Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

TDSSKiller not running; Deleted Internet temp files


  • Please log in to reply
32 replies to this topic

#1 Mr_Sharpe

Mr_Sharpe

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 12 November 2012 - 08:50 PM

Hello, forum.

A couple of days ago, I contracted the "File restore" malware. I, distressed, found your fix guide and began following the instructions. I've ran Malwarebytes, Rkill, and Unhide, but when I try to get TDSSKiller to run, It won't even boot, even after I rename it. I can't even get Kaspersky Rescue Disk 10 to work. On top of that, my wife decided to go through the computer for some unknown reason. She went to the temp files and found a bunch of Images of porn, health tips, child care list, and lastly an image I use as an avatar on rpol.net. Seeing that avatar image led her to the conclusion that all said things belonged to me (pornograpy including). She deleted the entire contents of the temp folder. I read that one of the things the "Combonation of viruses" did to the computer was to move some things to the internet temp file. Evidence of this is that my google taskbar doesn't work, causing my internet to crash (i disabled it). Now, for some reason, my computer crashes when I'm in "regular mode", stating that it's missing processes and is finding errors. I'm not sure if that is a product of the virus, or if it's something the deletion of the temp files has caused. I am at my wits end and don't have the money to have it fixed by a professional right now. Even if I did, I fear the loss of important things like photos, resumes, documents. I know all of you are quite busy and will help me if and when you can. I appreciate any help you can give me. Thanks.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:14 PM

Posted 12 November 2012 - 08:52 PM

Download Listparts from here

For 32 bit

List parts 32

For 64 bit

List parts 64

Launch it,click on SCAN,post the log

#3 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 12 November 2012 - 09:01 PM

ListParts by Farbar Version: 30-10-2012
Ran by Owner (administrator) on 12-11-2012 at 20:58:43
Windows Vista (X86)
Running From: C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KOPMDLJ7
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 26%
Total physical RAM: 2009.63 MB
Available physical RAM: 1468.12 MB
Total Pagefile: 4254.58 MB
Available Pagefile: 3870.33 MB
Total Virtual: 2047.88 MB
Available Virtual: 1979.56 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:149.05 GB) (Free:11.63 GB) NTFS ==>[System with boot components (obtained from reading drive)]
2 Drive d: (KRD10) (CDROM) (Total:0.26 GB) (Free:0 GB) CDFS

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 149 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 149 GB 1024 KB
Partition 2 Primary 1872 KB 149 GB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 C NTFS Partition 149 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 2
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

======================================================================================================

****** End Of Log ******





I forgot to mention that I am currently running in Safe Mode with Networking. Should I reboot to standard operations and then run Listparts?

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:14 PM

Posted 12 November 2012 - 09:03 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Edited by narenxp, 12 November 2012 - 10:05 PM.


#5 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 12 November 2012 - 09:47 PM

Ok, something strange happened. I ran TDSSfix and did exactly as you said, but when I rebooted and after the "welcome" page disappeared, it opened a black desktop and stated that TDSSKiller was trying to run. I ran it. It found the rootkit, and rebooted. So far, Everything seems to be running ok. Do I continue the steps or do something different? I test the redirect by going to a site i visit regularly (Paizo.com), and it didn't redirect or load slowly.

EDIT: I've got a message that says "Microsoft Windows Search Indexer stopped working and was closed".

Edited by Mr_Sharpe, 12 November 2012 - 09:55 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:14 PM

Posted 12 November 2012 - 10:06 PM

Please post the logs as instructed.You are still infected

#7 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 12 November 2012 - 10:47 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-12 22:31:22
-----------------------------
22:31:22.478 OS Version: Windows 6.0.6002 Service Pack 2
22:31:22.478 Number of processors: 2 586 0x170A
22:31:22.494 ComputerName: OWNER-PC UserName: Owner
22:31:42.758 Initialize success
22:31:57.001 AVAST engine defs: 12111201
22:32:01.712 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
22:32:01.712 Disk 0 Vendor: SAMSUNG_HN-M160MBB 2AR10001 Size: 152627MB BusType: 3
22:32:01.790 Disk 0 MBR read successfully
22:32:01.790 Disk 0 MBR scan
22:32:01.790 Disk 0 Windows VISTA default MBR code
22:32:01.806 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152625 MB offset 2048
22:32:01.806 Disk 0 scanning sectors +312578048
22:32:01.884 Disk 0 scanning C:\Windows\system32\drivers
22:32:10.042 Service scanning
22:32:32.522 Modules scanning
22:32:35.829 Disk 0 trace - called modules:
22:32:35.860 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys
22:32:35.860 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84b98350]
22:32:35.876 3 CLASSPNP.SYS[87fab8b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x84994b98]
22:32:36.453 AVAST engine scan C:\Windows
22:32:38.965 AVAST engine scan C:\Windows\system32
22:35:28.884 AVAST engine scan C:\Windows\system32\drivers
22:35:41.098 AVAST engine scan C:\Users\Owner
22:36:34.450 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
22:36:34.450 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"



I'm trying to run ESET Online Scanner, but it's saying "Cannot Get Update. Is Proxy Configured?"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:14 PM

Posted 12 November 2012 - 10:56 PM

TDSSkiller log?

I'm trying to run ESET Online Scanner, but it's saying "Cannot Get Update. Is Proxy Configured?"


Run it from safemode with networking

#9 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 12 November 2012 - 10:58 PM

TDSSkiller log?

I'm trying to run ESET Online Scanner, but it's saying "Cannot Get Update. Is Proxy Configured?"


Run it from safemode with networking


That is where I am currently running from. I've tried multiple times and there is still no change. I thank you for your patience with me.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:14 PM

Posted 12 November 2012 - 10:59 PM

TDSSkiller log?

Reboot to normal mode

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#11 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 13 November 2012 - 12:32 AM

