Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

BSOD with kdcom.dll error and errors at startup


  • Please log in to reply
21 replies to this topic

#1 DG2007

DG2007

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 06:24 PM

We have a laptop that is getting the BSOD repeatedly, with a kdcom.dll error code.   We've run multiple virus programs etc. - Norton, Malwarebytes, CCleaner, PC Cleaner Pro - and nothing has fixed the problem.   There seems to be an issues with the Temporary Internet file folder as well - growing after being cleaned.   

 

It's a Sony Vaio running Windows 7 Home, 64 Bit

 

 

 

Here's the BSOD code:

 

'FFFFF80000BCD82C base at FFFFF80000BCC000, DateStamp
4f8f0f57"



And the error messages on startup: 



"There was a problem starting C:\Users\Jon’sLaptop\AppData\Roaming\sprosi.dll



The specified module could not be found”


and



“There was a problem starting C:\Users\Jon’sLaptop\AppData\Roaming\ntrlg.dll



The specified module could not be found”

 

Thanks! 


Diane

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 09 February 2013 - 06:26 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 07:20 PM

TDSSKILLER Log:

 

17:05:54.0818 2936  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
17:05:55.0333 2936  ============================================================
17:05:55.0333 2936  Current date / time: 2013/02/09 17:05:55.0333
17:05:55.0333 2936  SystemInfo:
17:05:55.0333 2936 
17:05:55.0333 2936  OS Version: 6.1.7601 ServicePack: 1.0
17:05:55.0333 2936  Product type: Workstation
17:05:55.0333 2936  ComputerName: JONSLAPTOP
17:05:55.0333 2936  UserName: Jon's Laptop
17:05:55.0333 2936  Windows directory: C:\Windows
17:05:55.0333 2936  System windows directory: C:\Windows
17:05:55.0333 2936  Running under WOW64
17:05:55.0333 2936  Processor architecture: Intel x64
17:05:55.0333 2936  Number of processors: 4
17:05:55.0333 2936  Page size: 0x1000
17:05:55.0333 2936  Boot type: Normal boot
17:05:55.0333 2936  ============================================================
17:05:58.0843 2936  BG loaded
17:06:02.0518 2936  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:06:03.0349 2936  ============================================================
17:06:03.0349 2936  \Device\Harddisk0\DR0:
17:06:03.0349 2936  MBR partitions:
17:06:03.0349 2936  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x21A7800, BlocksNum 0x32000
17:06:03.0349 2936  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x21D9800, BlocksNum 0x381AC030
17:06:03.0349 2936  ============================================================
17:06:03.0364 2936  C: <-> \Device\Harddisk0\DR0\Partition2
17:06:03.0364 2936  ============================================================
17:06:03.0364 2936  Initialize success
17:06:03.0364 2936  ============================================================
17:07:33.0289 6956  ============================================================
17:07:33.0289 6956  Scan started
17:07:33.0289 6956  Mode: Manual;
17:07:33.0289 6956  ============================================================
17:07:40.0605 6956  ================ Scan system memory ========================
17:07:40.0605 6956  System memory - ok
17:07:40.0621 6956  ================ Scan services =============================
17:07:40.0964 6956  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:07:40.0964 6956  !SASCORE - ok
17:07:43.0257 6956  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:07:43.0257 6956  1394ohci - ok
17:07:43.0367 6956  A2DDA - ok
17:07:43.0679 6956  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:07:43.0679 6956  ACDaemon - ok
17:07:43.0803 6956  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:07:43.0803 6956  ACPI - ok
17:07:43.0850 6956  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:07:43.0850 6956  AcpiPmi - ok
17:07:44.0069 6956  [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
17:07:44.0069 6956  AdobeActiveFileMonitor9.0 - ok
17:07:44.0287 6956  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:07:44.0287 6956  AdobeARMservice - ok
17:07:44.0661 6956  [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:07:44.0677 6956  AdobeFlashPlayerUpdateSvc - ok
17:07:44.0802 6956  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:07:44.0817 6956  adp94xx - ok
17:07:44.0895 6956  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:07:44.0895 6956  adpahci - ok
17:07:45.0020 6956  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:07:45.0020 6956  adpu320 - ok
17:07:45.0457 6956  [ 7233688FC422EF657E082309E6180142 ] ADVService      C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
17:07:45.0457 6956  ADVService - ok
17:07:45.0504 6956  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:07:45.0504 6956  AeLookupSvc - ok
17:07:45.0753 6956  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:07:45.0785 6956  AFD - ok
17:07:45.0878 6956  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:07:45.0878 6956  agp440 - ok
17:07:45.0956 6956  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:07:45.0956 6956  ALG - ok
17:07:46.0034 6956  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:07:46.0034 6956  aliide - ok
17:07:46.0143 6956  [ 0EE274476C3E5F05F2B79B8C63FCCCFC ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:07:46.0159 6956  AMD External Events Utility - ok
17:07:46.0284 6956  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:07:46.0284 6956  amdide - ok
17:07:46.0362 6956  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:07:46.0362 6956  AmdK8 - ok
17:07:47.0423 6956  [ B18018924D6ADB6E64BC39BD37D6A4D8 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:07:47.0594 6956  amdkmdag - ok
17:07:47.0672 6956  [ 3249B112D48D29BE86984CF4594C9755 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
17:07:47.0672 6956  amdkmdap - ok
17:07:47.0719 6956  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
17:07:47.0719 6956  AmdPPM - ok
17:07:47.0828 6956  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:07:47.0828 6956  amdsata - ok
17:07:47.0844 6956  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
17:07:47.0844 6956  amdsbs - ok
17:07:47.0891 6956  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:07:47.0891 6956  amdxata - ok
17:07:47.0984 6956  [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPAL          C:\Windows\system32\DRIVERS\AMPPAL.sys
17:07:48.0000 6956  AMPPAL - ok
17:07:48.0000 6956  [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPALP         C:\Windows\system32\DRIVERS\amppal.sys
17:07:48.0015 6956  AMPPALP - ok
17:07:48.0218 6956  [ 83A0E7BA4AE616D3654E700D9C5FF9DB ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
17:07:48.0234 6956  AMPPALR3 - ok
17:07:48.0343 6956  [ 9DC1A45BA81C923DB68A162B0F0D0149 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
17:07:48.0343 6956  ApfiltrService - ok
17:07:48.0468 6956  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:07:48.0468 6956  AppID - ok
17:07:48.0499 6956  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:07:48.0499 6956  AppIDSvc - ok
17:07:48.0515 6956  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
17:07:48.0515 6956  Appinfo - ok
17:07:48.0655 6956  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:07:48.0655 6956  Apple Mobile Device - ok
17:07:48.0702 6956  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
17:07:48.0717 6956  arc - ok
17:07:48.0733 6956  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:07:48.0749 6956  arcsas - ok
17:07:48.0795 6956  [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
17:07:48.0827 6956  ArcSoftKsUFilter - ok
17:07:48.0983 6956  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:07:49.0014 6956  aspnet_state - ok
17:07:49.0061 6956  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:07:49.0076 6956  AsyncMac - ok
17:07:49.0123 6956  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:07:49.0139 6956  atapi - ok
17:07:49.0248 6956  [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
17:07:49.0248 6956  athr - ok
17:07:49.0326 6956  [ 26970F26EBAB7D5D1B795A3F9013CD80 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
17:07:49.0357 6956  ATSwpWDF - ok
17:07:49.0466 6956  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:07:49.0466 6956  AudioEndpointBuilder - ok
17:07:49.0482 6956  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:07:49.0482 6956  AudioSrv - ok
17:07:49.0544 6956  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:07:49.0544 6956  AxInstSV - ok
17:07:49.0607 6956  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
17:07:49.0607 6956  b06bdrv - ok
17:07:49.0685 6956  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:07:49.0685 6956  b57nd60a - ok
17:07:49.0763 6956  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:07:49.0763 6956  BDESVC - ok
17:07:49.0825 6956  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:07:49.0825 6956  Beep - ok
17:07:50.0418 6956  [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
17:07:50.0418 6956  BHDrvx64 - ok
17:07:50.0480 6956  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
17:07:50.0496 6956  BITS - ok
17:07:50.0558 6956  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:07:50.0574 6956  blbdrive - ok
17:07:50.0792 6956  [ 2E251B39ABEA79351E5633E5A7C36BE4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
17:07:50.0792 6956  Bluetooth Device Monitor - ok
17:07:50.0979 6956  [ 1EC546F8B6222F1F984220C1324EA945 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
17:07:50.0979 6956  Bluetooth Media Service - ok
17:07:51.0151 6956  [ ADB9C79CCBEF779D56A9AC931F9C8DF0 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
17:07:51.0151 6956  Bluetooth OBEX Service - ok
17:07:51.0307 6956  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:07:51.0323 6956  Bonjour Service - ok
17:07:51.0354 6956  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:07:51.0354 6956  bowser - ok
17:07:51.0401 6956  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
17:07:51.0401 6956  BrFiltLo - ok
17:07:51.0416 6956  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
17:07:51.0432 6956  BrFiltUp - ok
17:07:51.0557 6956  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:07:51.0557 6956  Browser - ok
17:07:51.0572 6956  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:07:51.0572 6956  Brserid - ok
17:07:51.0603 6956  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:07:51.0603 6956  BrSerWdm - ok
17:07:51.0635 6956  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:07:51.0635 6956  BrUsbMdm - ok
17:07:51.0650 6956  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:07:51.0650 6956  BrUsbSer - ok
17:07:51.0713 6956  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
17:07:51.0713 6956  BthEnum - ok
17:07:51.0728 6956  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:07:51.0728 6956  BTHMODEM - ok
17:07:51.0775 6956  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
17:07:51.0775 6956  BthPan - ok
17:07:51.0791 6956  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
17:07:51.0791 6956  BTHPORT - ok
17:07:51.0853 6956  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:07:51.0853 6956  bthserv - ok
17:07:51.0869 6956  [ A5B3E8B2B78C7B3DA56A0DE490E6718C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
17:07:51.0869 6956  BTHSSecurityMgr - ok
17:07:51.0915 6956  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
17:07:51.0915 6956  BTHUSB - ok
17:07:51.0947 6956  [ 76A1340ADB32798D18394AA424D584E2 ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
17:07:51.0947 6956  btmaux - ok
17:07:52.0009 6956  [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
17:07:52.0009 6956  btmhsf - ok
17:07:52.0103 6956  [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_MCLIENT   C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys
17:07:52.0103 6956  ccSet_MCLIENT - ok
17:07:52.0290 6956  [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1402010.016\ccSetx64.sys
17:07:52.0290 6956  ccSet_N360 - ok
17:07:52.0321 6956  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:07:52.0321 6956  cdfs - ok
17:07:52.0383 6956  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:07:52.0383 6956  cdrom - ok
17:07:52.0430 6956  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:07:52.0430 6956  CertPropSvc - ok
17:07:52.0461 6956  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
17:07:52.0461 6956  circlass - ok
17:07:52.0524 6956  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:07:52.0539 6956  CLFS - ok
17:07:52.0649 6956  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:07:52.0649 6956  clr_optimization_v2.0.50727_32 - ok
17:07:52.0695 6956  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:07:52.0695 6956  clr_optimization_v2.0.50727_64 - ok
17:07:52.0773 6956  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:07:52.0976 6956  clr_optimization_v4.0.30319_32 - ok
17:07:53.0039 6956  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:07:53.0101 6956  clr_optimization_v4.0.30319_64 - ok
17:07:53.0163 6956  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:07:53.0163 6956  CmBatt - ok
17:07:53.0195 6956  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:07:53.0195 6956  cmdide - ok
17:07:53.0273 6956  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
17:07:53.0273 6956  CNG - ok
17:07:53.0304 6956  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:07:53.0319 6956  Compbatt - ok
17:07:53.0351 6956  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
17:07:53.0351 6956  CompositeBus - ok
17:07:53.0366 6956  COMSysApp - ok
17:07:53.0397 6956  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:07:53.0475 6956  crcdisk - ok
17:07:53.0553 6956  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:07:53.0553 6956  CryptSvc - ok
17:07:53.0725 6956  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:07:53.0725 6956  cvhsvc - ok
17:07:53.0819 6956  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:07:53.0819 6956  DcomLaunch - ok
17:07:53.0865 6956  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:07:53.0865 6956  defragsvc - ok
17:07:53.0943 6956  [ 3430EAD65BBE8516572EB7C8B82ED8CD ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
17:07:53.0943 6956  DeviceMonitorService - ok
17:07:54.0006 6956  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:07:54.0006 6956  DfsC - ok
17:07:54.0131 6956  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:07:54.0146 6956  Dhcp - ok
17:07:54.0365 6956  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:07:54.0365 6956  discache - ok
17:07:54.0692 6956  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
17:07:54.0692 6956  Disk - ok
17:07:54.0879 6956  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:07:54.0895 6956  Dnscache - ok
17:07:54.0926 6956  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:07:54.0926 6956  dot3svc - ok
17:07:54.0942 6956  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:07:54.0942 6956  DPS - ok
17:07:55.0035 6956  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:07:55.0035 6956  drmkaud - ok
17:07:55.0098 6956  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:07:55.0113 6956  DXGKrnl - ok
17:07:55.0394 6956  [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y60x64.sys
17:07:55.0410 6956  e1yexpress - ok
17:07:55.0519 6956  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:07:55.0519 6956  EapHost - ok
17:07:55.0737 6956  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
17:07:55.0800 6956  ebdrv - ok
17:07:55.0862 6956  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:07:55.0862 6956  eeCtrl - ok
17:07:55.0909 6956  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:07:55.0909 6956  EFS - ok
17:07:56.0081 6956  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:07:56.0096 6956  ehRecvr - ok
17:07:56.0143 6956  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:07:56.0159 6956  ehSched - ok
17:07:56.0252 6956  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:07:56.0268 6956  elxstor - ok
17:07:56.0408 6956  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:07:56.0408 6956  EraserUtilRebootDrv - ok
17:07:56.0455 6956  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:07:56.0455 6956  ErrDev - ok
17:07:56.0595 6956  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:07:56.0595 6956  EventSystem - ok
17:07:56.0814 6956  [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
17:07:56.0845 6956  EvtEng - ok
17:07:56.0923 6956  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:07:56.0923 6956  exfat - ok
17:07:56.0954 6956  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:07:56.0954 6956  fastfat - ok
17:07:57.0017 6956  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:07:57.0032 6956  Fax - ok
17:07:57.0048 6956  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
17:07:57.0048 6956  fdc - ok
17:07:57.0110 6956  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:07:57.0110 6956  fdPHost - ok
17:07:57.0126 6956  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:07:57.0141 6956  FDResPub - ok
17:07:57.0141 6956  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:07:57.0141 6956  FileInfo - ok
17:07:57.0157 6956  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:07:57.0173 6956  Filetrace - ok
17:07:57.0235 6956  [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:07:57.0251 6956  FLEXnet Licensing Service - ok
17:07:57.0282 6956  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
17:07:57.0282 6956  flpydisk - ok
17:07:57.0297 6956  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:07:57.0297 6956  FltMgr - ok
17:07:57.0360 6956  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
17:07:57.0375 6956  FontCache - ok
17:07:57.0438 6956  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:07:57.0438 6956  FontCache3.0.0.0 - ok
17:07:57.0516 6956  [ 8F46017C1442E25B2BED0377A4733EC1 ] FPLService      C:\Program Files\TrueSuite\TrueSuite.Service.exe
17:07:57.0531 6956  FPLService - ok
17:07:57.0563 6956  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:07:57.0563 6956  FsDepends - ok
17:07:57.0609 6956  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:07:57.0609 6956  Fs_Rec - ok
17:07:57.0641 6956  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:07:57.0641 6956  fvevol - ok
17:07:57.0719 6956  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:07:57.0719 6956  gagp30kx - ok
17:07:57.0765 6956  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:07:57.0765 6956  GEARAspiWDM - ok
17:07:57.0812 6956  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:07:57.0812 6956  gpsvc - ok
17:07:57.0828 6956  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:07:57.0828 6956  hcw85cir - ok
17:07:57.0875 6956  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:07:57.0890 6956  HdAudAddService - ok
17:07:57.0921 6956  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:07:57.0921 6956  HDAudBus - ok
17:07:57.0921 6956  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
17:07:57.0937 6956  HidBatt - ok
17:07:57.0937 6956  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:07:57.0953 6956  HidBth - ok
17:07:57.0953 6956  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:07:57.0953 6956  HidIr - ok
17:07:57.0984 6956  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
17:07:57.0984 6956  hidserv - ok
17:07:58.0031 6956  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:07:58.0031 6956  HidUsb - ok
17:07:58.0077 6956  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:07:58.0077 6956  hkmsvc - ok
17:07:58.0124 6956  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:07:58.0140 6956  HomeGroupListener - ok
17:07:58.0155 6956  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:07:58.0155 6956  HomeGroupProvider - ok
17:07:58.0218 6956  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:07:58.0218 6956  HpSAMD - ok
17:07:58.0233 6956  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:07:58.0249 6956  HTTP - ok
17:07:58.0265 6956  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:07:58.0265 6956  hwpolicy - ok
17:07:58.0265 6956  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:07:58.0265 6956  i8042prt - ok
17:07:58.0311 6956  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
17:07:58.0311 6956  iaStor - ok
17:07:58.0374 6956  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:07:58.0374 6956  IAStorDataMgrSvc - ok
17:07:58.0405 6956  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:07:58.0421 6956  iaStorV - ok
17:07:58.0467 6956  [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex      C:\Windows\system32\DRIVERS\iBtFltCoex.sys
17:07:58.0467 6956  iBtFltCoex - ok
17:07:58.0608 6956  [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:07:58.0623 6956  IconMan_R - ok
17:07:58.0655 6956  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:07:58.0670 6956  idsvc - ok
17:07:58.0857 6956  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\IPSDefs\20130208.001\IDSvia64.sys
17:07:58.0873 6956  IDSVia64 - ok
17:07:58.0904 6956  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:07:58.0920 6956  iirsp - ok
17:07:58.0982 6956  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:07:58.0998 6956  IKEEXT - ok
17:07:59.0045 6956  [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
17:07:59.0045 6956  intaud_WaveExtensible - ok
17:07:59.0154 6956  [ CDB772F707AC24B43A20C821852CA61F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:07:59.0201 6956  IntcAzAudAddService - ok
17:07:59.0279 6956  [ AE594CC17C33AC146739494615E14851 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
17:07:59.0279 6956  IntcDAud - ok
17:07:59.0325 6956  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:07:59.0325 6956  intelide - ok
17:07:59.0684 6956  [ E5C11F3689D9448CCC1D782FC2C4CC46 ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
17:07:59.0918 6956  intelkmd - ok
17:07:59.0965 6956  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:07:59.0981 6956  intelppm - ok
17:08:00.0043 6956  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:08:00.0043 6956  IPBusEnum - ok
17:08:00.0059 6956  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:08:00.0059 6956  IpFilterDriver - ok
17:08:00.0090 6956  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:08:00.0090 6956  IPMIDRV - ok
17:08:00.0121 6956  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:08:00.0121 6956  IPNAT - ok
17:08:00.0199 6956  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:08:00.0199 6956  iPod Service - ok
17:08:00.0246 6956  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:08:00.0246 6956  IRENUM - ok
17:08:00.0261 6956  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:08:00.0261 6956  isapnp - ok
17:08:00.0293 6956  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:08:00.0293 6956  iScsiPrt - ok
17:08:00.0339 6956  [ 716F66336F10885D935B08174DC54242 ] iwdbus          C:\Windows\system32\DRIVERS\iwdbus.sys
17:08:00.0339 6956  iwdbus - ok
17:08:00.0417 6956  [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
17:08:00.0417 6956  jhi_service - ok
17:08:00.0464 6956  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:08:00.0464 6956  kbdclass - ok
17:08:00.0511 6956  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
17:08:00.0511 6956  kbdhid - ok
17:08:00.0527 6956  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:08:00.0527 6956  KeyIso - ok
17:08:00.0558 6956  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:08:00.0558 6956  KSecDD - ok
17:08:00.0573 6956  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:08:00.0573 6956  KSecPkg - ok
17:08:00.0620 6956  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:08:00.0620 6956  ksthunk - ok
17:08:00.0683 6956  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:08:00.0698 6956  KtmRm - ok
17:08:00.0761 6956  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:08:00.0761 6956  LanmanServer - ok
17:08:00.0776 6956  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:08:00.0792 6956  LanmanWorkstation - ok
17:08:00.0839 6956  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:08:00.0839 6956  lltdio - ok
17:08:00.0885 6956  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:08:00.0885 6956  lltdsvc - ok
17:08:00.0917 6956  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:08:00.0917 6956  lmhosts - ok
17:08:00.0995 6956  [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:08:00.0995 6956  LMS - ok
17:08:01.0041 6956  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:08:01.0041 6956  LSI_FC - ok
17:08:01.0057 6956  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:08:01.0057 6956  LSI_SAS - ok
17:08:01.0057 6956  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
17:08:01.0057 6956  LSI_SAS2 - ok
17:08:01.0073 6956  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:08:01.0073 6956  LSI_SCSI - ok
17:08:01.0088 6956  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:08:01.0088 6956  luafv - ok
17:08:01.0197 6956  [ 4A9258B9597A31DB68EC9740F3A8A70B ] MCLIENT         C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
17:08:01.0197 6956  MCLIENT - ok
17:08:01.0244 6956  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:08:01.0244 6956  Mcx2Svc - ok
17:08:01.0275 6956  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:08:01.0275 6956  megasas - ok
17:08:01.0307 6956  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
17:08:01.0307 6956  MegaSR - ok
17:08:01.0369 6956  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
17:08:01.0369 6956  MEIx64 - ok
17:08:01.0385 6956  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:08:01.0400 6956  MMCSS - ok
17:08:01.0416 6956  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:08:01.0416 6956  Modem - ok
17:08:01.0447 6956  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:08:01.0447 6956  monitor - ok
17:08:01.0509 6956  [ A8FD4605AACF006BBA3B2B90AC9565B2 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
17:08:01.0509 6956  Motorola Device Manager - ok
17:08:01.0556 6956  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:08:01.0556 6956  mouclass - ok
17:08:01.0587 6956  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
17:08:01.0587 6956  mouhid - ok
17:08:01.0634 6956  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:08:01.0634 6956  mountmgr - ok
17:08:01.0665 6956  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:08:01.0665 6956  mpio - ok
17:08:01.0681 6956  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:08:01.0681 6956  mpsdrv - ok
17:08:01.0697 6956  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:08:01.0697 6956  MRxDAV - ok
17:08:01.0728 6956  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:08:01.0728 6956  mrxsmb - ok
17:08:01.0743 6956  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:08:01.0743 6956  mrxsmb10 - ok
