Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Used tdsskiller and now unable to connect to internet


  • This topic is locked This topic is locked
30 replies to this topic

#1 Pac1012

Pac1012

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 24 July 2013 - 11:06 PM

Hello and thanks for your help.

 

I ran tdsskiller after reading up on some issues I was having.  It found 6 threats which I removed.  Upon rebooting I was unable to establish a connection to the router.   It says "aquiring address" but never connects.

 

Here is the result of the dds scan:

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 1.6.0_22
Run by Pete at 23:46:24 on 2013-07-24
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.510.244 [GMT -4:00]
.
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Medialink\MWN-USB150N\UI.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ntvdm.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uInternet Connection Wizard,ShellNext = "c:\program files\outlook express\msimn.exe"
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [TomTomHOME.exe] "c:\program files\tomtom home 2\TomTomHOMERunner.exe"
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [Medialink Utilty] c:\program files\medialink\mwn-usb150n\UI.exe -s
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1374629669796
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\progra~1\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\progra~1\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\pete\applic~1\mozilla\firefox\profiles\b6cislyd.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/
FF - plugin: c:\documents and settings\pete\local settings\application data\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\logitech\harmony remote driver\NprtHarmonyPlugin.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_224.dll
FF - ExtSQL: 2013-05-26 11:15; wrc@avast.com; c:\program files\avast software\avast\webrep\FF
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-5-26 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-5-26 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-5-26 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-5-26 369584]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2013-5-23 119056]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-5-26 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-5-26 66336]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-5-26 46808]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-7-23 418376]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2013-3-22 93072]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-7-24 40776]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2011-6-6 709248]
.
=============== File Associations ===============
.
ShellExec: Foxit Reader.exe: print="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/p "%1"
ShellExec: Foxit Reader.exe: printto="c:\program files\foxit software\foxit reader\Foxit Reader.exe"/t "%1" "%2" "%3" "%4"
.
=============== Created Last 30 ================
.
2013-07-25 03:44:43    --------    d--h--w-    c:\windows\PIF
2013-07-25 03:05:13    98816    ----a-w-    c:\windows\sed.exe
2013-07-25 03:05:13    256000    ----a-w-    c:\windows\PEV.exe
2013-07-25 03:05:13    208896    ----a-w-    c:\windows\MBR.exe
2013-07-25 03:05:05    --------    d-s---w-    C:\ComboFix
2013-07-24 22:43:22    40776    ----a-w-    c:\windows\system32\drivers\mbamswissarmy.sys
2013-07-24 21:10:21    --------    d-----w-    c:\windows\system32\MRT
2013-07-24 21:10:06    --------    d-----w-    C:\2d543883301db84705a24a82bef2
2013-07-24 21:01:35    --------    d-----w-    C:\TDSSKiller_Quarantine
2013-07-24 02:58:05    --------    d-----w-    c:\docume~1\alluse~1\application data\Malwarebytes' Anti-Malware (portable)
2013-07-24 02:51:26    22856    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-07-24 02:51:25    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2013-07-24 02:19:06    --------    d-----w-    c:\docume~1\pete\local settings\application data\PCHealth
2013-07-24 01:15:58    --------    d-----w-    c:\windows\system32\wbem\repository\FS
2013-07-24 01:15:58    --------    d-----w-    c:\windows\system32\wbem\Repository
2013-07-23 22:06:37    --------    d-----w-    c:\docume~1\pete\applic~1\SUPERAntiSpyware.com
2013-07-23 22:05:26    --------    d-----w-    c:\program files\SUPERAntiSpyware
2013-07-23 22:05:26    --------    d-----w-    c:\docume~1\alluse~1\application data\SUPERAntiSpyware.com
.
==================== Find3M  ====================
.
2013-06-27 20:44:12    770344    ----a-w-    c:\windows\system32\drivers\aswSnx.sys
2013-06-27 20:44:12    175176    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2013-06-12 08:19:29    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-12 08:19:29    692104    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-06-12 08:19:22    9089416    ----a-w-    c:\windows\system32\FlashPlayerInstaller.exe
2013-06-08 03:55:44    385024    ----a-w-    c:\windows\system32\html.iec
2013-06-07 21:56:06    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-06-07 21:56:06    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-06-07 21:56:05    1469440    ------w-    c:\windows\system32\inetcpl.cpl
2013-06-04 07:23:02    562688    ----a-w-    c:\windows\system32\qedit.dll
2013-06-04 01:40:45    1876736    ----a-w-    c:\windows\system32\win32k.sys
2013-05-09 08:59:10    49376    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59:09    66336    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:58:37    41664    ----a-w-    c:\windows\avastSS.scr
2013-05-07 22:30:06    920064    ----a-w-    c:\windows\system32\wininet(3).dll
2013-05-07 22:30:06    1215488    ----a-w-    c:\windows\system32\urlmon(3).dll
2013-05-07 22:30:05    105984    ----a-w-    c:\windows\system32\url(3).dll
2013-05-03 01:30:20    2149888    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38:17    2028544    ----a-w-    c:\windows\system32\ntkrnlpa.exe
.
============= FINISH: 23:47:23.00 ===============

 

 

 

 

I also ran the farber service scanner and attached.  Not sure if you'll find that useful. 

Thanks again for your help! 

Attached Files



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 25 July 2013 - 06:34 AM

Hi there,
my name is Marius and I will be assisting you with your Malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

 

Please post up the tdss-killer log files. You´ll find it at your system drive´s root directory


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 25 July 2013 - 10:28 AM

Hey Marius,

 

You got it.  I won't do anything unless you tell me to do it.  I actually ran TDS a couple times.  Here are the 2 separate logs in order:

 

 