23:12:47.0958 3056 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
23:12:48.0678 3056 ============================================================
23:12:48.0678 3056 Current date / time: 2012/11/12 23:12:48.0678
23:12:48.0678 3056 SystemInfo:
23:12:48.0678 3056
23:12:48.0678 3056 OS Version: 6.0.6002 ServicePack: 2.0
23:12:48.0678 3056 Product type: Workstation
23:12:48.0678 3056 ComputerName: OWNER-PC
23:12:48.0678 3056 UserName: Owner
23:12:48.0678 3056 Windows directory: C:\Windows
23:12:48.0678 3056 System windows directory: C:\Windows
23:12:48.0678 3056 Processor architecture: Intel x86
23:12:48.0678 3056 Number of processors: 2
23:12:48.0678 3056 Page size: 0x1000
23:12:48.0678 3056 Boot type: Normal boot
23:12:48.0678 3056 ============================================================
23:12:50.0525 3056 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:12:50.0525 3056 Drive \Device\Harddisk1\DR1 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:12:50.0525 3056 ============================================================
23:12:50.0525 3056 \Device\Harddisk0\DR0:
23:12:50.0525 3056 MBR partitions:
23:12:50.0525 3056 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A18800
23:12:50.0525 3056 \Device\Harddisk1\DR1:
23:12:50.0535 3056 MBR partitions:
23:12:50.0535 3056 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0
23:12:50.0535 3056 ============================================================
23:12:50.0585 3056 C: <-> \Device\Harddisk0\DR0\Partition1
23:12:50.0585 3056 ============================================================
23:12:50.0585 3056 Initialize success
23:12:50.0585 3056 ============================================================
23:12:56.0417 4984 ============================================================
23:12:56.0417 4984 Scan started
23:12:56.0417 4984 Mode: Manual; TDLFS;
23:12:56.0417 4984 ============================================================
23:12:57.0228 4984 ================ Scan system memory ========================
23:12:57.0228 4984 System memory - ok
23:12:57.0228 4984 ================ Scan services =============================
23:12:57.0602 4984 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:12:57.0602 4984 ACPI - ok
23:12:57.0805 4984 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:12:57.0805 4984 AdobeARMservice - ok
23:12:57.0836 4984 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:12:57.0836 4984 adp94xx - ok
23:12:57.0852 4984 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:12:57.0868 4984 adpahci - ok
23:12:57.0883 4984 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:12:57.0883 4984 adpu160m - ok
23:12:57.0899 4984 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:12:57.0899 4984 adpu320 - ok
23:12:57.0930 4984 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:12:57.0930 4984 AeLookupSvc - ok
23:12:57.0992 4984 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
23:12:58.0008 4984 AFD - ok
23:12:58.0055 4984 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:12:58.0055 4984 agp440 - ok
23:12:58.0086 4984 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:12:58.0086 4984 aic78xx - ok
23:12:58.0102 4984 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
23:12:58.0102 4984 ALG - ok
23:12:58.0117 4984 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
23:12:58.0117 4984 aliide - ok
23:12:58.0164 4984 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:12:58.0164 4984 amdagp - ok
23:12:58.0211 4984 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
23:12:58.0211 4984 amdide - ok
23:12:58.0226 4984 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
23:12:58.0226 4984 AmdK7 - ok
23:12:58.0242 4984 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:12:58.0258 4984 AmdK8 - ok
23:12:58.0304 4984 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
23:12:58.0304 4984 Appinfo - ok
23:12:58.0382 4984 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:12:58.0382 4984 Apple Mobile Device - ok
23:12:58.0398 4984 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
23:12:58.0414 4984 arc - ok
23:12:58.0429 4984 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:12:58.0445 4984 arcsas - ok
23:12:58.0445 4984 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:12:58.0460 4984 AsyncMac - ok
23:12:58.0476 4984 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
23:12:58.0476 4984 atapi - ok
23:12:58.0523 4984 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:12:58.0523 4984 AudioEndpointBuilder - ok
23:12:58.0538 4984 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:12:58.0538 4984 Audiosrv - ok
23:12:58.0741 4984 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
23:12:58.0866 4984 AVGIDSAgent - ok
23:12:58.0913 4984 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
23:12:58.0913 4984 AVGIDSDriver - ok
23:12:58.0944 4984 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
23:12:58.0944 4984 AVGIDSHX - ok
23:12:58.0975 4984 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
23:12:58.0975 4984 AVGIDSShim - ok
23:12:59.0022 4984 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
23:12:59.0022 4984 Avgldx86 - ok
23:12:59.0069 4984 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
23:12:59.0069 4984 Avglogx - ok
23:12:59.0100 4984 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
23:12:59.0100 4984 Avgmfx86 - ok
23:12:59.0147 4984 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
23:12:59.0147 4984 Avgrkx86 - ok
23:12:59.0162 4984 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
23:12:59.0178 4984 Avgtdix - ok
23:12:59.0225 4984 [ 57D83B82117C2DDB9D7E9AEA691CEDFC ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
23:12:59.0225 4984 avgtp - ok
23:12:59.0272 4984 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
23:12:59.0287 4984 avgwd - ok
23:12:59.0334 4984 [ 423C7B87E886AC93D22936EA82665F83 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
23:12:59.0334 4984 BCM42RLY - ok
23:12:59.0396 4984 [ 41A70777E892C3DEA606758366566A77 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
23:12:59.0412 4984 BCM43XX - ok
23:12:59.0459 4984 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
23:12:59.0474 4984 Beep - ok
23:12:59.0506 4984 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
23:12:59.0506 4984 BFE - ok
23:12:59.0584 4984 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
23:12:59.0584 4984 BITS - ok
23:12:59.0599 4984 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
23:12:59.0615 4984 blbdrive - ok
23:12:59.0677 4984 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:12:59.0693 4984 Bonjour Service - ok
23:12:59.0755 4984 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:12:59.0755 4984 bowser - ok
23:12:59.0802 4984 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:12:59.0802 4984 BrFiltLo - ok
23:12:59.0818 4984 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:12:59.0818 4984 BrFiltUp - ok
23:12:59.0849 4984 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
23:12:59.0849 4984 Browser - ok
23:12:59.0880 4984 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
23:12:59.0880 4984 Brserid - ok
23:12:59.0896 4984 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:12:59.0911 4984 BrSerWdm - ok
23:12:59.0911 4984 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:12:59.0927 4984 BrUsbMdm - ok
23:12:59.0927 4984 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:12:59.0927 4984 BrUsbSer - ok
23:12:59.0942 4984 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:12:59.0942 4984 BTHMODEM - ok
23:13:00.0020 4984 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:13:00.0020 4984 cdfs - ok
23:13:00.0052 4984 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:13:00.0052 4984 cdrom - ok
23:13:00.0083 4984 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
23:13:00.0098 4984 CertPropSvc - ok
23:13:00.0098 4984 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
23:13:00.0114 4984 circlass - ok
23:13:00.0130 4984 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
23:13:00.0130 4984 CLFS - ok
23:13:00.0192 4984 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:13:00.0208 4984 clr_optimization_v2.0.50727_32 - ok
23:13:00.0317 4984 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:13:00.0364 4984 clr_optimization_v4.0.30319_32 - ok
23:13:00.0410 4984 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:13:00.0410 4984 CmBatt - ok
23:13:00.0442 4984 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:13:00.0442 4984 cmdide - ok
23:13:00.0473 4984 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:13:00.0473 4984 Compbatt - ok
23:13:00.0488 4984 COMSysApp - ok
23:13:00.0520 4984 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:13:00.0535 4984 crcdisk - ok
23:13:00.0551 4984 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
23:13:00.0566 4984 Crusoe - ok
23:13:00.0629 4984 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:13:00.0629 4984 CryptSvc - ok
23:13:00.0676 4984 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:13:00.0691 4984 DcomLaunch - ok
23:13:00.0722 4984 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:13:00.0722 4984 DfsC - ok
23:13:00.0800 4984 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
23:13:00.0847 4984 DFSR - ok
23:13:00.0910 4984 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:13:00.0910 4984 Dhcp - ok
23:13:00.0941 4984 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
23:13:00.0941 4984 disk - ok
23:13:00.0972 4984 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:13:00.0972 4984 Dnscache - ok
23:13:00.0988 4984 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:13:00.0988 4984 dot3svc - ok
23:13:01.0003 4984 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
23:13:01.0019 4984 DPS - ok
23:13:01.0066 4984 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:13:01.0066 4984 drmkaud - ok
23:13:01.0112 4984 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:13:01.0128 4984 DXGKrnl - ok
23:13:01.0159 4984 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
23:13:01.0159 4984 E1G60 - ok
23:13:01.0190 4984 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
23:13:01.0206 4984 EapHost - ok
23:13:01.0253 4984 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
23:13:01.0253 4984 Ecache - ok
23:13:01.0315 4984 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:13:01.0315 4984 ehRecvr - ok
23:13:01.0331 4984 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
23:13:01.0331 4984 ehSched - ok
23:13:01.0331 4984 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
23:13:01.0346 4984 ehstart - ok
23:13:01.0378 4984 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
23:13:01.0378 4984 ElbyCDIO - ok
23:13:01.0440 4984 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:13:01.0456 4984 elxstor - ok
23:13:01.0502 4984 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:13:01.0502 4984 EMDMgmt - ok
23:13:01.0518 4984 [ A81AB23EDDB4693612014D87367D014C ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:13:01.0518 4984 ErrDev - ok
23:13:01.0580 4984 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
23:13:01.0580 4984 EventSystem - ok
23:13:01.0659 4984 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
23:13:01.0659 4984 exfat - ok
23:13:01.0691 4984 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:13:01.0706 4984 fastfat - ok
23:13:01.0722 4984 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:13:01.0737 4984 fdc - ok
23:13:01.0753 4984 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
23:13:01.0753 4984 fdPHost - ok
23:13:01.0769 4984 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
23:13:01.0769 4984 FDResPub - ok
23:13:01.0800 4984 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:13:01.0800 4984 FileInfo - ok
23:13:01.0815 4984 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:13:01.0815 4984 Filetrace - ok
23:13:01.0831 4984 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:13:01.0831 4984 flpydisk - ok
23:13:01.0847 4984 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:13:01.0862 4984 FltMgr - ok
23:13:01.0925 4984 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
23:13:01.0925 4984 FontCache - ok
23:13:01.0971 4984 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:13:01.0987 4984 FontCache3.0.0.0 - ok
23:13:02.0018 4984 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:13:02.0018 4984 Fs_Rec - ok
23:13:02.0034 4984 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:13:02.0049 4984 gagp30kx - ok
23:13:02.0081 4984 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:13:02.0081 4984 GEARAspiWDM - ok
23:13:02.0112 4984 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
23:13:02.0127 4984 gpsvc - ok
23:13:02.0237 4984 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:13:02.0237 4984 gupdate - ok
23:13:02.0252 4984 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:13:02.0252 4984 gupdatem - ok
23:13:02.0299 4984 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:13:02.0315 4984 gusvc - ok
23:13:02.0361 4984 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:13:02.0361 4984 HdAudAddService - ok
23:13:02.0471 4984 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:13:02.0486 4984 HDAudBus - ok
23:13:02.0502 4984 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:13:02.0502 4984 HidBth - ok
23:13:02.0517 4984 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
23:13:02.0517 4984 HidIr - ok
23:13:02.0549 4984 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
23:13:02.0549 4984 hidserv - ok
23:13:02.0549 4984 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:13:02.0564 4984 HidUsb - ok
23:13:02.0595 4984 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:13:02.0595 4984 hkmsvc - ok
23:13:02.0673 4984 [ 7EBEC5EB56B90ED65A8BBD91464E5CFB ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:13:02.0673 4984 HpCISSs - ok
23:13:02.0720 4984 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:13:02.0720 4984 HTTP - ok
23:13:02.0736 4984 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:13:02.0751 4984 i2omp - ok
23:13:02.0798 4984 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:13:02.0814 4984 i8042prt - ok
23:13:02.0845 4984 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:13:02.0845 4984 iaStorV - ok
23:13:02.0923 4984 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:13:02.0939 4984 idsvc - ok
23:13:03.0063 4984 [ 938753888EADDB29D4B3754139EC19E8 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
23:13:03.0157 4984 igfx - ok
23:13:03.0188 4984 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:13:03.0188 4984 iirsp - ok