17:08:01.0759 6956  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:08:01.0759 6956  mrxsmb20 - ok
17:08:01.0790 6956  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:08:01.0790 6956  msahci - ok
17:08:01.0790 6956  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:08:01.0790 6956  msdsm - ok
17:08:01.0806 6956  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:08:01.0806 6956  MSDTC - ok
17:08:01.0868 6956  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:08:01.0868 6956  Msfs - ok
17:08:01.0899 6956  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:08:01.0899 6956  mshidkmdf - ok
17:08:01.0915 6956  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:08:01.0931 6956  msisadrv - ok
17:08:01.0946 6956  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:08:01.0946 6956  MSiSCSI - ok
17:08:01.0946 6956  msiserver - ok
17:08:01.0962 6956  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:08:01.0962 6956  MSKSSRV - ok
17:08:01.0993 6956  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:08:01.0993 6956  MSPCLOCK - ok
17:08:02.0009 6956  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:08:02.0009 6956  MSPQM - ok
17:08:02.0024 6956  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:08:02.0024 6956  MsRPC - ok
17:08:02.0040 6956  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:08:02.0040 6956  mssmbios - ok
17:08:02.0055 6956  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:08:02.0055 6956  MSTEE - ok
17:08:02.0071 6956  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
17:08:02.0071 6956  MTConfig - ok
17:08:02.0102 6956  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:08:02.0102 6956  Mup - ok
17:08:02.0180 6956  [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
17:08:02.0180 6956  MyWiFiDHCPDNS - ok
17:08:02.0367 6956  [ 4BA84C832E0741A294C4444556DFE993 ] N360            C:\Program Files (x86)\Norton 360\Engine\20.2.1.22\ccSvcHst.exe
17:08:02.0367 6956  N360 - ok
17:08:02.0399 6956  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:08:02.0414 6956  napagent - ok
17:08:02.0461 6956  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:08:02.0477 6956  NativeWifiP - ok
17:08:02.0586 6956  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\ENG64.SYS
17:08:02.0586 6956  NAVENG - ok
17:08:02.0633 6956  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\EX64.SYS
17:08:02.0648 6956  NAVEX15 - ok
17:08:02.0711 6956  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:08:02.0726 6956  NDIS - ok
17:08:02.0773 6956  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:08:02.0773 6956  NdisCap - ok
17:08:02.0835 6956  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:08:02.0835 6956  NdisTapi - ok
17:08:02.0882 6956  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:08:02.0882 6956  Ndisuio - ok
17:08:02.0898 6956  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:08:02.0898 6956  NdisWan - ok
17:08:02.0913 6956  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:08:02.0913 6956  NDProxy - ok
17:08:02.0960 6956  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:08:02.0960 6956  NetBIOS - ok
17:08:02.0991 6956  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:08:02.0991 6956  NetBT - ok
17:08:03.0038 6956  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:08:03.0038 6956  Netlogon - ok
17:08:03.0069 6956  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:08:03.0069 6956  Netman - ok
17:08:03.0132 6956  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:03.0163 6956  NetMsmqActivator - ok
17:08:03.0163 6956  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:03.0163 6956  NetPipeActivator - ok
17:08:03.0210 6956  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:08:03.0210 6956  netprofm - ok
17:08:03.0210 6956  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:03.0210 6956  NetTcpActivator - ok
17:08:03.0225 6956  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:08:03.0225 6956  NetTcpPortSharing - ok
17:08:03.0459 6956  [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
17:08:03.0631 6956  NETwNs64 - ok
17:08:03.0693 6956  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:08:03.0693 6956  nfrd960 - ok
17:08:03.0756 6956  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:08:03.0756 6956  NlaSvc - ok
17:08:03.0771 6956  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:08:03.0787 6956  Npfs - ok
17:08:03.0803 6956  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:08:03.0803 6956  nsi - ok
17:08:03.0818 6956  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:08:03.0818 6956  nsiproxy - ok
17:08:03.0881 6956  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:08:03.0896 6956  Ntfs - ok
17:08:03.0912 6956  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:08:03.0912 6956  Null - ok
17:08:03.0974 6956  [ B227E75AD10A142DD326B4CC8D73A6D9 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
17:08:03.0974 6956  nusb3hub - ok
17:08:04.0005 6956  [ 55959DB860E4E484681586824D09E52C ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
17:08:04.0005 6956  nusb3xhc - ok
17:08:04.0271 6956  [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:08:04.0489 6956  nvlddmkm - ok
17:08:04.0551 6956  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:08:04.0551 6956  nvraid - ok
17:08:04.0567 6956  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:08:04.0567 6956  nvstor - ok
17:08:04.0598 6956  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:08:04.0614 6956  nv_agp - ok
17:08:04.0707 6956  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:08:04.0707 6956  odserv - ok
17:08:04.0739 6956  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:08:04.0739 6956  ohci1394 - ok
17:08:04.0770 6956  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:08:04.0770 6956  ose - ok
17:08:04.0926 6956  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:08:05.0035 6956  osppsvc - ok
17:08:05.0097 6956  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:08:05.0097 6956  p2pimsvc - ok
17:08:05.0129 6956  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:08:05.0129 6956  p2psvc - ok
17:08:05.0160 6956  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
17:08:05.0160 6956  Parport - ok
17:08:05.0191 6956  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:08:05.0191 6956  partmgr - ok
17:08:05.0222 6956  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:08:05.0222 6956  PcaSvc - ok
17:08:05.0253 6956  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:08:05.0253 6956  pci - ok
17:08:05.0269 6956  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:08:05.0269 6956  pciide - ok
17:08:05.0285 6956  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:08:05.0285 6956  pcmcia - ok
17:08:05.0331 6956  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:08:05.0331 6956  pcw - ok
17:08:05.0347 6956  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:08:05.0363 6956  PEAUTH - ok
17:08:05.0472 6956  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:08:05.0472 6956  PerfHost - ok
17:08:05.0534 6956  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:08:05.0550 6956  pla - ok
17:08:05.0612 6956  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:08:05.0612 6956  PlugPlay - ok
17:08:05.0706 6956  [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:08:05.0706 6956  PMBDeviceInfoProvider - ok
17:08:05.0737 6956  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:08:05.0737 6956  PNRPAutoReg - ok
17:08:05.0768 6956  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:08:05.0768 6956  PNRPsvc - ok
17:08:05.0799 6956  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:08:05.0799 6956  PolicyAgent - ok
17:08:05.0831 6956  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:08:05.0846 6956  Power - ok
17:08:05.0909 6956  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:08:05.0909 6956  PptpMiniport - ok
17:08:05.0924 6956  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
17:08:05.0924 6956  Processor - ok
17:08:05.0955 6956  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:08:05.0955 6956  ProfSvc - ok
17:08:05.0971 6956  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:08:05.0971 6956  ProtectedStorage - ok
17:08:06.0018 6956  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:08:06.0018 6956  Psched - ok
17:08:06.0080 6956  [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
17:08:06.0080 6956  PST Service - ok
17:08:06.0096 6956  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
17:08:06.0096 6956  PxHlpa64 - ok
17:08:06.0174 6956  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:08:06.0189 6956  ql2300 - ok
17:08:06.0205 6956  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:08:06.0205 6956  ql40xx - ok
17:08:06.0221 6956  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:08:06.0236 6956  QWAVE - ok
17:08:06.0236 6956  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:08:06.0236 6956  QWAVEdrv - ok
17:08:06.0314 6956  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
17:08:06.0314 6956  RapiMgr - ok
17:08:06.0330 6956  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:08:06.0330 6956  RasAcd - ok
17:08:06.0361 6956  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:08:06.0361 6956  RasAgileVpn - ok
17:08:06.0377 6956  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:08:06.0392 6956  RasAuto - ok
17:08:06.0423 6956  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:08:06.0423 6956  Rasl2tp - ok
17:08:06.0455 6956  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:08:06.0455 6956  RasMan - ok
17:08:06.0470 6956  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:08:06.0470 6956  RasPppoe - ok
17:08:06.0501 6956  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:08:06.0501 6956  RasSstp - ok
17:08:06.0517 6956  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:08:06.0517 6956  rdbss - ok
17:08:06.0533 6956  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
17:08:06.0533 6956  rdpbus - ok
17:08:06.0548 6956  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:08:06.0548 6956  RDPCDD - ok
17:08:06.0595 6956  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:08:06.0595 6956  RDPENCDD - ok
17:08:06.0611 6956  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:08:06.0611 6956  RDPREFMP - ok
17:08:06.0642 6956  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:08:06.0642 6956  RDPWD - ok
17:08:06.0673 6956  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:08:06.0673 6956  rdyboost - ok
17:08:06.0735 6956  [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
17:08:06.0735 6956  RegSrvc - ok
17:08:06.0798 6956  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:08:06.0798 6956  RemoteAccess - ok
17:08:06.0829 6956  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:08:06.0829 6956  RemoteRegistry - ok
17:08:06.0876 6956  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
17:08:06.0876 6956  RFCOMM - ok
17:08:06.0907 6956  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:08:06.0907 6956  RpcEptMapper - ok
17:08:06.0938 6956  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:08:06.0938 6956  RpcLocator - ok
17:08:06.0969 6956  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:08:06.0969 6956  RpcSs - ok
17:08:07.0016 6956  [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
17:08:07.0032 6956  RSPCIESTOR - ok
17:08:07.0094 6956  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:08:07.0094 6956  rspndr - ok
17:08:07.0125 6956  [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:08:07.0125 6956  RTL8167 - ok
17:08:07.0188 6956  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:08:07.0188 6956  SamSs - ok
17:08:07.0250 6956  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:08:07.0250 6956  SASDIFSV - ok
17:08:07.0266 6956  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:08:07.0266 6956  SASKUTIL - ok
17:08:07.0313 6956  [ DB7F9394B2F2D446DF14D46C61B0E94B ] sbapifs         C:\Windows\system32\DRIVERS\sbapifs.sys
17:08:07.0313 6956  sbapifs - ok
17:08:07.0344 6956  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:08:07.0344 6956  sbp2port - ok
17:08:07.0422 6956  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
17:08:07.0437 6956  SBSDWSCService - ok
17:08:07.0500 6956  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:08:07.0515 6956  SCardSvr - ok
17:08:07.0531 6956  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:08:07.0531 6956  scfilter - ok
17:08:07.0547 6956  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:08:07.0562 6956  Schedule - ok
17:08:07.0593 6956  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:08:07.0593 6956  SCPolicySvc - ok
17:08:07.0640 6956  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
17:08:07.0640 6956  sdbus - ok
17:08:07.0671 6956  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:08:07.0671 6956  SDRSVC - ok
17:08:07.0718 6956  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:08:07.0718 6956  secdrv - ok
17:08:07.0734 6956  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:08:07.0734 6956  seclogon - ok
17:08:07.0734 6956  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
17:08:07.0734 6956  SENS - ok
17:08:07.0796 6956  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:08:07.0812 6956  SensrSvc - ok
17:08:07.0827 6956  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
17:08:07.0827 6956  Serenum - ok
17:08:07.0843 6956  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
17:08:07.0843 6956  Serial - ok
17:08:07.0874 6956  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:08:07.0874 6956  sermouse - ok
17:08:07.0905 6956  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:08:07.0905 6956  SessionEnv - ok
17:08:07.0921 6956  [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP            C:\Windows\system32\DRIVERS\SFEP.sys
17:08:07.0921 6956  SFEP - ok
17:08:07.0952 6956  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:08:07.0952 6956  sffdisk - ok
17:08:07.0952 6956  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:08:07.0968 6956  sffp_mmc - ok
17:08:07.0983 6956  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:08:07.0999 6956  sffp_sd - ok
17:08:07.0999 6956  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:08:07.0999 6956  sfloppy - ok
17:08:08.0061 6956  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
17:08:08.0077 6956  Sftfs - ok
17:08:08.0139 6956  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:08:08.0139 6956  sftlist - ok
17:08:08.0186 6956  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:08:08.0186 6956  Sftplay - ok
17:08:08.0217 6956  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:08:08.0217 6956  Sftredir - ok
17:08:08.0233 6956  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
17:08:08.0233 6956  Sftvol - ok
17:08:08.0280 6956  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:08:08.0280 6956  sftvsa - ok
17:08:08.0311 6956  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:08:08.0311 6956  ShellHWDetection - ok
17:08:08.0373 6956  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
17:08:08.0389 6956  SiSRaid2 - ok
17:08:08.0389 6956  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:08:08.0389 6956  SiSRaid4 - ok
17:08:08.0420 6956  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:08:08.0420 6956  SkypeUpdate - ok
17:08:08.0467 6956  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:08:08.0467 6956  Smb - ok
17:08:08.0514 6956  [ 03573DA7C4ABCF5591AD4D8C96736B00 ] SMR210          C:\Windows\system32\drivers\SMR210.SYS
17:08:08.0514 6956  SMR210 - ok
17:08:08.0576 6956  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:08:08.0576 6956  SNMPTRAP - ok
17:08:08.0639 6956  [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
17:08:08.0639 6956  SOHCImp - ok
17:08:08.0670 6956  [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
17:08:08.0670 6956  SOHDs - ok
17:08:08.0717 6956  [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
17:08:08.0717 6956  SpfService - ok
17:08:08.0748 6956  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:08:08.0748 6956  spldr - ok
17:08:08.0810 6956  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:08:08.0810 6956  Spooler - ok
17:08:08.0904 6956  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:08:08.0935 6956  sppsvc - ok
17:08:08.0951 6956  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:08:08.0951 6956  sppuinotify - ok
17:08:09.0107 6956  [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP           C:\Windows\system32\drivers\N360x64\1402010.016\SRTSP64.SYS
17:08:09.0107 6956  SRTSP - ok
17:08:09.0122 6956  [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX          C:\Windows\system32\drivers\N360x64\1402010.016\SRTSPX64.SYS
17:08:09.0122 6956  SRTSPX - ok
17:08:09.0169 6956  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:08:09.0185 6956  srv - ok
17:08:09.0200 6956  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:08:09.0200 6956  srv2 - ok
17:08:09.0216 6956  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:08:09.0231 6956  srvnet - ok
17:08:09.0263 6956  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:08:09.0263 6956  SSDPSRV - ok
17:08:09.0278 6956  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:08:09.0294 6956  SstpSvc - ok
17:08:09.0309 6956  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
17:08:09.0309 6956  stexstor - ok
17:08:09.0372 6956  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:08:09.0372 6956  stisvc - ok
17:08:09.0387 6956  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:08:09.0387 6956  swenum - ok
17:08:09.0419 6956  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:08:09.0419 6956  swprv - ok
17:08:09.0559 6956  [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS           C:\Windows\system32\drivers\N360x64\1402010.016\SYMDS64.SYS
17:08:09.0590 6956  SymDS - ok
17:08:09.0762 6956  [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA          C:\Windows\system32\drivers\N360x64\1402010.016\SYMEFA64.SYS
17:08:09.0824 6956  SymEFA - ok
17:08:09.0933 6956  [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:08:09.0933 6956  SymEvent - ok
17:08:10.0089 6956  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\N360x64\1402010.016\Ironx64.SYS
17:08:10.0089 6956  SymIRON - ok
17:08:10.0183 6956  [ 1605EBD8CB86AFC4430116065995279A ] SymNetS         C:\Windows\system32\drivers\N360x64\1402010.016\SYMNETS.SYS
17:08:10.0183 6956  SymNetS - ok
17:08:10.0277 6956  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:08:10.0292 6956  SysMain - ok
17:08:10.0339 6956  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:08:10.0339 6956  TabletInputService - ok
17:08:10.0401 6956  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:08:10.0401 6956  TapiSrv - ok
17:08:10.0433 6956  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:08:10.0433 6956  TBS - ok
17:08:10.0620 6956  [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:08:10.0667 6956  Tcpip - ok
17:08:10.0807 6956  [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:08:10.0807 6956  TCPIP6 - ok
17:08:10.0854 6956  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:08:10.0854 6956  tcpipreg - ok
17:08:10.0885 6956  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:08:10.0885 6956  TDPIPE - ok
17:08:10.0932 6956  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:08:10.0932 6956  TDTCP - ok
17:08:10.0963 6956  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:08:10.0979 6956  tdx - ok
17:08:11.0010 6956  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:08:11.0010 6956  TermDD - ok
17:08:11.0150 6956  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:08:11.0166 6956  TermService - ok
17:08:11.0197 6956  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:08:11.0197 6956  Themes - ok
17:08:11.0244 6956  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:08:11.0244 6956  THREADORDER - ok
17:08:11.0275 6956  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\Windows\system32\drivers\tpm.sys
17:08:11.0275 6956  TPM - ok
17:08:11.0353 6956  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:08:11.0353 6956  TrkWks - ok
17:08:11.0431 6956  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:08:11.0447 6956  TrustedInstaller - ok
17:08:11.0462 6956  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:08:11.0478 6956  tssecsrv - ok
17:08:11.0556 6956  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:08:11.0556 6956  TsUsbFlt - ok
17:08:11.0603 6956  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
17:08:11.0603 6956  TsUsbGD - ok
17:08:11.0665 6956  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:08:11.0665 6956  tunnel - ok
17:08:11.0665 6956  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:08:11.0665 6956  uagp35 - ok
17:08:11.0681 6956  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:08:11.0696 6956  udfs - ok
17:08:11.0727 6956  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:08:11.0727 6956  UI0Detect - ok
17:08:11.0821 6956  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:08:11.0821 6956  uliagpkx - ok
17:08:11.0868 6956  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:08:11.0868 6956  umbus - ok
17:08:11.0883 6956  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
17:08:11.0883 6956  UmPass - ok
17:08:12.0195 6956  [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:08:12.0227 6956  UNS - ok
17:08:12.0273 6956  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:08:12.0289 6956  upnphost - ok
17:08:12.0414 6956  [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:08:12.0414 6956  USBAAPL64 - ok
17:08:12.0461 6956  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:08:12.0461 6956  usbccgp - ok
17:08:12.0492 6956  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:08:12.0492 6956  usbcir - ok
17:08:12.0523 6956  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
17:08:12.0523 6956  usbehci - ok
17:08:12.0632 6956  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:08:12.0632 6956  usbhub - ok
17:08:12.0648 6956  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:08:12.0648 6956  usbohci - ok
17:08:12.0679 6956  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
17:08:12.0679 6956  usbprint - ok
17:08:12.0710 6956  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:08:12.0710 6956  USBSTOR - ok
17:08:12.0710 6956  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:08:12.0710 6956  usbuhci - ok
17:08:12.0773 6956  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
17:08:12.0773 6956  usbvideo - ok
17:08:12.0897 6956  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
17:08:12.0897 6956  usb_rndisx - ok
17:08:12.0944 6956  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:08:12.0944 6956  UxSms - ok
17:08:13.0100 6956  [ 387D3DFFCF0A544539E9C5D8B81169A2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
17:08:13.0100 6956  VAIO Event Service - ok
17:08:13.0241 6956  [ D1933E428D991B15AFFD48B1A7BEB643 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
17:08:13.0256 6956  VAIO Power Management - ok
17:08:13.0287 6956  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:08:13.0303 6956  VaultSvc - ok
17:08:13.0412 6956  [ D00058C1FFF3F3DE990444A5734E9639 ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
17:08:13.0428 6956  VCFw - ok
17:08:13.0521 6956  [ F19275655B42086C884ABCDAE2C659AE ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
17:08:13.0521 6956  VcmIAlzMgr - ok
17:08:13.0584 6956  [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
17:08:13.0599 6956  VcmINSMgr - ok
17:08:13.0646 6956  [ 32A3735F6874B7783C6209ED5CA36D9D ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
17:08:13.0646 6956  VcmXmlIfHelper - ok
17:08:13.0740 6956  [ 8F0840FF3A11D6B3F767AD6C79AC2A40 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
17:08:13.0740 6956  VCService - ok
17:08:13.0802 6956  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:08:13.0802 6956  vdrvroot - ok
17:08:13.0849 6956  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:08:13.0865 6956  vds - ok
17:08:13.0896 6956  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:08:13.0896 6956  vga - ok
17:08:13.0911 6956  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:08:13.0927 6956  VgaSave - ok
17:08:13.0927 6956  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:08:13.0927 6956  vhdmp - ok
17:08:13.0958 6956  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:08:13.0958 6956  viaide - ok
17:08:14.0083 6956  [ 466BBCA3EF8D7D878B87543533590C97 ] VIPAppService   C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
17:08:14.0083 6956  VIPAppService - ok
17:08:14.0130 6956  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:08:14.0130 6956  volmgr - ok
17:08:14.0145 6956  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:08:14.0161 6956  volmgrx - ok
17:08:14.0192 6956  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:08:14.0192 6956  volsnap - ok
17:08:14.0255 6956  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:08:14.0255 6956  vsmraid - ok
17:08:14.0333 6956  [ 8BE8C47D5B09F5550DCBF6FCD8832CCB ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
17:08:14.0333 6956  VSNService - ok
17:08:14.0411 6956  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:08:14.0426 6956  VSS - ok
17:08:14.0645 6956  [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent         C:\Program Files\Sony\VAIO Update\VUAgent.exe
17:08:14.0676 6956  VUAgent - ok
17:08:14.0723 6956  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:08:14.0723 6956  vwifibus - ok
17:08:14.0754 6956  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:08:14.0754 6956  vwififlt - ok
17:08:14.0801 6956  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
17:08:14.0801 6956  vwifimp - ok
17:08:14.0863 6956  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:08:14.0879 6956  W32Time - ok
17:08:14.0894 6956  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:08:14.0894 6956  WacomPen - ok
17:08:14.0941 6956  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:08:14.0941 6956  WANARP - ok
17:08:14.0957 6956  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:08:14.0957 6956  Wanarpv6 - ok
17:08:15.0144 6956  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:08:15.0159 6956  WatAdminSvc - ok
17:08:15.0269 6956  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:08:15.0284 6956  wbengine - ok
17:08:15.0347 6956  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:08:15.0362 6956  WbioSrvc - ok
17:08:15.0409 6956  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
17:08:15.0425 6956  WcesComm - ok
17:08:15.0440 6956  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:08:15.0456 6956  wcncsvc - ok
 