16:59:06.0062 1536  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:59:08.0046 1536  ============================================================
16:59:08.0046 1536  Current date / time: 2013/07/24 16:59:08.0046
16:59:08.0046 1536  SystemInfo:
16:59:08.0046 1536  
16:59:08.0046 1536  OS Version: 5.1.2600 ServicePack: 3.0
16:59:08.0046 1536  Product type: Workstation
16:59:08.0046 1536  ComputerName: DELL-4E48EA0227
16:59:08.0046 1536  UserName: Pete
16:59:08.0046 1536  Windows directory: C:\WINDOWS
16:59:08.0046 1536  System windows directory: C:\WINDOWS
16:59:08.0046 1536  Processor architecture: Intel x86
16:59:08.0046 1536  Number of processors: 2
16:59:08.0046 1536  Page size: 0x1000
16:59:08.0046 1536  Boot type: Normal boot
16:59:08.0046 1536  ============================================================
16:59:13.0843 1536  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:59:14.0062 1536  ============================================================
16:59:14.0062 1536  \Device\Harddisk0\DR0:
16:59:14.0093 1536  MBR partitions:
16:59:14.0093 1536  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x94FE97E
16:59:14.0093 1536  ============================================================
16:59:14.0984 1536  C: <-> \Device\Harddisk0\DR0\Partition1
16:59:15.0015 1536  ============================================================
16:59:15.0015 1536  Initialize success
16:59:15.0015 1536  ============================================================
16:59:24.0218 3840  ============================================================
16:59:24.0218 3840  Scan started
16:59:24.0218 3840  Mode: Manual;
16:59:24.0218 3840  ============================================================
16:59:25.0468 3840  ================ Scan system memory ========================
16:59:25.0468 3840  System memory - ok
16:59:25.0468 3840  ================ Scan services =============================
16:59:25.0609 3840  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
16:59:25.0609 3840  !SASCORE - ok
16:59:25.0718 3840  Abiosdsk - ok
16:59:25.0718 3840  abp480n5 - ok
16:59:25.0781 3840  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:59:25.0781 3840  ACPI - ok
16:59:25.0828 3840  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
16:59:25.0828 3840  ACPIEC - ok
16:59:25.0921 3840  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:59:25.0921 3840  AdobeFlashPlayerUpdateSvc - ok
16:59:25.0937 3840  adpu160m - ok
16:59:25.0953 3840  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
16:59:25.0953 3840  aec - ok
16:59:26.0015 3840  [ 15E655BAA989444F56787EF558823643 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
16:59:26.0046 3840  AegisP - ok
16:59:26.0078 3840  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
16:59:26.0078 3840  AFD - ok
16:59:26.0093 3840  Aha154x - ok
16:59:26.0093 3840  aic78u2 - ok
16:59:26.0093 3840  aic78xx - ok
16:59:26.0140 3840  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
16:59:26.0156 3840  Alerter - ok
16:59:26.0171 3840  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
16:59:26.0187 3840  ALG - ok
16:59:26.0187 3840  AliIde - ok
16:59:26.0187 3840  amsint - ok
16:59:26.0250 3840  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
16:59:26.0250 3840  AppMgmt - ok
16:59:26.0250 3840  asc - ok
16:59:26.0265 3840  asc3350p - ok
16:59:26.0265 3840  asc3550 - ok
16:59:26.0390 3840  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:59:26.0406 3840  aspnet_state - ok
16:59:26.0437 3840  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\WINDOWS\system32\drivers\aswFsBlk.sys
16:59:26.0437 3840  aswFsBlk - ok
16:59:26.0484 3840  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
16:59:26.0484 3840  aswMonFlt - ok
16:59:26.0531 3840  [ 7B43265F92257A21CBFD88E7A651044C ] AswRdr          C:\WINDOWS\system32\drivers\AswRdr.sys
16:59:26.0531 3840  AswRdr - ok
16:59:26.0546 3840  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
16:59:26.0546 3840  aswRvrt - ok
16:59:26.0625 3840  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
16:59:26.0640 3840  aswSnx - ok
16:59:26.0687 3840  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
16:59:26.0703 3840  aswSP - ok
16:59:26.0703 3840  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
16:59:26.0718 3840  aswTdi - ok
16:59:26.0734 3840  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
16:59:26.0781 3840  aswVmm - ok
16:59:26.0828 3840  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:59:26.0828 3840  AsyncMac - ok
16:59:26.0843 3840  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
16:59:26.0859 3840  atapi - ok
16:59:26.0859 3840  Atdisk - ok
16:59:26.0921 3840  [ ABC57A6F6070BAF9786C318F59F29F0B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
16:59:26.0937 3840  Ati HotKey Poller - ok
16:59:27.0015 3840  [ 03621F7F968FF63713943405DEB777F9 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
16:59:27.0093 3840  ati2mtag - ok
16:59:27.0109 3840  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:59:27.0125 3840  Atmarpc - ok
16:59:27.0171 3840  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
16:59:27.0171 3840  AudioSrv - ok
16:59:27.0203 3840  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
16:59:27.0218 3840  audstub - ok
16:59:27.0296 3840  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:59:27.0296 3840  avast! Antivirus - ok
16:59:27.0328 3840  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:59:27.0328 3840  Beep - ok
16:59:27.0359 3840  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
16:59:27.0390 3840  BITS - ok
16:59:27.0437 3840  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
16:59:27.0437 3840  Browser - ok
16:59:27.0453 3840  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
16:59:27.0453 3840  cbidf2k - ok
16:59:27.0515 3840  [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe
16:59:27.0546 3840  CCALib8 - ok
16:59:27.0562 3840  cd20xrnt - ok
16:59:27.0562 3840  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
16:59:27.0562 3840  Cdaudio - ok
16:59:27.0609 3840  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
16:59:27.0609 3840  Cdfs - ok
16:59:27.0625 3840  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:59:27.0625 3840  Cdrom - ok
16:59:27.0640 3840  Changer - ok
16:59:27.0671 3840  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
16:59:27.0671 3840  CiSvc - ok
16:59:27.0687 3840  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
16:59:27.0687 3840  ClipSrv - ok
16:59:27.0718 3840  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:59:27.0843 3840  clr_optimization_v2.0.50727_32 - ok
16:59:27.0859 3840  CmdIde - ok
16:59:27.0859 3840  COMSysApp - ok
16:59:27.0875 3840  Cpqarray - ok
16:59:27.0921 3840  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
16:59:27.0921 3840  CryptSvc - ok
16:59:27.0921 3840  dac2w2k - ok
16:59:27.0937 3840  dac960nt - ok
16:59:28.0000 3840  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:59:28.0015 3840  DcomLaunch - ok
16:59:28.0062 3840  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
16:59:28.0062 3840  Dhcp - ok
16:59:28.0109 3840  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
16:59:28.0125 3840  Disk - ok
16:59:28.0125 3840  dmadmin - ok
16:59:28.0203 3840  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
16:59:28.0234 3840  dmboot - ok
16:59:28.0281 3840  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
16:59:28.0281 3840  dmio - ok
16:59:28.0312 3840  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
16:59:28.0312 3840  dmload - ok
16:59:28.0343 3840  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
16:59:28.0343 3840  dmserver - ok
16:59:28.0359 3840  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
16:59:28.0359 3840  DMusic - ok
16:59:28.0421 3840  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:59:28.0421 3840  Dnscache - ok
16:59:28.0500 3840  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:59:28.0500 3840  Dot3svc - ok
16:59:28.0500 3840  dpti2o - ok
16:59:28.0562 3840  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
16:59:28.0562 3840  drmkaud - ok
16:59:28.0609 3840  [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:59:28.0640 3840  E100B - ok
16:59:28.0671 3840  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
16:59:28.0671 3840  EapHost - ok
16:59:28.0781 3840  [ 27434C42A13C11F92CA45840B720D671 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
16:59:28.0781 3840  ehRecvr - ok
16:59:28.0796 3840  [ 16910F8B482919BB6035ED053B691692 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
16:59:28.0796 3840  ehSched - ok
16:59:28.0843 3840  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
16:59:28.0843 3840  ERSvc - ok
16:59:28.0906 3840  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
16:59:28.0906 3840  Eventlog - ok
16:59:28.0984 3840  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
16:59:28.0984 3840  EventSystem - ok
16:59:29.0031 3840  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
16:59:29.0046 3840  Fastfat - ok
16:59:29.0078 3840  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:59:29.0093 3840  FastUserSwitchingCompatibility - ok
16:59:29.0125 3840  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
16:59:29.0125 3840  Fdc - ok
16:59:29.0171 3840  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
16:59:29.0171 3840  Fips - ok
16:59:29.0171 3840  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:59:29.0171 3840  Flpydisk - ok
16:59:29.0234 3840  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
16:59:29.0234 3840  FltMgr - ok
16:59:29.0296 3840  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:59:29.0312 3840  FontCache3.0.0.0 - ok
16:59:29.0312 3840  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:59:29.0312 3840  Fs_Rec - ok
16:59:29.0328 3840  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:59:29.0328 3840  Ftdisk - ok
16:59:29.0359 3840  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:59:29.0375 3840  Gpc - ok
16:59:29.0390 3840  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:59:29.0421 3840  HDAudBus - ok
16:59:29.0515 3840  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:59:29.0515 3840  helpsvc - ok
16:59:29.0562 3840  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
16:59:29.0562 3840  HidServ - ok
16:59:29.0609 3840  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:59:29.0625 3840  hidusb - ok
16:59:29.0656 3840  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
16:59:29.0671 3840  hkmsvc - ok
16:59:29.0671 3840  hpn - ok
16:59:29.0718 3840  [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
16:59:29.0734 3840  HSFHWBS2 - ok
16:59:29.0765 3840  [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
16:59:29.0796 3840  HSF_DP - ok
16:59:29.0859 3840  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
16:59:29.0875 3840  HTTP - ok
16:59:29.0906 3840  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
16:59:29.0921 3840  HTTPFilter - ok
16:59:29.0921 3840  i2omgmt - ok
16:59:29.0921 3840  i2omp - ok
16:59:30.0015 3840  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:59:30.0031 3840  idsvc - ok
16:59:30.0093 3840  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
16:59:30.0093 3840  Imapi - ok
16:59:30.0140 3840  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
16:59:30.0156 3840  ImapiService - ok
16:59:30.0156 3840  ini910u - ok
16:59:30.0171 3840  IntelIde - ok
16:59:30.0218 3840  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:59:30.0218 3840  intelppm - ok
16:59:30.0234 3840  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
16:59:30.0234 3840  Ip6Fw - ok
16:59:30.0281 3840  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:59:30.0281 3840  IpFilterDriver - ok
16:59:30.0296 3840  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:59:30.0296 3840  IpInIp - ok
16:59:30.0359 3840  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:59:30.0359 3840  IpNat - ok
16:59:30.0375 3840  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:59:30.0375 3840  IPSec - ok
16:59:30.0390 3840  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
16:59:30.0390 3840  IRENUM - ok
16:59:30.0421 3840  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:59:30.0421 3840  isapnp - ok
16:59:30.0515 3840  [ 9AE07549A0D691A103FAF8946554BDB7 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
16:59:30.0515 3840  JavaQuickStarterService - ok
16:59:30.0531 3840  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:59:30.0531 3840  Kbdclass - ok
16:59:30.0546 3840  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:59:30.0546 3840  kbdhid - ok
16:59:30.0562 3840  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
16:59:30.0562 3840  kmixer - ok
16:59:30.0609 3840  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
16:59:30.0609 3840  KSecDD - ok
16:59:30.0640 3840  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
16:59:30.0656 3840  lanmanserver - ok
16:59:30.0703 3840  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:59:30.0718 3840  lanmanworkstation - ok
16:59:30.0718 3840  lbrtfdc - ok
16:59:30.0781 3840  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
16:59:30.0796 3840  LmHosts - ok
16:59:30.0843 3840  [ 4A5FFDF0FE830C448830BD4B02B02B4B ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
16:59:30.0875 3840  mbamchameleon - ok
16:59:30.0906 3840  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
16:59:30.0906 3840  mdmxsdk - ok
16:59:30.0937 3840  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
16:59:30.0937 3840  Messenger - ok
16:59:30.0968 3840  [ B7521F69C0A9B29D356157229376FB21 ] MHN             C:\WINDOWS\System32\mhn.dll
16:59:30.0968 3840  MHN - ok
16:59:31.0000 3840  [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
16:59:31.0000 3840  MHNDRV - ok
16:59:31.0046 3840  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
16:59:31.0046 3840  mnmdd - ok
16:59:31.0093 3840  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
16:59:31.0109 3840  mnmsrvc - ok
16:59:31.0109 3840  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
16:59:31.0125 3840  Modem - ok
16:59:31.0171 3840  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
16:59:31.0171 3840  MODEMCSA - ok
16:59:31.0187 3840  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:59:31.0187 3840  Mouclass - ok
16:59:31.0203 3840  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:59:31.0203 3840  mouhid - ok
16:59:31.0218 3840  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
16:59:31.0218 3840  MountMgr - ok
16:59:31.0312 3840  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:59:31.0343 3840  MozillaMaintenance - ok
16:59:31.0343 3840  mraid35x - ok
16:59:31.0375 3840  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:59:31.0390 3840  MRxDAV - ok
16:59:31.0453 3840  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:59:31.0468 3840  MRxSmb - ok
16:59:31.0500 3840  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
16:59:31.0500 3840  MSDTC - ok
16:59:31.0546 3840  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:59:31.0546 3840  Msfs - ok
16:59:31.0546 3840  MSIServer - ok
16:59:31.0578 3840  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:59:31.0578 3840  MSKSSRV - ok
16:59:31.0593 3840  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:59:31.0593 3840  MSPCLOCK - ok
