Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

incorrect (porn) pictures instead of real ones


  • Please log in to reply
5 replies to this topic

#1 dushan

dushan

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 28 January 2013 - 12:06 PM

Hi all,

I've been experiencing some wired behavior in my browser from last few days.

Let's say I'm browsing FB pictures of one of my friends and in between images I get one or two swapped by porn pictures.

I tried to copy the url of the images and try it in anew window and it shows the same porn image but the url is not modified from the actual image.

If I try the url with another browser which I have not used frequently (IE) it shows the correct image.

When I clear the browsing history it shows the real image too. But after sometime it starts to show porn images again.

This is not onyl for FB, it happens for any site I browse. I'm currently using chrome, I just have to check with some other browser.

Seems like some porn images are being cached for the same url and are being shown instead of the real image.

Any help is greatly appreciated on this...

Regards,
Dushan

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:56 AM

Posted 28 January 2013 - 12:15 PM

Definately appears to be a hijack...

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
>>>

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

>>>>

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 dushan

dushan
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 28 January 2013 - 09:20 PM

Definately appears to be a hijack...

MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
>>>

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

>>>>

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.



Hi,

Thank you very much for the quick reply. I appreciate it very much.
Here are the results.

MiniToolBox: But before finishing it crashed saying 'The requested action with this object has failed'

MiniToolBox by Farbar Version:10-01-2013
Ran by CCUSER (administrator) on 29-01-2013 at 07:35:48
Running from "C:\Users\CCUSER\Desktop"
Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================