17:08:15.0471 6956 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:08:15.0487 6956 WcsPlugInService - ok
17:08:15.0503 6956 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
17:08:15.0503 6956 Wd - ok
17:08:15.0534 6956 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
17:08:15.0534 6956 WDC_SAM - ok
17:08:15.0596 6956 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:08:15.0596 6956 Wdf01000 - ok
17:08:15.0627 6956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:08:15.0627 6956 WdiServiceHost - ok
17:08:15.0627 6956 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:08:15.0627 6956 WdiSystemHost - ok
17:08:15.0705 6956 [ 63CE387483E74A0BD79EE4E5EBA1FD2E ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
17:08:15.0705 6956 wdkmd - ok
17:08:15.0737 6956 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:08:15.0737 6956 WebClient - ok
17:08:15.0768 6956 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:08:15.0768 6956 Wecsvc - ok
17:08:15.0783 6956 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:08:15.0799 6956 wercplsupport - ok
17:08:15.0830 6956 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:08:15.0830 6956 WerSvc - ok
17:08:15.0893 6956 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:08:15.0893 6956 WfpLwf - ok
17:08:15.0908 6956 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:08:15.0908 6956 WIMMount - ok
17:08:15.0908 6956 WinHttpAutoProxySvc - ok
17:08:15.0986 6956 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:08:15.0986 6956 Winmgmt - ok
17:08:16.0064 6956 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:08:16.0080 6956 WinRM - ok
17:08:16.0158 6956 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:08:16.0173 6956 Wlansvc - ok
17:08:16.0220 6956 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:08:16.0220 6956 wlcrasvc - ok
17:08:16.0298 6956 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:08:16.0314 6956 wlidsvc - ok
17:08:16.0329 6956 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:08:16.0329 6956 WmiAcpi - ok
17:08:16.0361 6956 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:08:16.0361 6956 wmiApSrv - ok
17:08:16.0376 6956 WMPNetworkSvc - ok
17:08:16.0423 6956 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:08:16.0423 6956 WPCSvc - ok
17:08:16.0439 6956 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:08:16.0439 6956 WPDBusEnum - ok
17:08:16.0454 6956 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:08:16.0470 6956 ws2ifsl - ok
17:08:16.0470 6956 WSearch - ok
17:08:16.0548 6956 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:08:16.0563 6956 wuauserv - ok
17:08:16.0610 6956 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:08:16.0610 6956 WudfPf - ok
17:08:16.0735 6956 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:08:16.0735 6956 wudfsvc - ok
17:08:16.0782 6956 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:08:16.0782 6956 WwanSvc - ok
17:08:16.0829 6956 ================ Scan global ===============================
17:08:16.0875 6956 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:08:16.0907 6956 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
17:08:16.0922 6956 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
17:08:16.0953 6956 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:08:16.0985 6956 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:08:16.0985 6956 [Global] - ok
17:08:16.0985 6956 ================ Scan MBR ==================================
17:08:17.0016 6956 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:08:17.0063 6956 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:08:17.0063 6956 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:08:17.0063 6956 ================ Scan VBR ==================================
17:08:17.0063 6956 [ C2BB6B3B33E562016DB37E5EEB74BFC0 ] \Device\Harddisk0\DR0\Partition1
17:08:17.0063 6956 \Device\Harddisk0\DR0\Partition1 - ok
17:08:17.0094 6956 [ D3CA45C734F31470AA645D6D8CE88AB3 ] \Device\Harddisk0\DR0\Partition2
17:08:17.0094 6956 \Device\Harddisk0\DR0\Partition2 - ok
17:08:17.0094 6956 ================ Scan active images ========================
17:08:17.0094 6956 ============================================================
17:08:17.0094 6956 Scan finished
17:08:17.0094 6956 ============================================================
17:08:17.0109 6960 Detected object count: 1
17:08:17.0109 6960 Actual detected object count: 1
17:10:22.0175 6960 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
17:10:22.0175 6960 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
17:11:13.0312 7068 ============================================================
17:11:13.0312 7068 Scan started
17:11:13.0312 7068 Mode: Manual;
17:11:13.0312 7068 ============================================================
17:11:13.0499 7068 ================ Scan system memory ========================
17:11:13.0499 7068 System memory - ok
17:11:13.0499 7068 ================ Scan services =============================
17:11:13.0577 7068 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:11:13.0577 7068 !SASCORE - ok
17:11:13.0748 7068 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:11:13.0748 7068 1394ohci - ok
17:11:13.0826 7068 A2DDA - ok
17:11:13.0889 7068 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:11:13.0889 7068 ACDaemon - ok
17:11:13.0936 7068 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:11:13.0936 7068 ACPI - ok
17:11:13.0967 7068 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:11:13.0967 7068 AcpiPmi - ok
17:11:14.0076 7068 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
17:11:14.0076 7068 AdobeActiveFileMonitor9.0 - ok
17:11:14.0201 7068 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:11:14.0201 7068 AdobeARMservice - ok
17:11:14.0419 7068 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:11:14.0419 7068 AdobeFlashPlayerUpdateSvc - ok
17:11:14.0497 7068 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:11:14.0497 7068 adp94xx - ok
17:11:14.0528 7068 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:11:14.0528 7068 adpahci - ok
17:11:14.0560 7068 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:11:14.0575 7068 adpu320 - ok
17:11:14.0622 7068 [ 7233688FC422EF657E082309E6180142 ] ADVService C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
17:11:14.0622 7068 ADVService - ok
17:11:14.0653 7068 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:11:14.0653 7068 AeLookupSvc - ok
17:11:14.0684 7068 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:11:14.0684 7068 AFD - ok
17:11:14.0731 7068 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:11:14.0731 7068 agp440 - ok
17:11:14.0762 7068 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:11:14.0762 7068 ALG - ok
17:11:14.0778 7068 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:11:14.0778 7068 aliide - ok
17:11:14.0794 7068 [ 0EE274476C3E5F05F2B79B8C63FCCCFC ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:11:14.0794 7068 AMD External Events Utility - ok
17:11:14.0809 7068 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:11:14.0809 7068 amdide - ok
17:11:14.0856 7068 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:11:14.0856 7068 AmdK8 - ok
17:11:15.0215 7068 [ B18018924D6ADB6E64BC39BD37D6A4D8 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:11:15.0246 7068 amdkmdag - ok
17:11:15.0293 7068 [ 3249B112D48D29BE86984CF4594C9755 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:11:15.0293 7068 amdkmdap - ok
17:11:15.0324 7068 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
17:11:15.0324 7068 AmdPPM - ok
17:11:15.0355 7068 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:11:15.0355 7068 amdsata - ok
17:11:15.0371 7068 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:11:15.0371 7068 amdsbs - ok
17:11:15.0386 7068 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:11:15.0386 7068 amdxata - ok
17:11:15.0449 7068 [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
17:11:15.0449 7068 AMPPAL - ok
17:11:15.0449 7068 [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
17:11:15.0449 7068 AMPPALP - ok
17:11:15.0511 7068 [ 83A0E7BA4AE616D3654E700D9C5FF9DB ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
17:11:15.0527 7068 AMPPALR3 - ok
17:11:15.0574 7068 [ 9DC1A45BA81C923DB68A162B0F0D0149 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
17:11:15.0574 7068 ApfiltrService - ok
17:11:15.0605 7068 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:11:15.0620 7068 AppID - ok
17:11:15.0636 7068 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:11:15.0636 7068 AppIDSvc - ok
17:11:15.0652 7068 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:11:15.0652 7068 Appinfo - ok
17:11:15.0730 7068 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:11:15.0730 7068 Apple Mobile Device - ok
17:11:15.0745 7068 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
17:11:15.0745 7068 arc - ok
17:11:15.0776 7068 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:11:15.0776 7068 arcsas - ok
17:11:15.0808 7068 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
17:11:15.0808 7068 ArcSoftKsUFilter - ok
17:11:15.0917 7068 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:11:15.0917 7068 aspnet_state - ok
17:11:15.0964 7068 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:11:15.0964 7068 AsyncMac - ok
17:11:15.0995 7068 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:11:15.0995 7068 atapi - ok
17:11:16.0042 7068 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:11:16.0042 7068 athr - ok
17:11:16.0104 7068 [ 26970F26EBAB7D5D1B795A3F9013CD80 ] ATSwpWDF C:\Windows\system32\DRIVERS\ATSwpWDF.sys
17:11:16.0104 7068 ATSwpWDF - ok
17:11:16.0151 7068 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:11:16.0151 7068 AudioEndpointBuilder - ok
17:11:16.0166 7068 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:11:16.0166 7068 AudioSrv - ok
17:11:16.0182 7068 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:11:16.0182 7068 AxInstSV - ok
17:11:16.0213 7068 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:11:16.0213 7068 b06bdrv - ok
17:11:16.0229 7068 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:11:16.0229 7068 b57nd60a - ok
17:11:16.0260 7068 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:11:16.0260 7068 BDESVC - ok
17:11:16.0276 7068 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:11:16.0291 7068 Beep - ok
17:11:16.0712 7068 [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
17:11:16.0728 7068 BHDrvx64 - ok
17:11:16.0806 7068 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:11:16.0822 7068 BITS - ok
17:11:16.0853 7068 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:11:16.0853 7068 blbdrive - ok
17:11:16.0946 7068 [ 2E251B39ABEA79351E5633E5A7C36BE4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
17:11:16.0946 7068 Bluetooth Device Monitor - ok
17:11:17.0009 7068 [ 1EC546F8B6222F1F984220C1324EA945 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
17:11:17.0024 7068 Bluetooth Media Service - ok
17:11:17.0056 7068 [ ADB9C79CCBEF779D56A9AC931F9C8DF0 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
17:11:17.0056 7068 Bluetooth OBEX Service - ok
17:11:17.0102 7068 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:11:17.0102 7068 Bonjour Service - ok
17:11:17.0118 7068 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:11:17.0118 7068 bowser - ok
17:11:17.0134 7068 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:11:17.0134 7068 BrFiltLo - ok
17:11:17.0149 7068 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:11:17.0149 7068 BrFiltUp - ok
17:11:17.0212 7068 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:11:17.0212 7068 Browser - ok
17:11:17.0243 7068 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:11:17.0243 7068 Brserid - ok
17:11:17.0258 7068 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:11:17.0258 7068 BrSerWdm - ok
17:11:17.0274 7068 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:11:17.0274 7068 BrUsbMdm - ok
17:11:17.0274 7068 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:11:17.0290 7068 BrUsbSer - ok
17:11:17.0321 7068 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:11:17.0321 7068 BthEnum - ok
17:11:17.0336 7068 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:11:17.0336 7068 BTHMODEM - ok
17:11:17.0352 7068 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:11:17.0352 7068 BthPan - ok
17:11:17.0383 7068 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
17:11:17.0383 7068 BTHPORT - ok
17:11:17.0399 7068 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:11:17.0399 7068 bthserv - ok
17:11:17.0430 7068 [ A5B3E8B2B78C7B3DA56A0DE490E6718C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
17:11:17.0430 7068 BTHSSecurityMgr - ok
17:11:17.0461 7068 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
17:11:17.0461 7068 BTHUSB - ok
17:11:17.0492 7068 [ 76A1340ADB32798D18394AA424D584E2 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
17:11:17.0492 7068 btmaux - ok
17:11:17.0539 7068 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
17:11:17.0539 7068 btmhsf - ok
17:11:17.0602 7068 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_MCLIENT C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys
17:11:17.0602 7068 ccSet_MCLIENT - ok
17:11:17.0711 7068 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360 C:\Windows\system32\drivers\N360x64\1402010.016\ccSetx64.sys
17:11:17.0711 7068 ccSet_N360 - ok
17:11:17.0742 7068 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:11:17.0742 7068 cdfs - ok
17:11:17.0758 7068 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:11:17.0758 7068 cdrom - ok
17:11:17.0773 7068 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:11:17.0773 7068 CertPropSvc - ok
17:11:17.0789 7068 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
17:11:17.0789 7068 circlass - ok
17:11:17.0804 7068 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:11:17.0820 7068 CLFS - ok
17:11:17.0851 7068 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:11:17.0867 7068 clr_optimization_v2.0.50727_32 - ok
17:11:17.0898 7068 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:11:17.0898 7068 clr_optimization_v2.0.50727_64 - ok
17:11:17.0960 7068 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:11:17.0960 7068 clr_optimization_v4.0.30319_32 - ok
17:11:17.0960 7068 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:11:17.0976 7068 clr_optimization_v4.0.30319_64 - ok
17:11:17.0992 7068 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:11:17.0992 7068 CmBatt - ok
17:11:17.0992 7068 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:11:17.0992 7068 cmdide - ok
17:11:18.0038 7068 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:11:18.0038 7068 CNG - ok
17:11:18.0054 7068 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:11:18.0054 7068 Compbatt - ok
17:11:18.0070 7068 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:11:18.0070 7068 CompositeBus - ok
17:11:18.0070 7068 COMSysApp - ok
17:11:18.0085 7068 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:11:18.0085 7068 crcdisk - ok
17:11:18.0116 7068 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:11:18.0116 7068 CryptSvc - ok
17:11:18.0210 7068 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:11:18.0210 7068 cvhsvc - ok
17:11:18.0272 7068 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:11:18.0288 7068 DcomLaunch - ok
17:11:18.0304 7068 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:11:18.0319 7068 defragsvc - ok
17:11:18.0382 7068 [ 3430EAD65BBE8516572EB7C8B82ED8CD ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
17:11:18.0382 7068 DeviceMonitorService - ok
17:11:18.0413 7068 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:11:18.0413 7068 DfsC - ok
17:11:18.0444 7068 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:11:18.0444 7068 Dhcp - ok
17:11:18.0460 7068 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:11:18.0460 7068 discache - ok
17:11:18.0491 7068 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
17:11:18.0491 7068 Disk - ok
17:11:18.0506 7068 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:11:18.0506 7068 Dnscache - ok
17:11:18.0522 7068 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:11:18.0522 7068 dot3svc - ok
17:11:18.0569 7068 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:11:18.0569 7068 DPS - ok
17:11:18.0584 7068 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:11:18.0584 7068 drmkaud - ok
17:11:18.0631 7068 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:11:18.0631 7068 DXGKrnl - ok
17:11:18.0647 7068 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
17:11:18.0647 7068 e1yexpress - ok
17:11:18.0678 7068 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:11:18.0678 7068 EapHost - ok
17:11:18.0772 7068 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:11:18.0787 7068 ebdrv - ok
17:11:18.0818 7068 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
17:11:18.0818 7068 eeCtrl - ok
17:11:18.0850 7068 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:11:18.0865 7068 EFS - ok
17:11:18.0912 7068 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:11:18.0928 7068 ehRecvr - ok
17:11:18.0928 7068 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:11:18.0928 7068 ehSched - ok
17:11:18.0959 7068 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:11:18.0959 7068 elxstor - ok
17:11:19.0006 7068 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:11:19.0006 7068 EraserUtilRebootDrv - ok
17:11:19.0021 7068 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:11:19.0021 7068 ErrDev - ok
17:11:19.0052 7068 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:11:19.0052 7068 EventSystem - ok
17:11:19.0130 7068 [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
17:11:19.0130 7068 EvtEng - ok
17:11:19.0177 7068 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:11:19.0177 7068 exfat - ok
17:11:19.0193 7068 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:11:19.0193 7068 fastfat - ok
17:11:19.0224 7068 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:11:19.0240 7068 Fax - ok
17:11:19.0255 7068 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
17:11:19.0255 7068 fdc - ok
17:11:19.0271 7068 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:11:19.0271 7068 fdPHost - ok
17:11:19.0271 7068 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:11:19.0271 7068 FDResPub - ok
17:11:19.0286 7068 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:11:19.0286 7068 FileInfo - ok
17:11:19.0286 7068 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:11:19.0302 7068 Filetrace - ok
17:11:19.0333 7068 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:11:19.0333 7068 FLEXnet Licensing Service - ok
17:11:19.0364 7068 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:11:19.0364 7068 flpydisk - ok
17:11:19.0396 7068 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:11:19.0396 7068 FltMgr - ok
17:11:19.0442 7068 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:11:19.0458 7068 FontCache - ok
17:11:19.0505 7068 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:11:19.0505 7068 FontCache3.0.0.0 - ok
17:11:19.0536 7068 [ 8F46017C1442E25B2BED0377A4733EC1 ] FPLService C:\Program Files\TrueSuite\TrueSuite.Service.exe
17:11:19.0536 7068 FPLService - ok
17:11:19.0567 7068 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:11:19.0567 7068 FsDepends - ok
17:11:19.0598 7068 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:11:19.0598 7068 Fs_Rec - ok
17:11:19.0614 7068 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:11:19.0614 7068 fvevol - ok
17:11:19.0630 7068 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:11:19.0630 7068 gagp30kx - ok
17:11:19.0661 7068 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:11:19.0661 7068 GEARAspiWDM - ok
17:11:19.0708 7068 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:11:19.0708 7068 gpsvc - ok
17:11:19.0723 7068 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:11:19.0723 7068 hcw85cir - ok
17:11:19.0739 7068 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:11:19.0739 7068 HdAudAddService - ok
17:11:19.0770 7068 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:11:19.0770 7068 HDAudBus - ok
17:11:19.0770 7068 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:11:19.0770 7068 HidBatt - ok
17:11:19.0786 7068 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:11:19.0786 7068 HidBth - ok
17:11:19.0801 7068 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
17:11:19.0801 7068 HidIr - ok
17:11:19.0817 7068 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:11:19.0817 7068 hidserv - ok
17:11:19.0848 7068 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:11:19.0848 7068 HidUsb - ok
17:11:19.0864 7068 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:11:19.0864 7068 hkmsvc - ok
17:11:19.0879 7068 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:11:19.0879 7068 HomeGroupListener - ok
17:11:19.0910 7068 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:11:19.0910 7068 HomeGroupProvider - ok
17:11:19.0910 7068 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:11:19.0910 7068 HpSAMD - ok
17:11:19.0926 7068 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:11:19.0942 7068 HTTP - ok
17:11:19.0957 7068 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:11:19.0957 7068 hwpolicy - ok
17:11:19.0973 7068 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:11:19.0973 7068 i8042prt - ok
17:11:20.0004 7068 [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor C:\Windows\system32\drivers\iaStor.sys
17:11:20.0020 7068 iaStor - ok
17:11:20.0066 7068 [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:11:20.0066 7068 IAStorDataMgrSvc - ok
17:11:20.0082 7068 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:11:20.0082 7068 iaStorV - ok
17:11:20.0129 7068 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
17:11:20.0129 7068 iBtFltCoex - ok
17:11:20.0222 7068 [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:11:20.0222 7068 IconMan_R - ok
17:11:20.0300 7068 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:11:20.0300 7068 idsvc - ok
17:11:20.0456 7068 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\IPSDefs\20130208.001\IDSvia64.sys
17:11:20.0456 7068 IDSVia64 - ok
17:11:20.0488 7068 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:11:20.0488 7068 iirsp - ok
17:11:20.0519 7068 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:11:20.0519 7068 IKEEXT - ok
17:11:20.0550 7068 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
17:11:20.0566 7068 intaud_WaveExtensible - ok
17:11:20.0628 7068 [ CDB772F707AC24B43A20C821852CA61F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:11:20.0644 7068 IntcAzAudAddService - ok
17:11:20.0690 7068 [ AE594CC17C33AC146739494615E14851 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
17:11:20.0690 7068 IntcDAud - ok
17:11:20.0706 7068 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:11:20.0706 7068 intelide - ok
17:11:20.0940 7068 [ E5C11F3689D9448CCC1D782FC2C4CC46 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
17:11:20.0987 7068 intelkmd - ok
17:11:21.0018 7068 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:11:21.0018 7068 intelppm - ok
17:11:21.0049 7068 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:11:21.0049 7068 IPBusEnum - ok
17:11:21.0080 7068 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:11:21.0080 7068 IpFilterDriver - ok
17:11:21.0080 7068 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:11:21.0080 7068 IPMIDRV - ok
17:11:21.0096 7068 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:11:21.0096 7068 IPNAT - ok
17:11:21.0143 7068 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:11:21.0143 7068 iPod Service - ok
17:11:21.0174 7068 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:11:21.0174 7068 IRENUM - ok
17:11:21.0190 7068 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:11:21.0190 7068 isapnp - ok
17:11:21.0221 7068 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:11:21.0221 7068 iScsiPrt - ok
17:11:21.0252 7068 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
17:11:21.0252 7068 iwdbus - ok
17:11:21.0283 7068 [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
17:11:21.0283 7068 jhi_service - ok
17:11:21.0314 7068 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:11:21.0314 7068 kbdclass - ok
17:11:21.0330 7068 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:11:21.0330 7068 kbdhid - ok
17:11:21.0330 7068 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:11:21.0330 7068 KeyIso - ok
17:11:21.0361 7068 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:11:21.0361 7068 KSecDD - ok
17:11:21.0377 7068 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:11:21.0377 7068 KSecPkg - ok
17:11:21.0392 7068 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:11:21.0392 7068 ksthunk - ok
17:11:21.0424 7068 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:11:21.0424 7068 KtmRm - ok
17:11:21.0470 7068 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:11:21.0470 7068 LanmanServer - ok
17:11:21.0486 7068 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:11:21.0486 7068 LanmanWorkstation - ok
17:11:21.0502 7068 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:11:21.0502 7068 lltdio - ok
17:11:21.0533 7068 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:11:21.0533 7068 lltdsvc - ok
17:11:21.0548 7068 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:11:21.0564 7068 lmhosts - ok
17:11:21.0595 7068 [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:11:21.0595 7068 LMS - ok
17:11:21.0626 7068 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:11:21.0626 7068 LSI_FC - ok
17:11:21.0626 7068 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:11:21.0642 7068 LSI_SAS - ok
17:11:21.0642 7068 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:11:21.0642 7068 LSI_SAS2 - ok
17:11:21.0658 7068 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:11:21.0658 7068 LSI_SCSI - ok
17:11:21.0673 7068 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:11:21.0673 7068 luafv - ok
17:11:21.0751 7068 [ 4A9258B9597A31DB68EC9740F3A8A70B ] MCLIENT C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
17:11:21.0751 7068 MCLIENT - ok
17:11:21.0782 7068 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:11:21.0782 7068 Mcx2Svc - ok
17:11:21.0798 7068 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
17:11:21.0798 7068 megasas - ok
17:11:21.0829 7068 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:11:21.0829 7068 MegaSR - ok
17:11:21.0845 7068 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:11:21.0845 7068 MEIx64 - ok
17:11:21.0860 7068 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:11:21.0860 7068 MMCSS - ok
17:11:21.0876 7068 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:11:21.0876 7068 Modem - ok
17:11:21.0892 7068 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:11:21.0892 7068 monitor - ok
17:11:21.0939 7068 [ A8FD4605AACF006BBA3B2B90AC9565B2 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
17:11:21.0939 7068 Motorola Device Manager - ok
17:11:21.0954 7068 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:11:21.0954 7068 mouclass - ok
17:11:21.0985 7068 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
17:11:21.0985 7068 mouhid - ok
17:11:22.0001 7068 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:11:22.0001 7068 mountmgr - ok
17:11:22.0017 7068 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:11:22.0017 7068 mpio - ok
17:11:22.0048 7068 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:11:22.0048 7068 mpsdrv - ok
17:11:22.0063 7068 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:11:22.0063 7068 MRxDAV - ok
17:11:22.0095 7068 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:11:22.0110 7068 mrxsmb - ok
17:11:22.0110 7068 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:11:22.0126 7068 mrxsmb10 - ok
17:11:22.0141 7068 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:11:22.0141 7068 mrxsmb20 - ok
17:11:22.0157 7068 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:11:22.0157 7068 msahci - ok
17:11:22.0173 7068 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:11:22.0173 7068 msdsm - ok
17:11:22.0188 7068 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:11:22.0188 7068 MSDTC - ok
17:11:22.0204 7068 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:11:22.0204 7068 Msfs - ok
17:11:22.0219 7068 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:11:22.0219 7068 mshidkmdf - ok
17:11:22.0219 7068 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:11:22.0219 7068 msisadrv - ok
17:11:22.0235 7068 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:11:22.0251 7068 MSiSCSI - ok
17:11:22.0251 7068 msiserver - ok
17:11:22.0266 7068 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:11:22.0266 7068 MSKSSRV - ok
17:11:22.0297 7068 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:11:22.0297 7068 MSPCLOCK - ok
17:11:22.0297 7068 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:11:22.0297 7068 MSPQM - ok
17:11:22.0313 7068 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:11:22.0329 7068 MsRPC - ok
17:11:22.0329 7068 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:11:22.0329 7068 mssmbios - ok
