35.0999 3980 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:36:35.0999 3980 drmkaud - ok
15:36:36.0045 3980 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:36:36.0045 3980 DXGKrnl - ok
15:36:36.0061 3980 [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
15:36:36.0077 3980 E1G60 - ok
15:36:36.0092 3980 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:36:36.0108 3980 EapHost - ok
15:36:36.0217 3980 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:36:36.0264 3980 ebdrv - ok
15:36:36.0279 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
15:36:36.0279 3980 EFS - ok
15:36:36.0342 3980 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:36:36.0342 3980 ehRecvr - ok
15:36:36.0373 3980 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:36:36.0373 3980 ehSched - ok
15:36:36.0389 3980 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:36:36.0389 3980 elxstor - ok
15:36:36.0404 3980 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
15:36:36.0404 3980 ErrDev - ok
15:36:36.0435 3980 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:36:36.0435 3980 EventSystem - ok
15:36:36.0451 3980 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:36:36.0451 3980 exfat - ok
15:36:36.0467 3980 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:36:36.0482 3980 fastfat - ok
15:36:36.0513 3980 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
15:36:36.0513 3980 Fax - ok
15:36:36.0513 3980 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:36:36.0513 3980 fdc - ok
15:36:36.0529 3980 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:36:36.0529 3980 fdPHost - ok
15:36:36.0545 3980 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:36:36.0545 3980 FDResPub - ok
15:36:36.0560 3980 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:36:36.0560 3980 FileInfo - ok
15:36:36.0576 3980 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:36:36.0576 3980 Filetrace - ok
15:36:36.0591 3980 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:36:36.0591 3980 flpydisk - ok
15:36:36.0623 3980 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:36:36.0623 3980 FltMgr - ok
15:36:36.0685 3980 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
15:36:36.0701 3980 FontCache - ok
15:36:36.0747 3980 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:36:36.0747 3980 FontCache3.0.0.0 - ok
15:36:36.0779 3980 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:36:36.0779 3980 FsDepends - ok
15:36:36.0794 3980 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:36:36.0794 3980 Fs_Rec - ok
15:36:36.0841 3980 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:36:36.0841 3980 fvevol - ok
15:36:36.0857 3980 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:36:36.0857 3980 gagp30kx - ok
15:36:36.0903 3980 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:36:36.0903 3980 GEARAspiWDM - ok
15:36:36.0935 3980 [ 22B6BE519C112FD9C6ADA3C96B54EC15 ] Generalusbserialser20675 C:\Windows\system32\DRIVERS\CT_U_USBSER.sys
15:36:36.0935 3980 Generalusbserialser20675 - ok
15:36:36.0981 3980 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
15:36:36.0981 3980 gpsvc - ok
15:36:37.0075 3980 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:36:37.0075 3980 gupdate - ok
15:36:37.0091 3980 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:36:37.0106 3980 gupdatem - ok
15:36:37.0137 3980 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:36:37.0137 3980 hcw85cir - ok
15:36:37.0184 3980 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:36:37.0200 3980 HdAudAddService - ok
15:36:37.0215 3980 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:36:37.0215 3980 HDAudBus - ok
15:36:37.0231 3980 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:36:37.0231 3980 HidBatt - ok
15:36:37.0231 3980 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:36:37.0231 3980 HidBth - ok
15:36:37.0262 3980 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:36:37.0262 3980 HidIr - ok
15:36:37.0278 3980 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:36:37.0278 3980 hidserv - ok
15:36:37.0293 3980 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:36:37.0293 3980 HidUsb - ok
15:36:37.0309 3980 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:36:37.0325 3980 hkmsvc - ok
15:36:37.0340 3980 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:36:37.0340 3980 HomeGroupListener - ok
15:36:37.0371 3980 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:36:37.0387 3980 HomeGroupProvider - ok
15:36:37.0403 3980 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
15:36:37.0403 3980 HpSAMD - ok
15:36:37.0403 3980 HSF_DPV - ok
15:36:37.0434 3980 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:36:37.0449 3980 HTTP - ok
15:36:37.0465 3980 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:36:37.0465 3980 hwpolicy - ok
15:36:37.0481 3980 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:36:37.0481 3980 i8042prt - ok
15:36:37.0512 3980 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
15:36:37.0512 3980 iaStorV - ok
15:36:37.0543 3980 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:36:37.0559 3980 idsvc - ok
15:36:37.0574 3980 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:36:37.0574 3980 iirsp - ok
15:36:37.0605 3980 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
15:36:37.0621 3980 IKEEXT - ok
15:36:37.0668 3980 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:36:37.0668 3980 intelide - ok
15:36:37.0683 3980 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:36:37.0683 3980 intelppm - ok
15:36:37.0699 3980 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:36:37.0699 3980 IPBusEnum - ok
15:36:37.0715 3980 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:36:37.0715 3980 IpFilterDriver - ok
15:36:37.0730 3980 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
15:36:37.0730 3980 IPMIDRV - ok
15:36:37.0730 3980 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:36:37.0730 3980 IPNAT - ok
15:36:37.0808 3980 [ 9B812A3484D89EB934982D67FB7D9313 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:36:37.0824 3980 iPod Service - ok
15:36:37.0839 3980 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:36:37.0839 3980 IRENUM - ok
15:36:37.0855 3980 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
15:36:37.0871 3980 isapnp - ok
15:36:37.0902 3980 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:36:37.0902 3980 iScsiPrt - ok
15:36:37.0933 3980 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:36:37.0933 3980 kbdclass - ok
15:36:37.0949 3980 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:36:37.0949 3980 kbdhid - ok
15:36:37.0964 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
15:36:37.0964 3980 KeyIso - ok
15:36:37.0980 3980 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:36:37.0980 3980 KSecDD - ok
15:36:38.0011 3980 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:36:38.0027 3980 KSecPkg - ok
15:36:38.0027 3980 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:36:38.0027 3980 ksthunk - ok
15:36:38.0058 3980 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:36:38.0073 3980 KtmRm - ok
15:36:38.0105 3980 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:36:38.0105 3980 LanmanServer - ok
15:36:38.0136 3980 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:36:38.0151 3980 LanmanWorkstation - ok
15:36:38.0167 3980 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:36:38.0167 3980 lltdio - ok
15:36:38.0198 3980 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:36:38.0198 3980 lltdsvc - ok
15:36:38.0214 3980 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:36:38.0214 3980 lmhosts - ok
15:36:38.0245 3980 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:36:38.0245 3980 LSI_FC - ok
15:36:38.0261 3980 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:36:38.0261 3980 LSI_SAS - ok
15:36:38.0276 3980 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:36:38.0276 3980 LSI_SAS2 - ok
15:36:38.0307 3980 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:36:38.0307 3980 LSI_SCSI - ok
15:36:38.0323 3980 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:36:38.0323 3980 luafv - ok
15:36:38.0339 3980 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:36:38.0339 3980 Mcx2Svc - ok
15:36:38.0339 3980 mdmxsdk - ok
15:36:38.0354 3980 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:36:38.0354 3980 megasas - ok
15:36:38.0385 3980 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:36:38.0385 3980 MegaSR - ok
15:36:38.0448 3980 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
15:36:38.0448 3980 Microsoft Office Groove Audit Service - ok
15:36:38.0495 3980 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:36:38.0495 3980 MMCSS - ok
15:36:38.0526 3980 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:36:38.0526 3980 Modem - ok
15:36:38.0573 3980 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:36:38.0573 3980 monitor - ok
15:36:38.0619 3980 [ A70BF78713B104C46C4E6E7858B6F02E ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys
15:36:38.0619 3980 motccgp - ok
15:36:38.0635 3980 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys
15:36:38.0635 3980 motccgpfl - ok
15:36:38.0666 3980 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys
15:36:38.0666 3980 motmodem - ok
15:36:38.0744 3980 [ 705568B735847B3304F9602834DEF733 ] MotoHelper C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
15:36:38.0744 3980 MotoHelper - ok
15:36:38.0775 3980 [ 6CBC0F4005593C96C9AECAD39F0690FC ] motport C:\Windows\system32\DRIVERS\motport.sys
15:36:38.0775 3980 motport - ok
15:36:38.0807 3980 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:36:38.0807 3980 mouclass - ok
15:36:38.0807 3980 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:36:38.0822 3980 mouhid - ok
15:36:38.0822 3980 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:36:38.0822 3980 mountmgr - ok
15:36:38.0869 3980 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:36:38.0869 3980 MozillaMaintenance - ok
15:36:38.0885 3980 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
15:36:38.0900 3980 mpio - ok
15:36:38.0931 3980 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:36:38.0931 3980 mpsdrv - ok
15:36:38.0947 3980 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:36:38.0947 3980 MRxDAV - ok
15:36:38.0994 3980 [ B7F3D2C40BDF8FFB73EBFB19C77734E2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:36:38.0994 3980 mrxsmb - ok
15:36:39.0041 3980 [ 86C6F88B5168CE21CF8D69D0B3FF5D19 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:36:39.0056 3980 mrxsmb10 - ok
15:36:39.0103 3980 [ B081069251C8E9F42CB8769D07148F9C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:36:39.0103 3980 mrxsmb20 - ok
15:36:39.0134 3980 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
15:36:39.0134 3980 msahci - ok
15:36:39.0165 3980 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
15:36:39.0165 3980 msdsm - ok
15:36:39.0181 3980 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:36:39.0197 3980 MSDTC - ok
15:36:39.0243 3980 [ 72949A24D37A20A54B3D4D3DADBB55E9 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys
15:36:39.0243 3980 MSDV - ok
15:36:39.0259 3980 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:36:39.0259 3980 Msfs - ok
15:36:39.0275 3980 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:36:39.0275 3980 mshidkmdf - ok
15:36:39.0290 3980 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
15:36:39.0290 3980 msisadrv - ok
15:36:39.0306 3980 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:36:39.0306 3980 MSiSCSI - ok
15:36:39.0321 3980 msiserver - ok
15:36:39.0337 3980 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:36:39.0337 3980 MSKSSRV - ok
15:36:39.0337 3980 MsMpSvc - ok
15:36:39.0353 3980 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:36:39.0353 3980 MSPCLOCK - ok
15:36:39.0368 3980 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:36:39.0368 3980 MSPQM - ok
15:36:39.0399 3980 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:36:39.0399 3980 MsRPC - ok
15:36:39.0415 3980 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:36:39.0415 3980 mssmbios - ok
15:36:39.0431 3980 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:36:39.0431 3980 MSTEE - ok
15:36:39.0446 3980 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:36:39.0446 3980 MTConfig - ok
15:36:39.0462 3980 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:36:39.0462 3980 Mup - ok
15:36:39.0493 3980 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
15:36:39.0509 3980 napagent - ok
15:36:39.0540 3980 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:36:39.0555 3980 NativeWifiP - ok