TDSSkiller

07:37:53.0569 4172 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
07:37:54.0390 4172 ============================================================
07:37:54.0390 4172 Current date / time: 2013/01/29 07:37:54.0390
07:37:54.0390 4172 SystemInfo:
07:37:54.0390 4172
07:37:54.0390 4172 OS Version: 6.1.7601 ServicePack: 1.0
07:37:54.0390 4172 Product type: Workstation
07:37:54.0390 4172 ComputerName: CCUSER-PC
07:37:54.0391 4172 UserName: CCUSER
07:37:54.0391 4172 Windows directory: C:\Windows
07:37:54.0391 4172 System windows directory: C:\Windows
07:37:54.0391 4172 Running under WOW64
07:37:54.0391 4172 Processor architecture: Intel x64
07:37:54.0391 4172 Number of processors: 8
07:37:54.0391 4172 Page size: 0x1000
07:37:54.0391 4172 Boot type: Normal boot
07:37:54.0391 4172 ============================================================
07:37:55.0652 4172 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:37:55.0664 4172 ============================================================
07:37:55.0664 4172 \Device\Harddisk0\DR0:
07:37:55.0664 4172 MBR partitions:
07:37:55.0664 4172 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
07:37:55.0664 4172 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
07:37:55.0664 4172 ============================================================
07:37:55.0688 4172 C: <-> \Device\Harddisk0\DR0\Partition2
07:37:55.0688 4172 ============================================================
07:37:55.0688 4172 Initialize success
07:37:55.0688 4172 ============================================================
07:38:00.0268 6112 ============================================================
07:38:00.0268 6112 Scan started
07:38:00.0268 6112 Mode: Manual;
07:38:00.0268 6112 ============================================================
07:38:01.0934 6112 ================ Scan system memory ========================
07:38:01.0934 6112 System memory - ok
07:38:01.0934 6112 ================ Scan services =============================
07:38:02.0063 6112 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
07:38:02.0067 6112 1394ohci - ok
07:38:02.0092 6112 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:38:02.0094 6112 ACPI - ok
07:38:02.0108 6112 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
07:38:02.0111 6112 AcpiPmi - ok
07:38:02.0192 6112 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
07:38:02.0193 6112 AdobeARMservice - ok
07:38:02.0332 6112 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:38:02.0337 6112 AdobeFlashPlayerUpdateSvc - ok
07:38:02.0374 6112 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
07:38:02.0381 6112 adp94xx - ok
07:38:02.0412 6112 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
07:38:02.0417 6112 adpahci - ok
07:38:02.0433 6112 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
07:38:02.0437 6112 adpu320 - ok
07:38:02.0459 6112 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
07:38:02.0460 6112 AeLookupSvc - ok
07:38:02.0508 6112 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
07:38:02.0514 6112 AFD - ok
07:38:02.0526 6112 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
07:38:02.0528 6112 agp440 - ok
07:38:02.0651 6112 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
07:38:02.0651 6112 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
07:38:02.0654 6112 Akamai ( HiddenFile.Multi.Generic ) - warning
07:38:02.0654 6112 Akamai - detected HiddenFile.Multi.Generic (1)
07:38:02.0670 6112 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
07:38:02.0672 6112 ALG - ok
07:38:02.0685 6112 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
07:38:02.0687 6112 aliide - ok
07:38:02.0689 6112 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
07:38:02.0690 6112 amdide - ok
07:38:02.0702 6112 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
07:38:02.0705 6112 AmdK8 - ok
07:38:02.0707 6112 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
07:38:02.0709 6112 AmdPPM - ok
07:38:02.0733 6112 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
07:38:02.0736 6112 amdsata - ok
07:38:02.0752 6112 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
07:38:02.0757 6112 amdsbs - ok
07:38:02.0772 6112 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
07:38:02.0772 6112 amdxata - ok
07:38:02.0807 6112 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
07:38:02.0808 6112 AppHostSvc - ok
07:38:02.0826 6112 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
07:38:02.0829 6112 AppID - ok
07:38:02.0842 6112 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
07:38:02.0844 6112 AppIDSvc - ok
07:38:02.0861 6112 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
07:38:02.0862 6112 Appinfo - ok
07:38:02.0888 6112 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
07:38:02.0892 6112 AppMgmt - ok
07:38:02.0902 6112 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
07:38:02.0905 6112 arc - ok
07:38:02.0919 6112 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
07:38:02.0922 6112 arcsas - ok
07:38:03.0042 6112 [ B3FC1E4760175CC9D0DEFF38AEF96E99 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:38:03.0062 6112 aspnet_state - ok
07:38:03.0082 6112 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
07:38:03.0084 6112 AsyncMac - ok
07:38:03.0093 6112 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
07:38:03.0093 6112 atapi - ok
07:38:03.0115 6112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:38:03.0118 6112 AudioEndpointBuilder - ok
07:38:03.0137 6112 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
07:38:03.0140 6112 AudioSrv - ok
07:38:03.0219 6112 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] AVG Bonjour Service C:\Windows\TEMP\avgcu_mDNSResponder.exe
07:38:03.0225 6112 AVG Bonjour Service - ok
07:38:03.0429 6112 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
07:38:03.0451 6112 AVGIDSAgent - ok
07:38:03.0505 6112 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
07:38:03.0506 6112 AVGIDSDriver - ok
07:38:03.0565 6112 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
07:38:03.0565 6112 AVGIDSHA - ok
07:38:03.0652 6112 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
07:38:03.0653 6112 Avgldx64 - ok
07:38:03.0675 6112 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
07:38:03.0678 6112 Avgloga - ok
07:38:03.0716 6112 [ 841C40C193889730848849AC220D9242 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
07:38:03.0718 6112 Avgmfx64 - ok
07:38:03.0738 6112 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
07:38:03.0739 6112 Avgrkx64 - ok
07:38:03.0759 6112 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
07:38:03.0761 6112 Avgtdia - ok
07:38:03.0805 6112 [ 95AED7BB68CF3381AF19DA81BC7DD3FB ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
07:38:03.0806 6112 avgtp - ok
07:38:03.0838 6112 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
07:38:03.0840 6112 avgwd - ok
07:38:03.0864 6112 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
07:38:03.0866 6112 AxInstSV - ok
07:38:03.0892 6112 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
07:38:03.0900 6112 b06bdrv - ok
07:38:03.0937 6112 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
07:38:03.0941 6112 b57nd60a - ok
07:38:03.0960 6112 [ 0155B0E4E1DD55BAF08585930658905B ] BandLuxe_Service C:\Program Files (x86)\BandRich\BandLuxe HSDPA Utility R11\BRService.exe
07:38:03.0960 6112 BandLuxe_Service - ok
07:38:03.0998 6112 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
07:38:04.0000 6112 BDESVC - ok
07:38:04.0006 6112 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
07:38:04.0007 6112 Beep - ok
07:38:04.0039 6112 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
07:38:04.0047 6112 BFE - ok
07:38:04.0073 6112 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
07:38:04.0090 6112 BITS - ok
07:38:04.0106 6112 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:38:04.0107 6112 blbdrive - ok
07:38:04.0146 6112 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:38:04.0146 6112 bowser - ok
07:38:04.0157 6112 [ 3613F6C66A08210721E63BAA6DFF605A ] br3gmdm C:\Windows\system32\DRIVERS\br3gmdm.sys
07:38:04.0159 6112 br3gmdm - ok
07:38:04.0162 6112 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
07:38:04.0163 6112 BrFiltLo - ok
07:38:04.0166 6112 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
07:38:04.0167 6112 BrFiltUp - ok
07:38:04.0238 6112 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
07:38:04.0240 6112 Browser - ok
07:38:04.0252 6112 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:38:04.0257 6112 Brserid - ok
07:38:04.0259 6112 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:38:04.0261 6112 BrSerWdm - ok
07:38:04.0263 6112 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:38:04.0265 6112 BrUsbMdm - ok
07:38:04.0267 6112 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:38:04.0268 6112 BrUsbSer - ok