16:59:31.0609 3840  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
16:59:31.0609 3840  MSPQM - ok
16:59:31.0640 3840  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:59:31.0640 3840  mssmbios - ok
16:59:31.0671 3840  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
16:59:31.0671 3840  Mup - ok
16:59:31.0750 3840  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
16:59:31.0765 3840  napagent - ok
16:59:31.0796 3840  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
16:59:31.0812 3840  NDIS - ok
16:59:31.0859 3840  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:59:31.0875 3840  NdisTapi - ok
16:59:31.0890 3840  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:59:31.0890 3840  Ndisuio - ok
16:59:31.0906 3840  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:59:31.0921 3840  NdisWan - ok
16:59:31.0968 3840  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
16:59:31.0968 3840  NDProxy - ok
16:59:31.0968 3840  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
16:59:31.0968 3840  NetBIOS - ok
16:59:31.0984 3840  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:59:32.0000 3840  NetBT - ok
16:59:32.0031 3840  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
16:59:32.0046 3840  NetDDE - ok
16:59:32.0046 3840  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
16:59:32.0062 3840  NetDDEdsdm - ok
16:59:32.0093 3840  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:59:32.0093 3840  Netlogon - ok
16:59:32.0125 3840  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
16:59:32.0125 3840  Netman - ok
16:59:32.0156 3840  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:59:32.0156 3840  NetTcpPortSharing - ok
16:59:32.0218 3840  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
16:59:32.0218 3840  Nla - ok
16:59:32.0265 3840  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:59:32.0265 3840  Npfs - ok
16:59:32.0281 3840  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
16:59:32.0296 3840  Ntfs - ok
16:59:32.0296 3840  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
16:59:32.0312 3840  NtLmSsp - ok
16:59:32.0359 3840  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
16:59:32.0375 3840  NtmsSvc - ok
16:59:32.0406 3840  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:59:32.0406 3840  Null - ok
16:59:32.0500 3840  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:59:32.0500 3840  NwlnkFlt - ok
16:59:32.0515 3840  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:59:32.0515 3840  NwlnkFwd - ok
16:59:32.0546 3840  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
16:59:32.0562 3840  Parport - ok
16:59:32.0562 3840  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
16:59:32.0562 3840  PartMgr - ok
16:59:32.0593 3840  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
16:59:32.0609 3840  ParVdm - ok
16:59:32.0609 3840  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
16:59:32.0609 3840  PCI - ok
16:59:32.0625 3840  PCIDump - ok
16:59:32.0656 3840  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
16:59:32.0656 3840  PCIIde - ok
16:59:32.0687 3840  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
16:59:32.0687 3840  Pcmcia - ok
16:59:32.0703 3840  PDCOMP - ok
16:59:32.0703 3840  PDFRAME - ok
16:59:32.0703 3840  PDRELI - ok
16:59:32.0718 3840  PDRFRAME - ok
16:59:32.0718 3840  perc2 - ok
16:59:32.0734 3840  perc2hib - ok
16:59:32.0765 3840  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
16:59:32.0781 3840  PlugPlay - ok
16:59:32.0796 3840  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
16:59:32.0796 3840  PolicyAgent - ok
16:59:32.0812 3840  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:59:32.0828 3840  PptpMiniport - ok
16:59:32.0828 3840  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:59:32.0843 3840  ProtectedStorage - ok
16:59:32.0843 3840  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
16:59:32.0843 3840  PSched - ok
16:59:32.0875 3840  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:59:32.0875 3840  Ptilink - ok
16:59:32.0921 3840  [ 40F2031BD9148D3194353EA7DEC97A07 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:59:32.0921 3840  PxHelp20 - ok
16:59:32.0937 3840  ql1080 - ok
16:59:32.0937 3840  Ql10wnt - ok
16:59:32.0937 3840  ql12160 - ok
16:59:32.0953 3840  ql1240 - ok
16:59:32.0953 3840  ql1280 - ok
16:59:33.0000 3840  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:59:33.0000 3840  RasAcd - ok
16:59:33.0031 3840  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:59:33.0046 3840  RasAuto - ok
16:59:33.0078 3840  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:59:33.0078 3840  Rasl2tp - ok
16:59:33.0125 3840  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:59:33.0140 3840  RasMan - ok
16:59:33.0140 3840  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:59:33.0140 3840  RasPppoe - ok
16:59:33.0156 3840  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
16:59:33.0156 3840  Raspti - ok
16:59:33.0187 3840  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:59:33.0187 3840  Rdbss - ok
16:59:33.0187 3840  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:59:33.0203 3840  RDPCDD - ok
16:59:33.0218 3840  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:59:33.0218 3840  rdpdr - ok
16:59:33.0265 3840  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
16:59:33.0265 3840  RDPWD - ok
16:59:33.0296 3840  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
16:59:33.0312 3840  RDSessMgr - ok
16:59:33.0328 3840  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
16:59:33.0328 3840  redbook - ok
16:59:33.0390 3840  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:59:33.0406 3840  RemoteAccess - ok
16:59:33.0421 3840  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:59:33.0421 3840  RemoteRegistry - ok
16:59:33.0453 3840  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:59:33.0468 3840  RpcLocator - ok
16:59:33.0515 3840  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
16:59:33.0515 3840  RpcSs - ok
16:59:33.0562 3840  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
16:59:33.0562 3840  RSVP - ok
16:59:33.0656 3840  [ EE5AD71A1F576D4D58D8D014560EB856 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
16:59:33.0687 3840  rt2870 - ok
16:59:33.0718 3840  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:59:33.0734 3840  SamSs - ok
16:59:33.0781 3840  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:59:33.0781 3840  SASDIFSV - ok
16:59:33.0781 3840  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:59:33.0812 3840  SASKUTIL - ok
16:59:33.0843 3840  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
16:59:33.0843 3840  SCardSvr - ok
16:59:33.0875 3840  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:59:33.0890 3840  Schedule - ok
16:59:33.0968 3840  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:59:33.0968 3840  Secdrv - ok
16:59:33.0984 3840  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
16:59:34.0000 3840  seclogon - ok
16:59:34.0015 3840  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
16:59:34.0031 3840  SENS - ok
16:59:34.0062 3840  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
16:59:34.0062 3840  Serial - ok
16:59:34.0109 3840  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
16:59:34.0109 3840  Sfloppy - ok
16:59:34.0171 3840  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:59:34.0171 3840  SharedAccess - ok
16:59:34.0203 3840  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:59:34.0218 3840  ShellHWDetection - ok
16:59:34.0218 3840  Simbad - ok
16:59:34.0250 3840  Sparrow - ok
16:59:34.0265 3840  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
16:59:34.0281 3840  splitter - ok
16:59:34.0312 3840  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
16:59:34.0328 3840  Spooler - ok
16:59:34.0359 3840  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
16:59:34.0359 3840  sr - ok
16:59:34.0406 3840  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
16:59:34.0421 3840  srservice - ok
16:59:34.0453 3840  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:59:34.0468 3840  Srv - ok
16:59:34.0484 3840  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:59:34.0484 3840  SSDPSRV - ok
16:59:34.0562 3840  [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
16:59:34.0593 3840  STHDA - ok
16:59:34.0656 3840  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
16:59:34.0671 3840  stisvc - ok
16:59:34.0703 3840  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
16:59:34.0703 3840  swenum - ok
16:59:34.0718 3840  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
16:59:34.0718 3840  swmidi - ok
16:59:34.0718 3840  SwPrv - ok
16:59:34.0734 3840  symc810 - ok
16:59:34.0734 3840  symc8xx - ok
16:59:34.0750 3840  sym_hi - ok
16:59:34.0750 3840  sym_u3 - ok
16:59:34.0781 3840  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
16:59:34.0781 3840  sysaudio - ok
16:59:34.0796 3840  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
16:59:34.0812 3840  SysmonLog - ok
16:59:34.0843 3840  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:59:34.0859 3840  TapiSrv - ok
16:59:34.0906 3840  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:59:34.0906 3840  Tcpip - ok
16:59:34.0937 3840  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
16:59:34.0937 3840  TDPIPE - ok
16:59:34.0968 3840  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
16:59:34.0984 3840  TDTCP - ok
16:59:35.0000 3840  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
16:59:35.0015 3840  TermDD - ok
16:59:35.0062 3840  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
16:59:35.0078 3840  TermService - ok
16:59:35.0093 3840  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
16:59:35.0109 3840  Themes - ok
16:59:35.0140 3840  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
16:59:35.0156 3840  TlntSvr - ok
16:59:35.0250 3840  [ 0765EE4A7A0D6609BF91CA2E4700E885 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
16:59:35.0250 3840  TomTomHOMEService - ok
16:59:35.0250 3840  TosIde - ok
16:59:35.0296 3840  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
16:59:35.0312 3840  TrkWks - ok
16:59:35.0328 3840  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
16:59:35.0328 3840  Udfs - ok
16:59:35.0343 3840  ultra - ok
16:59:35.0375 3840  [ 1977313E362C8732C1AF4D1BCB9C06B7 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
16:59:35.0390 3840  UMWdf - ok
16:59:35.0437 3840  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
16:59:35.0437 3840  Update - ok
16:59:35.0484 3840  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:59:35.0500 3840  upnphost - ok
16:59:35.0531 3840  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
16:59:35.0546 3840  UPS - ok
16:59:35.0593 3840  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:59:35.0593 3840  usbccgp - ok
16:59:35.0609 3840  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:59:35.0609 3840  usbehci - ok
16:59:35.0656 3840  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:59:35.0656 3840  usbhub - ok
16:59:35.0687 3840  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:59:35.0703 3840  usbprint - ok
16:59:35.0718 3840  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:59:35.0718 3840  usbscan - ok
16:59:35.0734 3840  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:59:35.0750 3840  USBSTOR - ok
16:59:35.0781 3840  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:59:35.0781 3840  usbuhci - ok
16:59:35.0796 3840  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
16:59:35.0796 3840  VgaSave - ok
16:59:35.0796 3840  ViaIde - ok
16:59:35.0843 3840  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
16:59:35.0859 3840  VolSnap - ok
16:59:35.0921 3840  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
16:59:35.0937 3840  VSS - ok
16:59:35.0953 3840  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
16:59:35.0968 3840  W32Time - ok
16:59:36.0000 3840  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:59:36.0000 3840  Wanarp - ok
16:59:36.0015 3840  WDICA - ok
16:59:36.0062 3840  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
16:59:36.0062 3840  wdmaud - ok
16:59:36.0093 3840  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:59:36.0109 3840  WebClient - ok
16:59:36.0156 3840  [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
16:59:36.0187 3840  winachsf - ok
16:59:36.0281 3840  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:59:36.0281 3840  winmgmt - ok
16:59:36.0312 3840  [ 6EAA72FD9EF993EC1FA9A06DE65105DA ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
16:59:36.0328 3840  WmdmPmSN - ok
16:59:36.0421 3840  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
16:59:36.0453 3840  Wmi - ok
16:59:36.0500 3840  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:59:36.0500 3840  WmiApSrv - ok
16:59:36.0531 3840  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
16:59:36.0531 3840  wscsvc - ok
16:59:36.0546 3840  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
16:59:36.0562 3840  wuauserv - ok
16:59:36.0609 3840  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
16:59:36.0640 3840  WZCSVC - ok
16:59:36.0656 3840  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
16:59:36.0671 3840  xmlprov - ok
16:59:36.0671 3840  ================ Scan global ===============================
16:59:36.0703 3840  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:59:36.0750 3840  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:59:36.0781 3840  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
16:59:36.0812 3840  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:59:36.0828 3840  [Global] - ok
16:59:36.0828 3840  ================ Scan MBR ==================================
16:59:36.0843 3840  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
16:59:37.0015 3840  \Device\Harddisk0\DR0 - ok
16:59:37.0015 3840  ================ Scan VBR ==================================
16:59:37.0015 3840  [ C37CB42CDC9C46193B6390FD719418D3 ] \Device\Harddisk0\DR0\Partition1
16:59:37.0015 3840  \Device\Harddisk0\DR0\Partition1 - ok
16:59:37.0015 3840  ============================================================
16:59:37.0015 3840  Scan finished
16:59:37.0015 3840  ============================================================
16:59:37.0031 3284  Detected object count: 0
16:59:37.0031 3284  Actual detected object count: 0
17:00:06.0843 3492  ============================================================
17:00:06.0843 3492  Scan started
17:00:06.0843 3492  Mode: Manual; SigCheck; TDLFS;
17:00:06.0843 3492  ============================================================
17:00:06.0937 3492  ================ Scan system memory ========================
17:00:06.0937 3492  System memory - ok
17:00:06.0937 3492  ================ Scan services =============================
17:00:07.0046 3492  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
17:00:07.0531 3492  !SASCORE - ok
17:00:07.0640 3492  Abiosdsk - ok
17:00:07.0656 3492  abp480n5 - ok
17:00:07.0703 3492  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:00:09.0000 3492  ACPI - ok
17:00:09.0046 3492  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
17:00:09.0265 3492  ACPIEC - ok
17:00:09.0359 3492  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:00:09.0390 3492  AdobeFlashPlayerUpdateSvc - ok