15:36:39.0633 3980 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
15:36:39.0633 3980 NAUpdate - ok
15:36:39.0696 3980 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
15:36:39.0711 3980 NDIS - ok
15:36:39.0727 3980 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:36:39.0727 3980 NdisCap - ok
15:36:39.0743 3980 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:36:39.0743 3980 NdisTapi - ok
15:36:39.0758 3980 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:36:39.0758 3980 Ndisuio - ok
15:36:39.0774 3980 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:36:39.0774 3980 NdisWan - ok
15:36:39.0805 3980 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:36:39.0805 3980 NDProxy - ok
15:36:39.0805 3980 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:36:39.0805 3980 NetBIOS - ok
15:36:39.0821 3980 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:36:39.0836 3980 NetBT - ok
15:36:39.0836 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
15:36:39.0852 3980 Netlogon - ok
15:36:39.0883 3980 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:36:39.0883 3980 Netman - ok
15:36:39.0930 3980 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:36:39.0930 3980 netprofm - ok
15:36:39.0961 3980 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:36:39.0961 3980 NetTcpPortSharing - ok
15:36:39.0977 3980 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:36:39.0977 3980 nfrd960 - ok
15:36:40.0008 3980 [ 3713E8452B88D3E0BE095E06B6FBC776 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:36:40.0008 3980 NisDrv - ok
15:36:40.0023 3980 NisSrv - ok
15:36:40.0039 3980 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:36:40.0039 3980 NlaSvc - ok
15:36:40.0070 3980 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:36:40.0086 3980 Npfs - ok
15:36:40.0086 3980 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:36:40.0101 3980 nsi - ok
15:36:40.0101 3980 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:36:40.0101 3980 nsiproxy - ok
15:36:40.0164 3980 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:36:40.0164 3980 Ntfs - ok
15:36:40.0179 3980 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:36:40.0179 3980 Null - ok
15:36:40.0507 3980 [ E55CAB397F77D5208DB18A78B1B7C0D5 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:36:40.0601 3980 nvlddmkm - ok
15:36:40.0632 3980 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
15:36:40.0632 3980 nvraid - ok
15:36:40.0663 3980 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
15:36:40.0663 3980 nvstor - ok
15:36:40.0694 3980 [ 43BC8151893AE6AFE42E149D663C2221 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:36:40.0694 3980 nvsvc - ok
15:36:40.0725 3980 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
15:36:40.0725 3980 nv_agp - ok
15:36:40.0913 3980 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:36:40.0928 3980 odserv - ok
15:36:40.0959 3980 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:36:40.0959 3980 ohci1394 - ok
15:36:40.0991 3980 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:36:40.0991 3980 ose - ok
15:36:41.0022 3980 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:36:41.0037 3980 p2pimsvc - ok
15:36:41.0053 3980 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:36:41.0069 3980 p2psvc - ok
15:36:41.0147 3980 [ 3A6DCEB1848470320E4A3C12D7A35B1C ] PAC207 C:\Windows\system32\DRIVERS\PFC027.SYS
15:36:41.0162 3980 PAC207 - ok
15:36:41.0178 3980 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:36:41.0178 3980 Parport - ok
15:36:41.0193 3980 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:36:41.0193 3980 partmgr - ok
15:36:41.0225 3980 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:36:41.0225 3980 PcaSvc - ok
15:36:41.0240 3980 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
15:36:41.0256 3980 pci - ok
15:36:41.0256 3980 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
15:36:41.0256 3980 pciide - ok
15:36:41.0287 3980 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:36:41.0287 3980 pcmcia - ok
15:36:41.0303 3980 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:36:41.0303 3980 pcw - ok
15:36:41.0334 3980 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:36:41.0334 3980 PEAUTH - ok
15:36:41.0381 3980 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:36:41.0396 3980 PeerDistSvc - ok
15:36:41.0459 3980 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:36:41.0474 3980 PerfHost - ok
15:36:41.0552 3980 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
15:36:41.0568 3980 pla - ok
15:36:41.0599 3980 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:36:41.0615 3980 PlugPlay - ok
15:36:41.0630 3980 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:36:41.0630 3980 PNRPAutoReg - ok
15:36:41.0661 3980 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:36:41.0661 3980 PNRPsvc - ok
15:36:41.0802 3980 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:36:41.0817 3980 PolicyAgent - ok
15:36:41.0864 3980 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:36:41.0864 3980 Power - ok
15:36:41.0911 3980 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:36:41.0911 3980 PptpMiniport - ok
15:36:41.0927 3980 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:36:41.0927 3980 Processor - ok
15:36:41.0958 3980 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
15:36:41.0973 3980 ProfSvc - ok
15:36:41.0989 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
15:36:41.0989 3980 ProtectedStorage - ok
15:36:42.0005 3980 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:36:42.0005 3980 Psched - ok
15:36:42.0051 3980 [ 452C20382DF763F966C12DC48259F34E ] PTUMWBus C:\Windows\system32\DRIVERS\PTUMWBus.sys
15:36:42.0051 3980 PTUMWBus - ok
15:36:42.0083 3980 [ 3754C646BBDAEDAFC09F793C6B38E877 ] PTUMWCDF C:\Windows\system32\DRIVERS\PTUMWCDF.sys
15:36:42.0083 3980 PTUMWCDF - ok
15:36:42.0114 3980 [ AC86BB916FBEA16B0005EFC3BA3ADB58 ] PTUMWFLT C:\Windows\system32\DRIVERS\PTUMWFLT.sys
15:36:42.0114 3980 PTUMWFLT - ok
15:36:42.0145 3980 [ CB146794BC3B96661A32CBD68673B479 ] PTUMWMdm C:\Windows\system32\DRIVERS\PTUMWMdm.sys
15:36:42.0145 3980 PTUMWMdm - ok
15:36:42.0161 3980 [ 329E77868A92BB6F97C119050D97E9EC ] PTUMWNET C:\Windows\system32\DRIVERS\PTUMWNET.sys
15:36:42.0161 3980 PTUMWNET - ok
15:36:42.0176 3980 [ 4FFD7E6D2CB293849C1181D08717EA09 ] PTUMWVsp C:\Windows\system32\DRIVERS\PTUMWVsp.sys
15:36:42.0176 3980 PTUMWVsp - ok
15:36:42.0192 3980 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
15:36:42.0192 3980 PxHlpa64 - ok
15:36:42.0254 3980 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:36:42.0270 3980 ql2300 - ok
15:36:42.0285 3980 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:36:42.0285 3980 ql40xx - ok
15:36:42.0301 3980 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:36:42.0317 3980 QWAVE - ok
15:36:42.0332 3980 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:36:42.0332 3980 QWAVEdrv - ok
15:36:42.0348 3980 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:36:42.0348 3980 RasAcd - ok
15:36:42.0379 3980 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:36:42.0379 3980 RasAgileVpn - ok
15:36:42.0410 3980 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:36:42.0426 3980 RasAuto - ok
15:36:42.0441 3980 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:36:42.0441 3980 Rasl2tp - ok
15:36:42.0457 3980 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
15:36:42.0457 3980 RasMan - ok
15:36:42.0488 3980 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:36:42.0488 3980 RasPppoe - ok
15:36:42.0504 3980 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:36:42.0504 3980 RasSstp - ok
15:36:42.0582 3980 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:36:42.0597 3980 rdbss - ok
15:36:42.0629 3980 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:36:42.0629 3980 rdpbus - ok
15:36:42.0660 3980 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:36:42.0660 3980 RDPCDD - ok
15:36:42.0707 3980 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:36:42.0707 3980 RDPDR - ok
15:36:42.0722 3980 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:36:42.0722 3980 RDPENCDD - ok
15:36:42.0738 3980 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:36:42.0738 3980 RDPREFMP - ok
15:36:42.0753 3980 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:36:42.0753 3980 RDPWD - ok
15:36:42.0785 3980 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:36:42.0785 3980 rdyboost - ok
15:36:42.0816 3980 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:36:42.0816 3980 RemoteAccess - ok
15:36:42.0847 3980 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:36:42.0847 3980 RemoteRegistry - ok
15:36:42.0863 3980 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:36:42.0863 3980 RpcEptMapper - ok
15:36:42.0925 3980 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:36:42.0925 3980 RpcLocator - ok
15:36:43.0065 3980 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
15:36:43.0081 3980 RpcSs - ok
15:36:43.0128 3980 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:36:43.0128 3980 rspndr - ok
15:36:43.0175 3980 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
15:36:43.0175 3980 s3cap - ok
15:36:43.0206 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
15:36:43.0206 3980 SamSs - ok
15:36:43.0237 3980 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
15:36:43.0237 3980 sbp2port - ok
15:36:43.0315 3980 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
15:36:43.0331 3980 SBSDWSCService - ok
15:36:43.0362 3980 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:36:43.0362 3980 SCardSvr - ok
15:36:43.0377 3980 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:36:43.0393 3980 scfilter - ok
15:36:43.0440 3980 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
15:36:43.0455 3980 Schedule - ok
15:36:43.0502 3980 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:36:43.0502 3980 SCPolicySvc - ok
15:36:43.0518 3980 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:36:43.0518 3980 SDRSVC - ok
15:36:43.0533 3980 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:36:43.0533 3980 secdrv - ok
15:36:43.0549 3980 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
15:36:43.0549 3980 seclogon - ok
15:36:43.0565 3980 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:36:43.0565 3980 SENS - ok
15:36:43.0580 3980 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:36:43.0580 3980 SensrSvc - ok
15:36:43.0611 3980 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:36:43.0611 3980 Serenum - ok
15:36:43.0611 3980 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:36:43.0627 3980 Serial - ok
15:36:43.0643 3980 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:36:43.0643 3980 sermouse - ok
15:36:43.0674 3980 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
15:36:43.0674 3980 SessionEnv - ok
15:36:43.0705 3980 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
15:36:43.0705 3980 sffdisk - ok
15:36:43.0736 3980 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
15:36:43.0736 3980 sffp_mmc - ok
15:36:43.0752 3980 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
15:36:43.0752 3980 sffp_sd - ok
15:36:43.0783 3980 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:36:43.0783 3980 sfloppy - ok
15:36:43.0830 3980 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:36:43.0845 3980 SharedAccess - ok
15:36:43.0861 3980 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:36:43.0861 3980 ShellHWDetection - ok
15:36:43.0877 3980 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:36:43.0892 3980 SiSRaid2 - ok
15:36:43.0908 3980 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:36:43.0908 3980 SiSRaid4 - ok
15:36:43.0923 3980 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:36:43.0923 3980 Smb - ok
15:36:43.0939 3980 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:36:43.0955 3980 SNMPTRAP - ok
15:36:43.0955 3980 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:36:43.0955 3980 spldr - ok
15:36:44.0001 3980 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
15:36:44.0001 3980 Spooler - ok
15:36:44.0095 3980 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
15:36:44.0126 3980 sppsvc - ok
15:36:44.0126 3980 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:36:44.0142 3980 sppuinotify - ok
15:36:44.0189 3980 [ 148D50904D2A0DF29A19778715EB35BB ] srv C:\Windows\system32\DRIVERS\srv.sys
15:36:44.0189 3980 srv - ok
15:36:44.0204 3980 [ CE2189FE31D36678AC9EB7DDEE08EC96 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:36:44.0204 3980 srv2 - ok