07:38:04.0311 6112 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
07:38:04.0313 6112 BthEnum - ok
07:38:04.0315 6112 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
07:38:04.0317 6112 BTHMODEM - ok
07:38:04.0334 6112 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
07:38:04.0336 6112 BthPan - ok
07:38:04.0388 6112 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
07:38:04.0395 6112 BTHPORT - ok
07:38:04.0427 6112 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
07:38:04.0430 6112 bthserv - ok
07:38:04.0471 6112 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
07:38:04.0478 6112 BTHUSB - ok
07:38:04.0486 6112 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:38:04.0488 6112 cdfs - ok
07:38:04.0507 6112 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
07:38:04.0510 6112 cdrom - ok
07:38:04.0541 6112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
07:38:04.0543 6112 CertPropSvc - ok
07:38:04.0557 6112 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
07:38:04.0558 6112 circlass - ok
07:38:04.0585 6112 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
07:38:04.0586 6112 CLFS - ok
07:38:04.0632 6112 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:38:04.0636 6112 clr_optimization_v2.0.50727_32 - ok
07:38:04.0672 6112 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:38:04.0676 6112 clr_optimization_v2.0.50727_64 - ok
07:38:04.0724 6112 [ 1EBE1854D94B704D1C0EEFAEF4711151 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:38:04.0820 6112 clr_optimization_v4.0.30319_32 - ok
07:38:04.0832 6112 [ F44A20931FDD77EBFC36B263FD795959 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:38:04.0851 6112 clr_optimization_v4.0.30319_64 - ok
07:38:04.0872 6112 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:38:04.0874 6112 CmBatt - ok
07:38:04.0881 6112 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:38:04.0883 6112 cmdide - ok
07:38:04.0901 6112 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
07:38:04.0907 6112 CNG - ok
07:38:04.0964 6112 [ 8DE541B4CFA281A204BAA3EA2109809E ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
07:38:04.0977 6112 CnxtHdAudService - ok
07:38:04.0997 6112 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:38:04.0997 6112 Compbatt - ok
07:38:05.0021 6112 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
07:38:05.0023 6112 CompositeBus - ok
07:38:05.0036 6112 COMSysApp - ok
07:38:05.0048 6112 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
07:38:05.0049 6112 crcdisk - ok
07:38:05.0093 6112 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:38:05.0094 6112 CryptSvc - ok
07:38:05.0126 6112 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
07:38:05.0133 6112 CSC - ok
07:38:05.0153 6112 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
07:38:05.0156 6112 CscService - ok
07:38:05.0177 6112 [ 9D0D050170D47E778B624A28C90F23DE ] CxAudMsg C:\Windows\system32\CxAudMsg64.exe
07:38:05.0178 6112 CxAudMsg - ok
07:38:05.0203 6112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
07:38:05.0206 6112 DcomLaunch - ok
07:38:05.0229 6112 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
07:38:05.0233 6112 defragsvc - ok
07:38:05.0251 6112 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:38:05.0253 6112 DfsC - ok
07:38:05.0270 6112 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
07:38:05.0272 6112 Dhcp - ok
07:38:05.0279 6112 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
07:38:05.0281 6112 discache - ok
07:38:05.0304 6112 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
07:38:05.0306 6112 Disk - ok
07:38:05.0330 6112 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
07:38:05.0333 6112 dmvsc - ok
07:38:05.0370 6112 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:38:05.0372 6112 Dnscache - ok
07:38:05.0382 6112 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
07:38:05.0386 6112 dot3svc - ok
07:38:05.0399 6112 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
07:38:05.0400 6112 DPS - ok
07:38:05.0436 6112 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:38:05.0438 6112 drmkaud - ok
07:38:05.0467 6112 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
07:38:05.0469 6112 dtsoftbus01 - ok
07:38:05.0491 6112 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:38:05.0495 6112 DXGKrnl - ok
07:38:05.0504 6112 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
07:38:05.0505 6112 EapHost - ok
07:38:05.0562 6112 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
07:38:05.0629 6112 ebdrv - ok
07:38:05.0677 6112 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
07:38:05.0678 6112 EFS - ok
07:38:05.0721 6112 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:38:05.0738 6112 ehRecvr - ok
07:38:05.0752 6112 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
07:38:05.0755 6112 ehSched - ok
07:38:05.0787 6112 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
07:38:05.0795 6112 elxstor - ok
07:38:05.0804 6112 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:38:05.0806 6112 ErrDev - ok
07:38:05.0827 6112 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
07:38:05.0829 6112 EventSystem - ok
07:38:05.0947 6112 [ 532B8FF8E07F3772B086620377654F95 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
07:38:05.0953 6112 EvtEng - ok
07:38:05.0976 6112 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
07:38:05.0979 6112 exfat - ok
07:38:05.0991 6112 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:38:05.0995 6112 fastfat - ok
07:38:06.0020 6112 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
07:38:06.0037 6112 Fax - ok
07:38:06.0053 6112 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
07:38:06.0055 6112 fdc - ok
07:38:06.0078 6112 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
07:38:06.0080 6112 fdPHost - ok
07:38:06.0091 6112 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
07:38:06.0093 6112 FDResPub - ok
07:38:06.0105 6112 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:38:06.0107 6112 FileInfo - ok
07:38:06.0112 6112 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:38:06.0114 6112 Filetrace - ok
07:38:06.0121 6112 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
07:38:06.0123 6112 flpydisk - ok
07:38:06.0137 6112 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:38:06.0138 6112 FltMgr - ok
07:38:06.0191 6112 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
07:38:06.0216 6112 FontCache - ok
07:38:06.0260 6112 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:38:06.0263 6112 FontCache3.0.0.0 - ok
07:38:06.0276 6112 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:38:06.0278 6112 FsDepends - ok
07:38:06.0311 6112 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:38:06.0312 6112 Fs_Rec - ok
07:38:06.0317 6112 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:38:06.0320 6112 fvevol - ok
07:38:06.0335 6112 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
07:38:06.0337 6112 gagp30kx - ok
07:38:06.0359 6112 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
07:38:06.0362 6112 gpsvc - ok
07:38:06.0433 6112 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:38:06.0436 6112 gupdate - ok
07:38:06.0439 6112 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:38:06.0440 6112 gupdatem - ok
07:38:06.0467 6112 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
07:38:06.0471 6112 gusvc - ok
07:38:06.0482 6112 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:38:06.0484 6112 hcw85cir - ok
07:38:06.0524 6112 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:38:06.0530 6112 HdAudAddService - ok
07:38:06.0544 6112 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
07:38:06.0546 6112 HDAudBus - ok
07:38:06.0558 6112 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
07:38:06.0560 6112 HidBatt - ok
07:38:06.0569 6112 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
07:38:06.0571 6112 HidBth - ok
07:38:06.0579 6112 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
07:38:06.0581 6112 HidIr - ok
07:38:06.0593 6112 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
07:38:06.0595 6112 hidserv - ok
07:38:06.0611 6112 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
07:38:06.0613 6112 HidUsb - ok
07:38:06.0635 6112 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
07:38:06.0638 6112 hkmsvc - ok
07:38:06.0661 6112 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:38:06.0682 6112 HomeGroupListener - ok
07:38:06.0707 6112 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:38:06.0709 6112 HomeGroupProvider - ok
07:38:06.0720 6112 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:38:06.0722 6112 HpSAMD - ok
07:38:06.0740 6112 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:38:06.0743 6112 HTTP - ok
07:38:06.0752 6112 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:38:06.0752 6112 hwpolicy - ok
07:38:06.0762 6112 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
07:38:06.0765 6112 i8042prt - ok