23:13:03.0235 4984 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
23:13:03.0251 4984 IKEEXT - ok
23:13:03.0266 4984 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
23:13:03.0282 4984 intelide - ok
23:13:03.0313 4984 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:13:03.0313 4984 intelppm - ok
23:13:03.0329 4984 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:13:03.0329 4984 IPBusEnum - ok
23:13:03.0344 4984 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:13:03.0360 4984 IpFilterDriver - ok
23:13:03.0407 4984 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:13:03.0407 4984 iphlpsvc - ok
23:13:03.0422 4984 IpInIp - ok
23:13:03.0453 4984 [ 4B9C0F4D4A3ACC535F9771039ECD6365 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:13:03.0453 4984 IPMIDRV - ok
23:13:03.0469 4984 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:13:03.0469 4984 IPNAT - ok
23:13:03.0531 4984 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:13:03.0547 4984 iPod Service - ok
23:13:03.0563 4984 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:13:03.0563 4984 IRENUM - ok
23:13:03.0594 4984 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:13:03.0594 4984 isapnp - ok
23:13:03.0641 4984 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:13:03.0641 4984 iScsiPrt - ok
23:13:03.0687 4984 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:13:03.0703 4984 iteatapi - ok
23:13:03.0734 4984 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:13:03.0734 4984 iteraid - ok
23:13:03.0750 4984 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:13:03.0765 4984 kbdclass - ok
23:13:03.0781 4984 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:13:03.0781 4984 kbdhid - ok
23:13:03.0828 4984 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
23:13:03.0828 4984 KeyIso - ok
23:13:03.0875 4984 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:13:03.0890 4984 KSecDD - ok
23:13:03.0921 4984 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
23:13:03.0937 4984 KtmRm - ok
23:13:03.0984 4984 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
23:13:03.0984 4984 LanmanServer - ok
23:13:04.0046 4984 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:13:04.0046 4984 LanmanWorkstation - ok
23:13:04.0093 4984 [ E2F1DCF4A68CC6CF694FBFBA1842F4CD ] libusb0 C:\Windows\system32\drivers\libusb0.sys
23:13:04.0124 4984 libusb0 - ok
23:13:04.0155 4984 [ 8B4B572753419FE601220526205F9455 ] libusbd C:\Windows\system32\libusbd-nt.exe
23:13:04.0155 4984 libusbd - ok
23:13:04.0202 4984 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:13:04.0202 4984 lltdio - ok
23:13:04.0233 4984 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:13:04.0233 4984 lltdsvc - ok
23:13:04.0249 4984 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:13:04.0249 4984 lmhosts - ok
23:13:04.0280 4984 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:13:04.0280 4984 LSI_FC - ok
23:13:04.0296 4984 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:13:04.0296 4984 LSI_SAS - ok
23:13:04.0311 4984 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:13:04.0327 4984 LSI_SCSI - ok
23:13:04.0343 4984 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
23:13:04.0343 4984 luafv - ok
23:13:04.0358 4984 MBAMProtector - ok
23:13:04.0436 4984 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:13:04.0436 4984 MBAMScheduler - ok
23:13:04.0467 4984 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:13:04.0483 4984 MBAMService - ok
23:13:04.0592 4984 [ 2241BA95626E55BE848A455273DDB018 ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
23:13:04.0592 4984 McAfee SiteAdvisor Service - ok
23:13:04.0670 4984 [ E6CB119EF2E148EAA1A247343550756E ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
23:13:04.0670 4984 McciCMService - ok
23:13:04.0779 4984 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
23:13:04.0795 4984 McComponentHostService - ok
23:13:04.0826 4984 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:13:04.0826 4984 Mcx2Svc - ok
23:13:04.0889 4984 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
23:13:04.0889 4984 megasas - ok
23:13:04.0920 4984 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
23:13:04.0935 4984 MegaSR - ok
23:13:04.0967 4984 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
23:13:04.0967 4984 MMCSS - ok
23:13:04.0982 4984 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
23:13:04.0982 4984 Modem - ok
23:13:05.0013 4984 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:13:05.0013 4984 monitor - ok
23:13:05.0060 4984 [ 787A5F57812F8B9D76D82C80D077C5CA ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
23:13:05.0060 4984 MotioninJoyXFilter - ok
23:13:05.0076 4984 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:13:05.0076 4984 mouclass - ok
23:13:05.0091 4984 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:13:05.0107 4984 mouhid - ok
23:13:05.0107 4984 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:13:05.0123 4984 MountMgr - ok
23:13:05.0138 4984 [ 5DA347912FD3AF24D7BFB3DE519D4BD0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:13:05.0154 4984 mpio - ok
23:13:05.0169 4984 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:13:05.0169 4984 mpsdrv - ok
23:13:05.0216 4984 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
23:13:05.0216 4984 MpsSvc - ok
23:13:05.0247 4984 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:13:05.0247 4984 Mraid35x - ok
23:13:05.0310 4984 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
23:13:05.0310 4984 MREMP50 - ok
23:13:05.0325 4984 MREMPR5 - ok
23:13:05.0325 4984 MRENDIS5 - ok
23:13:05.0357 4984 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
23:13:05.0357 4984 MRESP50 - ok
23:13:05.0372 4984 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:13:05.0372 4984 MRxDAV - ok
23:13:05.0403 4984 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:13:05.0403 4984 mrxsmb - ok
23:13:05.0435 4984 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:13:05.0435 4984 mrxsmb10 - ok
23:13:05.0450 4984 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:13:05.0450 4984 mrxsmb20 - ok
23:13:05.0513 4984 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
23:13:05.0513 4984 msahci - ok
23:13:05.0528 4984 [ 2C563AEF15B8D0014C36C5F27742AC7B ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:13:05.0528 4984 msdsm - ok
23:13:05.0544 4984 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
23:13:05.0559 4984 MSDTC - ok
23:13:05.0575 4984 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:13:05.0591 4984 Msfs - ok
23:13:05.0622 4984 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:13:05.0637 4984 msisadrv - ok
23:13:05.0715 4984 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:13:05.0715 4984 MSiSCSI - ok
23:13:05.0715 4984 msiserver - ok
23:13:05.0747 4984 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:13:05.0747 4984 MSKSSRV - ok
23:13:05.0762 4984 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:13:05.0778 4984 MSPCLOCK - ok
23:13:05.0793 4984 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:13:05.0793 4984 MSPQM - ok
23:13:05.0809 4984 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:13:05.0809 4984 MsRPC - ok
23:13:05.0840 4984 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:13:05.0840 4984 mssmbios - ok
23:13:05.0856 4984 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:13:05.0856 4984 MSTEE - ok
23:13:05.0871 4984 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
23:13:05.0871 4984 Mup - ok
23:13:05.0918 4984 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
23:13:05.0918 4984 napagent - ok
23:13:05.0949 4984 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:13:05.0949 4984 NativeWifiP - ok
23:13:05.0981 4984 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:13:05.0981 4984 NDIS - ok
23:13:05.0996 4984 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:13:06.0012 4984 NdisTapi - ok
23:13:06.0027 4984 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:13:06.0027 4984 Ndisuio - ok
23:13:06.0059 4984 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:13:06.0074 4984 NdisWan - ok
23:13:06.0090 4984 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:13:06.0090 4984 NDProxy - ok
23:13:06.0105 4984 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:13:06.0105 4984 NetBIOS - ok
23:13:06.0121 4984 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:13:06.0137 4984 netbt - ok
23:13:06.0137 4984 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
23:13:06.0137 4984 Netlogon - ok
23:13:06.0183 4984 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
23:13:06.0183 4984 Netman - ok
23:13:06.0199 4984 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
23:13:06.0199 4984 netprofm - ok
23:13:06.0246 4984 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:13:06.0246 4984 NetTcpPortSharing - ok
23:13:06.0261 4984 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:13:06.0277 4984 nfrd960 - ok
23:13:06.0339 4984 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:13:06.0339 4984 NlaSvc - ok
23:13:06.0355 4984 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:13:06.0371 4984 Npfs - ok
23:13:06.0402 4984 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
23:13:06.0402 4984 nsi - ok
23:13:06.0417 4984 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:13:06.0417 4984 nsiproxy - ok
23:13:06.0464 4984 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:13:06.0495 4984 Ntfs - ok
23:13:06.0527 4984 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
23:13:06.0527 4984 ntrigdigi - ok
23:13:06.0558 4984 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
23:13:06.0573 4984 Null - ok
23:13:06.0589 4984 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:13:06.0589 4984 nvraid - ok
23:13:06.0620 4984 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:13:06.0636 4984 nvstor - ok
23:13:06.0651 4984 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:13:06.0651 4984 nv_agp - ok
23:13:06.0667 4984 NwlnkFlt - ok
23:13:06.0683 4984 NwlnkFwd - ok
23:13:06.0792 4984 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:13:06.0792 4984 odserv - ok
23:13:06.0870 4984 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:13:06.0885 4984 ohci1394 - ok
23:13:07.0135 4984 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:13:07.0135 4984 ose - ok
23:13:07.0229 4984 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:13:07.0244 4984 p2pimsvc - ok
23:13:07.0260 4984 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
23:13:07.0260 4984 p2psvc - ok
23:13:07.0291 4984 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
23:13:07.0291 4984 Parport - ok
23:13:07.0338 4984 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:13:07.0338 4984 partmgr - ok
23:13:07.0353 4984 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
23:13:07.0353 4984 Parvdm - ok
23:13:07.0385 4984 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
23:13:07.0385 4984 PcaSvc - ok
23:13:07.0400 4984 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
23:13:07.0400 4984 pci - ok
23:13:07.0416 4984 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
23:13:07.0416 4984 pciide - ok
23:13:07.0431 4984 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:13:07.0447 4984 pcmcia - ok
23:13:07.0478 4984 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:13:07.0494 4984 PEAUTH - ok
23:13:07.0556 4984 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
23:13:07.0587 4984 pla - ok
23:13:07.0650 4984 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:13:07.0650 4984 PlugPlay - ok
23:13:07.0728 4984 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:13:07.0728 4984 PNRPAutoReg - ok
23:13:07.0775 4984 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:13:07.0775 4984 PNRPsvc - ok
23:13:07.0821 4984 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:13:07.0853 4984 PolicyAgent - ok
23:13:07.0868 4984 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:13:07.0884 4984 PptpMiniport - ok
23:13:07.0931 4984 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
23:13:07.0946 4984 Processor - ok
23:13:08.0009 4984 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
23:13:08.0024 4984 ProfSvc - ok
23:13:08.0055 4984 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:13:08.0055 4984 ProtectedStorage - ok
23:13:08.0071 4984 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:13:08.0071 4984 PSched - ok
23:13:08.0243 4984 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:13:08.0274 4984 ql2300 - ok
23:13:08.0284 4984 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:13:08.0284 4984 ql40xx - ok
23:13:08.0304 4984 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
23:13:08.0304 4984 QWAVE - ok
23:13:08.0344 4984 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:13:08.0344 4984 QWAVEdrv - ok
23:13:08.0354 4984 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:13:08.0354 4984 RasAcd - ok
23:13:08.0374 4984 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
23:13:08.0374 4984 RasAuto - ok
23:13:08.0394 4984 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:13:08.0404 4984 Rasl2tp - ok
23:13:08.0424 4984 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
23:13:08.0424 4984 RasMan - ok
23:13:08.0454 4984 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:13:08.0454 4984 RasPppoe - ok
23:13:08.0464 4984 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:13:08.0474 4984 RasSstp - ok
23:13:08.0504 4984 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:13:08.0514 4984 rdbss - ok
23:13:08.0534 4984 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:13:08.0534 4984 RDPCDD - ok
23:13:08.0554 4984 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:13:08.0564 4984 rdpdr - ok
23:13:08.0574 4984 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:13:08.0574 4984 RDPENCDD - ok
23:13:08.0624 4984 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:13:08.0624 4984 RDPWD - ok
23:13:08.0694 4984 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:13:08.0694 4984 RemoteAccess - ok
23:13:08.0764 4984 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:13:08.0764 4984 RemoteRegistry - ok
23:13:08.0774 4984 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
23:13:08.0784 4984 RpcLocator - ok
23:13:08.0804 4984 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
23:13:08.0814 4984 RpcSs - ok
23:13:08.0834 4984 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:13:08.0844 4984 rspndr - ok
23:13:08.0874 4984 [ D97D8259293B7A82CB891F37F997DF3F ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
23:13:08.0884 4984 RTSTOR - ok