17:00:09.0390 3492  adpu160m - ok
17:00:09.0406 3492  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
17:00:09.0625 3492  aec - ok
17:00:09.0656 3492  [ 15E655BAA989444F56787EF558823643 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:00:09.0687 3492  AegisP ( UnsignedFile.Multi.Generic ) - warning
17:00:09.0687 3492  AegisP - detected UnsignedFile.Multi.Generic (1)
17:00:09.0718 3492  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
17:00:09.0781 3492  AFD - ok
17:00:09.0781 3492  Aha154x - ok
17:00:09.0781 3492  aic78u2 - ok
17:00:09.0796 3492  aic78xx - ok
17:00:09.0812 3492  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
17:00:10.0000 3492  Alerter - ok
17:00:10.0031 3492  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
17:00:10.0140 3492  ALG - ok
17:00:10.0156 3492  AliIde - ok
17:00:10.0156 3492  amsint - ok
17:00:10.0187 3492  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
17:00:10.0343 3492  AppMgmt - ok
17:00:10.0359 3492  asc - ok
17:00:10.0359 3492  asc3350p - ok
17:00:10.0375 3492  asc3550 - ok
17:00:10.0500 3492  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:00:10.0515 3492  aspnet_state - ok
17:00:10.0562 3492  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\WINDOWS\system32\drivers\aswFsBlk.sys
17:00:10.0796 3492  aswFsBlk - ok
17:00:10.0843 3492  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
17:00:10.0859 3492  aswMonFlt - ok
17:00:10.0906 3492  [ 7B43265F92257A21CBFD88E7A651044C ] AswRdr          C:\WINDOWS\system32\drivers\AswRdr.sys
17:00:10.0937 3492  AswRdr - ok
17:00:10.0953 3492  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
17:00:10.0984 3492  aswRvrt - ok
17:00:11.0015 3492  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
17:00:11.0046 3492  aswSnx - ok
17:00:11.0093 3492  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
17:00:11.0125 3492  aswSP - ok
17:00:11.0140 3492  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
17:00:11.0171 3492  aswTdi - ok
17:00:11.0171 3492  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
17:00:11.0203 3492  aswVmm - ok
17:00:11.0234 3492  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:00:11.0421 3492  AsyncMac - ok
17:00:11.0453 3492  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
17:00:11.0640 3492  atapi - ok
17:00:11.0640 3492  Atdisk - ok
17:00:11.0687 3492  [ ABC57A6F6070BAF9786C318F59F29F0B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
17:00:11.0750 3492  Ati HotKey Poller - ok
17:00:11.0843 3492  [ 03621F7F968FF63713943405DEB777F9 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:00:11.0890 3492  ati2mtag - ok
17:00:11.0921 3492  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:00:12.0125 3492  Atmarpc - ok
17:00:12.0156 3492  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
17:00:12.0343 3492  AudioSrv - ok
17:00:12.0375 3492  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
17:00:12.0562 3492  audstub - ok
17:00:12.0640 3492  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:00:12.0671 3492  avast! Antivirus - ok
17:00:12.0703 3492  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
17:00:12.0875 3492  Beep - ok
17:00:12.0906 3492  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
17:00:13.0109 3492  BITS - ok
17:00:13.0156 3492  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
17:00:13.0187 3492  Browser - ok
17:00:13.0203 3492  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
17:00:13.0406 3492  cbidf2k - ok
17:00:13.0484 3492  [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe
17:00:13.0515 3492  CCALib8 ( UnsignedFile.Multi.Generic ) - warning
17:00:13.0515 3492  CCALib8 - detected UnsignedFile.Multi.Generic (1)
17:00:13.0515 3492  cd20xrnt - ok
17:00:13.0546 3492  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
17:00:13.0796 3492  Cdaudio - ok
17:00:13.0843 3492  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
17:00:14.0062 3492  Cdfs - ok
17:00:14.0078 3492  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:00:14.0281 3492  Cdrom - ok
17:00:14.0281 3492  Changer - ok
17:00:14.0328 3492  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
17:00:14.0515 3492  CiSvc - ok
17:00:14.0531 3492  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
17:00:14.0734 3492  ClipSrv - ok
17:00:14.0765 3492  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:00:14.0796 3492  clr_optimization_v2.0.50727_32 - ok
17:00:14.0796 3492  CmdIde - ok
17:00:14.0812 3492  COMSysApp - ok
17:00:14.0812 3492  Cpqarray - ok
17:00:14.0859 3492  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
17:00:15.0078 3492  CryptSvc - ok
17:00:15.0078 3492  dac2w2k - ok
17:00:15.0078 3492  dac960nt - ok
17:00:15.0140 3492  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
17:00:15.0218 3492  DcomLaunch - ok
17:00:15.0250 3492  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
17:00:15.0468 3492  Dhcp - ok
17:00:15.0500 3492  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
17:00:15.0687 3492  Disk - ok
17:00:15.0703 3492  dmadmin - ok
17:00:15.0750 3492  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
17:00:15.0968 3492  dmboot - ok
17:00:16.0015 3492  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
17:00:16.0218 3492  dmio - ok
17:00:16.0265 3492  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
17:00:16.0468 3492  dmload - ok
17:00:16.0500 3492  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
17:00:16.0718 3492  dmserver - ok
17:00:16.0765 3492  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
17:00:16.0953 3492  DMusic - ok
17:00:16.0984 3492  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
17:00:17.0062 3492  Dnscache - ok
17:00:17.0093 3492  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
17:00:17.0281 3492  Dot3svc - ok
17:00:17.0296 3492  dpti2o - ok
17:00:17.0328 3492  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
17:00:17.0531 3492  drmkaud - ok
17:00:17.0578 3492  [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:00:17.0625 3492  E100B - ok
17:00:17.0640 3492  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
17:00:17.0843 3492  EapHost - ok
17:00:17.0921 3492  [ 27434C42A13C11F92CA45840B720D671 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
17:00:17.0968 3492  ehRecvr ( UnsignedFile.Multi.Generic ) - warning
17:00:17.0968 3492  ehRecvr - detected UnsignedFile.Multi.Generic (1)
17:00:17.0968 3492  [ 16910F8B482919BB6035ED053B691692 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
17:00:18.0015 3492  ehSched - ok
17:00:18.0062 3492  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
17:00:18.0265 3492  ERSvc - ok
17:00:18.0296 3492  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
17:00:18.0343 3492  Eventlog - ok
17:00:18.0406 3492  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
17:00:18.0453 3492  EventSystem - ok
17:00:18.0500 3492  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
17:00:18.0703 3492  Fastfat - ok
17:00:18.0718 3492  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:00:18.0781 3492  FastUserSwitchingCompatibility - ok
17:00:18.0812 3492  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
17:00:19.0031 3492  Fdc - ok
17:00:19.0062 3492  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
17:00:19.0343 3492  Fips - ok
17:00:19.0375 3492  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:00:19.0578 3492  Flpydisk - ok
17:00:19.0687 3492  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
17:00:19.0921 3492  FltMgr - ok
17:00:19.0984 3492  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:00:20.0000 3492  FontCache3.0.0.0 - ok
17:00:20.0031 3492  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:00:20.0218 3492  Fs_Rec - ok
17:00:20.0265 3492  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:00:20.0453 3492  Ftdisk - ok
17:00:20.0484 3492  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:00:20.0671 3492  Gpc - ok
17:00:20.0687 3492  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:00:20.0875 3492  HDAudBus - ok
17:00:20.0953 3492  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:00:21.0156 3492  helpsvc - ok
17:00:21.0187 3492  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
17:00:21.0421 3492  HidServ - ok
17:00:21.0453 3492  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:00:21.0656 3492  hidusb - ok
17:00:21.0671 3492  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
17:00:21.0875 3492  hkmsvc - ok
17:00:21.0890 3492  hpn - ok
17:00:21.0921 3492  [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
17:00:21.0984 3492  HSFHWBS2 - ok
17:00:22.0046 3492  [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
17:00:22.0109 3492  HSF_DP - ok
17:00:22.0156 3492  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
17:00:22.0218 3492  HTTP - ok
17:00:22.0250 3492  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
17:00:22.0453 3492  HTTPFilter - ok
17:00:22.0453 3492  i2omgmt - ok
17:00:22.0453 3492  i2omp - ok
17:00:22.0546 3492  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:00:22.0578 3492  idsvc - ok
17:00:22.0625 3492  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
17:00:22.0843 3492  Imapi - ok
17:00:22.0875 3492  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
17:00:23.0093 3492  ImapiService - ok
17:00:23.0109 3492  ini910u - ok
17:00:23.0109 3492  IntelIde - ok
17:00:23.0156 3492  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:00:23.0328 3492  intelppm - ok
17:00:23.0359 3492  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
17:00:23.0578 3492  Ip6Fw - ok
17:00:23.0609 3492  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:00:23.0812 3492  IpFilterDriver - ok
17:00:23.0859 3492  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:00:24.0046 3492  IpInIp - ok
17:00:24.0093 3492  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:00:24.0281 3492  IpNat - ok
17:00:24.0312 3492  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:00:24.0531 3492  IPSec - ok
17:00:24.0562 3492  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
17:00:24.0656 3492  IRENUM - ok
17:00:24.0687 3492  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:00:24.0859 3492  isapnp - ok
17:00:24.0953 3492  [ 9AE07549A0D691A103FAF8946554BDB7 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
17:00:24.0984 3492  JavaQuickStarterService - ok
17:00:25.0000 3492  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:00:25.0203 3492  Kbdclass - ok
17:00:25.0218 3492  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:00:25.0390 3492  kbdhid - ok
17:00:25.0421 3492  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
17:00:25.0625 3492  kmixer - ok
17:00:25.0656 3492  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
17:00:25.0718 3492  KSecDD - ok
17:00:25.0750 3492  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
17:00:25.0828 3492  lanmanserver - ok
17:00:25.0875 3492  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:00:25.0906 3492  lanmanworkstation - ok
17:00:25.0921 3492  lbrtfdc - ok
17:00:25.0968 3492  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
17:00:26.0171 3492  LmHosts - ok
17:00:26.0203 3492  [ 4A5FFDF0FE830C448830BD4B02B02B4B ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
17:00:26.0234 3492  mbamchameleon - ok
17:00:26.0265 3492  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:00:26.0328 3492  mdmxsdk - ok
17:00:26.0343 3492  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
17:00:26.0531 3492  Messenger - ok
17:00:26.0562 3492  [ B7521F69C0A9B29D356157229376FB21 ] MHN             C:\WINDOWS\System32\mhn.dll
17:00:26.0593 3492  MHN ( UnsignedFile.Multi.Generic ) - warning
17:00:26.0593 3492  MHN - detected UnsignedFile.Multi.Generic (1)
17:00:26.0609 3492  [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
17:00:26.0625 3492  MHNDRV ( UnsignedFile.Multi.Generic ) - warning
17:00:26.0625 3492  MHNDRV - detected UnsignedFile.Multi.Generic (1)
17:00:26.0671 3492  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
17:00:26.0843 3492  mnmdd - ok
17:00:26.0875 3492  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
17:00:27.0062 3492  mnmsrvc - ok
17:00:27.0109 3492  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
17:00:27.0312 3492  Modem - ok
17:00:27.0343 3492  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
17:00:27.0515 3492  MODEMCSA - ok
17:00:27.0531 3492  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:00:27.0734 3492  Mouclass - ok
17:00:27.0765 3492  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:00:27.0953 3492  mouhid - ok
17:00:27.0968 3492  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
17:00:28.0156 3492  MountMgr - ok
17:00:28.0234 3492  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:00:28.0265 3492  MozillaMaintenance - ok
17:00:28.0265 3492  mraid35x - ok
17:00:28.0296 3492  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:00:28.0484 3492  MRxDAV - ok
17:00:28.0531 3492  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:00:28.0593 3492  MRxSmb - ok
17:00:28.0625 3492  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
17:00:28.0781 3492  MSDTC - ok
17:00:28.0812 3492  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
17:00:29.0015 3492  Msfs - ok
17:00:29.0015 3492  MSIServer - ok
17:00:29.0031 3492  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:00:29.0203 3492  MSKSSRV - ok
17:00:29.0203 3492  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:00:29.0375 3492  MSPCLOCK - ok
17:00:29.0390 3492  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
17:00:29.0562 3492  MSPQM - ok
17:00:29.0609 3492  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:00:29.0750 3492  mssmbios - ok
17:00:29.0796 3492  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
17:00:29.0859 3492  Mup - ok
17:00:29.0890 3492  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
17:00:30.0078 3492  napagent - ok
17:00:30.0125 3492  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
17:00:30.0312 3492  NDIS - ok
17:00:30.0343 3492  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:00:30.0406 3492  NdisTapi - ok
17:00:30.0437 3492  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:00:30.0640 3492  Ndisuio - ok
17:00:30.0640 3492  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:00:30.0812 3492  NdisWan - ok
17:00:30.0843 3492  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
17:00:30.0906 3492  NDProxy - ok
17:00:30.0921 3492  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
17:00:31.0109 3492  NetBIOS - ok
17:00:31.0140 3492  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
17:00:31.0328 3492  NetBT - ok
17:00:31.0359 3492  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
17:00:31.0531 3492  NetDDE - ok
17:00:31.0546 3492  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
17:00:31.0703 3492  NetDDEdsdm - ok
17:00:31.0750 3492  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
17:00:31.0890 3492  Netlogon - ok
17:00:31.0937 3492  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
17:00:32.0125 3492  Netman - ok
17:00:32.0156 3492  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:00:32.0171 3492  NetTcpPortSharing - ok
17:00:32.0265 3492  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
17:00:32.0312 3492  Nla - ok
17:00:32.0359 3492  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