17:11:22.0344 7068 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:11:22.0344 7068 MSTEE - ok
17:11:22.0360 7068 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:11:22.0360 7068 MTConfig - ok
17:11:22.0391 7068 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:11:22.0391 7068 Mup - ok
17:11:22.0422 7068 [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
17:11:22.0422 7068 MyWiFiDHCPDNS - ok
17:11:22.0578 7068 [ 4BA84C832E0741A294C4444556DFE993 ] N360 C:\Program Files (x86)\Norton 360\Engine\20.2.1.22\ccSvcHst.exe
17:11:22.0578 7068 N360 - ok
17:11:22.0625 7068 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:11:22.0625 7068 napagent - ok
17:11:22.0656 7068 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:11:22.0656 7068 NativeWifiP - ok
17:11:22.0734 7068 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\ENG64.SYS
17:11:22.0734 7068 NAVENG - ok
17:11:22.0797 7068 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\EX64.SYS
17:11:22.0812 7068 NAVEX15 - ok
17:11:22.0859 7068 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:11:22.0859 7068 NDIS - ok
17:11:22.0875 7068 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:11:22.0875 7068 NdisCap - ok
17:11:22.0906 7068 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:11:22.0906 7068 NdisTapi - ok
17:11:22.0921 7068 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:11:22.0921 7068 Ndisuio - ok
17:11:22.0937 7068 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:11:22.0937 7068 NdisWan - ok
17:11:22.0953 7068 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:11:22.0953 7068 NDProxy - ok
17:11:22.0953 7068 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:11:22.0953 7068 NetBIOS - ok
17:11:22.0984 7068 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:11:22.0984 7068 NetBT - ok
17:11:22.0984 7068 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:11:22.0984 7068 Netlogon - ok
17:11:23.0015 7068 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:11:23.0031 7068 Netman - ok
17:11:23.0062 7068 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:11:23.0062 7068 NetMsmqActivator - ok
17:11:23.0062 7068 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:11:23.0062 7068 NetPipeActivator - ok
17:11:23.0093 7068 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:11:23.0093 7068 netprofm - ok
17:11:23.0093 7068 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:11:23.0093 7068 NetTcpActivator - ok
17:11:23.0109 7068 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:11:23.0109 7068 NetTcpPortSharing - ok
17:11:23.0265 7068 [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
17:11:23.0311 7068 NETwNs64 - ok
17:11:23.0343 7068 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:11:23.0343 7068 nfrd960 - ok
17:11:23.0374 7068 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:11:23.0374 7068 NlaSvc - ok
17:11:23.0389 7068 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:11:23.0389 7068 Npfs - ok
17:11:23.0421 7068 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:11:23.0421 7068 nsi - ok
17:11:23.0436 7068 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:11:23.0436 7068 nsiproxy - ok
17:11:23.0499 7068 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:11:23.0514 7068 Ntfs - ok
17:11:23.0530 7068 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:11:23.0530 7068 Null - ok
17:11:23.0561 7068 [ B227E75AD10A142DD326B4CC8D73A6D9 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
17:11:23.0561 7068 nusb3hub - ok
17:11:23.0592 7068 [ 55959DB860E4E484681586824D09E52C ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
17:11:23.0592 7068 nusb3xhc - ok
17:11:23.0842 7068 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:11:23.0889 7068 nvlddmkm - ok
17:11:23.0920 7068 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:11:23.0920 7068 nvraid - ok
17:11:23.0935 7068 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:11:23.0935 7068 nvstor - ok
17:11:23.0951 7068 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:11:23.0951 7068 nv_agp - ok
17:11:24.0029 7068 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:11:24.0029 7068 odserv - ok
17:11:24.0076 7068 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:11:24.0076 7068 ohci1394 - ok
17:11:24.0107 7068 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:11:24.0107 7068 ose - ok
17:11:24.0279 7068 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:11:24.0310 7068 osppsvc - ok
17:11:24.0341 7068 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:11:24.0341 7068 p2pimsvc - ok
17:11:24.0357 7068 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:11:24.0372 7068 p2psvc - ok
17:11:24.0388 7068 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
17:11:24.0388 7068 Parport - ok
17:11:24.0419 7068 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:11:24.0419 7068 partmgr - ok
17:11:24.0435 7068 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:11:24.0435 7068 PcaSvc - ok
17:11:24.0450 7068 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:11:24.0450 7068 pci - ok
17:11:24.0466 7068 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:11:24.0481 7068 pciide - ok
17:11:24.0481 7068 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:11:24.0481 7068 pcmcia - ok
17:11:24.0513 7068 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:11:24.0513 7068 pcw - ok
17:11:24.0544 7068 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:11:24.0544 7068 PEAUTH - ok
17:11:24.0591 7068 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:11:24.0591 7068 PerfHost - ok
17:11:24.0653 7068 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:11:24.0653 7068 pla - ok
17:11:24.0700 7068 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:11:24.0700 7068 PlugPlay - ok
17:11:24.0793 7068 [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
17:11:24.0793 7068 PMBDeviceInfoProvider - ok
17:11:24.0825 7068 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:11:24.0825 7068 PNRPAutoReg - ok
17:11:24.0840 7068 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:11:24.0856 7068 PNRPsvc - ok
17:11:24.0887 7068 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:11:24.0887 7068 PolicyAgent - ok
17:11:24.0918 7068 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:11:24.0918 7068 Power - ok
17:11:24.0949 7068 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:11:24.0949 7068 PptpMiniport - ok
17:11:24.0965 7068 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
17:11:24.0965 7068 Processor - ok
17:11:24.0996 7068 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:11:24.0996 7068 ProfSvc - ok
17:11:25.0012 7068 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:11:25.0012 7068 ProtectedStorage - ok
17:11:25.0027 7068 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:11:25.0027 7068 Psched - ok
17:11:25.0074 7068 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
17:11:25.0074 7068 PST Service - ok
17:11:25.0090 7068 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:11:25.0090 7068 PxHlpa64 - ok
17:11:25.0152 7068 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:11:25.0168 7068 ql2300 - ok
17:11:25.0183 7068 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:11:25.0183 7068 ql40xx - ok
17:11:25.0199 7068 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:11:25.0199 7068 QWAVE - ok
17:11:25.0215 7068 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:11:25.0215 7068 QWAVEdrv - ok
17:11:25.0261 7068 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
17:11:25.0261 7068 RapiMgr - ok
17:11:25.0293 7068 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:11:25.0293 7068 RasAcd - ok
17:11:25.0308 7068 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:11:25.0308 7068 RasAgileVpn - ok
17:11:25.0339 7068 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:11:25.0339 7068 RasAuto - ok
17:11:25.0355 7068 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:11:25.0355 7068 Rasl2tp - ok
17:11:25.0386 7068 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:11:25.0386 7068 RasMan - ok
17:11:25.0402 7068 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:11:25.0402 7068 RasPppoe - ok
17:11:25.0402 7068 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:11:25.0402 7068 RasSstp - ok
17:11:25.0417 7068 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:11:25.0433 7068 rdbss - ok
17:11:25.0449 7068 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:11:25.0449 7068 rdpbus - ok
17:11:25.0464 7068 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:11:25.0464 7068 RDPCDD - ok
17:11:25.0480 7068 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:11:25.0480 7068 RDPENCDD - ok
17:11:25.0495 7068 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:11:25.0495 7068 RDPREFMP - ok
17:11:25.0527 7068 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:11:25.0527 7068 RDPWD - ok
17:11:25.0542 7068 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:11:25.0542 7068 rdyboost - ok
17:11:25.0605 7068 [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
17:11:25.0605 7068 RegSrvc - ok
17:11:25.0636 7068 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:11:25.0636 7068 RemoteAccess - ok
17:11:25.0651 7068 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:11:25.0651 7068 RemoteRegistry - ok
17:11:25.0683 7068 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:11:25.0683 7068 RFCOMM - ok
17:11:25.0714 7068 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:11:25.0714 7068 RpcEptMapper - ok
17:11:25.0745 7068 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:11:25.0745 7068 RpcLocator - ok
17:11:25.0776 7068 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:11:25.0776 7068 RpcSs - ok
17:11:25.0807 7068 [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
17:11:25.0807 7068 RSPCIESTOR - ok
17:11:25.0839 7068 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:11:25.0839 7068 rspndr - ok
17:11:25.0870 7068 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:11:25.0885 7068 RTL8167 - ok
17:11:25.0885 7068 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:11:25.0885 7068 SamSs - ok
17:11:25.0948 7068 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:11:25.0948 7068 SASDIFSV - ok
17:11:25.0963 7068 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:11:25.0963 7068 SASKUTIL - ok
17:11:25.0979 7068 [ DB7F9394B2F2D446DF14D46C61B0E94B ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
17:11:25.0979 7068 sbapifs - ok
17:11:26.0026 7068 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:11:26.0026 7068 sbp2port - ok
17:11:26.0104 7068 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
17:11:26.0104 7068 SBSDWSCService - ok
17:11:26.0119 7068 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:11:26.0119 7068 SCardSvr - ok
17:11:26.0135 7068 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:11:26.0135 7068 scfilter - ok
17:11:26.0166 7068 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:11:26.0166 7068 Schedule - ok
17:11:26.0229 7068 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:11:26.0229 7068 SCPolicySvc - ok
17:11:26.0244 7068 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:11:26.0260 7068 sdbus - ok
17:11:26.0275 7068 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:11:26.0291 7068 SDRSVC - ok
17:11:26.0307 7068 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:11:26.0307 7068 secdrv - ok
17:11:26.0307 7068 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:11:26.0322 7068 seclogon - ok
17:11:26.0322 7068 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:11:26.0322 7068 SENS - ok
17:11:26.0338 7068 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:11:26.0338 7068 SensrSvc - ok
17:11:26.0353 7068 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
17:11:26.0353 7068 Serenum - ok
17:11:26.0369 7068 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
17:11:26.0369 7068 Serial - ok
17:11:26.0369 7068 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:11:26.0385 7068 sermouse - ok
17:11:26.0400 7068 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:11:26.0400 7068 SessionEnv - ok
17:11:26.0431 7068 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
17:11:26.0431 7068 SFEP - ok
17:11:26.0447 7068 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:11:26.0447 7068 sffdisk - ok
17:11:26.0463 7068 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:11:26.0463 7068 sffp_mmc - ok
17:11:26.0494 7068 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:11:26.0494 7068 sffp_sd - ok
17:11:26.0494 7068 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:11:26.0509 7068 sfloppy - ok
17:11:26.0541 7068 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:11:26.0541 7068 Sftfs - ok
17:11:26.0619 7068 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:11:26.0619 7068 sftlist - ok
17:11:26.0634 7068 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:11:26.0634 7068 Sftplay - ok
17:11:26.0634 7068 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:11:26.0634 7068 Sftredir - ok
17:11:26.0650 7068 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:11:26.0650 7068 Sftvol - ok
17:11:26.0665 7068 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:11:26.0665 7068 sftvsa - ok
17:11:26.0697 7068 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:11:26.0712 7068 ShellHWDetection - ok
17:11:26.0728 7068 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:11:26.0728 7068 SiSRaid2 - ok
17:11:26.0743 7068 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:11:26.0743 7068 SiSRaid4 - ok
17:11:26.0759 7068 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:11:26.0759 7068 SkypeUpdate - ok
17:11:26.0775 7068 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:11:26.0775 7068 Smb - ok
17:11:26.0806 7068 [ 03573DA7C4ABCF5591AD4D8C96736B00 ] SMR210 C:\Windows\system32\drivers\SMR210.SYS
17:11:26.0806 7068 SMR210 - ok
17:11:26.0837 7068 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:11:26.0837 7068 SNMPTRAP - ok
17:11:26.0884 7068 [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
17:11:26.0884 7068 SOHCImp - ok
17:11:26.0899 7068 [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
17:11:26.0899 7068 SOHDs - ok
17:11:26.0931 7068 [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
17:11:26.0931 7068 SpfService - ok
17:11:26.0962 7068 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:11:26.0962 7068 spldr - ok
17:11:27.0040 7068 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:11:27.0055 7068 Spooler - ok
17:11:27.0133 7068 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:11:27.0149 7068 sppsvc - ok
17:11:27.0165 7068 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:11:27.0165 7068 sppuinotify - ok
17:11:27.0321 7068 [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP C:\Windows\system32\drivers\N360x64\1402010.016\SRTSP64.SYS
17:11:27.0321 7068 SRTSP - ok
17:11:27.0336 7068 [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX C:\Windows\system32\drivers\N360x64\1402010.016\SRTSPX64.SYS
17:11:27.0336 7068 SRTSPX - ok
17:11:27.0383 7068 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:11:27.0383 7068 srv - ok
17:11:27.0399 7068 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:11:27.0414 7068 srv2 - ok
17:11:27.0430 7068 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:11:27.0430 7068 srvnet - ok
17:11:27.0461 7068 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:11:27.0461 7068 SSDPSRV - ok
17:11:27.0477 7068 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:11:27.0477 7068 SstpSvc - ok
17:11:27.0492 7068 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:11:27.0492 7068 stexstor - ok
17:11:27.0523 7068 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:11:27.0523 7068 stisvc - ok
17:11:27.0539 7068 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:11:27.0539 7068 swenum - ok
17:11:27.0570 7068 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:11:27.0570 7068 swprv - ok
17:11:27.0664 7068 [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS C:\Windows\system32\drivers\N360x64\1402010.016\SYMDS64.SYS
17:11:27.0679 7068 SymDS - ok
17:11:27.0789 7068 [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA C:\Windows\system32\drivers\N360x64\1402010.016\SYMEFA64.SYS
17:11:27.0789 7068 SymEFA - ok
17:11:27.0835 7068 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
17:11:27.0835 7068 SymEvent - ok
17:11:27.0898 7068 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\N360x64\1402010.016\Ironx64.SYS
17:11:27.0913 7068 SymIRON - ok
17:11:27.0976 7068 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\system32\drivers\N360x64\1402010.016\SYMNETS.SYS
17:11:27.0976 7068 SymNetS - ok
17:11:28.0038 7068 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:11:28.0038 7068 SysMain - ok
17:11:28.0054 7068 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:11:28.0054 7068 TabletInputService - ok
17:11:28.0069 7068 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:11:28.0069 7068 TapiSrv - ok
17:11:28.0101 7068 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:11:28.0101 7068 TBS - ok
17:11:28.0179 7068 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:11:28.0194 7068 Tcpip - ok
17:11:28.0210 7068 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:11:28.0225 7068 TCPIP6 - ok
17:11:28.0257 7068 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:11:28.0257 7068 tcpipreg - ok
17:11:28.0288 7068 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:11:28.0288 7068 TDPIPE - ok
17:11:28.0319 7068 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:11:28.0319 7068 TDTCP - ok
17:11:28.0350 7068 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:11:28.0350 7068 tdx - ok
17:11:28.0350 7068 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:11:28.0350 7068 TermDD - ok
17:11:28.0397 7068 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:11:28.0397 7068 TermService - ok
17:11:28.0413 7068 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:11:28.0413 7068 Themes - ok
17:11:28.0428 7068 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:11:28.0428 7068 THREADORDER - ok
17:11:28.0459 7068 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys
17:11:28.0459 7068 TPM - ok
17:11:28.0491 7068 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:11:28.0491 7068 TrkWks - ok
17:11:28.0537 7068 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:11:28.0537 7068 TrustedInstaller - ok
17:11:28.0569 7068 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:11:28.0569 7068 tssecsrv - ok
17:11:28.0584 7068 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:11:28.0584 7068 TsUsbFlt - ok
17:11:28.0600 7068 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:11:28.0600 7068 TsUsbGD - ok
17:11:28.0615 7068 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:11:28.0615 7068 tunnel - ok
17:11:28.0615 7068 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:11:28.0615 7068 uagp35 - ok
17:11:28.0647 7068 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:11:28.0647 7068 udfs - ok
17:11:28.0662 7068 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:11:28.0662 7068 UI0Detect - ok
17:11:28.0662 7068 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:11:28.0662 7068 uliagpkx - ok
17:11:28.0678 7068 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:11:28.0678 7068 umbus - ok
17:11:28.0709 7068 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
17:11:28.0709 7068 UmPass - ok
17:11:28.0834 7068 [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:11:28.0834 7068 UNS - ok
17:11:28.0865 7068 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:11:28.0865 7068 upnphost - ok
17:11:28.0912 7068 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:11:28.0912 7068 USBAAPL64 - ok
17:11:28.0943 7068 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:11:28.0943 7068 usbccgp - ok
17:11:28.0959 7068 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:11:28.0959 7068 usbcir - ok
17:11:28.0974 7068 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:11:28.0974 7068 usbehci - ok
17:11:29.0005 7068 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:11:29.0005 7068 usbhub - ok
17:11:29.0005 7068 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:11:29.0005 7068 usbohci - ok
17:11:29.0021 7068 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
17:11:29.0021 7068 usbprint - ok
17:11:29.0037 7068 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:11:29.0037 7068 USBSTOR - ok
17:11:29.0052 7068 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:11:29.0052 7068 usbuhci - ok
17:11:29.0068 7068 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:11:29.0068 7068 usbvideo - ok
17:11:29.0115 7068 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
17:11:29.0115 7068 usb_rndisx - ok
17:11:29.0146 7068 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:11:29.0146 7068 UxSms - ok
17:11:29.0193 7068 [ 387D3DFFCF0A544539E9C5D8B81169A2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
17:11:29.0193 7068 VAIO Event Service - ok
17:11:29.0255 7068 [ D1933E428D991B15AFFD48B1A7BEB643 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
17:11:29.0255 7068 VAIO Power Management - ok
17:11:29.0271 7068 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:11:29.0271 7068 VaultSvc - ok
17:11:29.0333 7068 [ D00058C1FFF3F3DE990444A5734E9639 ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
17:11:29.0333 7068 VCFw - ok
17:11:29.0395 7068 [ F19275655B42086C884ABCDAE2C659AE ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
17:11:29.0395 7068 VcmIAlzMgr - ok
17:11:29.0427 7068 [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
17:11:29.0427 7068 VcmINSMgr - ok
17:11:29.0458 7068 [ 32A3735F6874B7783C6209ED5CA36D9D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
17:11:29.0458 7068 VcmXmlIfHelper - ok
17:11:29.0505 7068 [ 8F0840FF3A11D6B3F767AD6C79AC2A40 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
17:11:29.0505 7068 VCService - ok
17:11:29.0536 7068 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:11:29.0536 7068 vdrvroot - ok
17:11:29.0567 7068 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:11:29.0567 7068 vds - ok
17:11:29.0583 7068 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:11:29.0583 7068 vga - ok
17:11:29.0598 7068 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:11:29.0598 7068 VgaSave - ok
17:11:29.0614 7068 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:11:29.0614 7068 vhdmp - ok
17:11:29.0629 7068 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:11:29.0629 7068 viaide - ok
17:11:29.0676 7068 [ 466BBCA3EF8D7D878B87543533590C97 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
17:11:29.0692 7068 VIPAppService - ok
17:11:29.0707 7068 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:11:29.0707 7068 volmgr - ok
17:11:29.0739 7068 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:11:29.0739 7068 volmgrx - ok
17:11:29.0770 7068 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:11:29.0770 7068 volsnap - ok
17:11:29.0785 7068 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:11:29.0785 7068 vsmraid - ok
17:11:29.0848 7068 [ 8BE8C47D5B09F5550DCBF6FCD8832CCB ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
17:11:29.0848 7068 VSNService - ok
17:11:29.0895 7068 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:11:29.0910 7068 VSS - ok
17:11:30.0066 7068 [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent C:\Program Files\Sony\VAIO Update\VUAgent.exe
17:11:30.0066 7068 VUAgent - ok
17:11:30.0082 7068 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:11:30.0082 7068 vwifibus - ok
17:11:30.0113 7068 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:11:30.0113 7068 vwififlt - ok
17:11:30.0129 7068 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:11:30.0129 7068 vwifimp - ok
17:11:30.0144 7068 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:11:30.0160 7068 W32Time - ok
17:11:30.0222 7068 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:11:30.0222 7068 WacomPen - ok
17:11:30.0238 7068 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:11:30.0238 7068 WANARP - ok
17:11:30.0238 7068 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:11:30.0253 7068 Wanarpv6 - ok
17:11:30.0316 7068 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:11:30.0316 7068 WatAdminSvc - ok
17:11:30.0378 7068 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:11:30.0378 7068 wbengine - ok
17:11:30.0409 7068 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:11:30.0409 7068 WbioSrvc - ok
17:11:30.0441 7068 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
17:11:30.0441 7068 WcesComm - ok
17:11:30.0456 7068 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:11:30.0472 7068 wcncsvc - ok
17:11:30.0487 7068 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:11:30.0487 7068 WcsPlugInService - ok
17:11:30.0519 7068 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
17:11:30.0519 7068 Wd - ok
17:11:30.0534 7068 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
17:11:30.0534 7068 WDC_SAM - ok
17:11:30.0597 7068 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:11:30.0597 7068 Wdf01000 - ok
17:11:30.0612 7068 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:11:30.0612 7068 WdiServiceHost - ok
17:11:30.0612 7068 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:11:30.0612 7068 WdiSystemHost - ok
17:11:30.0659 7068 [ 63CE387483E74A0BD79EE4E5EBA1FD2E ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
17:11:30.0659 7068 wdkmd - ok
17:11:30.0690 7068 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:11:30.0690 7068 WebClient - ok
17:11:30.0706 7068 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:11:30.0706 7068 Wecsvc - ok
17:11:30.0721 7068 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:11:30.0721 7068 wercplsupport - ok
17:11:30.0737 7068 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:11:30.0737 7068 WerSvc - ok
17:11:30.0768 7068 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:11:30.0768 7068 WfpLwf - ok
17:11:30.0768 7068 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:11:30.0768 7068 WIMMount - ok
17:11:30.0784 7068 WinHttpAutoProxySvc - ok
17:11:30.0846 7068 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:11:30.0846 7068 Winmgmt - ok
17:11:30.0909 7068 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:11:30.0924 7068 WinRM - ok
17:11:30.0971 7068 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:11:30.0971 7068 Wlansvc - ok
17:11:31.0018 7068 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:11:31.0018 7068 wlcrasvc - ok
17:11:31.0096 7068 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:11:31.0096 7068 wlidsvc - ok
17:11:31.0111 7068 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:11:31.0111 7068 WmiAcpi - ok
17:11:31.0143 7068 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:11:31.0143 7068 wmiApSrv - ok
17:11:31.0158 7068 WMPNetworkSvc - ok
17:11:31.0189 7068 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:11:31.0189 7068 WPCSvc - ok
17:11:31.0205 7068 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:11:31.0205 7068 WPDBusEnum - ok
17:11:31.0236 7068 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:11:31.0236 7068 ws2ifsl - ok
17:11:31.0236 7068 WSearch - ok
17:11:31.0314 7068 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:11:31.0330 7068 wuauserv - ok
17:11:31.0361 7068 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:11:31.0361 7068 WudfPf - ok
17:11:31.0408 7068 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:11:31.0408 7068 wudfsvc - ok
17:11:31.0439 7068 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:11:31.0439 7068 WwanSvc - ok
17:11:31.0455 7068 ================ Scan global ===============================
17:11:31.0486 7068 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:11:31.0533 7068 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
17:11:31.0533 7068 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
17:11:31.0564 7068 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:11:31.0595 7068 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:11:31.0595 7068 [Global] - ok
17:11:31.0595 7068 ================ Scan MBR ==================================
17:11:31.0611 7068 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:11:31.0657 7068 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
17:11:31.0657 7068 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
17:11:31.0657 7068 ================ Scan VBR ==================================
17:11:31.0657 7068 [ C2BB6B3B33E562016DB37E5EEB74BFC0 ] \Device\Harddisk0\DR0\Partition1
17:11:31.0657 7068 \Device\Harddisk0\DR0\Partition1 - ok
17:11:31.0673 7068 [ D3CA45C734F31470AA645D6D8CE88AB3 ] \Device\Harddisk0\DR0\Partition2
17:11:31.0673 7068 \Device\Harddisk0\DR0\Partition2 - ok
17:11:31.0673 7068 ================ Scan active images ========================
17:11:31.0673 7068 ============================================================
17:11:31.0673 7068 Scan finished
17:11:31.0673 7068 ============================================================
17:11:31.0689 5856 Detected object count: 1
17:11:31.0689 5856 Actual detected object count: 1
17:11:55.0432 5856 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
17:11:55.0432 5856 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
17:11:58.0068 2268 Deinitialize success
 