23:13:08.0894 4984 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
23:13:08.0894 4984 SamSs - ok
23:13:08.0914 4984 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:13:08.0924 4984 sbp2port - ok
23:13:08.0944 4984 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:13:08.0954 4984 SCardSvr - ok
23:13:09.0004 4984 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
23:13:09.0014 4984 Schedule - ok
23:13:09.0034 4984 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:13:09.0034 4984 SCPolicySvc - ok
23:13:09.0054 4984 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:13:09.0054 4984 SDRSVC - ok
23:13:09.0084 4984 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:13:09.0084 4984 secdrv - ok
23:13:09.0104 4984 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
23:13:09.0114 4984 seclogon - ok
23:13:09.0134 4984 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
23:13:09.0134 4984 SENS - ok
23:13:09.0144 4984 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:13:09.0144 4984 Serenum - ok
23:13:09.0164 4984 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
23:13:09.0174 4984 Serial - ok
23:13:09.0184 4984 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:13:09.0194 4984 sermouse - ok
23:13:09.0214 4984 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
23:13:09.0224 4984 SessionEnv - ok
23:13:09.0244 4984 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:13:09.0244 4984 sffdisk - ok
23:13:09.0264 4984 [ E5EAFE85815BD89095FEF3144A09AB68 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:13:09.0284 4984 sffp_mmc - ok
23:13:09.0294 4984 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:13:09.0294 4984 sffp_sd - ok
23:13:09.0334 4984 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:13:09.0334 4984 sfloppy - ok
23:13:09.0374 4984 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:13:09.0374 4984 SharedAccess - ok
23:13:09.0424 4984 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:13:09.0434 4984 ShellHWDetection - ok
23:13:09.0454 4984 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:13:09.0454 4984 sisagp - ok
23:13:09.0484 4984 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:13:09.0484 4984 SiSRaid2 - ok
23:13:09.0504 4984 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:13:09.0514 4984 SiSRaid4 - ok
23:13:09.0594 4984 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
23:13:09.0604 4984 SkypeUpdate - ok
23:13:09.0784 4984 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
23:13:09.0894 4984 slsvc - ok
23:13:09.0944 4984 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:13:09.0954 4984 SLUINotify - ok
23:13:09.0984 4984 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:13:09.0984 4984 Smb - ok
23:13:10.0034 4984 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:13:10.0034 4984 SNMPTRAP - ok
23:13:10.0044 4984 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
23:13:10.0064 4984 spldr - ok
23:13:10.0104 4984 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
23:13:10.0104 4984 Spooler - ok
23:13:10.0144 4984 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:13:10.0154 4984 srv - ok
23:13:10.0194 4984 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:13:10.0194 4984 srv2 - ok
23:13:10.0214 4984 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:13:10.0224 4984 srvnet - ok
23:13:10.0294 4984 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
23:13:10.0294 4984 ssadbus - ok
23:13:10.0354 4984 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
23:13:10.0354 4984 ssadmdfl - ok
23:13:10.0404 4984 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
23:13:10.0414 4984 ssadmdm - ok
23:13:10.0454 4984 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
23:13:10.0464 4984 ssadserd - ok
23:13:10.0494 4984 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:13:10.0504 4984 SSDPSRV - ok
23:13:10.0534 4984 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:13:10.0534 4984 SstpSvc - ok
23:13:10.0574 4984 Steam Client Service - ok
23:13:10.0634 4984 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
23:13:10.0644 4984 stisvc - ok
23:13:10.0674 4984 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:13:10.0674 4984 swenum - ok
23:13:10.0714 4984 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
23:13:10.0724 4984 swprv - ok
23:13:10.0737 4984 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:13:10.0740 4984 Symc8xx - ok
23:13:10.0797 4984 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:13:10.0800 4984 Sym_hi - ok
23:13:10.0821 4984 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:13:10.0826 4984 Sym_u3 - ok
23:13:10.0900 4984 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
23:13:10.0910 4984 SysMain - ok
23:13:10.0928 4984 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:13:10.0932 4984 TabletInputService - ok
23:13:10.0948 4984 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:13:10.0954 4984 TapiSrv - ok
23:13:10.0979 4984 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
23:13:10.0982 4984 TBS - ok
23:13:11.0034 4984 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:13:11.0051 4984 Tcpip - ok
23:13:11.0073 4984 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:13:11.0083 4984 Tcpip6 - ok
23:13:11.0140 4984 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:13:11.0142 4984 tcpipreg - ok
23:13:11.0182 4984 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:13:11.0185 4984 TDPIPE - ok
23:13:11.0212 4984 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:13:11.0215 4984 TDTCP - ok
23:13:11.0242 4984 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:13:11.0245 4984 tdx - ok
23:13:11.0273 4984 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:13:11.0277 4984 TermDD - ok
23:13:11.0314 4984 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
23:13:11.0322 4984 TermService - ok
23:13:11.0341 4984 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
23:13:11.0346 4984 Themes - ok
23:13:11.0364 4984 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
23:13:11.0367 4984 THREADORDER - ok
23:13:11.0385 4984 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
23:13:11.0389 4984 TrkWks - ok
23:13:11.0443 4984 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:13:11.0444 4984 TrustedInstaller - ok
23:13:11.0468 4984 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:13:11.0471 4984 tssecsrv - ok
23:13:11.0651 4984 [ 9DF6AD6FC51A802808621CBFB2A88453 ] TuneUp.UtilitiesSvc C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
23:13:11.0670 4984 TuneUp.UtilitiesSvc - ok
23:13:11.0684 4984 [ 94C4CD2D19B8C4137A46261F229FEC24 ] TuneUpUtilitiesDrv C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys
23:13:11.0686 4984 TuneUpUtilitiesDrv - ok
23:13:11.0701 4984 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:13:11.0704 4984 tunmp - ok
23:13:11.0750 4984 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:13:11.0752 4984 tunnel - ok
23:13:11.0784 4984 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:13:11.0788 4984 uagp35 - ok
23:13:11.0814 4984 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:13:11.0822 4984 udfs - ok
23:13:11.0882 4984 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:13:11.0888 4984 UI0Detect - ok
23:13:11.0910 4984 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:13:11.0913 4984 uliagpkx - ok
23:13:11.0942 4984 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:13:11.0950 4984 uliahci - ok
23:13:11.0974 4984 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:13:11.0978 4984 UlSata - ok
23:13:12.0001 4984 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:13:12.0005 4984 ulsata2 - ok
23:13:12.0031 4984 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:13:12.0033 4984 umbus - ok
23:13:12.0068 4984 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
23:13:12.0074 4984 upnphost - ok
23:13:12.0119 4984 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:13:12.0121 4984 USBAAPL - ok
23:13:12.0159 4984 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:13:12.0163 4984 usbccgp - ok
23:13:12.0186 4984 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:13:12.0191 4984 usbcir - ok
23:13:12.0240 4984 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:13:12.0240 4984 usbehci - ok
23:13:12.0256 4984 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:13:12.0256 4984 usbhub - ok
23:13:12.0271 4984 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:13:12.0271 4984 usbohci - ok
23:13:12.0302 4984 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:13:12.0302 4984 usbprint - ok
23:13:12.0334 4984 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:13:12.0334 4984 USBSTOR - ok
23:13:12.0365 4984 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:13:12.0365 4984 usbuhci - ok
23:13:12.0396 4984 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:13:12.0412 4984 usbvideo - ok
23:13:12.0443 4984 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
23:13:12.0443 4984 UxSms - ok
23:13:12.0490 4984 [ FCE98C43B5C5DB8E0DA8EA0E2B45E044 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
23:13:12.0490 4984 VClone - ok
23:13:12.0536 4984 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
23:13:12.0552 4984 vds - ok
23:13:12.0583 4984 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:13:12.0583 4984 vga - ok
23:13:12.0614 4984 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
23:13:12.0614 4984 VgaSave - ok
23:13:12.0646 4984 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:13:12.0646 4984 viaagp - ok
23:13:12.0677 4984 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
23:13:12.0677 4984 ViaC7 - ok
23:13:12.0692 4984 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
23:13:12.0708 4984 viaide - ok
23:13:12.0724 4984 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:13:12.0724 4984 volmgr - ok
23:13:12.0802 4984 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:13:12.0802 4984 volmgrx - ok
23:13:12.0833 4984 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:13:12.0848 4984 volsnap - ok
23:13:12.0911 4984 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:13:12.0911 4984 vsmraid - ok
23:13:12.0973 4984 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
23:13:12.0989 4984 VSS - ok
23:13:13.0098 4984 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
23:13:13.0098 4984 vToolbarUpdater13.2.0 - ok
23:13:13.0254 4984 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
23:13:13.0254 4984 W32Time - ok
23:13:13.0301 4984 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:13:13.0332 4984 WacomPen - ok
23:13:13.0379 4984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:13:13.0410 4984 Wanarp - ok
23:13:13.0441 4984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:13:13.0441 4984 Wanarpv6 - ok
23:13:13.0488 4984 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:13:13.0504 4984 wcncsvc - ok
23:13:13.0535 4984 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:13:13.0535 4984 WcsPlugInService - ok
23:13:13.0550 4984 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
23:13:13.0550 4984 Wd - ok
23:13:13.0613 4984 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:13:13.0613 4984 Wdf01000 - ok
23:13:13.0628 4984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:13:13.0644 4984 WdiServiceHost - ok
23:13:13.0644 4984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:13:13.0644 4984 WdiSystemHost - ok
23:13:13.0660 4984 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
23:13:13.0675 4984 WebClient - ok
23:13:13.0691 4984 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:13:13.0691 4984 Wecsvc - ok
23:13:13.0753 4984 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:13:13.0753 4984 wercplsupport - ok
23:13:13.0831 4984 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
23:13:13.0847 4984 WerSvc - ok
23:13:13.0909 4984 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
23:13:13.0909 4984 WinDefend - ok
23:13:13.0909 4984 WinHttpAutoProxySvc - ok
23:13:13.0972 4984 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:13:13.0972 4984 Winmgmt - ok
23:13:14.0034 4984 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
23:13:14.0050 4984 WinRM - ok
23:13:14.0159 4984 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:13:14.0159 4984 Wlansvc - ok
23:13:14.0284 4984 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:13:14.0315 4984 wlidsvc - ok
23:13:14.0330 4984 wltrysvc - ok
23:13:14.0362 4984 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:13:14.0362 4984 WmiAcpi - ok
23:13:14.0393 4984 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:13:14.0393 4984 wmiApSrv - ok
23:13:14.0471 4984 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:13:14.0471 4984 WMPNetworkSvc - ok
23:13:14.0549 4984 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:13:14.0549 4984 WPCSvc - ok
23:13:14.0596 4984 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:13:14.0596 4984 WPDBusEnum - ok
23:13:14.0752 4984 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:13:14.0752 4984 WPFFontCache_v0400 - ok
23:13:14.0798 4984 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:13:14.0798 4984 ws2ifsl - ok
23:13:14.0830 4984 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
23:13:14.0830 4984 wscsvc - ok
23:13:14.0845 4984 WSearch - ok
23:13:14.0939 4984 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
23:13:14.0970 4984 wuauserv - ok
23:13:15.0032 4984 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:13:15.0032 4984 WUDFRd - ok
23:13:15.0064 4984 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:13:15.0064 4984 wudfsvc - ok
23:13:15.0110 4984 [ EE9144207EE0211EB5656BA6808AC4A0 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
23:13:15.0110 4984 xusb21 - ok
23:13:15.0126 4984 yksvc - ok
23:13:15.0157 4984 [ 1A51DF1A5C658D534ED980D18F7982DE ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
23:13:15.0173 4984 yukonwlh - ok
23:13:15.0188 4984 ================ Scan global ===============================
23:13:15.0204 4984 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
23:13:15.0251 4984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:13:15.0266 4984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:13:15.0298 4984 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
23:13:15.0313 4984 [Global] - ok
23:13:15.0313 4984 ================ Scan MBR ==================================
23:13:15.0329 4984 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:13:15.0656 4984 \Device\Harddisk0\DR0 - ok
23:13:15.0656 4984 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
23:13:15.0828 4984 \Device\Harddisk1\DR1 - ok