15:36:44.0267 3980 [ 93132C69394A99D992095D8CFE464801 ] SrvHsfPCI C:\Windows\system32\DRIVERS\VSTBS26.SYS
15:36:44.0267 3980 SrvHsfPCI - ok
15:36:44.0360 3980 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:36:44.0391 3980 SrvHsfV92 - ok
15:36:44.0407 3980 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:36:44.0423 3980 SrvHsfWinac - ok
15:36:44.0454 3980 [ CB69EDEB069A49577592835659CD0E46 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:36:44.0454 3980 srvnet - ok
15:36:44.0485 3980 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:36:44.0485 3980 SSDPSRV - ok
15:36:44.0501 3980 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:36:44.0501 3980 SstpSvc - ok
15:36:44.0547 3980 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:36:44.0547 3980 stexstor - ok
15:36:44.0579 3980 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
15:36:44.0579 3980 stisvc - ok
15:36:44.0594 3980 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
15:36:44.0594 3980 storflt - ok
15:36:44.0610 3980 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
15:36:44.0625 3980 storvsc - ok
15:36:44.0625 3980 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:36:44.0641 3980 swenum - ok
15:36:44.0735 3980 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:36:44.0750 3980 SwitchBoard - ok
15:36:44.0781 3980 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:36:44.0797 3980 swprv - ok
15:36:44.0844 3980 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
15:36:44.0859 3980 SysMain - ok
15:36:44.0875 3980 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:36:44.0875 3980 TabletInputService - ok
15:36:44.0906 3980 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
15:36:44.0906 3980 TapiSrv - ok
15:36:44.0922 3980 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:36:44.0922 3980 TBS - ok
15:36:45.0000 3980 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:36:45.0015 3980 Tcpip - ok
15:36:45.0047 3980 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:36:45.0062 3980 TCPIP6 - ok
15:36:45.0109 3980 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:36:45.0109 3980 tcpipreg - ok
15:36:45.0125 3980 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:36:45.0125 3980 TDPIPE - ok
15:36:45.0125 3980 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:36:45.0140 3980 TDTCP - ok
15:36:45.0140 3980 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:36:45.0156 3980 tdx - ok
15:36:45.0156 3980 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:36:45.0156 3980 TermDD - ok
15:36:45.0187 3980 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
15:36:45.0203 3980 TermService - ok
15:36:45.0218 3980 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:36:45.0218 3980 Themes - ok
15:36:45.0249 3980 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:36:45.0249 3980 THREADORDER - ok
15:36:45.0265 3980 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:36:45.0265 3980 TrkWks - ok
15:36:45.0312 3980 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:36:45.0327 3980 TrustedInstaller - ok
15:36:45.0374 3980 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:36:45.0374 3980 tssecsrv - ok
15:36:45.0405 3980 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:36:45.0405 3980 tunnel - ok
15:36:45.0421 3980 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:36:45.0421 3980 uagp35 - ok
15:36:45.0437 3980 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:36:45.0437 3980 udfs - ok
15:36:45.0499 3980 [ 54A4A93A984E5C30B5CAB9257A0A05BF ] UDisk Monitor C:\Program Files (x86)\Froyo_Android_Driver\Bin\MonServiceUDisk.exe
15:36:45.0499 3980 UDisk Monitor - ok
15:36:45.0546 3980 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:36:45.0546 3980 UI0Detect - ok
15:36:45.0546 3980 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
15:36:45.0546 3980 uliagpkx - ok
15:36:45.0561 3980 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:36:45.0561 3980 umbus - ok
15:36:45.0577 3980 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:36:45.0577 3980 UmPass - ok
15:36:45.0593 3980 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
15:36:45.0608 3980 UmRdpService - ok
15:36:45.0624 3980 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:36:45.0624 3980 upnphost - ok
15:36:45.0671 3980 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:36:45.0671 3980 USBAAPL64 - ok
15:36:45.0702 3980 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:36:45.0702 3980 usbaudio - ok
15:36:45.0749 3980 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:36:45.0749 3980 usbccgp - ok
15:36:45.0764 3980 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
15:36:45.0764 3980 usbcir - ok
15:36:45.0811 3980 [ DF9F9AFC9AAABD8ED47975D44E38169A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:36:45.0811 3980 usbehci - ok
15:36:45.0827 3980 [ 372A91BC3C6603080A793880B0873785 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:36:45.0827 3980 usbhub - ok
15:36:45.0842 3980 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:36:45.0842 3980 usbohci - ok
15:36:45.0858 3980 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:36:45.0858 3980 usbprint - ok
15:36:45.0905 3980 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:36:45.0905 3980 usbscan - ok
15:36:45.0905 3980 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:36:45.0920 3980 USBSTOR - ok
15:36:45.0936 3980 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:36:45.0936 3980 usbuhci - ok
15:36:45.0967 3980 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:36:45.0967 3980 usbvideo - ok
15:36:45.0998 3980 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:36:45.0998 3980 UxSms - ok
15:36:46.0014 3980 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
15:36:46.0014 3980 VaultSvc - ok
15:36:46.0029 3980 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
15:36:46.0029 3980 vdrvroot - ok
15:36:46.0045 3980 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
15:36:46.0045 3980 vds - ok
15:36:46.0061 3980 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:36:46.0061 3980 vga - ok
15:36:46.0076 3980 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:36:46.0092 3980 VgaSave - ok
15:36:46.0092 3980 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
15:36:46.0092 3980 vhdmp - ok
15:36:46.0107 3980 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
15:36:46.0107 3980 viaide - ok
15:36:46.0123 3980 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
15:36:46.0123 3980 vmbus - ok
15:36:46.0139 3980 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
15:36:46.0139 3980 VMBusHID - ok
15:36:46.0185 3980 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
15:36:46.0185 3980 volmgr - ok
15:36:46.0217 3980 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:36:46.0217 3980 volmgrx - ok
15:36:46.0263 3980 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
15:36:46.0263 3980 volsnap - ok
15:36:46.0295 3980 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:36:46.0295 3980 vsmraid - ok
15:36:46.0341 3980 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
15:36:46.0357 3980 VSS - ok
15:36:46.0451 3980 [ CBA3F6EF1E70167DB376B4013F71A62B ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
15:36:46.0466 3980 vToolbarUpdater12.2.6 - ok
15:36:46.0466 3980 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:36:46.0482 3980 vwifibus - ok
15:36:46.0497 3980 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:36:46.0497 3980 W32Time - ok
15:36:46.0529 3980 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:36:46.0529 3980 WacomPen - ok
15:36:46.0544 3980 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:36:46.0544 3980 WANARP - ok
15:36:46.0544 3980 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:36:46.0544 3980 Wanarpv6 - ok
15:36:46.0591 3980 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
15:36:46.0607 3980 wbengine - ok
15:36:46.0622 3980 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:36:46.0622 3980 WbioSrvc - ok
15:36:46.0669 3980 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:36:46.0669 3980 wcncsvc - ok
15:36:46.0685 3980 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:36:46.0685 3980 WcsPlugInService - ok
15:36:46.0700 3980 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:36:46.0700 3980 Wd - ok
15:36:46.0731 3980 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:36:46.0731 3980 Wdf01000 - ok
15:36:46.0747 3980 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:36:46.0763 3980 WdiServiceHost - ok
15:36:46.0763 3980 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:36:46.0763 3980 WdiSystemHost - ok
15:36:46.0794 3980 Web Assistant Updater - ok
15:36:46.0825 3980 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
15:36:46.0841 3980 WebClient - ok
15:36:46.0856 3980 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:36:46.0856 3980 Wecsvc - ok
15:36:46.0887 3980 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:36:46.0887 3980 wercplsupport - ok
15:36:46.0903 3980 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:36:46.0903 3980 WerSvc - ok
15:36:46.0919 3980 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:36:46.0919 3980 WfpLwf - ok
15:36:46.0934 3980 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:36:46.0934 3980 WIMMount - ok
15:36:46.0950 3980 winachsf - ok
15:36:46.0950 3980 WinHttpAutoProxySvc - ok
15:36:47.0012 3980 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:36:47.0012 3980 Winmgmt - ok
15:36:47.0106 3980 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
15:36:47.0121 3980 WinRM - ok
15:36:47.0168 3980 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:36:47.0168 3980 WinUsb - ok
15:36:47.0199 3980 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:36:47.0215 3980 Wlansvc - ok
15:36:47.0340 3980 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:36:47.0355 3980 wlidsvc - ok
15:36:47.0387 3980 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:36:47.0387 3980 WmiAcpi - ok
15:36:47.0433 3980 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:36:47.0433 3980 wmiApSrv - ok
15:36:47.0449 3980 WMPNetworkSvc - ok
15:36:47.0480 3980 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:36:47.0480 3980 WPCSvc - ok
15:36:47.0496 3980 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:36:47.0511 3980 WPDBusEnum - ok
15:36:47.0527 3980 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:36:47.0527 3980 ws2ifsl - ok
15:36:47.0527 3980 WSearch - ok
15:36:47.0621 3980 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
15:36:47.0667 3980 wuauserv - ok
15:36:47.0683 3980 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:36:47.0683 3980 WudfPf - ok
15:36:47.0714 3980 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:36:47.0714 3980 WUDFRd - ok
15:36:47.0730 3980 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:36:47.0730 3980 wudfsvc - ok
15:36:47.0745 3980 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:36:47.0761 3980 WwanSvc - ok
15:36:47.0808 3980 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
15:36:47.0808 3980 yukonw7 - ok
15:36:47.0823 3980 ================ Scan global ===============================
15:36:47.0839 3980 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:36:47.0886 3980 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
15:36:47.0901 3980 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
15:36:47.0933 3980 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:36:47.0948 3980 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:36:47.0964 3980 [Global] - ok
15:36:47.0964 3980 ================ Scan MBR ==================================
15:36:47.0964 3980 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:36:48.0120 3980 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:36:48.0120 3980 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:36:48.0120 3980 ================ Scan VBR ==================================
15:36:48.0120 3980 [ 644091CFCAA7084E0C1815B75D7DAA5B ] \Device\Harddisk0\DR0\Partition1
15:36:48.0120 3980 \Device\Harddisk0\DR0\Partition1 - ok
15:36:48.0151 3980 [ 12B0269A1E7D7319523822160E4DF231 ] \Device\Harddisk0\DR0\Partition2
15:36:48.0151 3980 \Device\Harddisk0\DR0\Partition2 - ok
15:36:48.0151 3980 ============================================================
15:36:48.0151 3980 Scan finished
15:36:48.0151 3980 ============================================================
15:36:48.0167 3972 Detected object count: 1
15:36:48.0167 3972 Actual detected object count: 1
15:37:12.0612 3972 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:37:12.0612 3972 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:37:19.0944 2716 Deinitialize success