 

Doing the aswMBR now.


Diane

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 09 February 2013 - 07:50 PM

Please run TDSSkiller and select CURE for

 

17:11:55.0432 5856 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip

 

Restart the PC and run TDSSkiller again ,post the new log



#5 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 08:02 PM

I tried to run aswMBR, I updated the AVAST and started scanning but then I received the BSOD again a few minutes in.  After restarting I tried again, same result.  
 
Trying ESET now.
 
EDIT: Instead I'll run the TDSSKILLER and do CURE this time. Just saw your post. Thanks!

Edited by DG2007, 09 February 2013 - 08:03 PM.

Diane

#6 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 08:22 PM

Did the CURE, rebooted, ran another SCAN, hit SKIP this time:

18:17:53.0726 2256  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:17:54.0287 2256  ============================================================
18:17:54.0287 2256  Current date / time: 2013/02/09 18:17:54.0287
18:17:54.0287 2256  SystemInfo:
18:17:54.0287 2256 
18:17:54.0287 2256  OS Version: 6.1.7601 ServicePack: 1.0
18:17:54.0287 2256  Product type: Workstation
18:17:54.0287 2256  ComputerName: JONSLAPTOP
18:17:54.0287 2256  UserName: Jon's Laptop
18:17:54.0287 2256  Windows directory: C:\Windows
18:17:54.0287 2256  System windows directory: C:\Windows
18:17:54.0287 2256  Running under WOW64
18:17:54.0287 2256  Processor architecture: Intel x64
18:17:54.0287 2256  Number of processors: 4
18:17:54.0287 2256  Page size: 0x1000
18:17:54.0287 2256  Boot type: Normal boot
18:17:54.0287 2256  ============================================================
18:17:55.0286 2256  BG loaded
18:17:56.0425 2256  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:17:56.0425 2256  ============================================================
18:17:56.0425 2256  \Device\Harddisk0\DR0:
18:17:56.0425 2256  MBR partitions:
18:17:56.0425 2256  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x21A7800, BlocksNum 0x32000
18:17:56.0425 2256  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x21D9800, BlocksNum 0x381AC030
18:17:56.0425 2256  ============================================================
18:17:56.0503 2256  C: <-> \Device\Harddisk0\DR0\Partition2
18:17:56.0503 2256  ============================================================
18:17:56.0503 2256  Initialize success
18:17:56.0503 2256  ============================================================
18:18:10.0807 6508  ============================================================
18:18:10.0807 6508  Scan started
18:18:10.0807 6508  Mode: Manual; TDLFS;
18:18:10.0807 6508  ============================================================
18:18:15.0206 6508  ================ Scan system memory ========================
18:18:15.0206 6508  System memory - ok
18:18:15.0206 6508  ================ Scan services =============================
18:18:15.0471 6508  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
18:18:15.0471 6508  !SASCORE - ok
18:18:15.0830 6508  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:18:15.0830 6508  1394ohci - ok
18:18:15.0908 6508  A2DDA - ok
18:18:16.0142 6508  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:18:16.0157 6508  ACDaemon - ok
18:18:16.0220 6508  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:18:16.0235 6508  ACPI - ok
18:18:16.0282 6508  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:18:16.0282 6508  AcpiPmi - ok
18:18:16.0485 6508  [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
18:18:16.0485 6508  AdobeActiveFileMonitor9.0 - ok
18:18:16.0672 6508  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:18:16.0672 6508  AdobeARMservice - ok
18:18:16.0906 6508  [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:18:16.0906 6508  AdobeFlashPlayerUpdateSvc - ok
18:18:17.0093 6508  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:18:17.0109 6508  adp94xx - ok
18:18:17.0265 6508  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:18:17.0265 6508  adpahci - ok
18:18:17.0327 6508  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:18:17.0327 6508  adpu320 - ok
18:18:17.0483 6508  [ 7233688FC422EF657E082309E6180142 ] ADVService      C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
18:18:17.0483 6508  ADVService - ok
18:18:17.0515 6508  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:18:17.0515 6508  AeLookupSvc - ok
18:18:17.0717 6508  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:18:17.0717 6508  AFD - ok
18:18:17.0795 6508  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:18:17.0811 6508  agp440 - ok
18:18:17.0889 6508  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:18:17.0889 6508  ALG - ok
18:18:17.0998 6508  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:18:18.0310 6508  aliide - ok
18:18:18.0373 6508  [ 0EE274476C3E5F05F2B79B8C63FCCCFC ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:18:18.0373 6508  AMD External Events Utility - ok
18:18:18.0466 6508  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:18:18.0466 6508  amdide - ok
18:18:18.0529 6508  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:18:18.0529 6508  AmdK8 - ok
18:18:19.0231 6508  [ B18018924D6ADB6E64BC39BD37D6A4D8 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
18:18:19.0433 6508  amdkmdag - ok
18:18:19.0589 6508  [ 3249B112D48D29BE86984CF4594C9755 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
18:18:19.0589 6508  amdkmdap - ok
18:18:19.0652 6508  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:18:19.0652 6508  AmdPPM - ok
18:18:19.0745 6508  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:18:19.0745 6508  amdsata - ok
18:18:19.0761 6508  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:18:19.0761 6508  amdsbs - ok
18:18:19.0792 6508  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:18:19.0792 6508  amdxata - ok
18:18:19.0901 6508  [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPAL          C:\Windows\system32\DRIVERS\AMPPAL.sys
18:18:19.0917 6508  AMPPAL - ok
18:18:19.0917 6508  [ 9921E78BC29634235F4BF5809E7E8CDE ] AMPPALP         C:\Windows\system32\DRIVERS\amppal.sys
18:18:19.0917 6508  AMPPALP - ok
18:18:20.0245 6508  [ 83A0E7BA4AE616D3654E700D9C5FF9DB ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
18:18:20.0260 6508  AMPPALR3 - ok
18:18:20.0323 6508  [ 9DC1A45BA81C923DB68A162B0F0D0149 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
18:18:20.0323 6508  ApfiltrService - ok
18:18:20.0416 6508  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:18:20.0416 6508  AppID - ok
18:18:20.0447 6508  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:18:20.0447 6508  AppIDSvc - ok
18:18:20.0666 6508  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
18:18:20.0666 6508  Appinfo - ok
18:18:20.0822 6508  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:18:20.0822 6508  Apple Mobile Device - ok
18:18:20.0900 6508  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:18:20.0900 6508  arc - ok
18:18:20.0947 6508  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:18:20.0947 6508  arcsas - ok
18:18:21.0103 6508  [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
18:18:21.0103 6508  ArcSoftKsUFilter - ok
18:18:21.0352 6508  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:18:21.0430 6508  aspnet_state - ok
18:18:21.0493 6508  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:18:21.0493 6508  AsyncMac - ok
18:18:21.0664 6508  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:18:21.0664 6508  atapi - ok
18:18:21.0914 6508  [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
18:18:21.0945 6508  athr - ok
18:18:22.0085 6508  [ 26970F26EBAB7D5D1B795A3F9013CD80 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
18:18:22.0101 6508  ATSwpWDF - ok
18:18:22.0226 6508  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:18:22.0241 6508  AudioEndpointBuilder - ok
18:18:22.0241 6508  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:18:22.0257 6508  AudioSrv - ok
18:18:22.0366 6508  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:18:22.0366 6508  AxInstSV - ok
18:18:22.0444 6508  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:18:22.0460 6508  b06bdrv - ok
18:18:22.0507 6508  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:18:22.0507 6508  b57nd60a - ok
18:18:22.0647 6508  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:18:22.0647 6508  BDESVC - ok
18:18:22.0678 6508  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:18:22.0678 6508  Beep - ok
18:18:23.0365 6508  [ 866335C9C0E6733C753FB472C539A6B9 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\BASHDefs\20130116.013\BHDrvx64.sys
18:18:23.0380 6508  BHDrvx64 - ok
18:18:23.0427 6508  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:18:23.0443 6508  BITS - ok
18:18:23.0521 6508  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:18:23.0521 6508  blbdrive - ok
18:18:23.0723 6508  [ 2E251B39ABEA79351E5633E5A7C36BE4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
18:18:23.0723 6508  Bluetooth Device Monitor - ok
18:18:23.0879 6508  [ 1EC546F8B6222F1F984220C1324EA945 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
18:18:23.0895 6508  Bluetooth Media Service - ok
18:18:24.0051 6508  [ ADB9C79CCBEF779D56A9AC931F9C8DF0 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
18:18:24.0067 6508  Bluetooth OBEX Service - ok
18:18:24.0176 6508  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:18:24.0176 6508  Bonjour Service - ok
18:18:24.0191 6508  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:18:24.0191 6508  bowser - ok
18:18:24.0269 6508  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:18:24.0269 6508  BrFiltLo - ok
18:18:24.0316 6508  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:18:24.0316 6508  BrFiltUp - ok
18:18:24.0379 6508  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:18:24.0379 6508  Browser - ok
18:18:24.0410 6508  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:18:24.0425 6508  Brserid - ok
18:18:24.0425 6508  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:18:24.0425 6508  BrSerWdm - ok
18:18:24.0550 6508  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:18:24.0550 6508  BrUsbMdm - ok
18:18:24.0550 6508  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:18:24.0550 6508  BrUsbSer - ok
18:18:24.0737 6508  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
18:18:24.0737 6508  BthEnum - ok
18:18:24.0831 6508  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:18:24.0831 6508  BTHMODEM - ok
18:18:24.0925 6508  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:18:24.0940 6508  BthPan - ok
18:18:25.0081 6508  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
18:18:25.0096 6508  BTHPORT - ok
18:18:25.0174 6508  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:18:25.0174 6508  bthserv - ok
18:18:25.0190 6508  [ A5B3E8B2B78C7B3DA56A0DE490E6718C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
18:18:25.0190 6508  BTHSSecurityMgr - ok
18:18:25.0283 6508  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
18:18:25.0283 6508  BTHUSB - ok
18:18:25.0330 6508  [ 76A1340ADB32798D18394AA424D584E2 ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
18:18:25.0330 6508  btmaux - ok
18:18:25.0471 6508  [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
18:18:25.0471 6508  btmhsf - ok
18:18:25.0658 6508  [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_MCLIENT   C:\Windows\system32\drivers\MCLIENTx64\0302000.013\ccSetx64.sys
18:18:25.0658 6508  ccSet_MCLIENT - ok
18:18:25.0985 6508  [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1402010.016\ccSetx64.sys
18:18:25.0985 6508  ccSet_N360 - ok
18:18:26.0032 6508  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:18:26.0032 6508  cdfs - ok
18:18:26.0141 6508  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:18:26.0141 6508  cdrom - ok
18:18:26.0251 6508  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:18:26.0251 6508  CertPropSvc - ok
18:18:26.0313 6508  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:18:26.0313 6508  circlass - ok
18:18:26.0360 6508  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:18:26.0360 6508  CLFS - ok
18:18:26.0485 6508  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:18:26.0485 6508  clr_optimization_v2.0.50727_32 - ok
18:18:26.0594 6508  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:18:26.0609 6508  clr_optimization_v2.0.50727_64 - ok
18:18:26.0797 6508  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:18:27.0093 6508  clr_optimization_v4.0.30319_32 - ok
18:18:27.0140 6508  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:18:27.0280 6508  clr_optimization_v4.0.30319_64 - ok
18:18:27.0452 6508  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:18:27.0452 6508  CmBatt - ok
18:18:27.0483 6508  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:18:27.0483 6508  cmdide - ok
18:18:27.0530 6508  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
18:18:27.0530 6508  CNG - ok
18:18:27.0701 6508  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:18:27.0701 6508  Compbatt - ok
18:18:27.0842 6508  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:18:27.0842 6508  CompositeBus - ok
18:18:27.0873 6508  COMSysApp - ok
18:18:27.0904 6508  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:18:27.0904 6508  crcdisk - ok
18:18:28.0013 6508  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:18:28.0013 6508  CryptSvc - ok
18:18:28.0247 6508  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
18:18:28.0263 6508  cvhsvc - ok
18:18:28.0372 6508  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:18:28.0372 6508  DcomLaunch - ok
18:18:28.0403 6508  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:18:28.0403 6508  defragsvc - ok
18:18:28.0575 6508  [ 3430EAD65BBE8516572EB7C8B82ED8CD ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
18:18:28.0575 6508  DeviceMonitorService - ok
18:18:28.0637 6508  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:18:28.0637 6508  DfsC - ok
18:18:28.0793 6508  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:18:28.0809 6508  Dhcp - ok
18:18:28.0840 6508  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:18:28.0840 6508  discache - ok
18:18:28.0934 6508  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:18:28.0934 6508  Disk - ok
18:18:29.0059 6508  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:18:29.0059 6508  Dnscache - ok
18:18:29.0105 6508  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:18:29.0105 6508  dot3svc - ok
18:18:29.0152 6508  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:18:29.0152 6508  DPS - ok
18:18:29.0246 6508  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:18:29.0246 6508  drmkaud - ok
18:18:29.0355 6508  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:18:29.0355 6508  DXGKrnl - ok
18:18:29.0433 6508  [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y60x64.sys
18:18:29.0433 6508  e1yexpress - ok
18:18:29.0511 6508  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:18:29.0511 6508  EapHost - ok
18:18:29.0854 6508  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:18:29.0932 6508  ebdrv - ok
18:18:29.0995 6508  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:18:29.0995 6508  eeCtrl - ok
18:18:30.0088 6508  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:18:30.0088 6508  EFS - ok
18:18:30.0275 6508  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:18:30.0322 6508  ehRecvr - ok
18:18:30.0416 6508  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:18:30.0431 6508  ehSched - ok
18:18:30.0478 6508  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:18:30.0494 6508  elxstor - ok
18:18:30.0603 6508  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:18:30.0603 6508  EraserUtilRebootDrv - ok
18:18:30.0634 6508  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:18:30.0634 6508  ErrDev - ok
18:18:30.0775 6508  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:18:30.0775 6508  EventSystem - ok
18:18:30.0962 6508  [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:18:31.0009 6508  EvtEng - ok
18:18:31.0040 6508  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:18:31.0040 6508  exfat - ok
18:18:31.0087 6508  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:18:31.0087 6508  fastfat - ok
18:18:31.0180 6508  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:18:31.0196 6508  Fax - ok
18:18:31.0274 6508  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:18:31.0274 6508  fdc - ok
18:18:31.0383 6508  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:18:31.0383 6508  fdPHost - ok
18:18:31.0430 6508  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:18:31.0430 6508  FDResPub - ok
18:18:31.0492 6508  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:18:31.0492 6508  FileInfo - ok
18:18:31.0539 6508  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:18:31.0539 6508  Filetrace - ok
18:18:31.0757 6508  [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:18:31.0757 6508  FLEXnet Licensing Service - ok
18:18:31.0804 6508  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:18:31.0804 6508  flpydisk - ok
18:18:31.0882 6508  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:18:31.0882 6508  FltMgr - ok
18:18:31.0991 6508  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
18:18:32.0007 6508  FontCache - ok
18:18:32.0116 6508  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:18:32.0116 6508  FontCache3.0.0.0 - ok
18:18:32.0241 6508  [ 8F46017C1442E25B2BED0377A4733EC1 ] FPLService      C:\Program Files\TrueSuite\TrueSuite.Service.exe
18:18:32.0257 6508  FPLService - ok
18:18:32.0288 6508  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:18:32.0288 6508  FsDepends - ok
18:18:32.0350 6508  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:18:32.0350 6508  Fs_Rec - ok
18:18:32.0397 6508  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:18:32.0413 6508  fvevol - ok
18:18:32.0506 6508  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:18:32.0506 6508  gagp30kx - ok
18:18:32.0584 6508  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:18:32.0584 6508  GEARAspiWDM - ok
18:18:32.0740 6508  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:18:32.0756 6508  gpsvc - ok
18:18:32.0803 6508  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:18:32.0803 6508  hcw85cir - ok
18:18:32.0865 6508  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:18:32.0865 6508  HdAudAddService - ok
18:18:32.0974 6508  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:18:32.0974 6508  HDAudBus - ok
18:18:33.0005 6508  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:18:33.0005 6508  HidBatt - ok
18:18:33.0037 6508  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:18:33.0037 6508  HidBth - ok
18:18:33.0115 6508  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:18:33.0115 6508  HidIr - ok
18:18:33.0177 6508  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:18:33.0177 6508  hidserv - ok
18:18:33.0302 6508  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
18:18:33.0302 6508  HidUsb - ok
18:18:33.0395 6508  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:18:33.0395 6508  hkmsvc - ok
18:18:33.0411 6508  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:18:33.0411 6508  HomeGroupListener - ok
18:18:33.0442 6508  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:18:33.0442 6508  HomeGroupProvider - ok
18:18:33.0583 6508  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:18:33.0583 6508  HpSAMD - ok
18:18:33.0707 6508  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:18:33.0707 6508  HTTP - ok
18:18:33.0770 6508  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:18:33.0770 6508  hwpolicy - ok
18:18:33.0832 6508  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:18:33.0832 6508  i8042prt - ok
18:18:33.0926 6508  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
18:18:33.0941 6508  iaStor - ok
18:18:34.0051 6508  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:18:34.0051 6508  IAStorDataMgrSvc - ok
18:18:34.0129 6508  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:18:34.0129 6508  iaStorV - ok
18:18:34.0269 6508  [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex      C:\Windows\system32\DRIVERS\iBtFltCoex.sys
18:18:34.0285 6508  iBtFltCoex - ok
18:18:34.0612 6508  [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
18:18:34.0659 6508  IconMan_R - ok
18:18:34.0768 6508  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:18:34.0784 6508  idsvc - ok
18:18:35.0049 6508  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\IPSDefs\20130208.001\IDSvia64.sys
18:18:35.0049 6508  IDSVia64 - ok
18:18:35.0111 6508  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:18:35.0111 6508  iirsp - ok
18:18:35.0221 6508  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:18:35.0221 6508  IKEEXT - ok
18:18:35.0361 6508  [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
18:18:35.0361 6508  intaud_WaveExtensible - ok
18:18:35.0595 6508  [ CDB772F707AC24B43A20C821852CA61F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:18:35.0657 6508  IntcAzAudAddService - ok
18:18:35.0891 6508  [ AE594CC17C33AC146739494615E14851 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
18:18:35.0891 6508  IntcDAud - ok
18:18:35.0938 6508  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:18:35.0938 6508  intelide - ok
18:18:36.0297 6508  [ E5C11F3689D9448CCC1D782FC2C4CC46 ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
18:18:36.0531 6508  intelkmd - ok
18:18:36.0640 6508  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:18:36.0640 6508  intelppm - ok
18:18:36.0703 6508  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:18:36.0718 6508  IPBusEnum - ok
18:18:36.0734 6508  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:18:36.0734 6508  IpFilterDriver - ok
18:18:36.0796 6508  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:18:36.0796 6508  IPMIDRV - ok
18:18:36.0859 6508  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:18:36.0859 6508  IPNAT - ok
18:18:36.0968 6508  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:18:36.0983 6508  iPod Service - ok
18:18:37.0061 6508  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:18:37.0061 6508  IRENUM - ok
18:18:37.0124 6508  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:18:37.0124 6508  isapnp - ok
18:18:37.0155 6508  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:18:37.0155 6508  iScsiPrt - ok
18:18:37.0217 6508  [ 716F66336F10885D935B08174DC54242 ] iwdbus          C:\Windows\system32\DRIVERS\iwdbus.sys
18:18:37.0217 6508  iwdbus - ok
18:18:37.0342 6508  [ 6C85719A21B3F62C2C76280F4BD36C7B ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
18:18:37.0342 6508  jhi_service - ok
18:18:37.0451 6508  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:18:37.0451 6508  kbdclass - ok
18:18:37.0514 6508  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
18:18:37.0514 6508  kbdhid - ok
18:18:37.0529 6508  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:18:37.0529 6508  KeyIso - ok
18:18:37.0623 6508  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:18:37.0623 6508  KSecDD - ok
18:18:37.0810 6508  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:18:37.0841 6508  KSecPkg - ok
18:18:38.0341 6508  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:18:38.0341 6508  ksthunk - ok
18:18:39.0323 6508  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:18:39.0339 6508  KtmRm - ok
18:18:39.0729 6508  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:18:39.0745 6508  LanmanServer - ok
18:18:39.0885 6508  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:18:39.0885 6508  LanmanWorkstation - ok
18:18:39.0979 6508  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:18:39.0979 6508  lltdio - ok
18:18:40.0150 6508  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:18:40.0150 6508  lltdsvc - ok
18:18:40.0197 6508  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:18:40.0197 6508  lmhosts - ok
18:18:40.0587 6508  [ F4A17DCAB576267C85663E64F3ACE5A4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:18:40.0587 6508  LMS - ok
18:18:41.0024 6508  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:18:41.0024 6508  LSI_FC - ok
18:18:41.0227 6508  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:18:41.0227 6508  LSI_SAS - ok
18:18:41.0242 6508  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:18:41.0242 6508  LSI_SAS2 - ok
18:18:41.0305 6508  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:18:41.0320 6508  LSI_SCSI - ok
18:18:41.0367 6508  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:18:41.0367 6508  luafv - ok
18:18:41.0539 6508  [ 4A9258B9597A31DB68EC9740F3A8A70B ] MCLIENT         C:\Program Files (x86)\Norton Management\Engine\3.2.0.19\ccSvcHst.exe
18:18:41.0539 6508  MCLIENT - ok
18:18:41.0632 6508  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:18:41.0632 6508  Mcx2Svc - ok
18:18:41.0663 6508  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:18:41.0663 6508  megasas - ok
18:18:41.0726 6508  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:18:41.0726 6508  MegaSR - ok
18:18:41.0788 6508  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:18:41.0788 6508  MEIx64 - ok
18:18:41.0851 6508  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:18:41.0851 6508  MMCSS - ok
18:18:41.0866 6508  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:18:41.0866 6508  Modem - ok
18:18:41.0929 6508  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:18:41.0929 6508  monitor - ok
18:18:42.0007 6508  [ A8FD4605AACF006BBA3B2B90AC9565B2 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
18:18:42.0007 6508  Motorola Device Manager - ok
18:18:42.0116 6508  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:18:42.0116 6508  mouclass - ok
18:18:42.0303 6508  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
18:18:42.0490 6508  mouhid - ok
18:18:42.0537 6508  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:18:42.0537 6508  mountmgr - ok
18:18:42.0553 6508  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:18:42.0553 6508  mpio - ok
18:18:42.0568 6508  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:18:42.0568 6508  mpsdrv - ok
18:18:42.0974 6508  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:18:42.0974 6508  MRxDAV - ok
18:18:43.0005 6508  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:18:43.0021 6508  mrxsmb - ok
18:18:43.0067 6508  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:18:43.0067 6508  mrxsmb10 - ok
18:18:43.0099 6508  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:18:43.0099 6508  mrxsmb20 - ok
18:18:43.0161 6508  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:18:43.0161 6508  msahci - ok
18:18:43.0925 6508  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:18:44.0128 6508  msdsm - ok
18:18:44.0222 6508  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:18:44.0237 6508  MSDTC - ok
18:18:44.0315 6508  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:18:44.0315 6508  Msfs - ok
18:18:44.0362 6508  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:18:44.0362 6508  mshidkmdf - ok
18:18:44.0378 6508  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:18:44.0378 6508  msisadrv - ok
18:18:44.0409 6508  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:18:44.0409 6508  MSiSCSI - ok
18:18:44.0409 6508  msiserver - ok
18:18:44.0456 6508  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:18:44.0487 6508  MSKSSRV - ok
18:18:44.0518 6508  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:18:44.0518 6508  MSPCLOCK - ok
18:18:44.0534 6508  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:18:44.0534 6508  MSPQM - ok
18:18:44.0581 6508  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:18:44.0581 6508  MsRPC - ok
18:18:44.0612 6508  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:18:44.0612 6508  mssmbios - ok
18:18:44.0705 6508  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:18:44.0705 6508  MSTEE - ok
18:18:44.0752 6508  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:18:44.0752 6508  MTConfig - ok
18:18:44.0768 6508  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:18:44.0768 6508  Mup - ok
18:18:45.0033 6508  [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:18:45.0080 6508  MyWiFiDHCPDNS - ok
18:18:45.0548 6508  [ 4BA84C832E0741A294C4444556DFE993 ] N360            C:\Program Files (x86)\Norton 360\Engine\20.2.1.22\ccSvcHst.exe
18:18:45.0548 6508  N360 - ok
18:18:45.0657 6508  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:18:45.0657 6508  napagent - ok
18:18:45.0735 6508  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:18:45.0735 6508  NativeWifiP - ok
18:18:45.0969 6508  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\ENG64.SYS
18:18:45.0985 6508  NAVENG - ok
18:18:46.0109 6508  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130208.032\EX64.SYS
18:18:46.0109 6508  NAVEX15 - ok
18:18:46.0219 6508  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:18:46.0265 6508  NDIS - ok