07:38:06.0808 6112 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:38:06.0814 6112 iaStorV - ok
07:38:06.0859 6112 [ B21087E1A64FD474BF3E1A602A714F1F ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
07:38:06.0866 6112 IBMPMDRV - ok
07:38:06.0875 6112 [ A3E4DE0F77031061972485EF9BD8E4D0 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
07:38:06.0876 6112 IBMPMSVC - ok
07:38:06.0922 6112 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:38:06.0942 6112 idsvc - ok
07:38:07.0127 6112 [ 978D876A581D57E0DE6437674EB0014D ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
07:38:07.0312 6112 igfx - ok
07:38:07.0336 6112 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
07:38:07.0338 6112 iirsp - ok
07:38:07.0363 6112 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
07:38:07.0383 6112 IKEEXT - ok
07:38:07.0404 6112 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
07:38:07.0406 6112 intelide - ok
07:38:07.0429 6112 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:38:07.0429 6112 intelppm - ok
07:38:07.0444 6112 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:38:07.0447 6112 IPBusEnum - ok
07:38:07.0460 6112 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:38:07.0463 6112 IpFilterDriver - ok
07:38:07.0511 6112 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
07:38:07.0518 6112 iphlpsvc - ok
07:38:07.0528 6112 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:38:07.0530 6112 IPMIDRV - ok
07:38:07.0533 6112 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:38:07.0535 6112 IPNAT - ok
07:38:07.0544 6112 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:38:07.0546 6112 IRENUM - ok
07:38:07.0548 6112 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:38:07.0549 6112 isapnp - ok
07:38:07.0565 6112 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:38:07.0569 6112 iScsiPrt - ok
07:38:07.0587 6112 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
07:38:07.0588 6112 kbdclass - ok
07:38:07.0602 6112 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
07:38:07.0604 6112 kbdhid - ok
07:38:07.0624 6112 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
07:38:07.0625 6112 KeyIso - ok
07:38:07.0647 6112 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:38:07.0648 6112 KSecDD - ok
07:38:07.0661 6112 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:38:07.0664 6112 KSecPkg - ok
07:38:07.0676 6112 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
07:38:07.0679 6112 ksthunk - ok
07:38:07.0705 6112 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
07:38:07.0711 6112 KtmRm - ok
07:38:07.0733 6112 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
07:38:07.0737 6112 LanmanServer - ok
07:38:07.0754 6112 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:38:07.0756 6112 LanmanWorkstation - ok
07:38:07.0787 6112 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:38:07.0787 6112 lltdio - ok
07:38:07.0809 6112 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:38:07.0814 6112 lltdsvc - ok
07:38:07.0830 6112 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
07:38:07.0831 6112 lmhosts - ok
07:38:07.0855 6112 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
07:38:07.0858 6112 LSI_FC - ok
07:38:07.0866 6112 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
07:38:07.0869 6112 LSI_SAS - ok
07:38:07.0876 6112 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
07:38:07.0878 6112 LSI_SAS2 - ok
07:38:07.0893 6112 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
07:38:07.0895 6112 LSI_SCSI - ok
07:38:07.0906 6112 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
07:38:07.0906 6112 luafv - ok
07:38:07.0938 6112 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:38:07.0941 6112 Mcx2Svc - ok
07:38:07.0962 6112 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
07:38:07.0964 6112 megasas - ok
07:38:07.0983 6112 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
07:38:07.0987 6112 MegaSR - ok
07:38:08.0041 6112 Microsoft SharePoint Workspace Audit Service - ok
07:38:08.0071 6112 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
07:38:08.0072 6112 MMCSS - ok
07:38:08.0081 6112 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
07:38:08.0082 6112 Modem - ok
07:38:08.0093 6112 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:38:08.0094 6112 monitor - ok
07:38:08.0102 6112 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
07:38:08.0103 6112 mouclass - ok
07:38:08.0119 6112 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
07:38:08.0121 6112 mouhid - ok
07:38:08.0130 6112 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:38:08.0131 6112 mountmgr - ok
07:38:08.0146 6112 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
07:38:08.0149 6112 mpio - ok
07:38:08.0162 6112 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:38:08.0162 6112 mpsdrv - ok
07:38:08.0187 6112 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
07:38:08.0191 6112 MpsSvc - ok
07:38:08.0211 6112 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:38:08.0214 6112 MRxDAV - ok
07:38:08.0246 6112 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:38:08.0247 6112 mrxsmb - ok
07:38:08.0271 6112 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:38:08.0273 6112 mrxsmb10 - ok
07:38:08.0283 6112 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:38:08.0283 6112 mrxsmb20 - ok
07:38:08.0293 6112 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
07:38:08.0293 6112 msahci - ok
07:38:08.0313 6112 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:38:08.0317 6112 msdsm - ok
07:38:08.0335 6112 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
07:38:08.0339 6112 MSDTC - ok
07:38:08.0420 6112 [ 7D0AC2859EEACCC5BD038B8CDDCAFF62 ] MsDtsServer100 C:\Program Files\Microsoft SQL Server\100\DTS\Binn\MsDtsSrvr.exe
07:38:08.0424 6112 MsDtsServer100 - ok
07:38:08.0438 6112 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:38:08.0439 6112 Msfs - ok
07:38:08.0455 6112 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:38:08.0456 6112 mshidkmdf - ok
07:38:08.0468 6112 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:38:08.0469 6112 msisadrv - ok
07:38:08.0493 6112 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:38:08.0497 6112 MSiSCSI - ok
07:38:08.0499 6112 msiserver - ok
07:38:08.0526 6112 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:38:08.0528 6112 MSKSSRV - ok
07:38:08.0537 6112 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:38:08.0539 6112 MSPCLOCK - ok
07:38:08.0542 6112 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:38:08.0543 6112 MSPQM - ok
07:38:08.0555 6112 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:38:08.0560 6112 MsRPC - ok
07:38:08.0587 6112 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
07:38:08.0587 6112 mssmbios - ok
07:38:08.0619 6112 MSSQL$SQLEXPRESS - ok
07:38:08.0660 6112 [ AA511EB28672011A1D832F73E302F0A0 ] MSSQLFDLauncher C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
07:38:08.0660 6112 MSSQLFDLauncher - ok
07:38:08.0666 6112 MSSQLSERVER - ok
07:38:08.0694 6112 [ 04EF36EAF5C4DBCE424D81B76F1E9231 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
07:38:08.0696 6112 MSSQLServerADHelper100 - ok
07:38:08.0718 6112 MSSQLServerOLAPService - ok
07:38:08.0731 6112 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:38:08.0733 6112 MSTEE - ok
07:38:08.0744 6112 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
07:38:08.0746 6112 MTConfig - ok
07:38:08.0761 6112 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
07:38:08.0762 6112 Mup - ok
07:38:08.0786 6112 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
07:38:08.0793 6112 napagent - ok
07:38:08.0813 6112 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:38:08.0815 6112 NativeWifiP - ok
07:38:08.0865 6112 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
07:38:08.0885 6112 NDIS - ok
07:38:08.0904 6112 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:38:08.0906 6112 NdisCap - ok
07:38:08.0925 6112 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:38:08.0927 6112 NdisTapi - ok
07:38:08.0933 6112 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:38:08.0933 6112 Ndisuio - ok
07:38:08.0946 6112 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:38:08.0949 6112 NdisWan - ok
07:38:08.0958 6112 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:38:08.0960 6112 NDProxy - ok
07:38:08.0971 6112 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:38:08.0973 6112 NetBIOS - ok
07:38:08.0990 6112 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:38:08.0994 6112 NetBT - ok
07:38:09.0001 6112 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
07:38:09.0002 6112 Netlogon - ok
07:38:09.0034 6112 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
07:38:09.0039 6112 Netman - ok
07:38:09.0082 6112 [ F50C405C5FCE480D39C882205EBA26A8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:38:09.0107 6112 NetMsmqActivator - ok