#8 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 28 October 2012 - 08:26 PM

ESET log:


C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AG trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.KS trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AF trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zaea0000\svc0000\tsk0000.dta Win64/Sirefef.W trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\file0000\tsk0000.dta Win64/Sirefef.G trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\zafs0000\tsk0000.dta Win32/Sirefef.DN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.10.2012_14.32.16\zasubsys0000\zafs0000\tsk0001.dta Win64/Sirefef.G trojan cleaned by deleting - quarantined
C:\Users\blaza\AppData\Local\Temp\nslE42B.tmp a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\blaza\AppData\Local\Temp\ICReinstall\cnet2_free_disk_wipe_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\blaza\AppData\Local\{EA82CBB9-7F38-11E1-826D-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Users\blaza\Downloads\cnet2_free_disk_wipe_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Slenderman_Elementary_setup(1).exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Slenderman_Elementary_setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Slenderman_Sanatorium_setup(1).exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Slenderman_Sanatorium_setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\slender_setup(1).exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\slender_setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Windows+Live+Movie+Maker (1).exe multiple threats cleaned by deleting - quarantined
C:\Users\blaza\Downloads\Windows+Live+Movie+Maker.exe multiple threats cleaned by deleting - quarantined
C:\Users\Gabriel\AppData\Local\Temp\Vid-Saver-ppi-US.exe a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\Gabriel\Downloads\HC2Setup.exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\3794\RstrtMgr.exe a variant of Win32/Kryptik.ANUP trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1EY04F7J\imp[1] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1EY04F7J\kittyflix_com[1].txt HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7ND9ONGQ\imp[3] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQLZ75ED\;ID=rugby-160;size=160x600;setID=25;type=-7;source=127372;pub=618132;pub=618132[1] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\D8OUJW10\impCAHJ1F1B HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DKR8GYO7\click[3].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DKR8GYO7\imp[1] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HCFRD745\kitten-hates-pj-pants[1].txt HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J2A3X2OI\imp[3] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M4J3TYGP\imp[1] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQ3NUD2\imp[2] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQ3NUD2\imp[5] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SNQ3NUD2\imp[9] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TDYP7CSL\imp[2] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YDMGDGO0\imp[3] HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YVUDAP0T\baby-kitty-plays-with-colorful-toys[1].txt HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YVUDAP0T\impCA0A0F94 HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\QuickCet\QuickCet\QuickCet.exe a variant of MSIL/Adware.SanctionedMedia.A application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Roaming\derpr.dll a variant of Win32/Medfos.EO trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Roaming\vplas.dll a variant of Win32/Medfos.EN trojan cleaned by deleting - quarantined
C:\Windows\Temp\cnswxoarme.exe a variant of Win32/Medfos.EN trojan cleaned by deleting - quarantined
C:\Windows\Temp\wormnxseac.exe a variant of MSIL/Injector.ARI trojan cleaned by deleting - quarantined