18:18:46.0312 6508  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:18:46.0312 6508  NdisCap - ok
18:18:46.0375 6508  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:18:46.0375 6508  NdisTapi - ok
18:18:46.0421 6508  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:18:46.0421 6508  Ndisuio - ok
18:18:46.0453 6508  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:18:46.0453 6508  NdisWan - ok
18:18:46.0484 6508  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:18:46.0484 6508  NDProxy - ok
18:18:46.0499 6508  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:18:46.0499 6508  NetBIOS - ok
18:18:46.0531 6508  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:18:46.0546 6508  NetBT - ok
18:18:46.0562 6508  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:18:46.0562 6508  Netlogon - ok
18:18:46.0640 6508  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:18:46.0640 6508  Netman - ok
18:18:46.0702 6508  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:18:46.0749 6508  NetMsmqActivator - ok
18:18:46.0749 6508  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:18:46.0749 6508  NetPipeActivator - ok
18:18:46.0796 6508  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:18:46.0811 6508  netprofm - ok
18:18:46.0811 6508  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:18:46.0811 6508  NetTcpActivator - ok
18:18:46.0811 6508  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:18:46.0811 6508  NetTcpPortSharing - ok
18:18:47.0201 6508  [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
18:18:47.0373 6508  NETwNs64 - ok
18:18:47.0435 6508  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:18:47.0435 6508  nfrd960 - ok
18:18:47.0498 6508  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:18:47.0498 6508  NlaSvc - ok
18:18:47.0513 6508  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:18:47.0513 6508  Npfs - ok
18:18:47.0545 6508  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:18:47.0545 6508  nsi - ok
18:18:47.0560 6508  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:18:47.0560 6508  nsiproxy - ok
18:18:47.0654 6508  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:18:47.0669 6508  Ntfs - ok
18:18:47.0701 6508  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:18:47.0701 6508  Null - ok
18:18:47.0779 6508  [ B227E75AD10A142DD326B4CC8D73A6D9 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
18:18:47.0779 6508  nusb3hub - ok
18:18:47.0825 6508  [ 55959DB860E4E484681586824D09E52C ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:18:47.0825 6508  nusb3xhc - ok
18:18:48.0839 6508  [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:18:49.0089 6508  nvlddmkm - ok
18:18:49.0151 6508  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:18:49.0151 6508  nvraid - ok
18:18:49.0183 6508  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:18:49.0183 6508  nvstor - ok
18:18:49.0229 6508  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:18:49.0229 6508  nv_agp - ok
18:18:49.0354 6508  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:18:49.0354 6508  odserv - ok
18:18:49.0385 6508  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:18:49.0385 6508  ohci1394 - ok
18:18:49.0432 6508  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:18:49.0432 6508  ose - ok
18:18:49.0822 6508  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:18:49.0963 6508  osppsvc - ok
18:18:50.0025 6508  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:18:50.0025 6508  p2pimsvc - ok
18:18:50.0056 6508  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:18:50.0056 6508  p2psvc - ok
18:18:50.0087 6508  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
18:18:50.0087 6508  Parport - ok
18:18:50.0134 6508  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:18:50.0134 6508  partmgr - ok
18:18:50.0165 6508  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:18:50.0165 6508  PcaSvc - ok
18:18:50.0181 6508  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:18:50.0197 6508  pci - ok
18:18:50.0212 6508  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:18:50.0212 6508  pciide - ok
18:18:50.0228 6508  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:18:50.0228 6508  pcmcia - ok
18:18:50.0290 6508  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:18:50.0290 6508  pcw - ok
18:18:50.0306 6508  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:18:50.0306 6508  PEAUTH - ok
18:18:50.0477 6508  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:18:50.0477 6508  PerfHost - ok
18:18:50.0555 6508  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:18:50.0555 6508  pla - ok
18:18:50.0633 6508  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:18:50.0633 6508  PlugPlay - ok
18:18:50.0727 6508  [ E9605A180001A6B5551112D91DE92CA1 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
18:18:50.0727 6508  PMBDeviceInfoProvider - ok
18:18:50.0774 6508  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:18:50.0774 6508  PNRPAutoReg - ok
18:18:50.0789 6508  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:18:50.0789 6508  PNRPsvc - ok
18:18:50.0821 6508  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:18:50.0836 6508  PolicyAgent - ok
18:18:50.0883 6508  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:18:50.0899 6508  Power - ok
18:18:50.0977 6508  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:18:50.0977 6508  PptpMiniport - ok
18:18:50.0992 6508  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:18:50.0992 6508  Processor - ok
18:18:51.0023 6508  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:18:51.0039 6508  ProfSvc - ok
18:18:51.0039 6508  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:18:51.0039 6508  ProtectedStorage - ok
18:18:51.0086 6508  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:18:51.0086 6508  Psched - ok
18:18:51.0164 6508  [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
18:18:51.0164 6508  PST Service - ok
18:18:51.0179 6508  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
18:18:51.0179 6508  PxHlpa64 - ok
18:18:51.0382 6508  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:18:51.0398 6508  ql2300 - ok
18:18:51.0460 6508  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:18:51.0460 6508  ql40xx - ok
18:18:51.0491 6508  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:18:51.0491 6508  QWAVE - ok
18:18:51.0523 6508  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:18:51.0523 6508  QWAVEdrv - ok
18:18:51.0616 6508  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
18:18:51.0616 6508  RapiMgr - ok
18:18:51.0647 6508  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:18:51.0647 6508  RasAcd - ok
18:18:51.0663 6508  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:18:51.0663 6508  RasAgileVpn - ok
18:18:51.0694 6508  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:18:51.0694 6508  RasAuto - ok
18:18:51.0741 6508  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:18:51.0741 6508  Rasl2tp - ok
18:18:51.0803 6508  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:18:51.0803 6508  RasMan - ok
18:18:51.0835 6508  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:18:51.0835 6508  RasPppoe - ok
18:18:51.0866 6508  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:18:51.0866 6508  RasSstp - ok
18:18:51.0881 6508  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:18:51.0881 6508  rdbss - ok
18:18:51.0897 6508  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
18:18:51.0897 6508  rdpbus - ok
18:18:51.0944 6508  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:18:51.0944 6508  RDPCDD - ok
18:18:51.0991 6508  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:18:51.0991 6508  RDPENCDD - ok
18:18:52.0022 6508  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:18:52.0022 6508  RDPREFMP - ok
18:18:52.0084 6508  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:18:52.0084 6508  RDPWD - ok
18:18:52.0115 6508  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:18:52.0115 6508  rdyboost - ok
18:18:52.0178 6508  [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:18:52.0178 6508  RegSrvc - ok
18:18:52.0240 6508  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:18:52.0256 6508  RemoteAccess - ok
18:18:52.0303 6508  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:18:52.0303 6508  RemoteRegistry - ok
18:18:52.0365 6508  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:18:52.0365 6508  RFCOMM - ok
18:18:52.0396 6508  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:18:52.0396 6508  RpcEptMapper - ok
18:18:52.0443 6508  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:18:52.0443 6508  RpcLocator - ok
18:18:52.0505 6508  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:18:52.0521 6508  RpcSs - ok
18:18:52.0568 6508  [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
18:18:52.0568 6508  RSPCIESTOR - ok
18:18:52.0630 6508  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:18:52.0630 6508  rspndr - ok
18:18:52.0661 6508  [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:18:52.0661 6508  RTL8167 - ok
18:18:52.0724 6508  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:18:52.0724 6508  SamSs - ok
18:18:52.0786 6508  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
18:18:52.0786 6508  SASDIFSV - ok
18:18:52.0817 6508  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
18:18:52.0817 6508  SASKUTIL - ok
18:18:52.0880 6508  [ DB7F9394B2F2D446DF14D46C61B0E94B ] sbapifs         C:\Windows\system32\DRIVERS\sbapifs.sys
18:18:52.0880 6508  sbapifs - ok
18:18:52.0927 6508  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:18:52.0942 6508  sbp2port - ok
18:18:53.0020 6508  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
18:18:53.0036 6508  SBSDWSCService - ok
18:18:53.0051 6508  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:18:53.0051 6508  SCardSvr - ok
18:18:53.0083 6508  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:18:53.0083 6508  scfilter - ok
18:18:53.0098 6508  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:18:53.0114 6508  Schedule - ok
18:18:53.0145 6508  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:18:53.0145 6508  SCPolicySvc - ok
18:18:53.0239 6508  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
18:18:53.0239 6508  sdbus - ok
18:18:53.0285 6508  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:18:53.0285 6508  SDRSVC - ok
18:18:53.0332 6508  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:18:53.0332 6508  secdrv - ok
18:18:53.0363 6508  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:18:53.0363 6508  seclogon - ok
18:18:53.0395 6508  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:18:53.0410 6508  SENS - ok
18:18:53.0457 6508  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:18:53.0473 6508  SensrSvc - ok
18:18:53.0488 6508  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:18:53.0488 6508  Serenum - ok
18:18:53.0535 6508  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
18:18:53.0535 6508  Serial - ok
18:18:53.0566 6508  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:18:53.0582 6508  sermouse - ok
18:18:53.0597 6508  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:18:53.0613 6508  SessionEnv - ok
18:18:53.0629 6508  [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP            C:\Windows\system32\DRIVERS\SFEP.sys
18:18:53.0629 6508  SFEP - ok
18:18:53.0660 6508  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:18:53.0660 6508  sffdisk - ok
18:18:53.0660 6508  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:18:53.0660 6508  sffp_mmc - ok
18:18:53.0707 6508  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:18:53.0707 6508  sffp_sd - ok
18:18:53.0707 6508  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:18:53.0707 6508  sfloppy - ok
18:18:53.0785 6508  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
18:18:53.0785 6508  Sftfs - ok
18:18:53.0863 6508  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
18:18:53.0863 6508  sftlist - ok
18:18:53.0925 6508  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
18:18:53.0925 6508  Sftplay - ok
18:18:53.0987 6508  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
18:18:54.0003 6508  Sftredir - ok
18:18:54.0034 6508  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
18:18:54.0034 6508  Sftvol - ok
18:18:54.0050 6508  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
18:18:54.0050 6508  sftvsa - ok
18:18:54.0097 6508  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:18:54.0097 6508  ShellHWDetection - ok
18:18:54.0159 6508  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:18:54.0159 6508  SiSRaid2 - ok
18:18:54.0175 6508  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:18:54.0175 6508  SiSRaid4 - ok
18:18:54.0237 6508  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:18:54.0237 6508  SkypeUpdate - ok
18:18:54.0284 6508  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:18:54.0284 6508  Smb - ok
18:18:54.0346 6508  [ 03573DA7C4ABCF5591AD4D8C96736B00 ] SMR210          C:\Windows\system32\drivers\SMR210.SYS
18:18:54.0346 6508  SMR210 - ok
18:18:54.0393 6508  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:18:54.0393 6508  SNMPTRAP - ok
18:18:54.0487 6508  [ DDF2EC98AF6FC70608A4F9CE4DB52758 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
18:18:54.0487 6508  SOHCImp - ok
18:18:54.0518 6508  [ 5FA03F5EA6EFEF6D17B4A1A48C40A23C ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
18:18:54.0518 6508  SOHDs - ok
18:18:54.0580 6508  [ 65E5659E9C2A0762D05657C0E22A7CA2 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
18:18:54.0580 6508  SpfService - ok
18:18:54.0611 6508  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:18:54.0611 6508  spldr - ok
18:18:54.0674 6508  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:18:54.0689 6508  Spooler - ok
18:18:54.0814 6508  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:18:54.0845 6508  sppsvc - ok
18:18:54.0861 6508  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:18:54.0861 6508  sppuinotify - ok
18:18:55.0064 6508  [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP           C:\Windows\system32\drivers\N360x64\1402010.016\SRTSP64.SYS
18:18:55.0064 6508  SRTSP - ok
18:18:55.0079 6508  [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX          C:\Windows\system32\drivers\N360x64\1402010.016\SRTSPX64.SYS
18:18:55.0079 6508  SRTSPX - ok
18:18:55.0157 6508  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:18:55.0157 6508  srv - ok
18:18:55.0189 6508  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:18:55.0189 6508  srv2 - ok
18:18:55.0235 6508  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:18:55.0235 6508  srvnet - ok
18:18:55.0282 6508  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:18:55.0282 6508  SSDPSRV - ok
18:18:55.0298 6508  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:18:55.0298 6508  SstpSvc - ok
18:18:55.0329 6508  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:18:55.0329 6508  stexstor - ok
18:18:55.0407 6508  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:18:55.0423 6508  stisvc - ok
18:18:55.0423 6508  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:18:55.0423 6508  swenum - ok
18:18:55.0454 6508  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:18:55.0454 6508  swprv - ok
18:18:55.0579 6508  [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS           C:\Windows\system32\drivers\N360x64\1402010.016\SYMDS64.SYS
18:18:55.0610 6508  SymDS - ok
18:18:55.0766 6508  [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA          C:\Windows\system32\drivers\N360x64\1402010.016\SYMEFA64.SYS
18:18:55.0844 6508  SymEFA - ok
18:18:55.0922 6508  [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:18:55.0922 6508  SymEvent - ok
18:18:56.0031 6508  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\N360x64\1402010.016\Ironx64.SYS
18:18:56.0031 6508  SymIRON - ok
18:18:56.0125 6508  [ 1605EBD8CB86AFC4430116065995279A ] SymNetS         C:\Windows\system32\drivers\N360x64\1402010.016\SYMNETS.SYS
18:18:56.0125 6508  SymNetS - ok
18:18:56.0218 6508  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:18:56.0234 6508  SysMain - ok
18:18:56.0249 6508  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:18:56.0265 6508  TabletInputService - ok
18:18:56.0281 6508  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:18:56.0296 6508  TapiSrv - ok
18:18:56.0296 6508  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:18:56.0312 6508  TBS - ok
18:18:56.0405 6508  [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:18:56.0421 6508  Tcpip - ok
18:18:56.0468 6508  [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:18:56.0468 6508  TCPIP6 - ok
18:18:56.0499 6508  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:18:56.0499 6508  tcpipreg - ok
18:18:56.0530 6508  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:18:56.0530 6508  TDPIPE - ok
18:18:56.0561 6508  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:18:56.0561 6508  TDTCP - ok
18:18:56.0593 6508  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:18:56.0593 6508  tdx - ok
18:18:56.0624 6508  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:18:56.0624 6508  TermDD - ok
18:18:56.0655 6508  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:18:56.0671 6508  TermService - ok
18:18:56.0671 6508  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:18:56.0671 6508  Themes - ok
18:18:56.0702 6508  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:18:56.0702 6508  THREADORDER - ok
18:18:56.0733 6508  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\Windows\system32\drivers\tpm.sys
18:18:56.0749 6508  TPM - ok
18:18:56.0795 6508  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:18:56.0795 6508  TrkWks - ok
18:18:56.0873 6508  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:18:56.0873 6508  TrustedInstaller - ok
18:18:56.0905 6508  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:18:56.0936 6508  tssecsrv - ok
18:18:57.0029 6508  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:18:57.0029 6508  TsUsbFlt - ok
18:18:57.0045 6508  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:18:57.0045 6508  TsUsbGD - ok
18:18:57.0076 6508  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:18:57.0076 6508  tunnel - ok
18:18:57.0092 6508  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:18:57.0092 6508  uagp35 - ok
18:18:57.0107 6508  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:18:57.0107 6508  udfs - ok
18:18:57.0139 6508  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:18:57.0139 6508  UI0Detect - ok
18:18:57.0185 6508  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:18:57.0185 6508  uliagpkx - ok
18:18:57.0232 6508  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:18:57.0232 6508  umbus - ok
18:18:57.0263 6508  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:18:57.0263 6508  UmPass - ok
18:18:57.0373 6508  [ DB641944F7E4B14C13C3FEFC89843F69 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:18:57.0388 6508  UNS - ok
18:18:57.0419 6508  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:18:57.0419 6508  upnphost - ok
18:18:57.0466 6508  [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
18:18:57.0466 6508  USBAAPL64 - ok
18:18:57.0529 6508  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:18:57.0529 6508  usbccgp - ok
18:18:57.0575 6508  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:18:57.0591 6508  usbcir - ok
18:18:57.0607 6508  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:18:57.0607 6508  usbehci - ok
18:18:57.0653 6508  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:18:57.0653 6508  usbhub - ok
18:18:57.0653 6508  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:18:57.0653 6508  usbohci - ok
18:18:57.0669 6508  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
18:18:57.0669 6508  usbprint - ok
18:18:57.0700 6508  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:18:57.0700 6508  USBSTOR - ok
18:18:57.0731 6508  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:18:57.0747 6508  usbuhci - ok
18:18:57.0778 6508  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
18:18:57.0778 6508  usbvideo - ok
18:18:57.0856 6508  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
18:18:57.0856 6508  usb_rndisx - ok
18:18:57.0887 6508  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:18:57.0887 6508  UxSms - ok
18:18:57.0934 6508  [ 387D3DFFCF0A544539E9C5D8B81169A2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
18:18:57.0934 6508  VAIO Event Service - ok
18:18:58.0028 6508  [ D1933E428D991B15AFFD48B1A7BEB643 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
18:18:58.0028 6508  VAIO Power Management - ok
18:18:58.0075 6508  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:18:58.0075 6508  VaultSvc - ok
18:18:58.0231 6508  [ D00058C1FFF3F3DE990444A5734E9639 ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
18:18:58.0293 6508  VCFw - ok
18:18:58.0371 6508  [ F19275655B42086C884ABCDAE2C659AE ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
18:18:58.0371 6508  VcmIAlzMgr - ok
18:18:58.0402 6508  [ 2F06D134554BA84FE253DBC481DCFE6D ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
18:18:58.0418 6508  VcmINSMgr - ok
18:18:58.0449 6508  [ 32A3735F6874B7783C6209ED5CA36D9D ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
18:18:58.0449 6508  VcmXmlIfHelper - ok
18:18:58.0527 6508  [ 8F0840FF3A11D6B3F767AD6C79AC2A40 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
18:18:58.0527 6508  VCService - ok
18:18:58.0589 6508  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:18:58.0589 6508  vdrvroot - ok
18:18:58.0621 6508  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:18:58.0621 6508  vds - ok
18:18:58.0667 6508  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:18:58.0667 6508  vga - ok
18:18:58.0683 6508  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:18:58.0683 6508  VgaSave - ok
18:18:58.0683 6508  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:18:58.0683 6508  vhdmp - ok
18:18:58.0730 6508  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:18:58.0730 6508  viaide - ok
18:18:58.0901 6508  [ 466BBCA3EF8D7D878B87543533590C97 ] VIPAppService   C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
18:18:58.0901 6508  VIPAppService - ok
18:18:58.0917 6508  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:18:58.0917 6508  volmgr - ok
18:18:58.0948 6508  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:18:58.0964 6508  volmgrx - ok
18:18:58.0995 6508  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:18:59.0011 6508  volsnap - ok
18:18:59.0057 6508  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:18:59.0057 6508  vsmraid - ok
18:18:59.0120 6508  [ 8BE8C47D5B09F5550DCBF6FCD8832CCB ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
18:18:59.0135 6508  VSNService - ok
18:18:59.0182 6508  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:18:59.0198 6508  VSS - ok
18:18:59.0447 6508  [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent         C:\Program Files\Sony\VAIO Update\VUAgent.exe
18:18:59.0494 6508  VUAgent - ok
18:18:59.0525 6508  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:18:59.0525 6508  vwifibus - ok
18:18:59.0572 6508  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:18:59.0572 6508  vwififlt - ok
18:18:59.0619 6508  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:18:59.0619 6508  vwifimp - ok
18:18:59.0635 6508  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:18:59.0650 6508  W32Time - ok
18:18:59.0666 6508  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:18:59.0666 6508  WacomPen - ok
18:18:59.0713 6508  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:18:59.0728 6508  WANARP - ok
18:18:59.0728 6508  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:18:59.0728 6508  Wanarpv6 - ok
18:18:59.0853 6508  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:18:59.0869 6508  WatAdminSvc - ok
18:18:59.0915 6508  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:18:59.0931 6508  wbengine - ok
18:18:59.0978 6508  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:18:59.0978 6508  WbioSrvc - ok
18:19:00.0056 6508  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
18:19:00.0056 6508  WcesComm - ok
18:19:00.0071 6508  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:19:00.0071 6508  wcncsvc - ok
18:19:00.0103 6508  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:19:00.0103 6508  WcsPlugInService - ok
18:19:00.0134 6508  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:19:00.0134 6508  Wd - ok
18:19:00.0181 6508  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
18:19:00.0181 6508  WDC_SAM - ok
18:19:00.0259 6508  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:19:00.0274 6508  Wdf01000 - ok
18:19:00.0290 6508  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:19:00.0290 6508  WdiServiceHost - ok
18:19:00.0290 6508  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:19:00.0290 6508  WdiSystemHost - ok
18:19:00.0352 6508  [ 63CE387483E74A0BD79EE4E5EBA1FD2E ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
18:19:00.0352 6508  wdkmd - ok
18:19:00.0399 6508  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:19:00.0415 6508  WebClient - ok
18:19:00.0446 6508  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:19:00.0461 6508  Wecsvc - ok
18:19:00.0493 6508  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:19:00.0493 6508  wercplsupport - ok
18:19:00.0539 6508  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:19:00.0555 6508  WerSvc - ok
18:19:00.0602 6508  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:19:00.0602 6508  WfpLwf - ok
18:19:00.0602 6508  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:19:00.0602 6508  WIMMount - ok
18:19:00.0617 6508  WinHttpAutoProxySvc - ok
18:19:00.0695 6508  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:19:00.0695 6508  Winmgmt - ok
18:19:00.0773 6508  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:19:00.0789 6508  WinRM - ok
18:19:00.0883 6508  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:19:00.0883 6508  Wlansvc - ok
18:19:00.0945 6508  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:19:00.0945 6508  wlcrasvc - ok
18:19:01.0054 6508  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:19:01.0070 6508  wlidsvc - ok
18:19:01.0101 6508  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:19:01.0101 6508  WmiAcpi - ok
18:19:01.0132 6508  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:19:01.0132 6508  wmiApSrv - ok
18:19:01.0148 6508  WMPNetworkSvc - ok
18:19:01.0195 6508  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:19:01.0195 6508  WPCSvc - ok
18:19:01.0210 6508  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:19:01.0210 6508  WPDBusEnum - ok
18:19:01.0241 6508  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:19:01.0241 6508  ws2ifsl - ok
18:19:01.0257 6508  WSearch - ok
18:19:01.0351 6508  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:19:01.0366 6508  wuauserv - ok
18:19:01.0397 6508  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:19:01.0397 6508  WudfPf - ok
18:19:01.0444 6508  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:19:01.0444 6508  wudfsvc - ok
18:19:01.0491 6508  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:19:01.0507 6508  WwanSvc - ok
18:19:01.0538 6508  ================ Scan global ===============================
18:19:01.0569 6508  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:19:01.0616 6508  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
18:19:01.0631 6508  [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
18:19:01.0663 6508  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:19:01.0678 6508  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:19:01.0678 6508  [Global] - ok
18:19:01.0678 6508  ================ Scan MBR ==================================
18:19:01.0694 6508  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:19:01.0975 6508  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:19:01.0975 6508  \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:19:01.0975 6508  ================ Scan VBR ==================================
18:19:02.0006 6508  [ C2BB6B3B33E562016DB37E5EEB74BFC0 ] \Device\Harddisk0\DR0\Partition1
18:19:02.0006 6508  \Device\Harddisk0\DR0\Partition1 - ok
18:19:02.0037 6508  [ D3CA45C734F31470AA645D6D8CE88AB3 ] \Device\Harddisk0\DR0\Partition2
18:19:02.0037 6508  \Device\Harddisk0\DR0\Partition2 - ok
18:19:02.0037 6508  ================ Scan active images ========================
18:19:02.0037 6508  ============================================================
18:19:02.0037 6508  Scan finished
18:19:02.0037 6508  ============================================================
18:19:02.0037 6500  Detected object count: 1
18:19:02.0037 6500  Actual detected object count: 1
18:20:18.0774 6500  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:20:18.0774 6500  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
 