17:00:32.0546 3492  Npfs - ok
17:00:32.0578 3492  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
17:00:32.0781 3492  Ntfs - ok
17:00:32.0796 3492  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
17:00:32.0968 3492  NtLmSsp - ok
17:00:33.0015 3492  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
17:00:33.0234 3492  NtmsSvc - ok
17:00:33.0250 3492  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
17:00:33.0437 3492  Null - ok
17:00:33.0453 3492  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:00:33.0625 3492  NwlnkFlt - ok
17:00:33.0640 3492  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:00:33.0812 3492  NwlnkFwd - ok
17:00:33.0843 3492  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
17:00:34.0015 3492  Parport - ok
17:00:34.0046 3492  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
17:00:34.0218 3492  PartMgr - ok
17:00:34.0234 3492  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
17:00:34.0421 3492  ParVdm - ok
17:00:34.0421 3492  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
17:00:34.0609 3492  PCI - ok
17:00:34.0609 3492  PCIDump - ok
17:00:34.0640 3492  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
17:00:34.0812 3492  PCIIde - ok
17:00:34.0843 3492  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
17:00:35.0000 3492  Pcmcia - ok
17:00:35.0000 3492  PDCOMP - ok
17:00:35.0015 3492  PDFRAME - ok
17:00:35.0015 3492  PDRELI - ok
17:00:35.0031 3492  PDRFRAME - ok
17:00:35.0031 3492  perc2 - ok
17:00:35.0031 3492  perc2hib - ok
17:00:35.0078 3492  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
17:00:35.0109 3492  PlugPlay - ok
17:00:35.0125 3492  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
17:00:35.0296 3492  PolicyAgent - ok
17:00:35.0328 3492  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:00:35.0531 3492  PptpMiniport - ok
17:00:35.0546 3492  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:00:35.0703 3492  ProtectedStorage - ok
17:00:35.0718 3492  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
17:00:35.0875 3492  PSched - ok
17:00:35.0875 3492  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:00:36.0046 3492  Ptilink - ok
17:00:36.0078 3492  [ 40F2031BD9148D3194353EA7DEC97A07 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:00:36.0125 3492  PxHelp20 - ok
17:00:36.0125 3492  ql1080 - ok
17:00:36.0140 3492  Ql10wnt - ok
17:00:36.0140 3492  ql12160 - ok
17:00:36.0156 3492  ql1240 - ok
17:00:36.0156 3492  ql1280 - ok
17:00:36.0187 3492  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:00:36.0343 3492  RasAcd - ok
17:00:36.0375 3492  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
17:00:36.0546 3492  RasAuto - ok
17:00:36.0578 3492  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:00:36.0765 3492  Rasl2tp - ok
17:00:36.0781 3492  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
17:00:36.0953 3492  RasMan - ok
17:00:36.0968 3492  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:00:37.0125 3492  RasPppoe - ok
17:00:37.0140 3492  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
17:00:37.0312 3492  Raspti - ok
17:00:37.0343 3492  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:00:37.0515 3492  Rdbss - ok
17:00:37.0531 3492  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:00:37.0703 3492  RDPCDD - ok
17:00:37.0734 3492  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:00:37.0937 3492  rdpdr - ok
17:00:37.0968 3492  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
17:00:38.0015 3492  RDPWD - ok
17:00:38.0046 3492  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
17:00:38.0218 3492  RDSessMgr - ok
17:00:38.0265 3492  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
17:00:38.0453 3492  redbook - ok
17:00:38.0468 3492  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
17:00:38.0640 3492  RemoteAccess - ok
17:00:38.0687 3492  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
17:00:38.0859 3492  RemoteRegistry - ok
17:00:38.0890 3492  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
17:00:39.0062 3492  RpcLocator - ok
17:00:39.0093 3492  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
17:00:39.0140 3492  RpcSs - ok
17:00:39.0156 3492  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
17:00:39.0312 3492  RSVP - ok
17:00:39.0375 3492  [ EE5AD71A1F576D4D58D8D014560EB856 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
17:00:39.0453 3492  rt2870 - ok
17:00:39.0484 3492  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
17:00:39.0640 3492  SamSs - ok
17:00:39.0687 3492  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
17:00:39.0703 3492  SASDIFSV - ok
17:00:39.0718 3492  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
17:00:39.0734 3492  SASKUTIL - ok
17:00:39.0765 3492  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
17:00:39.0937 3492  SCardSvr - ok
17:00:39.0968 3492  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
17:00:40.0140 3492  Schedule - ok
17:00:40.0156 3492  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:00:40.0281 3492  Secdrv - ok
17:00:40.0296 3492  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
17:00:40.0484 3492  seclogon - ok
17:00:40.0515 3492  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
17:00:40.0687 3492  SENS - ok
17:00:40.0734 3492  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
17:00:40.0921 3492  Serial - ok
17:00:40.0953 3492  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
17:00:41.0156 3492  Sfloppy - ok
17:00:41.0203 3492  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
17:00:41.0406 3492  SharedAccess - ok
17:00:41.0437 3492  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:00:41.0468 3492  ShellHWDetection - ok
17:00:41.0468 3492  Simbad - ok
17:00:41.0484 3492  Sparrow - ok
17:00:41.0515 3492  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
17:00:41.0687 3492  splitter - ok
17:00:41.0703 3492  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
17:00:41.0750 3492  Spooler - ok
17:00:41.0781 3492  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
17:00:41.0906 3492  sr - ok
17:00:41.0953 3492  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
17:00:42.0046 3492  srservice - ok
17:00:42.0093 3492  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
17:00:42.0171 3492  Srv - ok
17:00:42.0203 3492  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
17:00:42.0312 3492  SSDPSRV - ok
17:00:42.0390 3492  [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
17:00:42.0468 3492  STHDA - ok
17:00:42.0531 3492  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
17:00:42.0703 3492  stisvc - ok
17:00:42.0734 3492  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
17:00:42.0921 3492  swenum - ok
17:00:42.0953 3492  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
17:00:43.0125 3492  swmidi - ok
17:00:43.0140 3492  SwPrv - ok
17:00:43.0140 3492  symc810 - ok
17:00:43.0156 3492  symc8xx - ok
17:00:43.0156 3492  sym_hi - ok
17:00:43.0156 3492  sym_u3 - ok
17:00:43.0187 3492  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
17:00:43.0375 3492  sysaudio - ok
17:00:43.0406 3492  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
17:00:43.0593 3492  SysmonLog - ok
17:00:43.0609 3492  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
17:00:43.0781 3492  TapiSrv - ok
17:00:43.0828 3492  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:00:43.0875 3492  Tcpip - ok
17:00:43.0890 3492  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
17:00:44.0062 3492  TDPIPE - ok
17:00:44.0078 3492  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
17:00:44.0250 3492  TDTCP - ok
17:00:44.0265 3492  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
17:00:44.0437 3492  TermDD - ok
17:00:44.0484 3492  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
17:00:44.0656 3492  TermService - ok
17:00:44.0671 3492  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
17:00:44.0703 3492  Themes - ok
17:00:44.0750 3492  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
17:00:44.0859 3492  TlntSvr - ok
17:00:44.0937 3492  [ 0765EE4A7A0D6609BF91CA2E4700E885 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
17:00:44.0953 3492  TomTomHOMEService - ok
17:00:44.0968 3492  TosIde - ok
17:00:45.0000 3492  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
17:00:45.0171 3492  TrkWks - ok
17:00:45.0203 3492  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
17:00:45.0390 3492  Udfs - ok
17:00:45.0390 3492  ultra - ok
17:00:45.0437 3492  [ 1977313E362C8732C1AF4D1BCB9C06B7 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
17:00:45.0468 3492  UMWdf ( UnsignedFile.Multi.Generic ) - warning
17:00:45.0468 3492  UMWdf - detected UnsignedFile.Multi.Generic (1)
17:00:45.0515 3492  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
17:00:45.0687 3492  Update - ok
17:00:45.0734 3492  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
17:00:45.0843 3492  upnphost - ok
17:00:45.0875 3492  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
17:00:46.0046 3492  UPS - ok
17:00:46.0078 3492  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:00:46.0265 3492  usbccgp - ok
17:00:46.0281 3492  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:00:46.0468 3492  usbehci - ok
17:00:46.0500 3492  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:00:46.0671 3492  usbhub - ok
17:00:46.0687 3492  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:00:46.0859 3492  usbprint - ok
17:00:46.0890 3492  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:00:47.0062 3492  usbscan - ok
17:00:47.0078 3492  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:00:47.0234 3492  USBSTOR - ok
17:00:47.0265 3492  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:00:47.0421 3492  usbuhci - ok
17:00:47.0453 3492  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
17:00:47.0640 3492  VgaSave - ok
17:00:47.0640 3492  ViaIde - ok
17:00:47.0671 3492  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
17:00:47.0812 3492  VolSnap - ok
17:00:47.0859 3492  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
17:00:47.0984 3492  VSS - ok
17:00:48.0000 3492  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
17:00:48.0187 3492  W32Time - ok
17:00:48.0218 3492  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:00:48.0406 3492  Wanarp - ok
17:00:48.0406 3492  WDICA - ok
17:00:48.0453 3492  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
17:00:48.0625 3492  wdmaud - ok
17:00:48.0640 3492  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
17:00:48.0828 3492  WebClient - ok
17:00:48.0875 3492  [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
17:00:48.0906 3492  winachsf - ok
17:00:49.0000 3492  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
17:00:49.0171 3492  winmgmt - ok
17:00:49.0203 3492  [ 6EAA72FD9EF993EC1FA9A06DE65105DA ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
17:00:49.0250 3492  WmdmPmSN - ok
17:00:49.0296 3492  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
17:00:49.0375 3492  Wmi - ok
17:00:49.0406 3492  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:00:49.0578 3492  WmiApSrv - ok
17:00:49.0593 3492  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
17:00:49.0781 3492  wscsvc - ok
17:00:49.0796 3492  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
17:00:49.0968 3492  wuauserv - ok
17:00:50.0031 3492  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
17:00:50.0218 3492  WZCSVC - ok
17:00:50.0250 3492  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
17:00:50.0406 3492  xmlprov - ok
17:00:50.0421 3492  ================ Scan global ===============================
17:00:50.0453 3492  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
17:00:50.0500 3492  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:00:50.0515 3492  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
17:00:50.0546 3492  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
17:00:50.0562 3492  [Global] - ok
17:00:50.0562 3492  ================ Scan MBR ==================================
17:00:50.0578 3492  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
17:00:50.0796 3492  \Device\Harddisk0\DR0 - ok
17:00:50.0796 3492  ================ Scan VBR ==================================
17:00:50.0796 3492  [ C37CB42CDC9C46193B6390FD719418D3 ] \Device\Harddisk0\DR0\Partition1
17:00:50.0796 3492  \Device\Harddisk0\DR0\Partition1 - ok
17:00:50.0796 3492  ============================================================
17:00:50.0796 3492  Scan finished
17:00:50.0796 3492  ============================================================
17:00:50.0906 1416  Detected object count: 6
17:00:50.0906 1416  Actual detected object count: 6
17:01:36.0031 1416  C:\WINDOWS\system32\DRIVERS\AegisP.sys - copied to quarantine
17:01:36.0265 1416  HKLM\SYSTEM\ControlSet001\services\AegisP - will be deleted on reboot
17:01:36.0265 1416  HKLM\SYSTEM\ControlSet003\services\AegisP - will be deleted on reboot
17:01:36.0281 1416  C:\WINDOWS\system32\DRIVERS\AegisP.sys - will be deleted on reboot
17:01:36.0281 1416  AegisP ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:36.0312 1416  C:\Program Files\Canon\CAL\CALMAIN.exe - copied to quarantine
17:01:36.0500 1416  HKLM\SYSTEM\ControlSet001\services\CCALib8 - will be deleted on reboot
17:01:36.0500 1416  HKLM\SYSTEM\ControlSet003\services\CCALib8 - will be deleted on reboot
17:01:36.0500 1416  C:\Program Files\Canon\CAL\CALMAIN.exe - will be deleted on reboot
17:01:36.0500 1416  CCALib8 ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:36.0531 1416  C:\WINDOWS\eHome\ehRecvr.exe - copied to quarantine
17:01:36.0671 1416  HKLM\SYSTEM\ControlSet001\services\ehRecvr - will be deleted on reboot
17:01:36.0671 1416  HKLM\SYSTEM\ControlSet003\services\ehRecvr - will be deleted on reboot
17:01:36.0671 1416  C:\WINDOWS\eHome\ehRecvr.exe - will be deleted on reboot
17:01:36.0671 1416  ehRecvr ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:36.0718 1416  C:\WINDOWS\System32\mhn.dll - copied to quarantine
17:01:36.0812 1416  HKLM\SYSTEM\ControlSet001\services\MHN - will be deleted on reboot
17:01:36.0843 1416  HKLM\SYSTEM\ControlSet003\services\MHN - will be deleted on reboot
17:01:36.0843 1416  HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\svchost:netsvcs - will be cured on reboot
17:01:36.0843 1416  C:\WINDOWS\System32\mhn.dll - will be deleted on reboot
17:01:36.0843 1416  MHN ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:36.0875 1416  C:\WINDOWS\system32\DRIVERS\mhndrv.sys - copied to quarantine
17:01:36.0953 1416  HKLM\SYSTEM\ControlSet001\services\MHNDRV - will be deleted on reboot
17:01:36.0953 1416  HKLM\SYSTEM\ControlSet003\services\MHNDRV - will be deleted on reboot
17:01:36.0968 1416  C:\WINDOWS\system32\DRIVERS\mhndrv.sys - will be deleted on reboot
17:01:36.0968 1416  MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:37.0015 1416  C:\WINDOWS\system32\wdfmgr.exe - copied to quarantine
17:01:37.0078 1416  HKLM\SYSTEM\ControlSet001\services\UMWdf - will be deleted on reboot
17:01:37.0078 1416  HKLM\SYSTEM\ControlSet003\services\UMWdf - will be deleted on reboot
17:01:37.0078 1416  C:\WINDOWS\system32\wdfmgr.exe - will be deleted on reboot
17:01:37.0078 1416  UMWdf ( UnsignedFile.Multi.Generic ) - User select action: Delete
17:01:44.0828 3884  Deinitialize success
 