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:21 AM

Posted 28 October 2012 - 08:27 PM

Launch TDSSkiller and select DELETE for this entry

15:37:12.0612 3972 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#10 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 29 October 2012 - 09:35 PM

ok i got the malwarebytes log,first time i let it scan while i was asleep and woke up to my computers welcome screen so i scanned it again in safemode but it wouldnt let me get to bleepingcomputer in safemode.


Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.29.13

Windows 7 x64 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.7600.16385
blaza :: BLAZA-PC [administrator]

10/29/2012 5:21:50 PM
mbam-log-2012-10-29 (17-21-50).txt

Scan type: Full scan (C:\|D:\|F:\|G:\|H:\|I:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 710645
Time elapsed: 1 hour(s), 25 minute(s), 25 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 6
HKCR\CLSID\{22222222-2222-2222-2222-220022502258} (PUP.CrossRider.SSK) -> No action taken.
HKCR\TypeLib\{44444444-4444-4444-4444-440044504458} (PUP.CrossRider.SSK) -> No action taken.
HKCR\Interface\{55555555-5555-5555-5555-550055505558} (PUP.CrossRider.SSK) -> No action taken.
HKCR\CrossriderApp0005058.Sandbox.1 (PUP.CrossRider.SSK) -> No action taken.
HKCR\CrossriderApp0005058.Sandbox (PUP.CrossRider.SSK) -> No action taken.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nllafhekklanfkimibokomlmidmcmaoi (PUP.CrossRider.SSK) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 1
C:\Windows\System32\config\systemprofile\AppData\Roaming\hellomoto (Trojan.Ransom.FGen) -> Quarantined and deleted successfully.