07:38:09.0110 6112 [ F50C405C5FCE480D39C882205EBA26A8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:38:09.0111 6112 NetPipeActivator - ok
07:38:09.0137 6112 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
07:38:09.0140 6112 netprofm - ok
07:38:09.0145 6112 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:38:09.0146 6112 NetTcpActivator - ok
07:38:09.0149 6112 [ F50C405C5FCE480D39C882205EBA26A8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:38:09.0150 6112 NetTcpPortSharing - ok
07:38:09.0309 6112 [ 774C9ECCEF83AB8A3D1466F19809C95F ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
07:38:09.0442 6112 NETwNs64 - ok
07:38:09.0469 6112 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
07:38:09.0471 6112 nfrd960 - ok
07:38:09.0492 6112 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
07:38:09.0494 6112 NlaSvc - ok
07:38:09.0504 6112 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:38:09.0506 6112 Npfs - ok
07:38:09.0512 6112 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
07:38:09.0513 6112 nsi - ok
07:38:09.0522 6112 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:38:09.0524 6112 nsiproxy - ok
07:38:09.0565 6112 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:38:09.0590 6112 Ntfs - ok
07:38:09.0601 6112 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
07:38:09.0602 6112 Null - ok
07:38:09.0632 6112 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
07:38:09.0634 6112 nusb3hub - ok
07:38:09.0648 6112 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
07:38:09.0652 6112 nusb3xhc - ok
07:38:09.0699 6112 [ 65E6BB06A644533118BE007E9601B2C2 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys
07:38:09.0700 6112 nvkflt - ok
07:38:09.0901 6112 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:38:09.0951 6112 nvlddmkm - ok
07:38:09.0971 6112 [ 918841B2454F4F2BD94479692079490B ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
07:38:09.0972 6112 nvpciflt - ok
07:38:09.0999 6112 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:38:10.0002 6112 nvraid - ok
07:38:10.0031 6112 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:38:10.0035 6112 nvstor - ok
07:38:10.0074 6112 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
07:38:10.0078 6112 nvsvc - ok
07:38:10.0138 6112 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
07:38:10.0164 6112 nvUpdatusService - ok
07:38:10.0189 6112 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:38:10.0192 6112 nv_agp - ok
07:38:10.0201 6112 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:38:10.0204 6112 ohci1394 - ok
07:38:10.0256 6112 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:38:10.0259 6112 ose64 - ok
07:38:10.0359 6112 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:38:10.0451 6112 osppsvc - ok
07:38:10.0479 6112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:38:10.0481 6112 p2pimsvc - ok
07:38:10.0501 6112 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
07:38:10.0507 6112 p2psvc - ok
07:38:10.0518 6112 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
07:38:10.0521 6112 Parport - ok
07:38:10.0549 6112 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:38:10.0550 6112 partmgr - ok
07:38:10.0563 6112 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
07:38:10.0565 6112 PcaSvc - ok
07:38:10.0583 6112 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
07:38:10.0584 6112 pci - ok
07:38:10.0595 6112 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
07:38:10.0597 6112 pciide - ok
07:38:10.0605 6112 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
07:38:10.0609 6112 pcmcia - ok
07:38:10.0622 6112 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
07:38:10.0622 6112 pcw - ok
07:38:10.0636 6112 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:38:10.0638 6112 PEAUTH - ok
07:38:10.0668 6112 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
07:38:10.0693 6112 PeerDistSvc - ok
07:38:10.0737 6112 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
07:38:10.0739 6112 PerfHost - ok
07:38:10.0766 6112 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
07:38:10.0797 6112 pla - ok
07:38:10.0851 6112 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:38:10.0853 6112 PlugPlay - ok
07:38:10.0861 6112 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:38:10.0863 6112 PNRPAutoReg - ok
07:38:10.0875 6112 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:38:10.0877 6112 PNRPsvc - ok
07:38:10.0898 6112 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:38:10.0904 6112 PolicyAgent - ok
07:38:10.0930 6112 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
07:38:10.0932 6112 Power - ok
07:38:10.0958 6112 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:38:10.0961 6112 PptpMiniport - ok
07:38:10.0975 6112 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
07:38:10.0978 6112 Processor - ok
07:38:11.0010 6112 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
07:38:11.0012 6112 ProfSvc - ok
07:38:11.0023 6112 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:38:11.0024 6112 ProtectedStorage - ok
07:38:11.0048 6112 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:38:11.0048 6112 Psched - ok
07:38:11.0094 6112 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
07:38:11.0127 6112 ql2300 - ok
07:38:11.0144 6112 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
07:38:11.0147 6112 ql40xx - ok
07:38:11.0164 6112 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
07:38:11.0169 6112 QWAVE - ok
07:38:11.0177 6112 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:38:11.0179 6112 QWAVEdrv - ok
07:38:11.0190 6112 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:38:11.0192 6112 RasAcd - ok
07:38:11.0222 6112 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:38:11.0225 6112 RasAgileVpn - ok
07:38:11.0233 6112 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
07:38:11.0236 6112 RasAuto - ok
07:38:11.0247 6112 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:38:11.0250 6112 Rasl2tp - ok
07:38:11.0277 6112 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
07:38:11.0282 6112 RasMan - ok
07:38:11.0291 6112 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:38:11.0293 6112 RasPppoe - ok
07:38:11.0305 6112 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:38:11.0308 6112 RasSstp - ok
07:38:11.0319 6112 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:38:11.0323 6112 rdbss - ok
07:38:11.0334 6112 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
07:38:11.0335 6112 rdpbus - ok
07:38:11.0351 6112 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:38:11.0353 6112 RDPCDD - ok
07:38:11.0370 6112 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
07:38:11.0373 6112 RDPDR - ok
07:38:11.0381 6112 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:38:11.0382 6112 RDPENCDD - ok
07:38:11.0402 6112 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:38:11.0403 6112 RDPREFMP - ok
07:38:11.0441 6112 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
07:38:11.0442 6112 RdpVideoMiniport - ok
07:38:11.0489 6112 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:38:11.0492 6112 RDPWD - ok
07:38:11.0520 6112 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:38:11.0536 6112 rdyboost - ok
07:38:11.0610 6112 [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
07:38:11.0610 6112 RealNetworks Downloader Resolver Service - ok
07:38:11.0676 6112 [ 7196BE857E29007470FF9B689C7F29A7 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
07:38:11.0679 6112 RegSrvc - ok
07:38:11.0699 6112 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:38:11.0702 6112 RemoteAccess - ok
07:38:11.0721 6112 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:38:11.0725 6112 RemoteRegistry - ok
07:38:11.0822 6112 [ 499556B74A1022906DE888FAB0389BFA ] ReportServer C:\Program Files\Microsoft SQL Server\MSRS10_50.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
07:38:11.0889 6112 ReportServer - ok
07:38:11.0927 6112 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
07:38:11.0930 6112 RFCOMM - ok
07:38:11.0961 6112 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
07:38:11.0980 6112 RimUsb - ok
07:38:12.0022 6112 [ 5A227511ED22DDFEDF7EF7323C8F7D2F ] risdxc C:\Windows\system32\DRIVERS\risdxc64.sys
07:38:12.0024 6112 risdxc - ok
07:38:12.0033 6112 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:38:12.0034 6112 RpcEptMapper - ok
07:38:12.0040 6112 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
07:38:12.0042 6112 RpcLocator - ok
07:38:12.0059 6112 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
07:38:12.0062 6112 RpcSs - ok
07:38:12.0088 6112 [ CD553B8633466A6D1C115812F2619F1F ] RsFx0103 C:\Windows\system32\DRIVERS\RsFx0103.sys
07:38:12.0093 6112 RsFx0103 - ok
07:38:12.0115 6112 [ EB1C539E621A35A49F7692B0EB565AB9 ] RsFx0150 C:\Windows\system32\DRIVERS\RsFx0150.sys