2nd scan:

 

18:49:44.0296 3816  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:49:44.0453 3816  ============================================================
18:49:44.0453 3816  Current date / time: 2013/07/24 18:49:44.0453
18:49:44.0453 3816  SystemInfo:
18:49:44.0453 3816  
18:49:44.0453 3816  OS Version: 5.1.2600 ServicePack: 3.0
18:49:44.0453 3816  Product type: Workstation
18:49:44.0453 3816  ComputerName: DELL-4E48EA0227
18:49:44.0453 3816  UserName: Pete
18:49:44.0453 3816  Windows directory: C:\WINDOWS
18:49:44.0453 3816  System windows directory: C:\WINDOWS
18:49:44.0453 3816  Processor architecture: Intel x86
18:49:44.0453 3816  Number of processors: 2
18:49:44.0453 3816  Page size: 0x1000
18:49:44.0453 3816  Boot type: Normal boot
18:49:44.0453 3816  ============================================================
18:49:46.0203 3816  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:49:46.0234 3816  ============================================================
18:49:46.0234 3816  \Device\Harddisk0\DR0:
18:49:46.0234 3816  MBR partitions:
18:49:46.0234 3816  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x94FE97E
18:49:46.0234 3816  ============================================================
18:49:46.0359 3816  C: <-> \Device\Harddisk0\DR0\Partition1
18:49:46.0406 3816  ============================================================
18:49:46.0406 3816  Initialize success
18:49:46.0406 3816  ============================================================
18:50:03.0203 3352  ============================================================
18:50:03.0203 3352  Scan started
18:50:03.0203 3352  Mode: Manual;
18:50:03.0203 3352  ============================================================
18:50:03.0375 3352  ================ Scan system memory ========================
18:50:03.0375 3352  System memory - ok
18:50:03.0375 3352  ================ Scan services =============================
18:50:03.0468 3352  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
18:50:03.0515 3352  !SASCORE - ok
18:50:04.0000 3352  Abiosdsk - ok
18:50:04.0000 3352  abp480n5 - ok
18:50:04.0046 3352  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:50:04.0046 3352  ACPI - ok
18:50:04.0093 3352  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:50:04.0093 3352  ACPIEC - ok
18:50:04.0218 3352  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:50:04.0218 3352  AdobeFlashPlayerUpdateSvc - ok
18:50:04.0234 3352  adpu160m - ok
18:50:04.0281 3352  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:50:04.0296 3352  aec - ok
18:50:04.0359 3352  [ 15E655BAA989444F56787EF558823643 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
18:50:04.0375 3352  AegisP - ok
18:50:04.0484 3352  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:50:04.0484 3352  AFD - ok
18:50:04.0500 3352  Aha154x - ok
18:50:04.0500 3352  aic78u2 - ok
18:50:04.0515 3352  aic78xx - ok
18:50:04.0562 3352  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:50:04.0562 3352  Alerter - ok
18:50:04.0593 3352  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:50:04.0593 3352  ALG - ok
18:50:04.0609 3352  AliIde - ok
18:50:04.0625 3352  amsint - ok
18:50:04.0687 3352  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:50:04.0703 3352  AppMgmt - ok
18:50:04.0718 3352  asc - ok
18:50:04.0718 3352  asc3350p - ok
18:50:04.0734 3352  asc3550 - ok
18:50:04.0968 3352  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:50:04.0984 3352  aspnet_state - ok
18:50:05.0078 3352  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\WINDOWS\system32\drivers\aswFsBlk.sys
18:50:05.0078 3352  aswFsBlk - ok
18:50:05.0140 3352  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
18:50:05.0140 3352  aswMonFlt - ok
18:50:05.0187 3352  [ 7B43265F92257A21CBFD88E7A651044C ] AswRdr          C:\WINDOWS\system32\drivers\AswRdr.sys
18:50:05.0203 3352  AswRdr - ok
18:50:05.0218 3352  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
18:50:05.0218 3352  aswRvrt - ok
18:50:05.0437 3352  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
18:50:05.0640 3352  aswSnx - ok
18:50:05.0671 3352  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
18:50:05.0671 3352  aswSP - ok
18:50:05.0687 3352  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
18:50:05.0687 3352  aswTdi - ok
18:50:05.0734 3352  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
18:50:05.0734 3352  aswVmm - ok
18:50:05.0781 3352  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:50:05.0781 3352  AsyncMac - ok
18:50:05.0843 3352  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:50:05.0843 3352  atapi - ok
18:50:05.0859 3352  Atdisk - ok
18:50:05.0921 3352  [ ABC57A6F6070BAF9786C318F59F29F0B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
18:50:05.0953 3352  Ati HotKey Poller - ok
18:50:06.0171 3352  [ 03621F7F968FF63713943405DEB777F9 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:50:06.0218 3352  ati2mtag - ok
18:50:06.0250 3352  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:50:06.0250 3352  Atmarpc - ok
18:50:06.0296 3352  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:50:06.0312 3352  AudioSrv - ok
18:50:06.0375 3352  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:50:06.0375 3352  audstub - ok
18:50:06.0484 3352  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:50:06.0484 3352  avast! Antivirus - ok
18:50:06.0546 3352  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:50:06.0546 3352  Beep - ok
18:50:06.0609 3352  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:50:06.0625 3352  BITS - ok
18:50:06.0671 3352  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
18:50:06.0671 3352  Browser - ok
18:50:06.0718 3352  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:50:06.0718 3352  cbidf2k - ok
18:50:06.0734 3352  cd20xrnt - ok
18:50:06.0812 3352  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:50:06.0812 3352  Cdaudio - ok
18:50:06.0859 3352  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:50:06.0859 3352  Cdfs - ok
18:50:06.0875 3352  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:50:06.0875 3352  Cdrom - ok
18:50:06.0890 3352  Changer - ok
18:50:06.0937 3352  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:50:06.0937 3352  CiSvc - ok
18:50:06.0937 3352  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:50:06.0953 3352  ClipSrv - ok
18:50:07.0015 3352  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:50:07.0171 3352  clr_optimization_v2.0.50727_32 - ok
18:50:07.0187 3352  CmdIde - ok
18:50:07.0187 3352  COMSysApp - ok
18:50:07.0203 3352  Cpqarray - ok
18:50:07.0265 3352  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:50:07.0265 3352  CryptSvc - ok
18:50:07.0265 3352  dac2w2k - ok
18:50:07.0281 3352  dac960nt - ok
18:50:07.0359 3352  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:50:07.0453 3352  DcomLaunch - ok
18:50:07.0500 3352  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:50:07.0531 3352  Dhcp - ok
18:50:07.0562 3352  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:50:07.0562 3352  Disk - ok
18:50:07.0562 3352  dmadmin - ok
18:50:07.0640 3352  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:50:07.0687 3352  dmboot - ok
18:50:07.0765 3352  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:50:07.0765 3352  dmio - ok
18:50:07.0796 3352  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:50:07.0796 3352  dmload - ok
18:50:07.0843 3352  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:50:07.0859 3352  dmserver - ok
18:50:07.0906 3352  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:50:07.0906 3352  DMusic - ok
18:50:07.0984 3352  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:50:07.0984 3352  Dnscache - ok
18:50:08.0093 3352  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:50:08.0140 3352  Dot3svc - ok
18:50:08.0140 3352  dpti2o - ok
18:50:08.0218 3352  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:50:08.0218 3352  drmkaud - ok
18:50:08.0312 3352  [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
18:50:08.0359 3352  E100B - ok
18:50:08.0406 3352  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:50:08.0406 3352  EapHost - ok
18:50:08.0484 3352  [ 16910F8B482919BB6035ED053B691692 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
18:50:08.0500 3352  ehSched - ok
18:50:08.0500 3352  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:50:08.0515 3352  ERSvc - ok
18:50:08.0515 3352  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
18:50:08.0531 3352  Eventlog - ok
18:50:08.0593 3352  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
18:50:08.0625 3352  EventSystem - ok
18:50:08.0671 3352  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:50:08.0687 3352  Fastfat - ok
18:50:08.0718 3352  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:50:08.0734 3352  FastUserSwitchingCompatibility - ok
18:50:08.0750 3352  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
18:50:08.0750 3352  Fdc - ok
18:50:08.0812 3352  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:50:08.0812 3352  Fips - ok
18:50:08.0828 3352  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:50:08.0828 3352  Flpydisk - ok
18:50:08.0906 3352  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:50:08.0921 3352  FltMgr - ok
18:50:09.0062 3352  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:50:09.0078 3352  FontCache3.0.0.0 - ok
18:50:09.0093 3352  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:50:09.0093 3352  Fs_Rec - ok
18:50:09.0109 3352  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:50:09.0109 3352  Ftdisk - ok
18:50:09.0140 3352  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:50:09.0140 3352  Gpc - ok
18:50:09.0156 3352  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:50:09.0203 3352  HDAudBus - ok
18:50:09.0250 3352  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:50:09.0250 3352  helpsvc - ok
18:50:09.0296 3352  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:50:09.0296 3352  HidServ - ok
18:50:09.0328 3352  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:50:09.0328 3352  hidusb - ok
18:50:09.0359 3352  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:50:09.0359 3352  hkmsvc - ok
18:50:09.0375 3352  hpn - ok
18:50:09.0421 3352  [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
18:50:09.0421 3352  HSFHWBS2 - ok
18:50:09.0671 3352  [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
18:50:09.0796 3352  HSF_DP - ok
18:50:09.0859 3352  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:50:09.0875 3352  HTTP - ok
18:50:09.0906 3352  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:50:09.0906 3352  HTTPFilter - ok
18:50:09.0906 3352  i2omgmt - ok
18:50:09.0921 3352  i2omp - ok
18:50:10.0000 3352  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:50:10.0062 3352  idsvc - ok
18:50:10.0125 3352  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:50:10.0125 3352  Imapi - ok
18:50:10.0218 3352  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:50:10.0234 3352  ImapiService - ok
18:50:10.0250 3352  ini910u - ok
18:50:10.0265 3352  IntelIde - ok
18:50:10.0281 3352  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:50:10.0281 3352  intelppm - ok
18:50:10.0500 3352  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:50:10.0500 3352  Ip6Fw - ok
18:50:10.0546 3352  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:50:10.0562 3352  IpFilterDriver - ok
18:50:10.0609 3352  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:50:10.0609 3352  IpInIp - ok
18:50:10.0859 3352  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:50:10.0953 3352  IpNat - ok
18:50:11.0000 3352  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:50:11.0031 3352  IPSec - ok
18:50:11.0062 3352  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:50:11.0062 3352  IRENUM - ok
18:50:11.0125 3352  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:50:11.0125 3352  isapnp - ok
18:50:11.0234 3352  [ 9AE07549A0D691A103FAF8946554BDB7 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
18:50:11.0250 3352  JavaQuickStarterService - ok
18:50:11.0296 3352  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:50:11.0296 3352  Kbdclass - ok
18:50:11.0359 3352  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:50:11.0359 3352  kbdhid - ok
18:50:11.0406 3352  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:50:11.0406 3352  kmixer - ok
18:50:11.0468 3352  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:50:11.0468 3352  KSecDD - ok
18:50:11.0515 3352  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:50:11.0515 3352  lanmanserver - ok
18:50:11.0578 3352  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:50:11.0578 3352  lanmanworkstation - ok
18:50:11.0593 3352  lbrtfdc - ok
18:50:11.0656 3352  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:50:11.0656 3352  LmHosts - ok
18:50:11.0703 3352  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
18:50:11.0703 3352  MBAMProtector - ok
18:50:11.0812 3352  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:50:11.0828 3352  MBAMScheduler - ok
18:50:11.0875 3352  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\mbamswissarmy.sys
18:50:11.0890 3352  MBAMSwissArmy - ok
18:50:11.0921 3352  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:50:11.0921 3352  mdmxsdk - ok
18:50:12.0000 3352  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:50:12.0000 3352  Messenger - ok
18:50:12.0031 3352  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:50:12.0046 3352  mnmdd - ok
18:50:12.0078 3352  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:50:12.0093 3352  mnmsrvc - ok
18:50:12.0156 3352  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:50:12.0156 3352  Modem - ok
18:50:12.0203 3352  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
18:50:12.0203 3352  MODEMCSA - ok
18:50:12.0234 3352  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:50:12.0250 3352  Mouclass - ok
18:50:12.0265 3352  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:50:12.0265 3352  mouhid - ok
18:50:12.0281 3352  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:50:12.0281 3352  MountMgr - ok
18:50:12.0375 3352  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:50:12.0375 3352  MozillaMaintenance - ok
18:50:12.0390 3352  mraid35x - ok
18:50:12.0421 3352  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:50:12.0453 3352  MRxDAV - ok
18:50:12.0609 3352  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:50:12.0671 3352  MRxSmb - ok
18:50:12.0703 3352  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:50:12.0734 3352  MSDTC - ok
18:50:12.0781 3352  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:50:12.0781 3352  Msfs - ok
18:50:12.0781 3352  MSIServer - ok
18:50:12.0812 3352  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:50:12.0812 3352  MSKSSRV - ok
18:50:12.0843 3352  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:50:12.0843 3352  MSPCLOCK - ok
18:50:12.0890 3352  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:50:12.0890 3352  MSPQM - ok
18:50:12.0921 3352  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:50:12.0921 3352  mssmbios - ok
18:50:12.0968 3352  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:50:13.0000 3352  Mup - ok
18:50:13.0140 3352  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:50:13.0171 3352  napagent - ok
18:50:13.0234 3352  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:50:13.0234 3352  NDIS - ok
18:50:13.0281 3352  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:50:13.0281 3352  NdisTapi - ok
18:50:13.0296 3352  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:50:13.0296 3352  Ndisuio - ok
18:50:13.0328 3352  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:50:13.0328 3352  NdisWan - ok
18:50:13.0390 3352  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:50:13.0390 3352  NDProxy - ok
18:50:13.0406 3352  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:50:13.0406 3352  NetBIOS - ok
18:50:13.0437 3352  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:50:13.0437 3352  NetBT - ok
18:50:13.0484 3352  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:50:13.0484 3352  NetDDE - ok
18:50:13.0500 3352  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:50:13.0500 3352  NetDDEdsdm - ok
18:50:13.0546 3352  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:50:13.0562 3352  Netlogon - ok
18:50:13.0609 3352  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:50:13.0656 3352  Netman - ok
18:50:13.0687 3352  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:50:13.0703 3352  NetTcpPortSharing - ok
18:50:13.0765 3352  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:50:13.0765 3352  Nla - ok
18:50:13.0812 3352  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:50:13.0812 3352  Npfs - ok
18:50:13.0875 3352  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:50:13.0906 3352  Ntfs - ok
18:50:13.0953 3352  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:50:13.0953 3352  NtLmSsp - ok
18:50:14.0000 3352  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:50:14.0031 3352  NtmsSvc - ok
18:50:14.0046 3352  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:50:14.0046 3352  Null - ok