Files Detected: 7
C:\Users\blaza\AppData\Local\Temp\ShoppingSidekick_sample_us.exe (PUP.215Apps) -> No action taken.
C:\$Recycle.Bin\S-1-5-18\$555f9bef0112e7aeae77e5d8d4bdca82\n (Trojan.0Access) -> Quarantined and deleted successfully.
C:\Windows\System32\config\systemprofile\leniqejpuokavlgzlchmi.exe (Trojan.Agent.MRGGen) -> Quarantined and deleted successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\hellomoto\TujP.dat (Trojan.Ransom.FGen) -> Quarantined and deleted successfully.
C:\Windows\System32\config\systemprofile\AppData\Roaming\hellomoto\BukF.dat (Trojan.Ransom.FGen) -> Quarantined and deleted successfully.
C:\Windows\Temp\AppLaunch\Service.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\Temp\AppLaunch\msnmsgr.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)

#11 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 29 October 2012 - 09:38 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by blaza (administrator) on 29-10-2012 at 19:36:17
Microsoft Windows 7 Ultimate (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Marvell Yukon 88E8039 PCI-E Fast Ethernet Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : blaza-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : ph.cox.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : ph.cox.net
Description . . . . . . . . . . . : Marvell Yukon 88E8039 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-1E-90-0D-8D-0F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d8d6:b93c:67be:4d31%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, October 29, 2012 7:29:51 PM
Lease Expires . . . . . . . . . . : Tuesday, October 30, 2012 7:29:51 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 251666064
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-9D-C4-80-00-1E-90-0D-8D-0F
DNS Servers . . . . . . . . . . . : 68.105.28.12
68.105.29.12
68.105.28.11
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #9
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.tc.ph.cox.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #10
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #11
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 20:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #12
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #13
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #14
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #15
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 24:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #16
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: cdns2.cox.net
Address: 68.105.28.12

Name: google.com
Addresses: 2001:4860:4007:800::1006
74.125.224.194
74.125.224.195
74.125.224.196
74.125.224.197
74.125.224.198
74.125.224.199
74.125.224.200
74.125.224.201
74.125.224.206
74.125.224.192
74.125.224.193


Pinging google.com [74.125.239.14] with 32 bytes of data:
Reply from 74.125.239.14: bytes=32 time=25ms TTL=55
Reply from 74.125.239.14: bytes=32 time=25ms TTL=55

Ping statistics for 74.125.239.14:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 25ms, Maximum = 25ms, Average = 25ms
Server: cdns2.cox.net
Address: 68.105.28.12

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=73ms TTL=52
Reply from 98.138.253.109: bytes=32 time=74ms TTL=52

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 73ms, Maximum = 74ms, Average = 73ms
Server: cdns2.cox.net
Address: 68.105.28.12

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 1e 90 0d 8d 0f ......Marvell Yukon 88E8039 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #8
11...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #5
15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
23...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #9
17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #3
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #4
25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
20...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #6
21...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #7
24...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #10
27...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #11
28...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #12
29...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #13
31...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #14
32...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #15
33...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #16
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.101 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 276
192.168.1.101 255.255.255.255 On-link 192.168.1.101 276
192.168.1.255 255.255.255.255 On-link 192.168.1.101 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 276 fe80::/64 On-link
12 276 fe80::d8d6:b93c:67be:4d31/128
On-link
1 306 ff00::/8 On-link
12 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/29/2012 07:29:52 PM) (Source: Schedule) (User: )
Description: Schedule error: 0Initialize call failed, bailing out

Error: (10/29/2012 01:41:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (10/29/2012 01:41:13 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/28/2012 08:55:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (10/28/2012 08:54:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/28/2012 03:37:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/28/2012 03:28:33 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/27/2012 11:34:00 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Installing the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (10/27/2012 11:34:00 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.

Error: (10/26/2012 05:24:34 PM) (Source: Microsoft-Windows-LoadPerf) (User: blaza-PC)blaza-PC
Description: Installing the performance counter strings for service Outlook (Outlook) failed. The first DWORD in the Data section contains the error code.


System errors:
=============
Error: (10/29/2012 07:36:48 PM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (10/29/2012 07:36:46 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume \Device\HarddiskVolume2 encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:41 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:35 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:30 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:25 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:20 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume \Device\HarddiskVolume2 encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:15 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:10 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume \Device\HarddiskVolume2 encountered a non-retryable error and could not start. The data contains the error code.

Error: (10/29/2012 07:36:05 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume C: encountered a non-retryable error and could not start. The data contains the error code.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe After Effects CS5.5 (Version: 10.5.1)
Adobe AIR (Version: 2.6.0.19140)
Adobe Community Help (Version: 3.4.980)
Adobe Download Assistant (Version: 1.0.2)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Media Player (Version: 1.8)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.6.636)
Android USB Driver
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.0.69)
Apple Software Update (Version: 2.1.2.120)
Avanquest update (Version: 1.26)
AVG 2011 (Version: 10.0.1427)
AVG 2011 (Version: 10.0.1516)
Bonjour (Version: 2.0.4.0)
Business-in-a-Box (Version: 5.0.4)
CCleaner (Version: 3.02)
Cole2k Media - Codec Pack (Advanced) 7.9.3
Cricket Broadband Connect (Version: 1.33)
D3DX10 (Version: 15.4.2368.0902)
Dev-C++ 5 beta 9 release (4.9.9.2)
DivX Setup (Version: 2.6.1.9)
ESET Online Scanner v3
GeoGebra 4
GeoGebra 4.0
Google Chrome (Version: 22.0.1229.94)
Google Update Helper (Version: 1.3.21.123)
HyperCam 2 (Version: 2.27.00)
iTunes (Version: 10.1.1.4)
iVideo Converter
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8107.0)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Mobile PhoneTools (Version: 3.55)
MotoHelper 2.0.40 Driver 4.8.0 (Version: 2.0.40)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Mobile Drivers Installation 4.8.0 (Version: 4.8.0)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Firefox 16.0.1 (x86 en-US) (Version: 16.0.1)
Mozilla Maintenance Service (Version: 16.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero BurnLite 10 (Version: 10.0.10100.1.100)
Nero BurnLite 10 (Version: 10.0.10500)
Nero Control Center 10 (Version: 10.0.13100.3.1)
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10700)
Nero Core Components 10 (Version: 2.0.15100.0.1)
Nero Update (Version: 1.0.0018)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
PANTECH USB Modem V2 (Version: 1.2.3937.1022)
PVSonyDll (Version: 1.00.0001)
PxMergeModule (Version: 1.00.0000)
QuickTime (Version: 7.69.80.9)
RuneScape Launcher 1.2 (Version: 1.2.0)
Spybot - Search & Destroy (Version: 1.6.2)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2412171)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (KB2522999)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 1.1.5 (Version: 1.1.5)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
WinRAR 4.00 (32-bit) (Version: 4.00.0)
WinX DVD Ripper 5.5.8

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 2942.49 MB
Available physical RAM: 1763.27 MB
Total Pagefile: 5883.13 MB
Available Pagefile: 4627.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957.31 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:372.51 GB) (Free:145.54 GB) NTFS
2 Drive d: (SILENT_HILL) (CDROM) (Total:7.95 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\BLAZA-PC

Administrator blaza Gabriel
Guest Sandra

========================= Restore Points ==================================

29-10-2012 08:46:17 Scheduled Checkpoint

**** End of log ****

#12 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 29 October 2012 - 09:39 PM

Farbar Service Scanner Version: 27-10-2012
Ran by blaza (administrator) on 29-10-2012 at 19:39:09
Running from "C:\Users\blaza\Downloads"
Microsoft Windows 7 Ultimate (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 17:09] - [2009-07-13 18:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 16:36] - [2009-07-13 18:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2009-07-13 17:36] - [2009-07-13 18:41] - 2418176 ____A (Microsoft Corporation) 38340204A2D0228F1E87740FC5E554A7