23:13:15.0828 4984 ================ Scan VBR ==================================
23:13:15.0859 4984 [ 2F8DA9B93AADB7B6FC19685C9CA7A667 ] \Device\Harddisk0\DR0\Partition1
23:13:15.0875 4984 \Device\Harddisk0\DR0\Partition1 - ok
23:13:15.0875 4984 [ CCC7DB5B72371717334F860437454301 ] \Device\Harddisk1\DR1\Partition1
23:13:15.0875 4984 \Device\Harddisk1\DR1\Partition1 - ok
23:13:15.0875 4984 ============================================================
23:13:15.0875 4984 Scan finished
23:13:15.0875 4984 ============================================================
23:13:15.0890 5808 Detected object count: 0
23:13:15.0890 5808 Actual detected object count: 0
23:15:17.0903 4192 ============================================================
23:15:17.0903 4192 Scan started
23:15:17.0903 4192 Mode: Manual;
23:15:17.0903 4192 ============================================================
23:15:18.0324 4192 ================ Scan system memory ========================
23:15:18.0324 4192 System memory - ok
23:15:18.0324 4192 ================ Scan services =============================
23:15:18.0480 4192 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
23:15:18.0480 4192 ACPI - ok
23:15:18.0636 4192 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:15:18.0636 4192 AdobeARMservice - ok
23:15:18.0668 4192 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
23:15:18.0668 4192 adp94xx - ok
23:15:18.0683 4192 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
23:15:18.0699 4192 adpahci - ok
23:15:18.0714 4192 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
23:15:18.0714 4192 adpu160m - ok
23:15:18.0730 4192 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
23:15:18.0730 4192 adpu320 - ok
23:15:18.0761 4192 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:15:18.0761 4192 AeLookupSvc - ok
23:15:18.0824 4192 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
23:15:18.0824 4192 AFD - ok
23:15:18.0855 4192 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:15:18.0855 4192 agp440 - ok
23:15:18.0870 4192 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
23:15:18.0886 4192 aic78xx - ok
23:15:18.0902 4192 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
23:15:18.0902 4192 ALG - ok
23:15:18.0902 4192 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
23:15:18.0902 4192 aliide - ok
23:15:18.0948 4192 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
23:15:18.0948 4192 amdagp - ok
23:15:18.0964 4192 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
23:15:18.0964 4192 amdide - ok
23:15:18.0980 4192 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
23:15:18.0980 4192 AmdK7 - ok
23:15:18.0995 4192 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
23:15:19.0011 4192 AmdK8 - ok
23:15:19.0058 4192 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
23:15:19.0058 4192 Appinfo - ok
23:15:19.0182 4192 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:15:19.0182 4192 Apple Mobile Device - ok
23:15:19.0198 4192 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
23:15:19.0214 4192 arc - ok
23:15:19.0229 4192 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
23:15:19.0229 4192 arcsas - ok
23:15:19.0245 4192 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:15:19.0245 4192 AsyncMac - ok
23:15:19.0276 4192 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
23:15:19.0276 4192 atapi - ok
23:15:19.0323 4192 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:15:19.0323 4192 AudioEndpointBuilder - ok
23:15:19.0323 4192 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
23:15:19.0338 4192 Audiosrv - ok
23:15:20.0098 4192 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
23:15:20.0148 4192 AVGIDSAgent - ok
23:15:20.0198 4192 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
23:15:20.0198 4192 AVGIDSDriver - ok
23:15:20.0218 4192 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
23:15:20.0218 4192 AVGIDSHX - ok
23:15:20.0246 4192 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
23:15:20.0248 4192 AVGIDSShim - ok
23:15:20.0284 4192 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
23:15:20.0287 4192 Avgldx86 - ok
23:15:20.0333 4192 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
23:15:20.0336 4192 Avglogx - ok
23:15:20.0365 4192 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
23:15:20.0367 4192 Avgmfx86 - ok
23:15:20.0394 4192 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
23:15:20.0396 4192 Avgrkx86 - ok
23:15:20.0422 4192 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
23:15:20.0425 4192 Avgtdix - ok
23:15:20.0443 4192 [ 57D83B82117C2DDB9D7E9AEA691CEDFC ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
23:15:20.0444 4192 avgtp - ok
23:15:20.0542 4192 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
23:15:20.0545 4192 avgwd - ok
23:15:20.0583 4192 [ 423C7B87E886AC93D22936EA82665F83 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
23:15:20.0584 4192 BCM42RLY - ok
23:15:20.0639 4192 [ 41A70777E892C3DEA606758366566A77 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
23:15:20.0654 4192 BCM43XX - ok
23:15:20.0686 4192 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
23:15:20.0687 4192 Beep - ok
23:15:20.0752 4192 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
23:15:20.0756 4192 BFE - ok
23:15:20.0802 4192 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
23:15:20.0813 4192 BITS - ok
23:15:20.0827 4192 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
23:15:20.0829 4192 blbdrive - ok
23:15:20.0904 4192 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:15:20.0909 4192 Bonjour Service - ok
23:15:20.0973 4192 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:15:20.0975 4192 bowser - ok
23:15:21.0055 4192 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
23:15:21.0062 4192 BrFiltLo - ok
23:15:21.0107 4192 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
23:15:21.0109 4192 BrFiltUp - ok
23:15:21.0175 4192 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
23:15:21.0176 4192 Browser - ok
23:15:21.0243 4192 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
23:15:21.0245 4192 Brserid - ok
23:15:21.0278 4192 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
23:15:21.0280 4192 BrSerWdm - ok
23:15:21.0350 4192 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
23:15:21.0351 4192 BrUsbMdm - ok
23:15:21.0383 4192 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
23:15:21.0385 4192 BrUsbSer - ok
23:15:21.0422 4192 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
23:15:21.0423 4192 BTHMODEM - ok
23:15:21.0503 4192 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:15:21.0503 4192 cdfs - ok
23:15:21.0550 4192 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:15:21.0550 4192 cdrom - ok
23:15:21.0628 4192 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
23:15:21.0643 4192 CertPropSvc - ok
23:15:21.0674 4192 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
23:15:21.0674 4192 circlass - ok
23:15:21.0784 4192 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
23:15:21.0784 4192 CLFS - ok
23:15:21.0955 4192 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:15:21.0971 4192 clr_optimization_v2.0.50727_32 - ok
23:15:22.0049 4192 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:15:22.0064 4192 clr_optimization_v4.0.30319_32 - ok
23:15:22.0080 4192 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:15:22.0080 4192 CmBatt - ok
23:15:22.0111 4192 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:15:22.0111 4192 cmdide - ok
23:15:22.0158 4192 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:15:22.0158 4192 Compbatt - ok
23:15:22.0174 4192 COMSysApp - ok
23:15:22.0189 4192 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
23:15:22.0189 4192 crcdisk - ok
23:15:22.0220 4192 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
23:15:22.0220 4192 Crusoe - ok
23:15:22.0283 4192 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:15:22.0283 4192 CryptSvc - ok
23:15:22.0314 4192 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:15:22.0330 4192 DcomLaunch - ok
23:15:22.0376 4192 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:15:22.0376 4192 DfsC - ok
23:15:22.0564 4192 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
23:15:22.0579 4192 DFSR - ok
23:15:22.0605 4192 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
23:15:22.0605 4192 Dhcp - ok
23:15:22.0625 4192 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
23:15:22.0625 4192 disk - ok
23:15:22.0665 4192 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:15:22.0665 4192 Dnscache - ok
23:15:22.0695 4192 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:15:22.0695 4192 dot3svc - ok
23:15:22.0705 4192 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
23:15:22.0715 4192 DPS - ok
23:15:22.0755 4192 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:15:22.0755 4192 drmkaud - ok
23:15:22.0835 4192 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:15:22.0845 4192 DXGKrnl - ok
23:15:22.0875 4192 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
23:15:22.0875 4192 E1G60 - ok
23:15:22.0895 4192 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
23:15:22.0895 4192 EapHost - ok
23:15:22.0915 4192 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
23:15:22.0915 4192 Ecache - ok
23:15:22.0985 4192 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:15:22.0985 4192 ehRecvr - ok
23:15:23.0025 4192 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
23:15:23.0025 4192 ehSched - ok
23:15:23.0095 4192 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
23:15:23.0095 4192 ehstart - ok
23:15:23.0155 4192 [ D71233D7CCC2E64F8715A20428D5A33B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
23:15:23.0165 4192 ElbyCDIO - ok
23:15:23.0245 4192 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
23:15:23.0245 4192 elxstor - ok
23:15:23.0285 4192 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
23:15:23.0295 4192 EMDMgmt - ok
23:15:23.0305 4192 [ A81AB23EDDB4693612014D87367D014C ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:15:23.0305 4192 ErrDev - ok
23:15:23.0335 4192 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
23:15:23.0335 4192 EventSystem - ok
23:15:23.0365 4192 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
23:15:23.0365 4192 exfat - ok
23:15:23.0385 4192 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:15:23.0385 4192 fastfat - ok
23:15:23.0425 4192 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:15:23.0425 4192 fdc - ok
23:15:23.0435 4192 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
23:15:23.0445 4192 fdPHost - ok
23:15:23.0455 4192 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
23:15:23.0455 4192 FDResPub - ok
23:15:23.0475 4192 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:15:23.0475 4192 FileInfo - ok
23:15:23.0485 4192 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:15:23.0485 4192 Filetrace - ok
23:15:23.0495 4192 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:15:23.0495 4192 flpydisk - ok
23:15:23.0505 4192 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:15:23.0515 4192 FltMgr - ok
23:15:23.0575 4192 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
23:15:23.0585 4192 FontCache - ok
23:15:23.0635 4192 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:15:23.0635 4192 FontCache3.0.0.0 - ok
23:15:23.0665 4192 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:15:23.0665 4192 Fs_Rec - ok
23:15:23.0685 4192 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
23:15:23.0685 4192 gagp30kx - ok
23:15:23.0725 4192 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:15:23.0725 4192 GEARAspiWDM - ok
23:15:23.0885 4192 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
23:15:23.0895 4192 gpsvc - ok
23:15:23.0975 4192 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
23:15:23.0975 4192 gupdate - ok
23:15:23.0985 4192 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
23:15:23.0985 4192 gupdatem - ok
23:15:24.0035 4192 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:15:24.0045 4192 gusvc - ok
23:15:24.0085 4192 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:15:24.0085 4192 HdAudAddService - ok
23:15:24.0125 4192 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:15:24.0135 4192 HDAudBus - ok
23:15:24.0155 4192 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
23:15:24.0155 4192 HidBth - ok
23:15:24.0185 4192 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
23:15:24.0185 4192 HidIr - ok
23:15:24.0225 4192 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
23:15:24.0225 4192 hidserv - ok
23:15:24.0245 4192 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:15:24.0245 4192 HidUsb - ok
23:15:24.0282 4192 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:15:24.0284 4192 hkmsvc - ok
23:15:24.0311 4192 [ 7EBEC5EB56B90ED65A8BBD91464E5CFB ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
23:15:24.0312 4192 HpCISSs - ok
23:15:24.0363 4192 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:15:24.0368 4192 HTTP - ok
23:15:24.0384 4192 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
23:15:24.0385 4192 i2omp - ok
23:15:24.0412 4192 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:15:24.0414 4192 i8042prt - ok
23:15:24.0493 4192 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
23:15:24.0497 4192 iaStorV - ok
23:15:24.0597 4192 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:15:24.0606 4192 idsvc - ok
23:15:25.0340 4192 [ 938753888EADDB29D4B3754139EC19E8 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
23:15:25.0387 4192 igfx - ok
23:15:25.0433 4192 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
23:15:25.0433 4192 iirsp - ok
23:15:25.0558 4192 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
23:15:25.0558 4192 IKEEXT - ok
23:15:25.0621 4192 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
23:15:25.0621 4192 intelide - ok
23:15:25.0652 4192 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:15:25.0652 4192 intelppm - ok
23:15:25.0699 4192 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:15:25.0714 4192 IPBusEnum - ok
23:15:25.0777 4192 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:15:25.0777 4192 IpFilterDriver - ok
23:15:25.0855 4192 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:15:25.0870 4192 iphlpsvc - ok
23:15:25.0870 4192 IpInIp - ok
23:15:25.0901 4192 [ 4B9C0F4D4A3ACC535F9771039ECD6365 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
23:15:25.0901 4192 IPMIDRV - ok
23:15:25.0933 4192 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
23:15:25.0933 4192 IPNAT - ok