18:50:14.0078 3352  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:50:14.0078 3352  NwlnkFlt - ok
18:50:14.0093 3352  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:50:14.0093 3352  NwlnkFwd - ok
18:50:14.0156 3352  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
18:50:14.0156 3352  Parport - ok
18:50:14.0171 3352  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:50:14.0171 3352  PartMgr - ok
18:50:14.0218 3352  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:50:14.0218 3352  ParVdm - ok
18:50:14.0250 3352  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:50:14.0250 3352  PCI - ok
18:50:14.0250 3352  PCIDump - ok
18:50:14.0296 3352  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:50:14.0296 3352  PCIIde - ok
18:50:14.0312 3352  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
18:50:14.0328 3352  Pcmcia - ok
18:50:14.0328 3352  PDCOMP - ok
18:50:14.0343 3352  PDFRAME - ok
18:50:14.0343 3352  PDRELI - ok
18:50:14.0359 3352  PDRFRAME - ok
18:50:14.0359 3352  perc2 - ok
18:50:14.0375 3352  perc2hib - ok
18:50:14.0421 3352  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:50:14.0421 3352  PlugPlay - ok
18:50:14.0453 3352  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:50:14.0453 3352  PolicyAgent - ok
18:50:14.0484 3352  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:50:14.0484 3352  PptpMiniport - ok
18:50:14.0484 3352  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:50:14.0500 3352  ProtectedStorage - ok
18:50:14.0531 3352  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:50:14.0546 3352  PSched - ok
18:50:14.0546 3352  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:50:14.0562 3352  Ptilink - ok
18:50:14.0578 3352  [ 40F2031BD9148D3194353EA7DEC97A07 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:50:14.0578 3352  PxHelp20 - ok
18:50:14.0593 3352  ql1080 - ok
18:50:14.0593 3352  Ql10wnt - ok
18:50:14.0609 3352  ql12160 - ok
18:50:14.0609 3352  ql1240 - ok
18:50:14.0625 3352  ql1280 - ok
18:50:14.0671 3352  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:50:14.0671 3352  RasAcd - ok
18:50:14.0703 3352  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:50:14.0703 3352  RasAuto - ok
18:50:14.0750 3352  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:50:14.0750 3352  Rasl2tp - ok
18:50:14.0796 3352  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:50:14.0812 3352  RasMan - ok
18:50:14.0812 3352  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:50:14.0812 3352  RasPppoe - ok
18:50:14.0843 3352  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:50:14.0843 3352  Raspti - ok
18:50:14.0875 3352  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:50:14.0875 3352  Rdbss - ok
18:50:14.0890 3352  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:50:14.0890 3352  RDPCDD - ok
18:50:14.0937 3352  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:50:14.0953 3352  rdpdr - ok
18:50:15.0015 3352  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:50:15.0015 3352  RDPWD - ok
18:50:15.0156 3352  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:50:15.0187 3352  RDSessMgr - ok
18:50:15.0234 3352  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:50:15.0234 3352  redbook - ok
18:50:15.0328 3352  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:50:15.0328 3352  RemoteAccess - ok
18:50:15.0375 3352  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:50:15.0390 3352  RemoteRegistry - ok
18:50:15.0453 3352  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:50:15.0453 3352  RpcLocator - ok
18:50:15.0484 3352  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
18:50:15.0500 3352  RpcSs - ok
18:50:15.0578 3352  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:50:15.0625 3352  RSVP - ok
18:50:15.0687 3352  [ EE5AD71A1F576D4D58D8D014560EB856 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
18:50:15.0781 3352  rt2870 - ok
18:50:15.0812 3352  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:50:15.0812 3352  SamSs - ok
18:50:15.0859 3352  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
18:50:15.0875 3352  SASDIFSV - ok
18:50:15.0921 3352  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
18:50:15.0937 3352  SASKUTIL - ok
18:50:16.0015 3352  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:50:16.0031 3352  SCardSvr - ok
18:50:16.0062 3352  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:50:16.0078 3352  Schedule - ok
18:50:16.0140 3352  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:50:16.0140 3352  Secdrv - ok
18:50:16.0171 3352  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:50:16.0171 3352  seclogon - ok
18:50:16.0203 3352  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:50:16.0203 3352  SENS - ok
18:50:16.0250 3352  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
18:50:16.0250 3352  Serial - ok
18:50:16.0312 3352  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:50:16.0312 3352  Sfloppy - ok
18:50:16.0375 3352  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:50:16.0375 3352  SharedAccess - ok
18:50:16.0453 3352  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:50:16.0453 3352  ShellHWDetection - ok
18:50:16.0468 3352  Simbad - ok
18:50:16.0515 3352  Sparrow - ok
18:50:16.0546 3352  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:50:16.0546 3352  splitter - ok
18:50:16.0593 3352  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:50:16.0609 3352  Spooler - ok
18:50:16.0625 3352  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:50:16.0625 3352  sr - ok
18:50:16.0703 3352  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:50:16.0703 3352  srservice - ok
18:50:16.0765 3352  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:50:16.0781 3352  Srv - ok
18:50:16.0843 3352  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:50:16.0843 3352  SSDPSRV - ok
18:50:16.0921 3352  [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
18:50:16.0968 3352  STHDA - ok
18:50:17.0093 3352  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:50:17.0125 3352  stisvc - ok
18:50:17.0140 3352  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:50:17.0156 3352  swenum - ok
18:50:17.0171 3352  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:50:17.0171 3352  swmidi - ok
18:50:17.0187 3352  SwPrv - ok
18:50:17.0187 3352  symc810 - ok
18:50:17.0203 3352  symc8xx - ok
18:50:17.0218 3352  sym_hi - ok
18:50:17.0218 3352  sym_u3 - ok
18:50:17.0250 3352  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:50:17.0250 3352  sysaudio - ok
18:50:17.0328 3352  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:50:17.0359 3352  SysmonLog - ok
18:50:17.0406 3352  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:50:17.0406 3352  TapiSrv - ok
18:50:17.0468 3352  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:50:17.0468 3352  Tcpip - ok
18:50:17.0500 3352  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:50:17.0500 3352  TDPIPE - ok
18:50:17.0546 3352  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:50:17.0546 3352  TDTCP - ok
18:50:17.0578 3352  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:50:17.0578 3352  TermDD - ok
18:50:17.0625 3352  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:50:17.0671 3352  TermService - ok
18:50:17.0703 3352  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:50:17.0718 3352  Themes - ok
18:50:17.0750 3352  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:50:17.0765 3352  TlntSvr - ok
18:50:17.0843 3352  [ 0765EE4A7A0D6609BF91CA2E4700E885 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
18:50:17.0859 3352  TomTomHOMEService - ok
18:50:17.0875 3352  TosIde - ok
18:50:17.0921 3352  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:50:17.0937 3352  TrkWks - ok
18:50:17.0953 3352  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:50:17.0968 3352  Udfs - ok
18:50:17.0968 3352  ultra - ok
18:50:18.0031 3352  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:50:18.0031 3352  Update - ok
18:50:18.0093 3352  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:50:18.0109 3352  upnphost - ok
18:50:18.0125 3352  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:50:18.0156 3352  UPS - ok
18:50:18.0203 3352  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:50:18.0203 3352  usbccgp - ok
18:50:18.0218 3352  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:50:18.0218 3352  usbehci - ok
18:50:18.0265 3352  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:50:18.0281 3352  usbhub - ok
18:50:18.0312 3352  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:50:18.0312 3352  usbprint - ok
18:50:18.0343 3352  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:50:18.0343 3352  usbscan - ok
18:50:18.0359 3352  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:50:18.0359 3352  USBSTOR - ok
18:50:18.0390 3352  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:50:18.0390 3352  usbuhci - ok
18:50:18.0390 3352  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:50:18.0390 3352  VgaSave - ok
18:50:18.0406 3352  ViaIde - ok
18:50:18.0437 3352  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:50:18.0437 3352  VolSnap - ok
18:50:18.0500 3352  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:50:18.0546 3352  VSS - ok
18:50:18.0562 3352  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:50:18.0578 3352  W32Time - ok
18:50:18.0609 3352  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:50:18.0609 3352  Wanarp - ok
18:50:18.0625 3352  WDICA - ok
18:50:18.0640 3352  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:50:18.0656 3352  wdmaud - ok
18:50:18.0687 3352  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:50:18.0703 3352  WebClient - ok
18:50:18.0765 3352  [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
18:50:18.0781 3352  winachsf - ok
18:50:18.0875 3352  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:50:18.0906 3352  winmgmt - ok
18:50:18.0968 3352  [ 6EAA72FD9EF993EC1FA9A06DE65105DA ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
18:50:18.0968 3352  WmdmPmSN - ok
18:50:19.0078 3352  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:50:19.0093 3352  Wmi - ok
18:50:19.0140 3352  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:50:19.0156 3352  WmiApSrv - ok
18:50:19.0203 3352  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:50:19.0203 3352  wscsvc - ok
18:50:19.0234 3352  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:50:19.0250 3352  wuauserv - ok
18:50:19.0328 3352  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:50:19.0375 3352  WZCSVC - ok
18:50:19.0406 3352  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:50:19.0421 3352  xmlprov - ok
18:50:19.0421 3352  ================ Scan global ===============================
18:50:19.0484 3352  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:50:19.0546 3352  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
18:50:19.0562 3352  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
18:50:19.0593 3352  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
18:50:19.0593 3352  [Global] - ok
18:50:19.0593 3352  ================ Scan MBR ==================================
18:50:19.0625 3352  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:50:20.0296 3352  \Device\Harddisk0\DR0 - ok
18:50:20.0296 3352  ================ Scan VBR ==================================
18:50:20.0421 3352  [ C37CB42CDC9C46193B6390FD719418D3 ] \Device\Harddisk0\DR0\Partition1
18:50:20.0437 3352  \Device\Harddisk0\DR0\Partition1 - ok
18:50:20.0437 3352  ============================================================
18:50:20.0437 3352  Scan finished
18:50:20.0437 3352  ============================================================
18:50:20.0453 3348  Detected object count: 0
18:50:20.0453 3348  Actual detected object count: 0
18:50:27.0984 1080  ============================================================
18:50:27.0984 1080  Scan started
18:50:27.0984 1080  Mode: Manual; SigCheck; TDLFS;
18:50:27.0984 1080  ============================================================
18:50:28.0156 1080  ================ Scan system memory ========================
18:50:28.0171 1080  System memory - ok
18:50:28.0171 1080  ================ Scan services =============================
18:50:28.0265 1080  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
18:50:28.0484 1080  !SASCORE - ok
18:50:28.0562 1080  Abiosdsk - ok
18:50:28.0562 1080  abp480n5 - ok
18:50:28.0625 1080  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:50:30.0218 1080  ACPI - ok
18:50:30.0265 1080  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
18:50:30.0468 1080  ACPIEC - ok
18:50:30.0546 1080  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:50:30.0593 1080  AdobeFlashPlayerUpdateSvc - ok
18:50:30.0593 1080  adpu160m - ok
18:50:30.0625 1080  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
18:50:30.0796 1080  aec - ok
18:50:30.0828 1080  [ 15E655BAA989444F56787EF558823643 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
18:50:30.0859 1080  AegisP ( UnsignedFile.Multi.Generic ) - warning
18:50:30.0859 1080  AegisP - detected UnsignedFile.Multi.Generic (1)
18:50:30.0890 1080  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
18:50:30.0937 1080  AFD - ok
18:50:30.0953 1080  Aha154x - ok
18:50:30.0953 1080  aic78u2 - ok
18:50:30.0968 1080  aic78xx - ok
18:50:30.0984 1080  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
18:50:31.0156 1080  Alerter - ok
18:50:31.0171 1080  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
18:50:31.0281 1080  ALG - ok
18:50:31.0281 1080  AliIde - ok
18:50:31.0296 1080  amsint - ok
18:50:31.0328 1080  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
18:50:31.0406 1080  AppMgmt - ok
18:50:31.0421 1080  asc - ok
18:50:31.0421 1080  asc3350p - ok
18:50:31.0437 1080  asc3550 - ok
18:50:31.0562 1080  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:50:31.0593 1080  aspnet_state - ok
18:50:31.0625 1080  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        C:\WINDOWS\system32\drivers\aswFsBlk.sys
18:50:31.0656 1080  aswFsBlk - ok
18:50:31.0703 1080  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
18:50:31.0734 1080  aswMonFlt - ok
18:50:31.0781 1080  [ 7B43265F92257A21CBFD88E7A651044C ] AswRdr          C:\WINDOWS\system32\drivers\AswRdr.sys
18:50:31.0828 1080  AswRdr - ok
18:50:31.0828 1080  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
18:50:31.0875 1080  aswRvrt - ok
18:50:31.0921 1080  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
18:50:31.0968 1080  aswSnx - ok
18:50:32.0000 1080  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
18:50:32.0046 1080  aswSP - ok
18:50:32.0093 1080  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
18:50:32.0109 1080  aswTdi - ok
18:50:32.0140 1080  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
18:50:32.0156 1080  aswVmm - ok
18:50:32.0203 1080  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:50:32.0359 1080  AsyncMac - ok
18:50:32.0390 1080  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
18:50:32.0578 1080  atapi - ok
18:50:32.0578 1080  Atdisk - ok
18:50:32.0640 1080  [ ABC57A6F6070BAF9786C318F59F29F0B ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
18:50:32.0718 1080  Ati HotKey Poller - ok
18:50:32.0828 1080  [ 03621F7F968FF63713943405DEB777F9 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:50:32.0875 1080  ati2mtag - ok
18:50:32.0937 1080  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:50:33.0078 1080  Atmarpc - ok
18:50:33.0125 1080  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
18:50:33.0328 1080  AudioSrv - ok
18:50:33.0375 1080  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
18:50:33.0546 1080  audstub - ok
18:50:33.0640 1080  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:50:33.0656 1080  avast! Antivirus - ok
18:50:33.0718 1080  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
18:50:33.0890 1080  Beep - ok
18:50:33.0937 1080  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
18:50:34.0125 1080  BITS - ok
18:50:34.0171 1080  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
18:50:34.0218 1080  Browser - ok
18:50:34.0265 1080  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
18:50:34.0453 1080  cbidf2k - ok
18:50:34.0453 1080  cd20xrnt - ok
18:50:34.0500 1080  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
18:50:34.0718 1080  Cdaudio - ok
18:50:34.0750 1080  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
18:50:34.0968 1080  Cdfs - ok
18:50:34.0984 1080  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:50:35.0156 1080  Cdrom - ok
18:50:35.0171 1080  Changer - ok
18:50:35.0203 1080  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
18:50:35.0406 1080  CiSvc - ok
18:50:35.0421 1080  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
18:50:35.0609 1080  ClipSrv - ok
18:50:35.0640 1080  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:50:35.0671 1080  clr_optimization_v2.0.50727_32 - ok
18:50:35.0671 1080  CmdIde - ok
18:50:35.0687 1080  COMSysApp - ok
18:50:35.0687 1080  Cpqarray - ok
18:50:35.0750 1080  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
18:50:35.0906 1080  CryptSvc - ok