07:38:12.0129 6112 RsFx0150 - ok
07:38:12.0152 6112 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:38:12.0153 6112 rspndr - ok
07:38:12.0180 6112 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
07:38:12.0182 6112 s3cap - ok
07:38:12.0194 6112 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
07:38:12.0195 6112 SamSs - ok
07:38:12.0201 6112 SAService - ok
07:38:12.0218 6112 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:38:12.0220 6112 sbp2port - ok
07:38:12.0239 6112 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:38:12.0243 6112 SCardSvr - ok
07:38:12.0252 6112 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:38:12.0254 6112 scfilter - ok
07:38:12.0273 6112 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
07:38:12.0278 6112 Schedule - ok
07:38:12.0296 6112 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
07:38:12.0296 6112 SCPolicySvc - ok
07:38:12.0312 6112 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:38:12.0316 6112 SDRSVC - ok
07:38:12.0322 6112 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:38:12.0322 6112 secdrv - ok
07:38:12.0328 6112 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
07:38:12.0330 6112 seclogon - ok
07:38:12.0350 6112 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
07:38:12.0351 6112 SENS - ok
07:38:12.0359 6112 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:38:12.0362 6112 SensrSvc - ok
07:38:12.0380 6112 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
07:38:12.0382 6112 Serenum - ok
07:38:12.0401 6112 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
07:38:12.0403 6112 Serial - ok
07:38:12.0427 6112 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
07:38:12.0429 6112 sermouse - ok
07:38:12.0465 6112 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
07:38:12.0468 6112 SessionEnv - ok
07:38:12.0470 6112 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
07:38:12.0472 6112 sffdisk - ok
07:38:12.0474 6112 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:38:12.0475 6112 sffp_mmc - ok
07:38:12.0477 6112 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
07:38:12.0478 6112 sffp_sd - ok
07:38:12.0481 6112 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
07:38:12.0482 6112 sfloppy - ok
07:38:12.0518 6112 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:38:12.0524 6112 SharedAccess - ok
07:38:12.0538 6112 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:38:12.0540 6112 ShellHWDetection - ok
07:38:12.0566 6112 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
07:38:12.0568 6112 SiSRaid2 - ok
07:38:12.0581 6112 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
07:38:12.0582 6112 SiSRaid4 - ok
07:38:12.0646 6112 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
07:38:12.0647 6112 SkypeUpdate - ok
07:38:12.0673 6112 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:38:12.0675 6112 Smb - ok
07:38:12.0718 6112 [ 8B4B5E4C0382D7ECBB48DC989AE20FA6 ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
07:38:12.0724 6112 SmbDrvI - ok
07:38:12.0732 6112 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:38:12.0733 6112 SNMPTRAP - ok
07:38:12.0743 6112 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
07:38:12.0744 6112 spldr - ok
07:38:12.0786 6112 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
07:38:12.0789 6112 Spooler - ok
07:38:12.0841 6112 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
07:38:12.0899 6112 sppsvc - ok
07:38:12.0910 6112 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:38:12.0912 6112 sppuinotify - ok
07:38:12.0959 6112 [ 12E6D95CDE974B131DEFAA44BAB8B056 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
07:38:12.0966 6112 SQLAgent$SQLEXPRESS - ok
07:38:13.0015 6112 [ 7D67C07C63796775CC5492BCFEAFF125 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
07:38:13.0021 6112 SQLBrowser - ok
07:38:13.0071 6112 [ 70F05E8ECE922C20E785A46224E12183 ] SQLSERVERAGENT C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
07:38:13.0078 6112 SQLSERVERAGENT - ok
07:38:13.0108 6112 [ F98DDFBFE0EE66D4C4B00693512B9527 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
07:38:13.0111 6112 SQLWriter - ok
07:38:13.0153 6112 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
07:38:13.0158 6112 srv - ok
07:38:13.0169 6112 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:38:13.0175 6112 srv2 - ok
07:38:13.0191 6112 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:38:13.0195 6112 srvnet - ok
07:38:13.0221 6112 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:38:13.0225 6112 SSDPSRV - ok
07:38:13.0235 6112 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:38:13.0236 6112 SstpSvc - ok
07:38:13.0318 6112 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
07:38:13.0319 6112 Stereo Service - ok
07:38:13.0337 6112 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
07:38:13.0339 6112 stexstor - ok
07:38:13.0367 6112 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
07:38:13.0375 6112 stisvc - ok
07:38:13.0396 6112 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
07:38:13.0397 6112 storflt - ok
07:38:13.0421 6112 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
07:38:13.0424 6112 storvsc - ok
07:38:13.0438 6112 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
07:38:13.0438 6112 swenum - ok
07:38:13.0452 6112 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
07:38:13.0459 6112 swprv - ok
07:38:13.0473 6112 [ C3A39C4079305480972D29C44B868C78 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
07:38:13.0475 6112 Synth3dVsc - ok
07:38:13.0516 6112 [ 9A17BF37F3B2FB9B686214780E4F8223 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
07:38:13.0525 6112 SynTP - ok
07:38:13.0555 6112 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
07:38:13.0589 6112 SysMain - ok
07:38:13.0599 6112 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:38:13.0602 6112 TabletInputService - ok
07:38:13.0608 6112 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
07:38:13.0612 6112 TapiSrv - ok
07:38:13.0615 6112 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
07:38:13.0616 6112 TBS - ok
07:38:13.0670 6112 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
07:38:13.0703 6112 Tcpip - ok
07:38:13.0744 6112 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
07:38:13.0752 6112 TCPIP6 - ok
07:38:13.0772 6112 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
07:38:13.0774 6112 tcpipreg - ok
07:38:13.0790 6112 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
07:38:13.0808 6112 TDPIPE - ok
07:38:13.0823 6112 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
07:38:13.0840 6112 TDTCP - ok
07:38:13.0859 6112 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
07:38:13.0862 6112 tdx - ok
07:38:13.0868 6112 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
07:38:13.0869 6112 TermDD - ok
07:38:13.0887 6112 [ 2B5BDFF688EC9871D7EC5837833374E9 ] terminpt C:\Windows\system32\drivers\terminpt.sys
07:38:13.0889 6112 terminpt - ok
07:38:13.0912 6112 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
07:38:13.0929 6112 TermService - ok
07:38:13.0936 6112 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
07:38:13.0937 6112 Themes - ok
07:38:13.0961 6112 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
07:38:13.0962 6112 THREADORDER - ok
07:38:13.0996 6112 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
07:38:13.0997 6112 TPM - ok
07:38:14.0004 6112 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
07:38:14.0007 6112 TrkWks - ok
07:38:14.0041 6112 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:38:14.0045 6112 TrustedInstaller - ok
07:38:14.0053 6112 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
07:38:14.0054 6112 tssecsrv - ok
07:38:14.0068 6112 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
07:38:14.0070 6112 TsUsbFlt - ok
07:38:14.0085 6112 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
07:38:14.0087 6112 TsUsbGD - ok
07:38:14.0095 6112 [ E1748D04AE40118B62BC18AC86032192 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
07:38:14.0096 6112 tsusbhub - ok
07:38:14.0112 6112 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
07:38:14.0115 6112 tunnel - ok
07:38:14.0130 6112 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
07:38:14.0133 6112 uagp35 - ok
07:38:14.0163 6112 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
07:38:14.0168 6112 udfs - ok
07:38:14.0195 6112 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
07:38:14.0200 6112 UI0Detect - ok
07:38:14.0212 6112 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
07:38:14.0214 6112 uliagpkx - ok
07:38:14.0228 6112 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
07:38:14.0230 6112 umbus - ok
07:38:14.0238 6112 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
07:38:14.0239 6112 UmPass - ok
07:38:14.0262 6112 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
07:38:14.0266 6112 UmRdpService - ok