23:15:26.0089 4192 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:15:26.0089 4192 iPod Service - ok
23:15:26.0120 4192 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:15:26.0120 4192 IRENUM - ok
23:15:26.0151 4192 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:15:26.0151 4192 isapnp - ok
23:15:26.0182 4192 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:15:26.0182 4192 iScsiPrt - ok
23:15:26.0213 4192 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
23:15:26.0213 4192 iteatapi - ok
23:15:26.0229 4192 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
23:15:26.0229 4192 iteraid - ok
23:15:26.0260 4192 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:15:26.0260 4192 kbdclass - ok
23:15:26.0323 4192 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:15:26.0323 4192 kbdhid - ok
23:15:26.0385 4192 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
23:15:26.0401 4192 KeyIso - ok
23:15:26.0447 4192 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:15:26.0463 4192 KSecDD - ok
23:15:26.0557 4192 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
23:15:26.0557 4192 KtmRm - ok
23:15:26.0619 4192 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
23:15:26.0619 4192 LanmanServer - ok
23:15:26.0697 4192 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:15:26.0713 4192 LanmanWorkstation - ok
23:15:26.0759 4192 [ E2F1DCF4A68CC6CF694FBFBA1842F4CD ] libusb0 C:\Windows\system32\drivers\libusb0.sys
23:15:26.0759 4192 libusb0 - ok
23:15:26.0822 4192 [ 8B4B572753419FE601220526205F9455 ] libusbd C:\Windows\system32\libusbd-nt.exe
23:15:26.0822 4192 libusbd - ok
23:15:26.0900 4192 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:15:26.0900 4192 lltdio - ok
23:15:26.0993 4192 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:15:26.0993 4192 lltdsvc - ok
23:15:27.0009 4192 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:15:27.0025 4192 lmhosts - ok
23:15:27.0087 4192 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
23:15:27.0087 4192 LSI_FC - ok
23:15:27.0118 4192 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
23:15:27.0134 4192 LSI_SAS - ok
23:15:27.0165 4192 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
23:15:27.0165 4192 LSI_SCSI - ok
23:15:27.0212 4192 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
23:15:27.0212 4192 luafv - ok
23:15:27.0212 4192 MBAMProtector - ok
23:15:27.0368 4192 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:15:27.0383 4192 MBAMScheduler - ok
23:15:27.0415 4192 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:15:27.0430 4192 MBAMService - ok
23:15:27.0508 4192 [ 2241BA95626E55BE848A455273DDB018 ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
23:15:27.0524 4192 McAfee SiteAdvisor Service - ok
23:15:27.0602 4192 [ E6CB119EF2E148EAA1A247343550756E ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
23:15:27.0617 4192 McciCMService - ok
23:15:27.0711 4192 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
23:15:27.0711 4192 McComponentHostService - ok
23:15:27.0758 4192 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:15:27.0758 4192 Mcx2Svc - ok
23:15:27.0789 4192 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
23:15:27.0805 4192 megasas - ok
23:15:27.0836 4192 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
23:15:27.0851 4192 MegaSR - ok
23:15:27.0898 4192 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
23:15:27.0898 4192 MMCSS - ok
23:15:27.0929 4192 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
23:15:27.0945 4192 Modem - ok
23:15:27.0992 4192 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:15:27.0992 4192 monitor - ok
23:15:28.0039 4192 [ 787A5F57812F8B9D76D82C80D077C5CA ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
23:15:28.0039 4192 MotioninJoyXFilter - ok
23:15:28.0085 4192 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:15:28.0101 4192 mouclass - ok
23:15:28.0132 4192 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:15:28.0132 4192 mouhid - ok
23:15:28.0163 4192 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
23:15:28.0163 4192 MountMgr - ok
23:15:28.0195 4192 [ 5DA347912FD3AF24D7BFB3DE519D4BD0 ] mpio C:\Windows\system32\drivers\mpio.sys
23:15:28.0195 4192 mpio - ok
23:15:28.0257 4192 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:15:28.0257 4192 mpsdrv - ok
23:15:28.0304 4192 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
23:15:28.0319 4192 MpsSvc - ok
23:15:28.0335 4192 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
23:15:28.0351 4192 Mraid35x - ok
23:15:28.0382 4192 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
23:15:28.0382 4192 MREMP50 - ok
23:15:28.0382 4192 MREMPR5 - ok
23:15:28.0397 4192 MRENDIS5 - ok
23:15:28.0413 4192 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
23:15:28.0413 4192 MRESP50 - ok
23:15:28.0429 4192 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:15:28.0429 4192 MRxDAV - ok
23:15:28.0475 4192 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:15:28.0475 4192 mrxsmb - ok
23:15:28.0491 4192 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:15:28.0491 4192 mrxsmb10 - ok
23:15:28.0507 4192 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:15:28.0538 4192 mrxsmb20 - ok
23:15:28.0569 4192 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
23:15:28.0569 4192 msahci - ok
23:15:28.0600 4192 [ 2C563AEF15B8D0014C36C5F27742AC7B ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:15:28.0616 4192 msdsm - ok
23:15:28.0631 4192 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
23:15:28.0647 4192 MSDTC - ok
23:15:28.0694 4192 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:15:28.0694 4192 Msfs - ok
23:15:28.0694 4192 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:15:28.0709 4192 msisadrv - ok
23:15:28.0741 4192 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:15:28.0741 4192 MSiSCSI - ok
23:15:28.0756 4192 msiserver - ok
23:15:28.0772 4192 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:15:28.0772 4192 MSKSSRV - ok
23:15:28.0787 4192 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:15:28.0787 4192 MSPCLOCK - ok
23:15:28.0803 4192 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:15:28.0803 4192 MSPQM - ok
23:15:28.0850 4192 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:15:28.0865 4192 MsRPC - ok
23:15:28.0897 4192 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:15:28.0897 4192 mssmbios - ok
23:15:28.0912 4192 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:15:28.0912 4192 MSTEE - ok
23:15:28.0928 4192 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
23:15:28.0928 4192 Mup - ok
23:15:28.0975 4192 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
23:15:28.0975 4192 napagent - ok
23:15:29.0006 4192 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:15:29.0021 4192 NativeWifiP - ok
23:15:29.0099 4192 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:15:29.0099 4192 NDIS - ok
23:15:29.0131 4192 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:15:29.0131 4192 NdisTapi - ok
23:15:29.0162 4192 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:15:29.0162 4192 Ndisuio - ok
23:15:29.0193 4192 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:15:29.0193 4192 NdisWan - ok
23:15:29.0209 4192 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:15:29.0209 4192 NDProxy - ok
23:15:29.0240 4192 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:15:29.0240 4192 NetBIOS - ok
23:15:29.0302 4192 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
23:15:29.0302 4192 netbt - ok
23:15:29.0302 4192 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
23:15:29.0302 4192 Netlogon - ok
23:15:29.0365 4192 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
23:15:29.0365 4192 Netman - ok
23:15:29.0411 4192 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
23:15:29.0427 4192 netprofm - ok
23:15:29.0458 4192 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:15:29.0458 4192 NetTcpPortSharing - ok
23:15:29.0489 4192 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
23:15:29.0489 4192 nfrd960 - ok
23:15:29.0521 4192 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:15:29.0521 4192 NlaSvc - ok
23:15:29.0536 4192 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:15:29.0536 4192 Npfs - ok
23:15:29.0567 4192 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
23:15:29.0567 4192 nsi - ok
23:15:29.0583 4192 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:15:29.0583 4192 nsiproxy - ok
23:15:29.0614 4192 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:15:29.0630 4192 Ntfs - ok
23:15:29.0661 4192 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
23:15:29.0661 4192 ntrigdigi - ok
23:15:29.0677 4192 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
23:15:29.0677 4192 Null - ok
23:15:29.0692 4192 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:15:29.0708 4192 nvraid - ok
23:15:29.0739 4192 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:15:29.0739 4192 nvstor - ok
23:15:29.0755 4192 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:15:29.0755 4192 nv_agp - ok
23:15:29.0755 4192 NwlnkFlt - ok
23:15:29.0770 4192 NwlnkFwd - ok
23:15:29.0848 4192 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:15:29.0864 4192 odserv - ok
23:15:29.0879 4192 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:15:29.0879 4192 ohci1394 - ok
23:15:29.0926 4192 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:15:29.0942 4192 ose - ok
23:15:29.0989 4192 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
23:15:30.0004 4192 p2pimsvc - ok
23:15:30.0020 4192 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
23:15:30.0035 4192 p2psvc - ok
23:15:30.0067 4192 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
23:15:30.0067 4192 Parport - ok
23:15:30.0113 4192 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:15:30.0129 4192 partmgr - ok
23:15:30.0191 4192 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
23:15:30.0207 4192 Parvdm - ok
23:15:30.0223 4192 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
23:15:30.0223 4192 PcaSvc - ok
23:15:30.0238 4192 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
23:15:30.0238 4192 pci - ok
23:15:30.0254 4192 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
23:15:30.0254 4192 pciide - ok
23:15:30.0285 4192 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
23:15:30.0285 4192 pcmcia - ok
23:15:30.0316 4192 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:15:30.0332 4192 PEAUTH - ok
23:15:30.0394 4192 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
23:15:30.0441 4192 pla - ok
23:15:30.0472 4192 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:15:30.0488 4192 PlugPlay - ok
23:15:30.0519 4192 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
23:15:30.0519 4192 PNRPAutoReg - ok
23:15:30.0535 4192 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
23:15:30.0550 4192 PNRPsvc - ok
23:15:30.0597 4192 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:15:30.0597 4192 PolicyAgent - ok
23:15:30.0644 4192 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:15:30.0644 4192 PptpMiniport - ok
23:15:30.0675 4192 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
23:15:30.0675 4192 Processor - ok
23:15:30.0706 4192 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
23:15:30.0722 4192 ProfSvc - ok
23:15:30.0737 4192 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:15:30.0753 4192 ProtectedStorage - ok
23:15:30.0769 4192 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
23:15:30.0769 4192 PSched - ok
23:15:30.0831 4192 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
23:15:30.0847 4192 ql2300 - ok
23:15:30.0878 4192 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
23:15:30.0893 4192 ql40xx - ok
23:15:30.0925 4192 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
23:15:30.0940 4192 QWAVE - ok
23:15:30.0971 4192 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:15:30.0971 4192 QWAVEdrv - ok
23:15:30.0987 4192 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:15:30.0987 4192 RasAcd - ok
23:15:31.0003 4192 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
23:15:31.0003 4192 RasAuto - ok
23:15:31.0018 4192 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:15:31.0018 4192 Rasl2tp - ok
23:15:31.0049 4192 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
23:15:31.0065 4192 RasMan - ok
23:15:31.0081 4192 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:15:31.0081 4192 RasPppoe - ok
23:15:31.0081 4192 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:15:31.0081 4192 RasSstp - ok
23:15:31.0143 4192 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:15:31.0159 4192 rdbss - ok
23:15:31.0221 4192 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:15:31.0221 4192 RDPCDD - ok
23:15:31.0252 4192 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
23:15:31.0252 4192 rdpdr - ok
23:15:31.0268 4192 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:15:31.0268 4192 RDPENCDD - ok
23:15:31.0315 4192 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:15:31.0315 4192 RDPWD - ok
23:15:31.0346 4192 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:15:31.0377 4192 RemoteAccess - ok
23:15:31.0408 4192 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:15:31.0408 4192 RemoteRegistry - ok
23:15:31.0455 4192 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
23:15:31.0455 4192 RpcLocator - ok
23:15:31.0471 4192 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
23:15:31.0486 4192 RpcSs - ok
23:15:31.0502 4192 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:15:31.0517 4192 rspndr - ok
23:15:31.0533 4192 [ D97D8259293B7A82CB891F37F997DF3F ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
23:15:31.0533 4192 RTSTOR - ok
23:15:31.0549 4192 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
23:15:31.0564 4192 SamSs - ok
23:15:31.0580 4192 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:15:31.0580 4192 sbp2port - ok
23:15:31.0611 4192 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:15:31.0642 4192 SCardSvr - ok
23:15:31.0673 4192 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
23:15:31.0689 4192 Schedule - ok
23:15:31.0705 4192 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:15:31.0705 4192 SCPolicySvc - ok
23:15:31.0720 4192 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:15:31.0720 4192 SDRSVC - ok
23:15:31.0751 4192 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:15:31.0751 4192 secdrv - ok
23:15:31.0767 4192 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
23:15:31.0767 4192 seclogon - ok
23:15:31.0783 4192 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