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#13 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 29 October 2012 - 09:45 PM

# AdwCleaner v2.005 - Logfile created 10/29/2012 at 19:40:47
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Ultimate (64 bits)
# User : blaza - BLAZA-PC
# Boot Mode : Normal
# Running from : C:\Users\blaza\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Web Assistant Updater

***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\user.js
File Deleted : C:\Users\blaza\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\9487k3w8.default\searchplugins\MyStart Search.xml
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Users\blaza\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\blaza\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\blaza\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\blaza\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\blaza\AppData\LocalLow\Toolbar4
Folder Deleted : C:\Users\blaza\AppData\Roaming\Mozilla\Firefox\Profiles\oopaoblo.default\FCTB
Folder Deleted : C:\Users\Gabriel\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Gabriel\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\9487k3w8.default\extensions\ffxtlbr@incredibar.com
Folder Deleted : C:\Users\Sandra\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Sandra\AppData\LocalLow\Toolbar4

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5911488E-9D1E-40EC-8CBB-06B231CC153F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13D095-45C3-4271-9475-F3B48227DD9F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Key Deleted : HKCU\Software\SMTTB2009
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0005058.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0005058.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0005058.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0005058.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject
Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\Software\Web Assistant
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}
Key Deleted : HKLM\SOFTWARE\Software
Key Deleted : HKLM\SOFTWARE\Web Assistant
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.bigseekpro.com/hypercam/{AE1972C7-55CF-4849-A89E-D8D64B498387} --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxps://isearch.avg.com/tab?cid={826F4000-CDC0-4012-8173-2B2CFB9D2F0D}&mid=ef929080acc747d1a87fabc966e4ebf3-06050e277f64d1ccca6d2151ed49f9cb1323dc9e&lang=en&ds=AVG&pr=fr&d=2012-04-14 15:55:11&v=12.2.5.32&sap=nt --> hxxp://www.google.com

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\blaza\AppData\Roaming\Mozilla\Firefox\Profiles\oopaoblo.default\prefs.js

C:\Users\blaza\AppData\Roaming\Mozilla\Firefox\Profiles\oopaoblo.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.button.netflix_40927.click", "1");
Deleted : user_pref("aol_toolbar.buttons.layout", "aol_mail_5496;facebook_40839;mapquest_40872;twitter_40883;w[...]
Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("aol_toolbar.firsttime.showwindow", false);
Deleted : user_pref("aol_toolbar.guid", "{88D66470-EA4E-C3E5-C952-D7A577D3A8EE}");
Deleted : user_pref("aol_toolbar.install.distroid", "aol");
Deleted : user_pref("aol_toolbar.install.lastTbVersion", "5.74.1.8614");
Deleted : user_pref("aol_toolbar.install.lid", "hyplognew00000010");
Deleted : user_pref("aol_toolbar.install.mtmhp", "hyplogusaolp00000023");
Deleted : user_pref("aol_toolbar.install.ncid", "");
Deleted : user_pref("aol_toolbar.metrics.activestampdate", "29");
Deleted : user_pref("aol_toolbar.metrics.activestampmonth", "9");
Deleted : user_pref("aol_toolbar.metrics.activestampyear", "2012");
Deleted : user_pref("aol_toolbar.metrics.originalDate", "21");
Deleted : user_pref("aol_toolbar.metrics.originalHours", "23");
Deleted : user_pref("aol_toolbar.metrics.originalMinutes", "30");
Deleted : user_pref("aol_toolbar.metrics.originalMonth", "10");
Deleted : user_pref("aol_toolbar.metrics.originalSeconds", "29");
Deleted : user_pref("aol_toolbar.metrics.originalYear", "2012");
Deleted : user_pref("aol_toolbar.relatednews.enabled", false);
Deleted : user_pref("aol_toolbar.remote.publish.xml", "1351564383463");
Deleted : user_pref("aol_toolbar.rtw.active", false);
Deleted : user_pref("aol_toolbar.search.button", true);
Deleted : user_pref("aol_toolbar.search.cid", "21-10-2012");
Deleted : user_pref("aol_toolbar.search.instd", "20121021232948286");
Deleted : user_pref("aol_toolbar.search.oid", "21-10-2012");
Deleted : user_pref("aol_toolbar.search.placement", "right");
Deleted : user_pref("aol_toolbar.search.populateoncomplete", false);
Deleted : user_pref("aol_toolbar.search.savehistory", false);
Deleted : user_pref("aol_toolbar.search.searchtype", "web");
Deleted : user_pref("aol_toolbar.search.source", "tb50-ff-adknowledgeaol");
Deleted : user_pref("aol_toolbar.skin.custom", false);
Deleted : user_pref("aol_toolbar.surf.date", "18");
Deleted : user_pref("aol_toolbar.surf.lastDate", "29");
Deleted : user_pref("aol_toolbar.surf.lastMonth", "9");
Deleted : user_pref("aol_toolbar.surf.lastYear", "2012");
Deleted : user_pref("aol_toolbar.surf.month", "917");
Deleted : user_pref("aol_toolbar.surf.prevMonth", "0");
Deleted : user_pref("aol_toolbar.surf.total", "925");
Deleted : user_pref("aol_toolbar.surf.week", "142");
Deleted : user_pref("aol_toolbar.surf.year", "917");
Deleted : user_pref("aol_toolbar.ticker.active", false);
Deleted : user_pref("aol_toolbar.upgrade.showwindow", false);
Deleted : user_pref("aol_toolbar.weather.degc", "13");
Deleted : user_pref("aol_toolbar.weather.degf", "55");
Deleted : user_pref("aol_toolbar.weather.image", "chrome://aoltoolbar/skin/weather/26_n.png");
Deleted : user_pref("aol_toolbar.weather.locationid", "USNY0996");
Deleted : user_pref("aol_toolbar.weather.metric", true);
Deleted : user_pref("aol_toolbar.weather.tooltip", "New York , NY : Cloudy");
Deleted : user_pref("aol_toolbar.weather.update", "1351564383595");
Deleted : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\12.2.5.32");
Deleted : user_pref("keyword.URL", "hxxps://isearch.avg.com/search?cid=%7B7e61920d-d33e-4afa-bb6a-b06a77f6a032[...]

Profile name : default
File : C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\wco2ofso.default\prefs.js

Deleted : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Deleted : user_pref("browser.search.selectedEngine", "AVG Secure Search");

Profile name : default
File : C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\9487k3w8.default\prefs.js

C:\Users\Gabriel\AppData\Roaming\Mozilla\Firefox\Profiles\9487k3w8.default\user.js ... Deleted !