Diane

#7 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 08:54 PM

Running ESET now. 


Diane

#8 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 10:12 PM

ESET Log:

 

C:\Program Files (x86)\PC Cleaners\PCCleaners.exe a variant of Win32/PCCleaners application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.02.2013_18.07.05\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.02.2013_18.07.05\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.02.2013_18.07.05\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.02.2013_18.07.05\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\09.02.2013_18.07.05\mbr0000\tdlfs0000\tsk0008.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\Users\Jon's Laptop\Documents\Important\Unused Icons from broke laptop\LimeWireWin.exe probably a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined
 


Diane

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 09 February 2013 - 10:24 PM

Please run TDSSkiller again and select DELETE for TDSSfile system

 

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on Search
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply

 



#10 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 10:48 PM

I was finally able to finish the aswMBR scan:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-09 20:14:00
-----------------------------
20:14:00.548    OS Version: Windows x64 6.1.7601 Service Pack 1
20:14:00.548    Number of processors: 4 586 0x2A07
20:14:00.548    ComputerName: JONSLAPTOP  UserName:
20:14:02.638    Initialize success
20:14:12.996    AVAST engine defs: 13020901
20:14:18.332    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:14:18.347    Disk 0 Vendor: TOSHIBA_ GT00 Size: 476940MB BusType: 8
20:14:18.347    Disk 0 MBR read successfully
20:14:18.347    Disk 0 MBR scan
20:14:18.347    Disk 0 Windows 7 default MBR code
20:14:18.363    Disk 0 Partition 1 00     27 Hidden NTFS WinRE NTFS        17230 MB offset 2048
20:14:18.378    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 35289088
20:14:18.394    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       459608 MB offset 35493888
20:14:18.410    Disk 0 scanning C:\Windows\system32\drivers
20:14:28.706    Service scanning
20:15:06.302    Modules scanning
20:15:06.302    Disk 0 trace - called modules:
20:15:06.380    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
20:15:06.380    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008e01060]
20:15:06.380    3 CLASSPNP.SYS[fffff88001c0143f] -> nt!IofCallDriver -> [0xfffffa8006910e40]
20:15:06.380    5 ACPI.sys[fffff88000f3f7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006913050]
20:15:07.425    AVAST engine scan C:\Windows
20:15:09.578    AVAST engine scan C:\Windows\system32
20:18:11.121    AVAST engine scan C:\Windows\system32\drivers
20:18:24.381    AVAST engine scan C:\Users\Jon's Laptop
20:29:11.721    AVAST engine scan C:\ProgramData
20:32:58.935    Scan finished successfully
20:46:25.660    Disk 0 MBR has been saved successfully to "C:\Users\Jon's Laptop\Documents\MBR.dat"
20:46:25.660    The log file has been saved successfully to "C:\Users\Jon's Laptop\Documents\aswMBR.txt"

 

 

Now I'll do the next set of instructions.  Thank you.
 


Diane

#11 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 09 February 2013 - 11:32 PM

Malwarebytes:

 

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8344

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

12/9/2011 11:38:56 AM
mbam-log-2011-12-09 (11-38-56).txt

Scan type: Full scan (C:\|Q:\|)
Objects scanned: 306285
Time elapsed: 27 minute(s), 19 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\jon's laptop\AppData\LocalLow\Sun\Java\deployment\cache\6.0\17\6b08e551-74c431a6 (Trojan.Agent) -> Quarantined and deleted successfully.

 

 

MiniTooolbox:

 

MiniToolBox by Farbar  Version:10-01-2013
Ran by Jon's Laptop (administrator) on 09-02-2013 at 21:22:17
Running from "C:\Users\Jon's Laptop\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com

There are 15308 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled taskoffload=enabled


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : JonsLaptop
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hil-atlahhh.atl.wayport.net
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : F0-BF-97-D9-0B-55
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 88-53-2E-5E-7D-B6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 88-53-2E-5E-7D-B6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
   Physical Address. . . . . . . . . : 88-53-2E-5E-7D-B5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::186d:a5fc:1455:ffd2%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, February 09, 2013 6:14:38 PM
   Lease Expires . . . . . . . . . . : Sunday, February 10, 2013 8:10:21 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 294146862
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-31-38-01-88-53-2E-5E-7D-B5
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 88-53-2E-5E-7D-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hil-atlahhh.atl.wayport.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8DCDE62D-E72D-4E61-865F-EEEADF3A93F1}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{11B85CF0-8BA4-4CA5-89CB-23E2941A66A7}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{DA7CF13A-58E7-4674-B117-8730C9EBCE6B}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{21C0E334-6ACA-4E62-9E62-7AB2590286EB}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2001:4860:4007:800::1007
   74.125.239.2
   74.125.239.3
   74.125.239.4
   74.125.239.5
   74.125.239.6
   74.125.239.7
   74.125.239.8
   74.125.239.9
   74.125.239.14
   74.125.239.0
   74.125.239.1


Pinging google.com [74.125.224.162] with 32 bytes of data:
Reply from 74.125.224.162: bytes=32 time=36ms TTL=55
Reply from 74.125.224.162: bytes=32 time=55ms TTL=55

Ping statistics for 74.125.224.162:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 36ms, Maximum = 55ms, Average = 45ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=93ms TTL=52
Reply from 98.138.253.109: bytes=32 time=98ms TTL=52

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 93ms, Maximum = 98ms, Average = 95ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...f0 bf 97 d9 0b 55 ......Realtek PCIe GBE Family Controller
 15...88 53 2e 5e 7d b6 ......Microsoft Virtual WiFi Miniport Adapter #2
 14...88 53 2e 5e 7d b6 ......Microsoft Virtual WiFi Miniport Adapter
 13...88 53 2e 5e 7d b5 ......Intel® Centrino® Advanced-N 6230
 11...88 53 2e 5e 7d b9 ......Bluetooth Device (Personal Area Network)
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.7     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.7    281
      192.168.1.7  255.255.255.255         On-link       192.168.1.7    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.7    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.7    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.7    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    281 fe80::/64                On-link
 13    281 fe80::186d:a5fc:1455:ffd2/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/09/2013 09:16:50 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/09/2013 09:16:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (02/09/2013 06:14:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 06:06:19 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 06:04:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 05:43:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 05:13:10 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 05:04:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 04:53:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/09/2013 03:51:08 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.


System errors:
=============
Error: (02/09/2013 06:18:08 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (02/09/2013 06:18:08 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (02/09/2013 06:14:30 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (02/09/2013 06:14:29 PM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (02/09/2013 06:14:27 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (02/09/2013 06:14:27 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (02/09/2013 06:14:27 PM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (02/09/2013 06:13:29 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (02/09/2013 06:07:21 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (02/09/2013 06:07:21 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2012-12-15 08:45:12.502
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 08:45:12.482
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 08:45:12.472
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 08:45:12.452
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 08:45:12.432
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 07:52:25.551
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 07:52:25.531
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 07:52:25.491
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 07:52:25.471
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-12-15 07:52:25.451
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\TrueSuite\TrueSuite.ClientAppLogon.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
Adobe Acrobat  9 Standard (Version: 9.5.2)
Adobe Acrobat 9.5.2 - CPSID_83708
Adobe AIR (Version: 1.5.3.9130)
Adobe Community Help (Version: 3.2.1)
Adobe Community Help (Version: 3.2.1.650)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Flash Player 11 Plugin (Version: 11.5.502.149)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Premiere Elements 9 (Version: 9.0)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Alps Pointing-device for VAIO
Amazon Unbox Video (Version: 2.1.0.126)
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Media Foundation Decoders (Version: 1.0.61222.0201)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Application Manager for VAIO
ArcSoft WebCam Companion 4 (Version: 4.0.444)
ATI Catalyst Install Manager (Version: 3.0.829.0)
Audible Download Manager (Version: 6.6.0.15)
AuthenTec TrueSuite (Version: 4.0.100.26)
AuthenTec WinBio FingerPrint Software (Version: 3.1.0.80)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2011.1222.155.3300)
Catalyst Control Center Graphics Previews Common (Version: 2011.1222.155.3300)
Catalyst Control Center InstallProxy (Version: 2011.1222.155.3300)
Catalyst Control Center Localization All (Version: 2011.1222.155.3300)
Catalyst Control Center Profiles Mobile (Version: 2011.1222.155.3300)
ccc-utility64 (Version: 2011.1222.155.3300)
CCC Help Chinese Standard (Version: 2011.1222.0154.3300)
CCC Help Chinese Traditional (Version: 2011.1222.0154.3300)
CCC Help Czech (Version: 2011.1222.0154.3300)
CCC Help Danish (Version: 2011.1222.0154.3300)
CCC Help Dutch (Version: 2011.1222.0154.3300)
CCC Help English (Version: 2011.1222.0154.3300)
CCC Help Finnish (Version: 2011.1222.0154.3300)
CCC Help French (Version: 2011.1222.0154.3300)
CCC Help German (Version: 2011.1222.0154.3300)
CCC Help Greek (Version: 2011.1222.0154.3300)
CCC Help Hungarian (Version: 2011.1222.0154.3300)
CCC Help Italian (Version: 2011.1222.0154.3300)
CCC Help Japanese (Version: 2011.1222.0154.3300)
CCC Help Korean (Version: 2011.1222.0154.3300)
CCC Help Norwegian (Version: 2011.1222.0154.3300)
CCC Help Polish (Version: 2011.1222.0154.3300)
CCC Help Portuguese (Version: 2011.1222.0154.3300)
CCC Help Russian (Version: 2011.1222.0154.3300)
CCC Help Spanish (Version: 2011.1222.0154.3300)
CCC Help Swedish (Version: 2011.1222.0154.3300)
CCC Help Thai (Version: 2011.1222.0154.3300)
CCC Help Turkish (Version: 2011.1222.0154.3300)
CCleaner (Version: 3.27)
Command & Conquer 3 (Version: 1.00.0000)
Command & Conquer™ 4 Tiberian Twilight (Version: 1.0.0.0)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
D3DX10 (Version: 15.4.2368.0902)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
Epocrates Essentials for Pocket PC
ESET Online Scanner v3
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Garmin BaseCamp (Version: 3.3.2)
Garmin City Navigator North America NT 2012.40 Update (Version: 15.40.0.0)
Garmin Lifetime Updater (Version: 2.1.11)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.5.5)
Intel PROSet Wireless
Intel® Display Audio Driver (Version: 6.14.00.3086)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (Version: 1.1.0.0157)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.3.0.0621)
Intel® PROSet/Wireless WiFi Software (Version: 14.01.1000)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
Intel® WiDi (Version: 2.1.41.0)
Intel® Wireless Display
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (64-bit) (Version: 6.0.260)
Java™ 6 Update 26 (Version: 6.0.260)
Junk Mail filter update (Version: 15.4.3502.0922)
Keyboard Shortcuts (Version: 1.0.7.07110)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Media Gallery (Version: 1.5.0.17250)
Media Go (Version: 1.7.254)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MotoCast (Version: 2.0.23)
Motorola Device Manager (Version: 2.2.28)
Motorola Device Software Update (Version: 1.0.40)
MOTOROLA MEDIA LINK (Version: 1.8.0021.0)
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Norton 360 (Version: 20.2.1.22)
Norton Management (Version: 3.2.0.19)
OOBE (Version: 11.3.1.6)
Origin (Version: 9.0.13.2142)
PC Cleaner AV
PC Cleaners
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayStation®Network Downloader (Version: 2.05.00710)
PlayStation®Store (Version: 4.1.8.11883)
PMB (Version: 5.6.01.03300)
PMB VAIO Edition Plug-in (Version: 1.5.10.05300)
PMB VAIO Edition Plug-in (Version: 1.6.00.06010)
PX Profile Update (Version: 1.00.1.)
Quick Web Access (Version: 1.4.6.10)
Realtek Ethernet Controller Driver (Version: 7.40.126.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6225)
Realtek PCIE Card Reader (Version: 6.1.7601.92)
Remote Keyboard (Version: 1.1.1.07060)
Remote Play with PlayStation 3 (Version: 1.1.0.15072)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.28.0)
Skype™ 6.0 (Version: 6.0.126)
SmartSound Quicktracks for Premiere Elements 9.0 (Version: 3.12.3090)
Sony Corporation (Version: 1.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
SUPERAntiSpyware (Version: 5.6.1014)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VAIO - Media Gallery (Version: 1.5.0.18100)
VAIO - PMB VAIO Edition Guide (Version: 1.6.00.06030)
VAIO - PMB VAIO Edition Plug-in (Version: 1.6.01.06110)
VAIO - Remote Keyboard (Version: 1.1.0.07060)
VAIO - Remote Play with PlayStation®3 (Version: 1.1.0.15072)
VAIO Care (Version: 8.1.0.10120)
VAIO Control Center (Version: 5.0.0.07070)
VAIO CPU Fan Diagnostic (Version: 1.0.0.14140)
VAIO Data Restore Tool (Version: 1.7.0.05270)
VAIO Easy Connect (Version: 1.1.2.01120)
VAIO Gate (Version: 2.4.2.02200)
VAIO Gate Default (Version: 2.5.0.07080)
VAIO Help and Support (Version: 15.00.0719)
VAIO Improvement (Version: 1.1.0.06030)
VAIO Manual (Version: 1.4.0.05310)
VAIO Messenger (Version: 2.0.493.0)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Smart Network (Version: 3.7.0.07150)
VAIO Transfer Support (Version: 1.4.0.14230)
VAIO Update (Version: 5.7.1.05100)
VAIO Update (Version: 6.1.1.10250)
VCCx64 (Version: 1.0.0)
VCCx86 (Version: 1.0.0)
VGClientX64 (Version: 1.0.0)
VGClientX86 (Version: 1.0.0)
VHD (Version: 1.0.0)
VIP Access (Version: 2.0.3.64)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VIx64 (Version: 1.0.0)
VIx86 (Version: 1.0.0)
VPMx64 (Version: 1.0.0)
VSNx64 (Version: 1.0.0)
VSNx86 (Version: 1.0.0)
VU5x64 (Version: 1.1.0)
VU5x86 (Version: 1.0.0)
VU5x86 (Version: 1.1.0)
VWSTx86 (Version: 1.0.0)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)

========================= Devices: ================================

Name: A2 Direct Disk Access Support Driver
Description: A2 Direct Disk Access Support Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: A2DDA
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 6059.82 MB
Available physical RAM: 3667.9 MB
Total Pagefile: 12117.84 MB
Available Pagefile: 9369.27 MB
Total Virtual: 4095.88 MB
Available Virtual: 3956.75 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:448.84 GB) (Free:268.67 GB) NTFS
2 Drive g: (CNC4) (CDROM) (Total:7.54 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\JONSLAPTOP

Administrator            Guest                    Jon's Laptop            


**** End of log ****

 

 

 

 

 

Doing the rest now.  Thank you!


Diane

#12 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 10 February 2013 - 12:02 AM

Farbar Service Scanner Version: 30-01-2013
Ran by Jon's Laptop (administrator) on 09-02-2013 at 21:35:19
Running from "C:\Users\Jon's Laptop\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to retrieve start type of iphlpsvc. The value does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to retrieve ImagePath of iphlpsvc. The value does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to retrieve ServiceDll of iphlpsvc. The value does not exist.


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

__________________________________________________________________________________________________________

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.2 (02.02.2013:2)
OS: Windows 7 Home Premium x64
Ran by Jon's Laptop on Sat 02/09/2013 at 21:39:40.71
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 


~~~ Services

 

~~~ Registry Values

Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

   Val Name      Type   Value Data
   ========      ====   ==========
    ntrlg    REG_SZ    "C:\Windows\System32\rundll32.exe" "C:\Users\Jon's Laptop\AppData\Roaming\ntrlg.dll",SetObject
    sprosi    REG_SZ    "C:\Windows\System32\rundll32.exe" "C:\Users\Jon's Laptop\AppData\Roaming\sprosi.dll",mmx_support

 


~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\pc1data"
Successfully deleted: [Folder] "C:\Program Files (x86)\pc cleaners"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc cleaners"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 02/09/2013 at 21:46:11.49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

_______________________________________________________________________________________________________________________

 

 

# AdwCleaner v2.111 - Logfile created 02/09/2013 at 21:38:37
# Updated 05/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Jon's Laptop - JONSLAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Jon's Laptop\Desktop\AdwCleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16457

[OK] Registry is clean.

*************************

AdwCleaner[R1].txt - [627 octets] - [09/02/2013 21:38:37]

########## EOF - C:\AdwCleaner[R1].txt - [686 octets] ##########

 

 

_________________________________________________________________________________________________________________________

 

 

Rkill 2.4.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 02/09/2013 09:50:02 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Jon's Laptop\Desktop\rkill\rkill-02-09-2013-09-50-20.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual

 * BFE [Missing Service]
 * MpsSvc [Missing Service]
 * WinDefend [Missing Service]
 * wscsvc [Missing Service]

 * iphlpsvc [Missing ImagePath]
 * SharedAccess [Missing ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1 www.007guard.com
  127.0.0.1 007guard.com
  127.0.0.1 008i.com
  127.0.0.1 www.008k.com
  127.0.0.1 008k.com
  127.0.0.1 www.00hq.com
  127.0.0.1 00hq.com
  127.0.0.1 010402.com
  127.0.0.1 www.032439.com
  127.0.0.1 032439.com
  127.0.0.1 www.0scan.com
  127.0.0.1 0scan.com
  127.0.0.1 www.1000gratisproben.com
  127.0.0.1 1000gratisproben.com
  127.0.0.1 1001namen.com
  127.0.0.1 www.1001namen.com
  127.0.0.1 100888290cs.com
  127.0.0.1 www.100888290cs.com
  127.0.0.1 www.100sexlinks.com
  127.0.0.1 100sexlinks.com

  20 out of 15328 HOSTS entries shown.
  Please review HOSTS file for further entries.