23:15:31.0798 4192 SENS - ok
23:15:31.0798 4192 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
23:15:31.0798 4192 Serenum - ok
23:15:31.0829 4192 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
23:15:31.0829 4192 Serial - ok
23:15:31.0845 4192 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
23:15:31.0861 4192 sermouse - ok
23:15:31.0892 4192 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
23:15:31.0892 4192 SessionEnv - ok
23:15:31.0907 4192 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:15:31.0907 4192 sffdisk - ok
23:15:31.0923 4192 [ E5EAFE85815BD89095FEF3144A09AB68 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:15:31.0923 4192 sffp_mmc - ok
23:15:31.0939 4192 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:15:31.0939 4192 sffp_sd - ok
23:15:31.0954 4192 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
23:15:31.0954 4192 sfloppy - ok
23:15:31.0985 4192 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:15:32.0001 4192 SharedAccess - ok
23:15:32.0032 4192 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:15:32.0048 4192 ShellHWDetection - ok
23:15:32.0079 4192 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
23:15:32.0079 4192 sisagp - ok
23:15:32.0110 4192 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
23:15:32.0126 4192 SiSRaid2 - ok
23:15:32.0157 4192 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
23:15:32.0157 4192 SiSRaid4 - ok
23:15:32.0219 4192 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
23:15:32.0219 4192 SkypeUpdate - ok
23:15:32.0313 4192 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
23:15:32.0516 4192 slsvc - ok
23:15:32.0531 4192 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
23:15:32.0531 4192 SLUINotify - ok
23:15:32.0563 4192 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:15:32.0563 4192 Smb - ok
23:15:32.0609 4192 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:15:32.0609 4192 SNMPTRAP - ok
23:15:32.0641 4192 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
23:15:32.0641 4192 spldr - ok
23:15:32.0687 4192 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
23:15:32.0687 4192 Spooler - ok
23:15:32.0734 4192 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:15:32.0734 4192 srv - ok
23:15:32.0781 4192 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:15:32.0781 4192 srv2 - ok
23:15:32.0797 4192 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:15:32.0797 4192 srvnet - ok
23:15:32.0843 4192 [ 64E44ACD8C238FCBBB78F0BA4BDC4B05 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
23:15:32.0859 4192 ssadbus - ok
23:15:32.0921 4192 [ BB2C84A15C765DA89FD832B0E73F26CE ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
23:15:32.0921 4192 ssadmdfl - ok
23:15:32.0953 4192 [ 6D0D132DDC6F43EDA00DCED6D8B1CA31 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
23:15:32.0984 4192 ssadmdm - ok
23:15:33.0062 4192 [ 1A5A397BC459F346AB56492B61EF79F6 ] ssadserd C:\Windows\system32\DRIVERS\ssadserd.sys
23:15:33.0124 4192 ssadserd - ok
23:15:33.0249 4192 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:15:33.0296 4192 SSDPSRV - ok
23:15:33.0327 4192 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:15:33.0389 4192 SstpSvc - ok
23:15:33.0499 4192 Steam Client Service - ok
23:15:33.0577 4192 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
23:15:33.0592 4192 stisvc - ok
23:15:33.0670 4192 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:15:33.0670 4192 swenum - ok
23:15:33.0701 4192 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
23:15:33.0701 4192 swprv - ok
23:15:33.0717 4192 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
23:15:33.0717 4192 Symc8xx - ok
23:15:33.0733 4192 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
23:15:33.0733 4192 Sym_hi - ok
23:15:33.0764 4192 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
23:15:33.0779 4192 Sym_u3 - ok
23:15:33.0795 4192 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
23:15:33.0811 4192 SysMain - ok
23:15:33.0842 4192 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:15:33.0842 4192 TabletInputService - ok
23:15:33.0873 4192 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:15:33.0873 4192 TapiSrv - ok
23:15:33.0904 4192 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
23:15:33.0904 4192 TBS - ok
23:15:33.0967 4192 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:15:33.0982 4192 Tcpip - ok
23:15:34.0029 4192 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
23:15:34.0045 4192 Tcpip6 - ok
23:15:34.0091 4192 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:15:34.0091 4192 tcpipreg - ok
23:15:34.0138 4192 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:15:34.0138 4192 TDPIPE - ok
23:15:34.0169 4192 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:15:34.0169 4192 TDTCP - ok
23:15:34.0185 4192 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:15:34.0201 4192 tdx - ok
23:15:34.0216 4192 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:15:34.0232 4192 TermDD - ok
23:15:34.0403 4192 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
23:15:34.0419 4192 TermService - ok
23:15:34.0435 4192 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
23:15:34.0435 4192 Themes - ok
23:15:34.0466 4192 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
23:15:34.0466 4192 THREADORDER - ok
23:15:34.0497 4192 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
23:15:34.0513 4192 TrkWks - ok
23:15:34.0559 4192 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:15:34.0559 4192 TrustedInstaller - ok
23:15:34.0591 4192 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:15:34.0606 4192 tssecsrv - ok
23:15:34.0762 4192 [ 9DF6AD6FC51A802808621CBFB2A88453 ] TuneUp.UtilitiesSvc C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
23:15:34.0778 4192 TuneUp.UtilitiesSvc - ok
23:15:34.0809 4192 [ 94C4CD2D19B8C4137A46261F229FEC24 ] TuneUpUtilitiesDrv C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys
23:15:34.0809 4192 TuneUpUtilitiesDrv - ok
23:15:34.0835 4192 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
23:15:34.0835 4192 tunmp - ok
23:15:34.0885 4192 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:15:34.0885 4192 tunnel - ok
23:15:34.0935 4192 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
23:15:34.0945 4192 uagp35 - ok
23:15:34.0965 4192 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:15:34.0975 4192 udfs - ok
23:15:35.0025 4192 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:15:35.0025 4192 UI0Detect - ok
23:15:35.0055 4192 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:15:35.0055 4192 uliagpkx - ok
23:15:35.0075 4192 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
23:15:35.0075 4192 uliahci - ok
23:15:35.0095 4192 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
23:15:35.0095 4192 UlSata - ok
23:15:35.0155 4192 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
23:15:35.0175 4192 ulsata2 - ok
23:15:35.0225 4192 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:15:35.0255 4192 umbus - ok
23:15:35.0355 4192 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
23:15:35.0375 4192 upnphost - ok
23:15:35.0435 4192 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
23:15:35.0445 4192 USBAAPL - ok
23:15:35.0475 4192 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:15:35.0485 4192 usbccgp - ok
23:15:35.0505 4192 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:15:35.0505 4192 usbcir - ok
23:15:35.0535 4192 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:15:35.0535 4192 usbehci - ok
23:15:35.0555 4192 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:15:35.0555 4192 usbhub - ok
23:15:35.0575 4192 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:15:35.0575 4192 usbohci - ok
23:15:35.0605 4192 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
23:15:35.0605 4192 usbprint - ok
23:15:35.0665 4192 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:15:35.0685 4192 USBSTOR - ok
23:15:35.0715 4192 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:15:35.0715 4192 usbuhci - ok
23:15:35.0755 4192 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
23:15:35.0765 4192 usbvideo - ok
23:15:35.0795 4192 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
23:15:35.0805 4192 UxSms - ok
23:15:35.0845 4192 [ FCE98C43B5C5DB8E0DA8EA0E2B45E044 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
23:15:35.0845 4192 VClone - ok
23:15:35.0885 4192 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
23:15:35.0895 4192 vds - ok
23:15:35.0905 4192 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:15:35.0905 4192 vga - ok
23:15:35.0925 4192 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
23:15:35.0925 4192 VgaSave - ok
23:15:35.0945 4192 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
23:15:35.0945 4192 viaagp - ok
23:15:35.0955 4192 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
23:15:35.0965 4192 ViaC7 - ok
23:15:35.0975 4192 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
23:15:35.0975 4192 viaide - ok
23:15:35.0995 4192 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:15:35.0995 4192 volmgr - ok
23:15:36.0015 4192 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:15:36.0025 4192 volmgrx - ok
23:15:36.0085 4192 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:15:36.0095 4192 volsnap - ok
23:15:36.0155 4192 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
23:15:36.0185 4192 vsmraid - ok
23:15:36.0275 4192 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
23:15:36.0305 4192 VSS - ok
23:15:36.0396 4192 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
23:15:36.0404 4192 vToolbarUpdater13.2.0 - ok
23:15:36.0446 4192 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
23:15:36.0455 4192 W32Time - ok
23:15:36.0491 4192 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
23:15:36.0493 4192 WacomPen - ok
23:15:36.0507 4192 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
23:15:36.0510 4192 Wanarp - ok
23:15:36.0522 4192 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:15:36.0524 4192 Wanarpv6 - ok
23:15:36.0575 4192 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:15:36.0589 4192 wcncsvc - ok
23:15:36.0618 4192 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:15:36.0625 4192 WcsPlugInService - ok
23:15:36.0650 4192 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
23:15:36.0653 4192 Wd - ok
23:15:36.0961 4192 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:15:37.0086 4192 Wdf01000 - ok
23:15:37.0117 4192 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:15:37.0132 4192 WdiServiceHost - ok
23:15:37.0174 4192 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:15:37.0174 4192 WdiSystemHost - ok
23:15:37.0264 4192 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
23:15:37.0354 4192 WebClient - ok
23:15:37.0504 4192 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:15:37.0587 4192 Wecsvc - ok
23:15:37.0621 4192 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:15:37.0630 4192 wercplsupport - ok
23:15:37.0681 4192 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
23:15:37.0703 4192 WerSvc - ok
23:15:37.0831 4192 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
23:15:37.0838 4192 WinDefend - ok
23:15:37.0859 4192 WinHttpAutoProxySvc - ok
23:15:37.0974 4192 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:15:37.0978 4192 Winmgmt - ok
23:15:38.0048 4192 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
23:15:38.0087 4192 WinRM - ok
23:15:38.0151 4192 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:15:38.0188 4192 Wlansvc - ok
23:15:38.0338 4192 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:15:38.0370 4192 wlidsvc - ok
23:15:38.0377 4192 wltrysvc - ok
23:15:38.0448 4192 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:15:38.0449 4192 WmiAcpi - ok
23:15:38.0480 4192 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:15:38.0484 4192 wmiApSrv - ok
23:15:38.0651 4192 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
23:15:38.0827 4192 WMPNetworkSvc - ok
23:15:38.0861 4192 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:15:38.0867 4192 WPCSvc - ok
23:15:38.0910 4192 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:15:38.0915 4192 WPDBusEnum - ok
23:15:39.0375 4192 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:15:39.0385 4192 WPFFontCache_v0400 - ok
23:15:39.0425 4192 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:15:39.0425 4192 ws2ifsl - ok
23:15:39.0465 4192 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
23:15:39.0465 4192 wscsvc - ok
23:15:39.0475 4192 WSearch - ok
23:15:39.0565 4192 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
23:15:39.0635 4192 wuauserv - ok
23:15:39.0665 4192 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:15:39.0665 4192 WUDFRd - ok
23:15:39.0695 4192 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:15:39.0695 4192 wudfsvc - ok
23:15:39.0735 4192 [ EE9144207EE0211EB5656BA6808AC4A0 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
23:15:39.0735 4192 xusb21 - ok
23:15:39.0745 4192 yksvc - ok
23:15:39.0805 4192 [ 1A51DF1A5C658D534ED980D18F7982DE ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
23:15:39.0805 4192 yukonwlh - ok
23:15:39.0825 4192 ================ Scan global ===============================
23:15:39.0885 4192 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
23:15:39.0945 4192 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:15:39.0965 4192 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
23:15:39.0995 4192 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
23:15:40.0005 4192 [Global] - ok
23:15:40.0005 4192 ================ Scan MBR ==================================
23:15:40.0025 4192 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:15:40.0275 4192 \Device\Harddisk0\DR0 - ok
23:15:40.0285 4192 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
23:15:40.0295 4192 \Device\Harddisk1\DR1 - ok
23:15:40.0295 4192 ================ Scan VBR ==================================
23:15:40.0355 4192 [ 2F8DA9B93AADB7B6FC19685C9CA7A667 ] \Device\Harddisk0\DR0\Partition1
23:15:40.0385 4192 \Device\Harddisk0\DR0\Partition1 - ok
23:15:40.0395 4192 [ CCC7DB5B72371717334F860437454301 ] \Device\Harddisk1\DR1\Partition1
23:15:40.0395 4192 \Device\Harddisk1\DR1\Partition1 - ok
23:15:40.0395 4192 ============================================================
23:15:40.0395 4192 Scan finished
23:15:40.0395 4192 ============================================================
23:15:40.0415 4060 Detected object count: 0
23:15:40.0415 4060 Actual detected object count: 0
23:16:01.0863 2812 Deinitialize success