Deleted : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb178?a=6PQH5vc2TU&loc=FF_NT");
Deleted : user_pref("browser.search.defaultenginename", "MyStart Search");
Deleted : user_pref("browser.search.selectedEngine", "MyStart Search");
Deleted : user_pref("browser.startup.homepage", "hxxp://mystart.incredibar.com/mb178?a=6PQH5vc2TU&i=26");
Deleted : user_pref("extensions.enabledAddons", "ffxtlbr@incredibar.com:1.5.0,{972ce4c6-7e08-4474-a285-3208198[...]
Deleted : user_pref("extensions.incredibar.admin", false);
Deleted : user_pref("extensions.incredibar.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar.cntry", "US");
Deleted : user_pref("extensions.incredibar.dfltLng", "");
Deleted : user_pref("extensions.incredibar.dfltSrch", false);
Deleted : user_pref("extensions.incredibar.did", "10643");
Deleted : user_pref("extensions.incredibar.envrmnt", "production");
Deleted : user_pref("extensions.incredibar.excTlbr", false);
Deleted : user_pref("extensions.incredibar.hdrMd5", "A5B63D9C72967FA84434B248C5319439");
Deleted : user_pref("extensions.incredibar.hmpg", false);
Deleted : user_pref("extensions.incredibar.id", "fcdcc9c8000000000000001e900d8d0f");
Deleted : user_pref("extensions.incredibar.installerproductid", "26");
Deleted : user_pref("extensions.incredibar.instlDay", "15572");
Deleted : user_pref("extensions.incredibar.instlRef", "");
Deleted : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1420:01:23");
Deleted : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Deleted : user_pref("extensions.incredibar.newTab", false);
Deleted : user_pref("extensions.incredibar.noFFXTlbr", false);
Deleted : user_pref("extensions.incredibar.ppd", "989");
Deleted : user_pref("extensions.incredibar.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar.productid", "26");
Deleted : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar.sg", "none");
Deleted : user_pref("extensions.incredibar.smplGrp", "none");
Deleted : user_pref("extensions.incredibar.tlbrId", "base");
Deleted : user_pref("extensions.incredibar.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQH5vc2TU&loc=IB_T[...]
Deleted : user_pref("extensions.incredibar.upn2", "6PQH5vc2TU");
Deleted : user_pref("extensions.incredibar.upn2n", "92543436073665602");
Deleted : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1420:01:23");
Deleted : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Deleted : user_pref("extensions.incredibar_i.did", "10643");
Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Deleted : user_pref("extensions.incredibar_i.id", "fcdcc9c8000000000000001e900d8d0f");
Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Deleted : user_pref("extensions.incredibar_i.instlDay", "15572");
Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Deleted : user_pref("extensions.incredibar_i.newTab", false);
Deleted : user_pref("extensions.incredibar_i.ppd", "989");
Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar_i.productid", "26");
Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6PQH5vc2TU&loc=IB[...]
Deleted : user_pref("extensions.incredibar_i.upn2", "6PQH5vc2TU");
Deleted : user_pref("extensions.incredibar_i.upn2n", "92543436073665602");
Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1420:01:23");
Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");
Deleted : user_pref("keyword.URL", "hxxp://mystart.incredibar.com/mb178/?loc=IB_DS&a=6PQH5vc2TU&&i=26&search="[...]
Deleted : user_pref("{336D0C35-8A85-403a-B9D2-65C292C39087}.ScriptData_WSG_whiteList", "{\"search.babylon.com\[...]

-\\ Google Chrome v22.0.1229.94

File : C:\Users\blaza\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [21990 octets] - [29/10/2012 19:40:47]

########## EOF - C:\AdwCleaner[S1].txt - [22051 octets] ##########

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:21 AM

Posted 29 October 2012 - 10:03 PM

Junkware tool log?

Please run malwarebytes in normal mode and post the clean log.Make sure to REMOVE ALL infections and scan again and post the clean one

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#15 simplesimpleton

simplesimpleton
  • Topic Starter

  • Members
  • 139 posts
  • OFFLINE
  •  
  • Local time:10:21 PM

Posted 29 October 2012 - 10:14 PM

Junkware Removal Tool (JRT) by Thisisu
Version: 2.2.8 (10.29.2012)
OS: Windows 7 Ultimate x64
Ran by blaza on Mon 10/29/2012 at 19:45:31.94
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] "hkey_current_user\software\microsoft\internet explorer\internetregistry\registry\user\S-1-5-21-162675274-2430751357-1919029789-1000\software\web assistant"
Successfully deleted: [KEY] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{336d0c35-8a85-403a-b9d2-65c292c39087}



*** Files: 0 Detections



*** Folders:

Successfully deleted: [FOLDER] "C:\ProgramData\speedypc software"
Successfully deleted: [FOLDER] "C:\Users\blaza\AppData\Roaming\speedypc software"
Successfully deleted: [FOLDER] "C:\Program Files (x86)\Common Files\dvdvideosoft"



*** FireFox detected and repaired

Removed the following from [prefs.js] :

user_pref("aol_toolbar.buttons.layout", "aol_mail_5496;facebook_40839;mapquest_40872;twitter_40883;wikipedia_40905;yahoo_mail_40916;netflix_40927;shoutcast_radio_5302;share_this_page_23802;");
user_pref("aol_toolbar.default.homepage.check", false);
user_pref("aol_toolbar.default.search.check", false);
user_pref("aol_toolbar.firsttime.showwindow", false);
user_pref("aol_toolbar.guid", "{7391CB68-6E55-D38D-3A23-73F3F31CC47F}");
user_pref("aol_toolbar.install.distroid", "aol");
user_pref("aol_toolbar.install.lastTbVersion", "5.74.1.8614");
user_pref("aol_toolbar.install.lid", "hyplognew00000010");
user_pref("aol_toolbar.install.mtmhp", "hyplogusaolp00000023");
user_pref("aol_toolbar.install.ncid", "");
user_pref("aol_toolbar.metrics.activestampdate", "29");
user_pref("aol_toolbar.metrics.activestampmonth", "9");
user_pref("aol_toolbar.metrics.activestampyear", "2012");
user_pref("aol_toolbar.metrics.originalDate", "30");
user_pref("aol_toolbar.metrics.originalHours", "2");
user_pref("aol_toolbar.metrics.originalMinutes", "43");
user_pref("aol_toolbar.metrics.originalMonth", "10");
user_pref("aol_toolbar.metrics.originalSeconds", "47");
user_pref("aol_toolbar.metrics.originalYear", "2012");
user_pref("aol_toolbar.relatednews.enabled", false);
user_pref("aol_toolbar.remote.publish.xml", "1351565029502");
user_pref("aol_toolbar.rtw.active", false);
user_pref("aol_toolbar.search.button", true);
user_pref("aol_toolbar.search.cid", "30-10-2012");
user_pref("aol_toolbar.search.instd", "20121021232948286");
user_pref("aol_toolbar.search.oid", "30-10-2012");
user_pref("aol_toolbar.search.placement", "right");
user_pref("aol_toolbar.search.populateoncomplete", false);
user_pref("aol_toolbar.search.savehistory", false);
user_pref("aol_toolbar.search.searchtype", "web");
user_pref("aol_toolbar.search.source", "tb50-ff-adknowledgeaol");
user_pref("aol_toolbar.skin.custom", false);
user_pref("aol_toolbar.surf.date", "2");
user_pref("aol_toolbar.surf.lastDate", "29");
user_pref("aol_toolbar.surf.lastMonth", "9");
user_pref("aol_toolbar.surf.lastYear", "2012");
user_pref("aol_toolbar.surf.month", "2");
user_pref("aol_toolbar.surf.prevMonth", "0");
user_pref("aol_toolbar.surf.total", "2");
user_pref("aol_toolbar.surf.week", "2");
user_pref("aol_toolbar.surf.year", "2");
user_pref("aol_toolbar.ticker.active", false);
user_pref("aol_toolbar.upgrade.showwindow", false);
user_pref("aol_toolbar.weather.degc", "14");
user_pref("aol_toolbar.weather.degf", "58");
user_pref("aol_toolbar.weather.image", "chrome://aoltoolbar/skin/weather/26_n.png");
user_pref("aol_toolbar.weather.locationid", "USNY0996");
user_pref("aol_toolbar.weather.metric", true);
user_pref("aol_toolbar.weather.tooltip", "New York , NY : Cloudy");
user_pref("aol_toolbar.weather.update", "1351565029739");


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Mon 10/29/2012 at 20:12:45.09
End of Report




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users