07:38:14.0279 6112 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
07:38:14.0285 6112 upnphost - ok
07:38:14.0339 6112 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
07:38:14.0341 6112 usbaudio - ok
07:38:14.0370 6112 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
07:38:14.0373 6112 usbccgp - ok
07:38:14.0384 6112 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
07:38:14.0386 6112 usbcir - ok
07:38:14.0406 6112 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
07:38:14.0408 6112 usbehci - ok
07:38:14.0425 6112 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
07:38:14.0430 6112 usbhub - ok
07:38:14.0440 6112 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
07:38:14.0442 6112 usbohci - ok
07:38:14.0460 6112 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
07:38:14.0462 6112 usbprint - ok
07:38:14.0485 6112 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:38:14.0487 6112 USBSTOR - ok
07:38:14.0504 6112 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
07:38:14.0506 6112 usbuhci - ok
07:38:14.0518 6112 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
07:38:14.0522 6112 usbvideo - ok
07:38:14.0531 6112 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
07:38:14.0532 6112 UxSms - ok
07:38:14.0546 6112 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
07:38:14.0546 6112 VaultSvc - ok
07:38:14.0552 6112 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
07:38:14.0552 6112 vdrvroot - ok
07:38:14.0564 6112 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
07:38:14.0572 6112 vds - ok
07:38:14.0592 6112 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
07:38:14.0594 6112 vga - ok
07:38:14.0605 6112 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
07:38:14.0607 6112 VgaSave - ok
07:38:14.0608 6112 VGPU - ok
07:38:14.0618 6112 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
07:38:14.0622 6112 vhdmp - ok
07:38:14.0633 6112 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
07:38:14.0635 6112 viaide - ok
07:38:14.0665 6112 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
07:38:14.0669 6112 vmbus - ok
07:38:14.0679 6112 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
07:38:14.0682 6112 VMBusHID - ok
07:38:14.0694 6112 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
07:38:14.0694 6112 volmgr - ok
07:38:14.0708 6112 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
07:38:14.0710 6112 volmgrx - ok
07:38:14.0716 6112 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:38:14.0720 6112 volsnap - ok
07:38:14.0747 6112 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
07:38:14.0751 6112 vsmraid - ok
07:38:14.0848 6112 [ CA64A8838B4674D14BDF88ABA2F253EA ] VSPerfDrv100 C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys
07:38:14.0851 6112 VSPerfDrv100 - ok
07:38:14.0893 6112 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
07:38:14.0927 6112 VSS - ok
07:38:15.0052 6112 [ 50D3941555FEFDF46424431702EC5FB6 ] vToolbarUpdater14.0.1 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe
07:38:15.0071 6112 vToolbarUpdater14.0.1 - ok
07:38:15.0088 6112 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
07:38:15.0090 6112 vwifibus - ok
07:38:15.0096 6112 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
07:38:15.0098 6112 vwififlt - ok
07:38:15.0120 6112 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
07:38:15.0126 6112 W32Time - ok
07:38:15.0172 6112 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
07:38:15.0178 6112 W3SVC - ok
07:38:15.0192 6112 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
07:38:15.0194 6112 WacomPen - ok
07:38:15.0209 6112 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
07:38:15.0211 6112 WANARP - ok
07:38:15.0221 6112 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
07:38:15.0222 6112 Wanarpv6 - ok
07:38:15.0229 6112 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
07:38:15.0231 6112 WAS - ok
07:38:15.0299 6112 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
07:38:15.0324 6112 WatAdminSvc - ok
07:38:15.0357 6112 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
07:38:15.0383 6112 wbengine - ok
07:38:15.0400 6112 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
07:38:15.0405 6112 WbioSrvc - ok
07:38:15.0411 6112 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
07:38:15.0415 6112 wcncsvc - ok
07:38:15.0428 6112 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:38:15.0430 6112 WcsPlugInService - ok
07:38:15.0438 6112 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
07:38:15.0440 6112 Wd - ok
07:38:15.0471 6112 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
07:38:15.0473 6112 WDC_SAM - ok
07:38:15.0517 6112 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
07:38:15.0520 6112 Wdf01000 - ok
07:38:15.0530 6112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
07:38:15.0533 6112 WdiServiceHost - ok
07:38:15.0535 6112 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
07:38:15.0537 6112 WdiSystemHost - ok
07:38:15.0552 6112 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
07:38:15.0557 6112 WebClient - ok
07:38:15.0566 6112 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
07:38:15.0571 6112 Wecsvc - ok
07:38:15.0583 6112 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
07:38:15.0586 6112 wercplsupport - ok
07:38:15.0599 6112 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
07:38:15.0602 6112 WerSvc - ok
07:38:15.0609 6112 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
07:38:15.0611 6112 WfpLwf - ok
07:38:15.0623 6112 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
07:38:15.0625 6112 WIMMount - ok
07:38:15.0637 6112 WinDefend - ok
07:38:15.0641 6112 WinHttpAutoProxySvc - ok
07:38:15.0692 6112 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:38:15.0696 6112 Winmgmt - ok
07:38:15.0745 6112 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
07:38:15.0796 6112 WinRM - ok
07:38:15.0828 6112 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
07:38:15.0832 6112 Wlansvc - ok
07:38:15.0904 6112 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:38:15.0946 6112 wlidsvc - ok
07:38:15.0973 6112 WMCoreService - ok
07:38:15.0987 6112 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
07:38:15.0988 6112 WmiAcpi - ok
07:38:16.0005 6112 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
07:38:16.0009 6112 wmiApSrv - ok
07:38:16.0019 6112 WMPNetworkSvc - ok
07:38:16.0028 6112 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
07:38:16.0031 6112 WPCSvc - ok
07:38:16.0041 6112 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
07:38:16.0044 6112 WPDBusEnum - ok
07:38:16.0063 6112 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
07:38:16.0065 6112 ws2ifsl - ok
07:38:16.0073 6112 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
07:38:16.0076 6112 wscsvc - ok
07:38:16.0078 6112 WSearch - ok
07:38:16.0144 6112 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
07:38:16.0218 6112 wuauserv - ok
07:38:16.0254 6112 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
07:38:16.0262 6112 WudfPf - ok
07:38:16.0294 6112 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
07:38:16.0298 6112 WUDFRd - ok
07:38:16.0325 6112 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
07:38:16.0330 6112 wudfsvc - ok
07:38:16.0384 6112 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
07:38:16.0389 6112 WwanSvc - ok
07:38:16.0393 6112 ================ Scan global ===============================
07:38:16.0409 6112 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
07:38:16.0443 6112 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
07:38:16.0449 6112 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
07:38:16.0461 6112 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
07:38:16.0480 6112 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
07:38:16.0482 6112 [Global] - ok
07:38:16.0483 6112 ================ Scan MBR ==================================
07:38:16.0494 6112 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:38:16.0703 6112 \Device\Harddisk0\DR0 - ok
07:38:16.0704 6112 ================ Scan VBR ==================================
07:38:16.0705 6112 [ 79A9B6E20857A8AF0DBB6E22194A8182 ] \Device\Harddisk0\DR0\Partition1
07:38:16.0707 6112 \Device\Harddisk0\DR0\Partition1 - ok
07:38:16.0717 6112 [ 53401577C94EA45FD2D181110CF66298 ] \Device\Harddisk0\DR0\Partition2
07:38:16.0719 6112 \Device\Harddisk0\DR0\Partition2 - ok
07:38:16.0719 6112 ============================================================
07:38:16.0719 6112 Scan finished
07:38:16.0719 6112 ============================================================
07:38:16.0725 6284 Detected object count: 1
07:38:16.0725 6284 Actual detected object count: 1
07:44:20.0336 6284 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
07:44:20.0336 6284 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
07:47:48.0884 5880 Deinitialize success