Program finished at: 02/09/2013 09:50:27 PM
Execution time: 0 hours(s), 0 minute(s), and 25 seconds(s)

 

 

__________________________________________________________________________________________________________________________

 

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" ""
+ "rdpclip" "" "" "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "AdobeAAMUpdater-1.0" "Adobe Updater Startup Utility" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "Apoint" "Alps Pointing-device Driver" "Alps Electric Co., Ltd." "c:\program files\apoint\apoint.exe"
+ "BTMTrayAgent" "Bluetooth Shell Extension" "Intel Corporation" "c:\program files (x86)\intel\bluetooth\btmshell.dll"
+ "ClientAppLogon" "TrueSuite Application Log On" "AuthenTec, Inc." "c:\program files\truesuite\truesuite.clientapplogonexe.exe"
+ "ClientAppLogon32" "TrueSuite Application Log On" "AuthenTec, Inc." "c:\program files\truesuite\x86\truesuite.clientapplogonexe.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelPAN" "Intel® PROSet/Wireless Framework" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\ifrmewrk.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "RtHDVBg" "HD Audio Background Process" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravbg64.exe"
+ "RtHDVCpl" "Realtek HD Audio Manager" "Realtek Semiconductor" "c:\program files\realtek\audio\hda\ravcpl64.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "ISBMgr.exe" "" "Sony Corporation" "c:\program files (x86)\sony\isb utility\isbmgr.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "PMBVolumeWatcher" "Media Check Tool" "Sony Corporation" "c:\program files (x86)\sony\pmb\pmbvolumewatcher.exe"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup" "" "" ""
+ "Sony MSS.lnk" "McAfee Security Scanner Scheduler" "McAfee, Inc." "c:\program files (x86)\sony\mss\3.0.271\ssscheduler.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ntrlg" "" "" "File not found: C:\Users\Jon's Laptop\AppData\Roaming\ntrlg.dll"
+ "sprosi" "" "" "File not found: C:\Users\Jon's Laptop\AppData\Roaming\sprosi.dll"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu64.dll"
+ "BTMSentToExt" "Bluetooth Shell Extension" "Intel Corporation" "c:\program files (x86)\intel\bluetooth\btmshell.dll"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\navshext.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu.dll"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" ""
+ "BuPropertySheet" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "AddtoVAIOGate" "VAIOGateShellExt" "Sony Corporation" "c:\program files\sony\vaio gate\vaiogateshellext.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "SASContextMenu Class" "SUPERAntiSpyware Context Menu Extension" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sasctxmn64.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "AudibleShlExt Class" "AudibleExt Module" "Audible, Inc." "c:\program files (x86)\audible\bin\audibleext.dll"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AddtoVAIOGate" "VAIOGateShellExt" "Sony Corporation" "c:\program files\sony\vaio gate\vaiogateshellext.dll"
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu64.dll"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\navshext.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Adobe.Acrobat.ContextMenu" "Adobe Acrobat Context Menu" "Adobe Systems Inc." "c:\program files (x86)\adobe\acrobat 9.0\acrobat elements\contextmenu.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "OverlayExcluded" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
+ "OverlayPending" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
+ "OverlayProtected" "Backup Shell" "Symantec Corporation" "c:\program files (x86)\norton 360\engine64\20.2.1.22\bushell.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Symantec VIP Access Add-On" "Symantec VIP Access Add-On" "Symantec Corporation" "c:\program files (x86)\symantec\vip access client\64bit\vipaddonforie64.dll"
+ "TrueSuite Website Log On" "TrueSuite Website Log On" "AuthenTec Inc." "c:\program files\truesuite\truesuite.iebho.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Conversion Toolbar Helper" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files (x86)\java\jre6\bin\jp2ssv.dll"
+ "Norton Identity Protection" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\coieplg.dll"
+ "Norton Vulnerability Protection" "IPS Browser Helper DLL" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\ips\ipsbho.dll"
+ "PC Antivirus Web Protection BHO" "PC Antivirus Web Protection BHO" "© PC Cleaners Inc.  All rights reserved." "c:\program files (x86)\pc antivirus\pf.dll"
+ "SmartSelect Class" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
+ "Symantec VIP Access Add-On" "Symantec VIP Access Add-On" "Symantec Corporation" "c:\program files (x86)\symantec\vip access client\vipaddonforie.dll"
+ "TrueSuite Website Log On" "TrueSuite Website Log On" "AuthenTec Inc." "c:\program files\truesuite\x86\truesuite.iebho.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Adobe PDF" "Adobe PDF Toolbar for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiefavclient.dll"
+ "Norton Toolbar" "coIEPlugIn" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\coieplg.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Spybot - Search & Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files (x86)\spybot - search & destroy\sdhelper.dll"
"Task Scheduler" "" "" ""
+ "\Adobe Flash Player Updater" "Adobe® Flash® Player Update Service 11.5 r502" "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\DDNi Startup" "DDNiStartup" "Digital Delivery Networks, Inc." "c:\program files (x86)\ddni\oasis\ddnistartup.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\MotoCast Update" "MotoCastUpdate" "" "c:\program files (x86)\motorola mobility\motocast\liveupdate\motocastupdate.exe"
+ "\Motorola Device Manager Engine" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Motorola Device Manager Initial Update" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Motorola Device Manager Update" "Motorola Device Management Update" "" "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Norton 360\Norton Error Analyzer" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\symerr.exe"
+ "\Norton 360\Norton Error Processor" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\symerr.exe"
+ "\Norton Management\Norton Error Analyzer" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton management\engine\3.2.0.19\symerr.exe"
+ "\Norton Management\Norton Error Processor" "Symantec Error Reporting" "Symantec Corporation" "c:\program files (x86)\norton management\engine\3.2.0.19\symerr.exe"
+ "\Norton WSC Integration" "WSCStub" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\wscstub.exe"
+ "\pc-dis-upd" "" "" "File not found: C:\Program Files (x86)\PC Cleaners\PCCleaners.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\Sony Corporation\VAIO Care\CRMReminder" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Care\VAIO Care" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Care\VAU" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Care\VCCheckIolo" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Care\VCMetrics" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Care\VCOneClick" "VCSystemTray" "Sony Corporation" "c:\program files\sony\vaio care\vcsystemtray.exe"
+ "\Sony Corporation\VAIO Control Center\Level4Daily" "VAIO Control Center(WBCBatteryCare Module)" "Sony Corporation" "c:\program files (x86)\sony\vaio control center\wbcbatterycare.exe"
+ "\Sony Corporation\VAIO Control Center\Level4Month" "VAIO Control Center(WBCBatteryCare Module)" "Sony Corporation" "c:\program files (x86)\sony\vaio control center\wbcbatterycare.exe"
+ "\Sony Corporation\VAIO Gate\StartExecuteProxy" "VAIO Gate" "Sony Corporation" "c:\program files\sony\vaio gate\executionproxy.exe"
+ "\Sony Corporation\VAIO Gate\VAIO Gate" "VAIO Gate" "Sony Corporation" "c:\program files\sony\vaio gate\vaio gate.exe"
+ "\Sony Corporation\VAIO Gate\VAIO Gate Restart" "VAIO Gate" "Sony Corporation" "c:\program files\sony\vaio gate\vaio gate.exe"
+ "\Sony Corporation\VAIO Improvement\VAIOImprovementUploader" "viuploader" "Sony Corporation" "c:\program files\sony\vaio improvement\viuploader.exe"
+ "\Sony Corporation\VAIO Power Management\VPM Logon Start" "SPM Module" "Sony Corporation" "c:\program files\sony\vaio power management\spmgr.exe"
+ "\Sony Corporation\VAIO Power Management\VPM Session Change" "SPM Module" "Sony Corporation" "c:\program files\sony\vaio power management\spmgr.exe"
+ "\Sony Corporation\VAIO Power Management\VPM Unlock" "SPM Module" "Sony Corporation" "c:\program files\sony\vaio power management\spmgr.exe"
+ "\Sony Corporation\VAIO Smart Network\VSN Logon Start" "VAIO Smart Network" "Sony Corporation" "c:\program files\sony\vaio smart network\vsnclient.exe"
+ "\Sony Corporation\VAIO Update\VAIO Update" "VAIOUpdt" "Sony Corporation" "c:\program files\sony\vaio update\vaioupdt.exe"
+ "\Sony Corporation\VAIO Update\VAIO Update Self Repair" "VUSR" "Sony Corporation" "c:\program files\sony\vaio update\vusr.exe"
+ "\Sony Corporation\VAIO Update\VUSU Trigger Task" "VUSUTrigger" "Sony Corporation" "c:\program files\sony\vaio update\vusutrigger.exe"
+ "\Sony\Keyboard Shortcuts" "Keyboard Shortcuts" "" "c:\program files (x86)\sony\keyboard shortcuts\keyboardshortcuts.exe"
+ "\VAIO® Messenger (Administrator)" "VAIO Messenger" "Digital Delivery Networks, Inc." "c:\program files (x86)\ddni\oasis\vaio messenger.exe"
+ "\VAIO® Messenger (Jon's Laptop)" "VAIO Messenger" "Digital Delivery Networks, Inc." "c:\program files (x86)\ddni\oasis\vaio messenger.exe"
+ "\{CC1C2C43-729F-47A6-B74B-5CC4D56C6873}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "!SASCORE" "SUPERAntiSpyware Core Service" "SUPERAntiSpyware.com" "c:\program files\superantispyware\sascore64.exe"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe"
+ "AdobeActiveFileMonitor9.0" "Tracks files that are managed by Elements Organizer" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\elements 9 organizer\photoshopelementsfileagent.exe"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "ADVService" "Manages downloads for the Amazon Unbox Video application." "Amazon.com" "c:\program files (x86)\amazon\amazon unbox video\advwindowsclientservice.exe"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe"
+ "AMPPALR3" "Intel® Centrino® Bluetooth 3.0 + High Speed Virtual Adapter" "Intel Corporation" "c:\program files\intel\bluetoothhs\bthsamppalservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "Bluetooth Device Monitor" "A process to monitor Bluetooth radio state and configure Bluetooth remote folders." "Intel Corporation" "c:\program files (x86)\intel\bluetooth\devmonsrv.exe"
+ "Bluetooth Media Service" "Provides Bluetooth Media Profiles support" "Intel Corporation" "c:\program files (x86)\intel\bluetooth\mediasrv.exe"
+ "Bluetooth OBEX Service" "Provides Bluetooth File Transfer Protocol support." "Intel Corporation" "c:\program files (x86)\intel\bluetooth\obexsrv.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "BTHSSecurityMgr" "Manages the 802.1x security between two Bluetooth® High Speed connections." "Intel® Corporation" "c:\program files\intel\bluetoothhs\bthssecuritymgr.exe"
+ "cvhsvc" "Client Virtualization Handler Service (unlocalized description)" "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "DeviceMonitorService" "This service supports to  NGP for getting device information" "Nero AG" "c:\program files (x86)\motorola media link\lite\nserviceentry.exe"
+ "EvtEng" "Manages the event trace messages for all the Intel® PROSet/Wireless Software components." "Intel® Corporation" "c:\program files\intel\wifi\bin\evteng.exe"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Macrovision Europe Ltd." "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "FPLService" "Provides convenient and secure fingerprint authentication and identity management." "AuthenTec, Inc" "c:\program files\truesuite\truesuite.service.exe"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe"
+ "IconMan_R" "Realtek Card Reader Icon Tool." "Realsil Microelectronics Inc." "c:\program files (x86)\realtek\realtek pcie card reader\riconman.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "jhi_service" "Intel® Identity Protection Technology Host Interface Service - Allows applications to access the local Intel Identity Protection Technology" "Intel Corporation" "c:\program files (x86)\intel\services\ipt\jhi_service.exe"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe"
+ "MCLIENT" "Norton Management" "Symantec Corporation" "c:\program files (x86)\norton management\engine\3.2.0.19\ccsvchst.exe"
+ "Motorola Device Manager" "MotoHelper Service" "" "c:\program files (x86)\motorola mobility\motorola device manager\motohelperservice.exe"
+ "MyWiFiDHCPDNS" "Wireless PAN DHCP and DNS Server" "" "c:\program files\intel\wifi\bin\pandhcpdns.exe"
+ "N360" "Norton 360" "Symantec Corporation" "c:\program files (x86)\norton 360\engine\20.2.1.22\ccsvchst.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc" "Office Software Protection Platform Service (unlocalized description)" "Microsoft Corporation" "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "PMBDeviceInfoProvider" "Enables PMB to communicate with the device." "Sony Corporation" "c:\program files (x86)\sony\pmb\pmbdeviceinfoprovider.exe"
+ "PST Service" "Route and execute the requests/commands from PST" "Motorola" "c:\program files (x86)\motorola\motforwarddaemon\forwarddaemon.exe"
+ "RegSrvc" "Provides registry access to all Intel® PROSet/Wireless Software components" "Intel® Corporation" "c:\program files\common files\intel\wirelesscommon\regsrvc.exe"
+ "SampleCollector" "Checks the systems performance for VAIO Care." "" "c:\program files\sony\vaio care\vcperfservice.exe"
+ "SBSDWSCService" "Spybot-S&D Security Center integration" "Safer Networking Ltd." "c:\program files (x86)\spybot - search & destroy\sdwinsec.exe"
+ "sftlist" "Streams and manages applications." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftlist.exe"
+ "sftvsa" "Monitors global service events and launches virtual services." "Microsoft Corporation" "c:\program files (x86)\microsoft application virtualization client\sftvsa.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "SOHCImp" "VAIO Content Importer" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohcimp.exe"
+ "SOHDs" "VAIO Device Searcher" "Sony Corporation" "c:\program files (x86)\common files\sony shared\sohlib\sohds.exe"
+ "SpfService" "VAIO Entertainment Common Service" "Sony Corporation" "c:\program files\common files\sony shared\vaio entertainment platform\spf\spfservice64.exe"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe"
+ "VAIO Event Service" "Provides the hardware event managing service for VAIO. During termination of this service, some fuctions such as Special button ,Hotkey ,and VAIO original powermanagement are limited." "Sony Corporation" "c:\program files (x86)\sony\vaio control center\vesmgr.exe"
+ "VAIO Power Management" "Provides power management service for VAIO. If this service is stopped or disabled,  power management functions for VAIO will not be available." "Sony Corporation" "c:\program files\sony\vaio power management\spmservice.exe"
+ "VCFw" "VAIO Content Folder Watcher" "Sony Corporation" "c:\program files (x86)\common files\sony shared\vaio content folder watcher\vcfw.exe"
+ "VcmIAlzMgr" "Provides the content analysis function used with VAIO original software." "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzmgr.exe"
+ "VcmINSMgr" "Provides the information retrieval service function used with VAIO original software." "Sony Corporation" "c:\program files\sony\vcm intelligent network service manager\vcminsmgr.exe"
+ "VcmXmlIfHelper" "VcmXml Helper Interface" "Sony Corporation" "c:\program files\common files\sony shared\vcmxml\vcmxmlifhelper64.exe"
+ "VCService" "Provides important VAIO Care functionality.  If this service is stopped or disabled, VAIO Care may not function correctly." "Sony Corporation" "c:\program files\sony\vaio care\vcservice.exe"
+ "VIPAppService" "VIP Service" "Symantec Corporation" "c:\program files (x86)\symantec\vip access client\vipappservice.exe"
+ "VSNService" "VAIO Smart Network Service" "Sony Corporation" "c:\program files\sony\vaio smart network\vsnservice.exe"
+ "VUAgent" "Agent for VAIO Update." "Sony Corporation" "c:\program files\sony\vaio update\vuagent.exe"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "A2DDA" "" "" "File not found: C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AMPPAL" "Intel® Centrino® Bluetooth 3.0 + High Speed Virtual Adapter" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\amppal.sys"
+ "AMPPALP" "Intel® Centrino® Bluetooth 3.0 + High Speed Protocol" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\amppal.sys"
+ "ApfiltrService" "Alps Touch Pad Driver" "Alps Electric Co., Ltd." "c:\windows\system32\drivers\apfiltr.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "ArcSoftKsUFilter" "For X64" "ArcSoft, Inc." "c:\windows\system32\drivers\arcsoftksufilter.sys"
+ "aswMBR" "" "" "File not found: C:\Users\JON'SL~1\AppData\Local\Temp\aswMBR.sys"
+ "athr" "Atheros Extensible Wireless LAN device driver" "Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "ATSwpWDF" " AuthenTec Fingerprint Sensor WBF Driver" "AuthenTec, Inc." "c:\windows\system32\drivers\atswpwdf.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BHDrvx64" "SONAR Engine Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.2.1.22\definitions\bashdefs\20130116.013\bhdrvx64.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "btmaux" "Bluetooth Auxiliary Driver" "Intel Corporation" "c:\windows\system32\drivers\btmaux.sys"
+ "btmhsf" "Bluetooth HighSpeed Filter Driver" "Intel Corporation" "c:\windows\system32\drivers\btmhsf.sys"
+ "ccSet_MCLIENT" "Common Client Settings Driver" "Symantec Corporation" "c:\windows\system32\drivers\mclientx64\0302000.013\ccsetx64.sys"
+ "ccSet_N360" "Common Client Settings Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\ccsetx64.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "e1yexpress" "Intel® Gigabit Network Connection NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1y60x64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files (x86)\common files\symantec shared\eengine\eectrl64.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "EraserUtilRebootDrv" "Symantec Eraser Utility Driver" "Symantec Corporation" "c:\program files (x86)\common files\symantec shared\eengine\eraserutilrebootdrv.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iBtFltCoex" "Intel® Centrino® Wireless (Bluetooth Adapter) Driver" "Intel Corporation" "c:\windows\system32\drivers\ibtfltcoex.sys"
+ "IDSVia64" "Symantec Intrusion Prevention Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.2.1.22\definitions\ipsdefs\20130208.001\idsvia64.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "intaud_WaveExtensible" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\intelaud.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "IntcDAud" "Intel® Display Audio Driver" "Intel® Corporation" "c:\windows\system32\drivers\intcdaud.sys"
+ "intelkmd" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdpmd64.sys"
+ "iwdbus" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\iwdbus.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "MEIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys"
+ "NAVENG" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.2.1.22\definitions\virusdefs\20130209.009\eng64.sys"
+ "NAVEX15" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.2.1.22\definitions\virusdefs\20130209.009\ex64.sys"
+ "NETwNs64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwns64.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub" "USB 3.0 Hub Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc" "USB 3.0 Host Controller Driver" "Renesas Electronics Corporation" "c:\windows\system32\drivers\nusb3xhc.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 185.93 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "PxHlpa64" "Px Engine Device Driver for 64-bit Windows" "Sonic Solutions" "c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RSPCIESTOR" "Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtspstor.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys"
+ "SASDIFSV" "SASDIFSV64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\sasdifsv64.sys"
+ "SASKUTIL" "SASKUTIL64.SYS" "SUPERAdBlocker.com and SUPERAntiSpyware.com" "c:\program files\superantispyware\saskutil64.sys"
+ "sbapifs" "Active Protection Filter Driver" "Sunbelt Software" "c:\windows\system32\drivers\sbapifs.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SFEP" "Sony Firmware Extension Parser driver" "Sony Corporation" "c:\windows\system32\drivers\sfep.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SMR210" "SMR" "Symantec Corporation" "c:\windows\system32\drivers\smr210.sys"
+ "SRTSP" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\srtsp64.sys"
+ "SRTSPX" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\srtspx64.sys"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "SymDS" "Symantec Data Store" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\symds64.sys"
+ "SymEFA" "Symantec Extended File Attributes" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\symefa64.sys"
+ "SymEvent" "Symantec Event Library" "Symantec Corporation" "c:\windows\system32\drivers\symevent64x86.sys"
+ "SymIRON" "Iron Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\ironx64.sys"
+ "SymNetS" "Network Security Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360x64\1402010.016\symnets.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam64.sys"
+ "wdkmd" "Intel® WiDi Solution" "Intel Corporation" "c:\windows\system32\drivers\wdkmd.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept MPEG Push Demultiplexer" "MPEG Push Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demuxpush_mp2_ds.ax"
+ "MainConcept VC-1 Decoder" "VC-1 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_vc1_ds.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "Amazon Format Change Fixer" "Amazon Unbox Video Format Change Fix Filter" "Amazon.com" "c:\program files (x86)\amazon\amazon unbox video\formatchangefix.ax"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "Audible Words Codec" "Audible Audio Files DirectShow Source Filter" "Audible, Inc." "c:\windows\syswow64\awrdscdc.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DS Video Buffer Filter" "WiDiAgent.dll COM object." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\dsbuffer_video.ax"
+ "Intel® Mux Renderer" "Intel® TS Mux / Network Renderer" "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\intelmux.dll"
+ "Intel®WiDi H264 encoder" "" "" "c:\program files (x86)\common files\intel corporation\widiagent\h264_enc_filter.dll"
+ "MainConcept (Broadcast) AVC/H.264 Video Decoder" "AVC/H.264 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_bc_dec_avc_ds.ax"
+ "MainConcept AAC Decoder" "AAC audio decoder filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_aac_ds.ax"
+ "MainConcept AAC Encoder" "AAC audio encoder filter" "MainConcept GmbH" "c:\program files (x86)\common files\intel corporation\mainconcept filters\mc_enc_aac_ds.ax"
+ "MainConcept AVC/H.264 Video Decoder" "AVC/H.264 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_avc_ds.ax"
+ "MainConcept Dolby Digital Audio Decoder" "Dolby Digital Audio Decoder" "MainConcept GmbH" "c:\program files (x86)\adobe\adobe premiere elements 9\mc_dec_dd_ds.ax"
+ "MainConcept DV Dif Parser" "DV Dif Parser DS Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_parser_dv_ds.ax"
+ "MainConcept DV Video Decoder" "DirectShow DVCPro Video Decoder" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv_ds.ax"
+ "MainConcept DV-Demultiplexer" "DV-Splitter DS Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_dv_ds.ax"
+ "MainConcept DVCPro 50 Video Decoder" "DirectShow DVCPro50 Video Decoder" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv50_ds.ax"
+ "MainConcept DVCPro HD Video Decoder" "DirectShow DVCProHD Video Decoder" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_dv100_ds.ax"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept MPEG Push Demultiplexer" "MPEG Push Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demuxpush_mp2_ds.ax"
+ "MainConcept Stream Parser" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_demux_mp2_ds.ax"
+ "MainConcept VC-1 Decoder" "VC-1 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\adobe\elements 9 organizer\caheadless\mc_dec_vc1_ds.ax"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "SmartSound SDS Reader" "SDS Media File Reader Filter" "SmartSound Software Inc." "c:\program files (x86)\smartsound software\quicktracks\sdsreader.dll"
+ "SmartSound Soundtrack" "Quicktracks Soundtrack source filter" "SmartSound Software Inc." "c:\program files (x86)\smartsound software\quicktracks\directqx.dll"
+ "Track1Filter" "Adobe Photoshop Elements 9.0 (component)" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\elements 9 organizer\track1filter.dll"
+ "Track2Filter" "Adobe Photoshop Elements 9.0 (component)" "Adobe Systems Incorporated" "c:\program files (x86)\adobe\elements 9 organizer\track2filter.dll"
+ "VAIO Content Metadata Univ Filter" "DirectShow Filter for VCM Intelligent Analyzing Manager" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmsmplcapflt.ax"
+ "VcmIAlzGPDFilter" "VCM Intelligent Analyzing Manager GPD Library" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzgpdfilter.ax"
+ "VcmIAlzGPDFilter2" "VCM Intelligent Analyzing Manager GPD Library" "Sony Corporation" "c:\program files\sony\vcm intelligent analyzing manager\vcmialzgpdfilter2.ax"
+ "WD Audio Filter" "WiDi Audio Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdaudiofilter.dll"
+ "WD Secure Source Filter" "Intel® WiDi Secure Video Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdsecuresourcefilter.dll"
+ "WDSource Filter" "WiDi Video Source Filter." "Intel Corporation" "c:\program files (x86)\common files\intel corporation\widiagent\wdsourcefilter.dll"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "ATWBFCredProv" "AuthenTec WinBio Credential Provider" "AuthenTec, Inc." "c:\windows\system32\atwbfcredprov.dll"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" ""
+ "ATWBFCredProv" "AuthenTec WinBio Credential Provider" "AuthenTec, Inc." "c:\windows\system32\atwbfcredprov.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "Adobe PDF Port Monitor" "Adobe PDF Port  Monitor DLL" "Adobe Systems Inc" "c:\windows\system32\adobepdf.dll"
 

 

THANK YOU!!!!


Diane

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 10 February 2013 - 06:47 AM

Launch Autoruns and uncheck these entries

 

"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "ntrlg" "" "" "File not found: C:\Users\Jon's Laptop\AppData\Roaming\ntrlg.dll"
+ "sprosi" "" "" "File not found: C:\Users\Jon's Laptop\AppData\Roaming\sprosi.dll"
 

 

Run the services repair tool

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

Run Farbar service scanner again and post the new log



#14 DG2007

DG2007
  • Topic Starter

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 10 February 2013 - 10:24 AM

FSS Log:

 

Farbar Service Scanner Version: 30-01-2013
Ran by Jon's Laptop (administrator) on 10-02-2013 at 08:22:03
Running from "C:\Users\Jon's Laptop\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

 

 

Thank you!!!


Diane

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:21 AM

Posted 10 February 2013 - 01:37 PM


That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users