Other logs to follow

#12 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 13 November 2012 - 01:18 AM

Malwarebytes Log


Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.11.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Owner :: OWNER-PC [administrator]

Protection: Disabled

11/12/2012 11:18:30 PM
mbam-log-2012-11-13 (01-15-36).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|I:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 345572
Time elapsed: 1 hour(s), 56 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 8
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0005.dta (Trojan.TDSS) -> No action taken.
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0006.dta (Trojan.TDSS) -> No action taken.
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0007.dta (Rootkit.TDSS.64) -> No action taken.
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0008.dta (Rootkit.TDSS) -> No action taken.
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0012.dta (Rootkit.TDSS.64) -> No action taken.
C:\TDSSKiller_Quarantine\12.11.2012_21.10.50\mbr0000\tdlfs0000\tsk0015.dta (Rootkit.TDSS) -> No action taken.
C:\Users\Owner\Desktop\movies\Downloads\tdssfix.exe (Heuristics.Shuriken) -> No action taken.
C:\Users\Owner\Desktop\movies\Downloads\tdsskiller_undetectablew7.exe (Heuristics.Shuriken) -> No action taken.

(end)

#13 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 13 November 2012 - 01:27 AM

Minitoolbox Log


MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Owner (administrator) on 13-11-2012 at 01:25:16
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 00-22-5F-B3-51-2D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::d4c6:6497:3ecd:203a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.66(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, November 13, 2012 1:21:40 AM
Lease Expires . . . . . . . . . . : Wednesday, November 14, 2012 1:21:40 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 268444255
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-F1-6E-DC-00-23-AE-39-A0-6D
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 00-23-AE-39-A0-6D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{F5538F43-7FCA-42F4-8FEE-C9FC347BFA48}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : isatap.gateway.2wire.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2c9c:2196:9db9:ac66(Preferred)
Link-local IPv6 Address . . . . . : fe80::2c9c:2196:9db9:ac66%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4008:805::1005
173.194.37.101
173.194.37.102
173.194.37.103
173.194.37.104
173.194.37.105
173.194.37.110
173.194.37.96
173.194.37.97
173.194.37.98
173.194.37.99
173.194.37.100



Pinging google.com [173.194.37.102] with 32 bytes of data:

Reply from 173.194.37.102: bytes=32 time=19ms TTL=52

Reply from 173.194.37.102: bytes=32 time=58ms TTL=52



Ping statistics for 173.194.37.102:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 19ms, Maximum = 58ms, Average = 38ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:

Reply from 72.30.38.140: bytes=32 time=178ms TTL=49

Reply from 72.30.38.140: bytes=32 time=254ms TTL=49



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 178ms, Maximum = 254ms, Average = 216ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 22 5f b3 51 2d ...... Dell Wireless 1397 WLAN Mini-Card
10 ...00 23 ae 39 a0 6d ...... Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 isatap.{F5538F43-7FCA-42F4-8FEE-C9FC347BFA48}
14 ...00 00 00 00 00 00 00 e0 isatap.gateway.2wire.net
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.66 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.66 281
192.168.1.66 255.255.255.255 On-link 192.168.1.66 281
192.168.1.255 255.255.255.255 On-link 192.168.1.66 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.66 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.66 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 18 ::/0 On-link
1 306 ::1/128 On-link
12 18 2001::/32 On-link
12 266 2001:0:4137:9e76:2c9c:2196:9db9:ac66/128
On-link
11 281 fe80::/64 On-link
12 266 fe80::/64 On-link
12 266 fe80::2c9c:2196:9db9:ac66/128
On-link
11 281 fe80::d4c6:6497:3ecd:203a/128
On-link
1 306 ff00::/8 On-link
12 266 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/13/2012 01:22:24 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x428, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 01:22:16 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0xc44, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 01:21:45 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0xa38, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 01:14:59 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x17d0, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:52:01 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x404, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:51:45 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x153c, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:41:20 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0xf48, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:41:19 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x558, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:41:19 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x1390, application start time 0xSearchIndexer.exe0.

Error: (11/13/2012 00:41:17 AM) (Source: Application Error) (User: )
Description: Faulting application SearchIndexer.exe, version 7.0.6002.18005, time stamp 0x49e02459, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc000012f, fault offset 0x00009f5d,
process id 0x1758, application start time 0xSearchIndexer.exe0.


System errors:
=============
Error: (11/13/2012 01:24:32 AM) (Source: Service Control Manager) (User: )
Description: Security Center%%193

Error: (11/13/2012 01:24:32 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x800700c1

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: Windows Search%%1053

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: 30000Windows Search

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWFailureActions%%5

Error: (11/13/2012 01:23:19 AM) (Source: Service Control Manager) (User: )
Description: MBAMServiceMBAMProtector%%2


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2012-11-13 01:09:29.326
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:28.967
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:28.608
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:28.358
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:28.155
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:27.952
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:27.625
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:27.422
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:27.203
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys because the set of per-page image hashes could not be found on the system.

Date: 2012-11-13 01:09:26.985
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

µTorrent (Version: 3.1.3)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Age of Mythology
Age of Mythology - The Titans Expansion
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
AutoREALM Version 2.2.1
AVG 2013 (Version: 13.0.2629)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
AVG PC TuneUp (Version: 12.0.4000.108)
AVG PC TuneUp Language Pack (en-US) (Version: 12.0.4000.108)
AVG Security Toolbar
BioWare Premium Module: Neverwinter Nights™ Kingmaker
Bonjour (Version: 3.0.0.10)
Build Your Own Net Dream (remove only)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
D3DX10 (Version: 15.4.2368.0902)
Dell Wireless WLAN Card Utility (Version: 5.10.38.30)
e-Sword (Version: 10.00.0005)
ESET Online Scanner v3
Fractal Mapper v8.10f Trial Version (Version: 8.01a)
Free Alarm Clock 2.3.3 (Version: 2.3)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
ImgBurn (Version: 2.5.7.0)
IMVU Avatar Chat Software
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.5.3.3)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
LibUSB-Win32-0.1.10.1 (Version: 0.1.10.1)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Marvell Miniport Driver (Version: 10.63.3.3)
McAfee Security Scan Plus (Version: 2.0.181.2)
McAfee SiteAdvisor (Version: 3.6.164)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotioninJoy ds3 driver version 0.200
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
Realtek USB 2.0 Card Reader (Version: 6.0.6000.20125)
RuneScape Launcher 1.2 (Version: 1.2.0)
RuneScape Launcher 1.2.2 (Version: 1.2.2)
Segoe UI (Version: 15.4.2271.0615)
Skype™ 5.10 (Version: 5.10.116)
Steam (Version: 1.0.0.0)
The Elder Scrolls III: Morrowind
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VideoFileDownload (Version: 1.0)
VirtualCloneDrive
VLC media player 1.1.11 (Version: 1.1.11)
WhiteCap (Version: 5.7.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR 4.01 (32-bit) (Version: 4.01.0)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 2009.63 MB
Available physical RAM: 853 MB
Total Pagefile: 4262.58 MB
Available Pagefile: 2919.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1950.72 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.05 GB) (Free:11.69 GB) NTFS
2 Drive d: (KRD10) (CDROM) (Total:0.26 GB) (Free:0 GB) CDFS
6 Drive i: () (Removable) (Total:7.45 GB) (Free:1.64 GB) FAT32

========================= Users: ========================================

User accounts for \\OWNER-PC

Administrator Guest Owner

========================= Restore Points ==================================

11-11-2012 11:26:56 Windows Update
11-11-2012 16:30:35 Installed AVG PC TuneUp
12-11-2012 06:31:10 Scheduled Checkpoint

**** End of log ****

#14 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 13 November 2012 - 01:29 AM

FSS Log


Farbar Service Scanner Version: 09-11-2012
Ran by Owner (administrator) on 13-11-2012 at 01:28:47
Running from "C:\Users\Owner\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2012-10-10 08:24] - [2012-06-01 19:02] - 0133120 ____A (Microsoft Corporation) F1E8C34892336D33EDDCDFE44E474F64

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 21:24] - [2008-01-20 21:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#15 Mr_Sharpe

Mr_Sharpe
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:11:14 PM

Posted 13 November 2012 - 01:36 AM

Adwarecleaner Log


# AdwCleaner v2.007 - Logfile created 11/13/2012 at 01:30:45
# Updated 06/11/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Owner - OWNER-PC
# Boot Mode : Normal
# Running from : C:\Users\Owner\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\OApps
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Users\Owner\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Owner\AppData\Local\Conduit
Folder Deleted : C:\Users\Owner\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Owner\AppData\LocalLow\AVG Secure Search
Folder Deleted : C:\Users\Owner\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2612669
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [5198 octets] - [13/11/2012 01:30:45]

########## EOF - C:\AdwCleaner[S1].txt - [5258 octets] ##########




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users