ADW Cleaner

# AdwCleaner v2.109 - Logfile created 01/29/2013 at 07:41:01
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : CCUSER - CCUSER-PC
# Boot Mode : Normal
# Running from : C:\Users\CCUSER\Downloads\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Found : C:\Program Files (x86)\AVG Secure Search
Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\Users\CCUSER\AppData\Local\AVG Secure Search
Folder Found : C:\Users\CCUSER\AppData\Local\Temp\avg@toolbar
Folder Found : C:\Users\CCUSER\AppData\LocalLow\AVG Secure Search

***** [Registry] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\IGearSettings
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\S
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKU\S-1-5-21-528334686-768564071-895053279-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

-\\ Mozilla Firefox v11.0 (en-US)

File : C:\Users\CCUSER\AppData\Roaming\Mozilla\Firefox\Profiles\vbljjr1f.default\prefs.js

Found : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\FireFoxExt\\14.0.2.14")[...]
Found : user_pref("browser.search.defaultenginename", "AVG Secure Search");
Found : user_pref("keyword.URL", "hxxps://isearch.avg.com/search?cid=%7B8ec47c0d-945c-4456-ba54-a50bb162e207[...]

-\\ Google Chrome v24.0.1312.56

File : C:\Users\CCUSER\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [5675 octets] - [29/01/2013 07:41:01]

########## EOF - C:\AdwCleaner[R1].txt - [5735 octets] ##########



Thank you so much.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:56 AM

Posted 28 January 2013 - 10:48 PM

When you post ESET findings also repoet the Minitoolbox log as it was cut off after
========================= IP Configuration: ================================



Next....
Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.


Any improvement??

Edited by boopme, 28 January 2013 - 10:50 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 anywebdev

anywebdev

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:56 AM

Posted 04 February 2013 - 11:41 AM

Hello - I was curious to see if you were able to identify the malware that was causing this issue?

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:56 AM

Posted 04 February 2013 - 12:49 PM

Not unless it was in the ESET or aswMBR logs.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users