18:50:35.0921 1080  dac2w2k - ok
18:50:35.0921 1080  dac960nt - ok
18:50:35.0984 1080  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
18:50:36.0031 1080  DcomLaunch - ok
18:50:36.0093 1080  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
18:50:36.0265 1080  Dhcp - ok
18:50:36.0296 1080  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
18:50:36.0484 1080  Disk - ok
18:50:36.0500 1080  dmadmin - ok
18:50:36.0562 1080  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
18:50:36.0765 1080  dmboot - ok
18:50:36.0796 1080  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
18:50:36.0968 1080  dmio - ok
18:50:36.0984 1080  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
18:50:37.0140 1080  dmload - ok
18:50:37.0171 1080  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
18:50:37.0359 1080  dmserver - ok
18:50:37.0390 1080  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
18:50:37.0562 1080  DMusic - ok
18:50:37.0609 1080  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
18:50:37.0703 1080  Dnscache - ok
18:50:37.0750 1080  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
18:50:37.0906 1080  Dot3svc - ok
18:50:37.0921 1080  dpti2o - ok
18:50:37.0953 1080  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
18:50:38.0125 1080  drmkaud - ok
18:50:38.0171 1080  [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
18:50:38.0234 1080  E100B - ok
18:50:38.0265 1080  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
18:50:38.0437 1080  EapHost - ok
18:50:38.0531 1080  [ 16910F8B482919BB6035ED053B691692 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
18:50:38.0593 1080  ehSched - ok
18:50:38.0640 1080  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
18:50:38.0812 1080  ERSvc - ok
18:50:38.0859 1080  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
18:50:38.0906 1080  Eventlog - ok
18:50:38.0953 1080  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
18:50:39.0000 1080  EventSystem - ok
18:50:39.0031 1080  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
18:50:39.0203 1080  Fastfat - ok
18:50:39.0234 1080  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:50:39.0312 1080  FastUserSwitchingCompatibility - ok
18:50:39.0359 1080  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
18:50:39.0531 1080  Fdc - ok
18:50:39.0562 1080  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
18:50:39.0750 1080  Fips - ok
18:50:39.0781 1080  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:50:39.0953 1080  Flpydisk - ok
18:50:40.0000 1080  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
18:50:40.0156 1080  FltMgr - ok
18:50:40.0218 1080  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:50:40.0234 1080  FontCache3.0.0.0 - ok
18:50:40.0234 1080  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:50:40.0406 1080  Fs_Rec - ok
18:50:40.0421 1080  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:50:40.0593 1080  Ftdisk - ok
18:50:40.0625 1080  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:50:40.0765 1080  Gpc - ok
18:50:40.0781 1080  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:50:40.0953 1080  HDAudBus - ok
18:50:41.0031 1080  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:50:41.0203 1080  helpsvc - ok
18:50:41.0234 1080  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
18:50:41.0406 1080  HidServ - ok
18:50:41.0453 1080  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:50:41.0640 1080  hidusb - ok
18:50:41.0656 1080  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
18:50:41.0828 1080  hkmsvc - ok
18:50:41.0828 1080  hpn - ok
18:50:41.0875 1080  [ 77E4FF0B73BC0AEAAF39BF0C8104231F ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
18:50:41.0937 1080  HSFHWBS2 - ok
18:50:42.0000 1080  [ 60E1604729A15EF4A3B05F298427B3B1 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
18:50:42.0046 1080  HSF_DP - ok
18:50:42.0109 1080  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
18:50:42.0171 1080  HTTP - ok
18:50:42.0203 1080  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
18:50:42.0359 1080  HTTPFilter - ok
18:50:42.0359 1080  i2omgmt - ok
18:50:42.0375 1080  i2omp - ok
18:50:42.0453 1080  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:50:42.0500 1080  idsvc - ok
18:50:42.0546 1080  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
18:50:42.0703 1080  Imapi - ok
18:50:42.0750 1080  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
18:50:42.0921 1080  ImapiService - ok
18:50:42.0937 1080  ini910u - ok
18:50:42.0953 1080  IntelIde - ok
18:50:42.0984 1080  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:50:43.0140 1080  intelppm - ok
18:50:43.0171 1080  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
18:50:43.0343 1080  Ip6Fw - ok
18:50:43.0375 1080  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:50:43.0546 1080  IpFilterDriver - ok
18:50:43.0593 1080  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:50:43.0750 1080  IpInIp - ok
18:50:43.0796 1080  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:50:43.0968 1080  IpNat - ok
18:50:43.0984 1080  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:50:44.0171 1080  IPSec - ok
18:50:44.0203 1080  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
18:50:44.0281 1080  IRENUM - ok
18:50:44.0312 1080  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:50:44.0484 1080  isapnp - ok
18:50:44.0578 1080  [ 9AE07549A0D691A103FAF8946554BDB7 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
18:50:44.0609 1080  JavaQuickStarterService - ok
18:50:44.0609 1080  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:50:44.0812 1080  Kbdclass - ok
18:50:44.0843 1080  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:50:45.0000 1080  kbdhid - ok
18:50:45.0015 1080  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
18:50:45.0187 1080  kmixer - ok
18:50:45.0234 1080  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
18:50:45.0406 1080  KSecDD - ok
18:50:45.0453 1080  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
18:50:45.0531 1080  lanmanserver - ok
18:50:45.0593 1080  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:50:45.0656 1080  lanmanworkstation - ok
18:50:45.0656 1080  lbrtfdc - ok
18:50:45.0703 1080  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
18:50:45.0921 1080  LmHosts - ok
18:50:45.0968 1080  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
18:50:46.0000 1080  MBAMProtector - ok
18:50:46.0078 1080  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:50:46.0109 1080  MBAMScheduler - ok
18:50:46.0156 1080  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\mbamswissarmy.sys
18:50:46.0171 1080  MBAMSwissArmy - ok
18:50:46.0203 1080  [ EEAEA6514BA7C9D273B5E87C4E1AAB30 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:50:46.0250 1080  mdmxsdk - ok
18:50:46.0281 1080  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
18:50:46.0437 1080  Messenger - ok
18:50:46.0484 1080  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
18:50:46.0656 1080  mnmdd - ok
18:50:46.0687 1080  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
18:50:46.0859 1080  mnmsrvc - ok
18:50:46.0890 1080  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
18:50:47.0078 1080  Modem - ok
18:50:47.0109 1080  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
18:50:47.0250 1080  MODEMCSA - ok
18:50:47.0265 1080  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:50:47.0437 1080  Mouclass - ok
18:50:47.0468 1080  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:50:47.0625 1080  mouhid - ok
18:50:47.0656 1080  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
18:50:47.0828 1080  MountMgr - ok
18:50:47.0906 1080  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:50:47.0937 1080  MozillaMaintenance - ok
18:50:47.0953 1080  mraid35x - ok
18:50:47.0984 1080  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:50:48.0140 1080  MRxDAV - ok
18:50:48.0203 1080  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:50:48.0281 1080  MRxSmb - ok
18:50:48.0312 1080  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
18:50:48.0453 1080  MSDTC - ok
18:50:48.0484 1080  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
18:50:48.0640 1080  Msfs - ok
18:50:48.0656 1080  MSIServer - ok
18:50:48.0671 1080  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:50:48.0812 1080  MSKSSRV - ok
18:50:48.0828 1080  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:50:48.0968 1080  MSPCLOCK - ok
18:50:48.0984 1080  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
18:50:49.0171 1080  MSPQM - ok
18:50:49.0218 1080  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:50:49.0359 1080  mssmbios - ok
18:50:49.0406 1080  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
18:50:49.0468 1080  Mup - ok
18:50:49.0515 1080  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
18:50:49.0671 1080  napagent - ok
18:50:49.0718 1080  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
18:50:49.0875 1080  NDIS - ok
18:50:49.0921 1080  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:50:49.0984 1080  NdisTapi - ok
18:50:50.0000 1080  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:50:50.0187 1080  Ndisuio - ok
18:50:50.0187 1080  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:50:50.0359 1080  NdisWan - ok
18:50:50.0406 1080  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
18:50:50.0453 1080  NDProxy - ok
18:50:50.0468 1080  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
18:50:50.0625 1080  NetBIOS - ok
18:50:50.0656 1080  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
18:50:50.0828 1080  NetBT - ok
18:50:50.0843 1080  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
18:50:51.0015 1080  NetDDE - ok
18:50:51.0015 1080  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
18:50:51.0171 1080  NetDDEdsdm - ok
18:50:51.0203 1080  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
18:50:51.0343 1080  Netlogon - ok
18:50:51.0375 1080  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
18:50:51.0546 1080  Netman - ok
18:50:51.0578 1080  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:50:51.0609 1080  NetTcpPortSharing - ok
18:50:51.0671 1080  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
18:50:51.0687 1080  Nla - ok
18:50:51.0734 1080  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
18:50:51.0906 1080  Npfs - ok
18:50:51.0953 1080  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
18:50:52.0125 1080  Ntfs - ok
18:50:52.0156 1080  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
18:50:52.0312 1080  NtLmSsp - ok
18:50:52.0359 1080  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
18:50:52.0531 1080  NtmsSvc - ok
18:50:52.0546 1080  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
18:50:52.0703 1080  Null - ok
18:50:52.0718 1080  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:50:52.0875 1080  NwlnkFlt - ok
18:50:52.0890 1080  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:50:53.0046 1080  NwlnkFwd - ok
18:50:53.0093 1080  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
18:50:53.0250 1080  Parport - ok
18:50:53.0281 1080  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
18:50:53.0421 1080  PartMgr - ok
18:50:53.0453 1080  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
18:50:53.0609 1080  ParVdm - ok
18:50:53.0609 1080  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
18:50:53.0765 1080  PCI - ok
18:50:53.0765 1080  PCIDump - ok
18:50:53.0812 1080  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
18:50:53.0953 1080  PCIIde - ok
18:50:53.0984 1080  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
18:50:54.0140 1080  Pcmcia - ok
18:50:54.0156 1080  PDCOMP - ok
18:50:54.0156 1080  PDFRAME - ok
18:50:54.0171 1080  PDRELI - ok
18:50:54.0171 1080  PDRFRAME - ok
18:50:54.0187 1080  perc2 - ok
18:50:54.0187 1080  perc2hib - ok
18:50:54.0234 1080  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
18:50:54.0281 1080  PlugPlay - ok
18:50:54.0296 1080  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
18:50:54.0453 1080  PolicyAgent - ok
18:50:54.0500 1080  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:50:54.0656 1080  PptpMiniport - ok
18:50:54.0671 1080  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:50:54.0828 1080  ProtectedStorage - ok
18:50:54.0828 1080  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
18:50:54.0968 1080  PSched - ok
18:50:54.0984 1080  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:50:55.0156 1080  Ptilink - ok
18:50:55.0187 1080  [ 40F2031BD9148D3194353EA7DEC97A07 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:50:55.0250 1080  PxHelp20 - ok
18:50:55.0250 1080  ql1080 - ok
18:50:55.0265 1080  Ql10wnt - ok
18:50:55.0265 1080  ql12160 - ok
18:50:55.0281 1080  ql1240 - ok
18:50:55.0281 1080  ql1280 - ok
18:50:55.0343 1080  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:50:55.0500 1080  RasAcd - ok
18:50:55.0546 1080  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
18:50:55.0734 1080  RasAuto - ok
18:50:55.0765 1080  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:50:55.0953 1080  Rasl2tp - ok
18:50:55.0984 1080  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
18:50:56.0187 1080  RasMan - ok
18:50:56.0187 1080  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:50:56.0328 1080  RasPppoe - ok
18:50:56.0328 1080  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
18:50:56.0484 1080  Raspti - ok
18:50:56.0515 1080  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:50:56.0656 1080  Rdbss - ok
18:50:56.0671 1080  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:50:56.0812 1080  RDPCDD - ok
18:50:56.0828 1080  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:50:57.0000 1080  rdpdr - ok
18:50:57.0046 1080  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
18:50:57.0093 1080  RDPWD - ok
18:50:57.0140 1080  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
18:50:57.0296 1080  RDSessMgr - ok
18:50:57.0312 1080  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
18:50:57.0484 1080  redbook - ok
18:50:57.0515 1080  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
18:50:57.0671 1080  RemoteAccess - ok
18:50:57.0687 1080  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
18:50:57.0843 1080  RemoteRegistry - ok
18:50:57.0875 1080  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
18:50:58.0031 1080  RpcLocator - ok
18:50:58.0062 1080  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
18:50:58.0125 1080  RpcSs - ok
18:50:58.0140 1080  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
18:50:58.0296 1080  RSVP - ok
18:50:58.0359 1080  [ EE5AD71A1F576D4D58D8D014560EB856 ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
18:50:58.0437 1080  rt2870 - ok
18:50:58.0484 1080  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
18:50:58.0625 1080  SamSs - ok
18:50:58.0656 1080  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
18:50:58.0671 1080  SASDIFSV - ok
18:50:58.0687 1080  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
18:50:58.0718 1080  SASKUTIL - ok
18:50:58.0750 1080  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
18:50:58.0906 1080  SCardSvr - ok
18:50:58.0937 1080  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
18:50:59.0093 1080  Schedule - ok
18:50:59.0125 1080  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:50:59.0203 1080  Secdrv - ok
18:50:59.0218 1080  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
18:50:59.0390 1080  seclogon - ok
18:50:59.0421 1080  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
18:50:59.0562 1080  SENS - ok
18:50:59.0609 1080  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
18:50:59.0781 1080  Serial - ok
18:50:59.0828 1080  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
18:50:59.0984 1080  Sfloppy - ok
18:51:00.0031 1080  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
18:51:00.0187 1080  SharedAccess - ok
18:51:00.0203 1080  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:51:00.0250 1080  ShellHWDetection - ok
18:51:00.0250 1080  Simbad - ok
18:51:00.0265 1080  Sparrow - ok
18:51:00.0281 1080  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
18:51:00.0437 1080  splitter - ok
18:51:00.0453 1080  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
18:51:00.0515 1080  Spooler - ok
18:51:00.0531 1080  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
18:51:00.0625 1080  sr - ok
18:51:00.0671 1080  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
18:51:00.0765 1080  srservice - ok
18:51:00.0812 1080  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
18:51:00.0890 1080  Srv - ok
18:51:00.0937 1080  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
18:51:01.0031 1080  SSDPSRV - ok
18:51:01.0093 1080  [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA           C:\WINDOWS\system32\drivers\sthda.sys
18:51:01.0171 1080  STHDA - ok
18:51:01.0234 1080  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
18:51:01.0375 1080  stisvc - ok
18:51:01.0406 1080  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
18:51:01.0562 1080  swenum - ok
18:51:01.0593 1080  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
18:51:01.0781 1080  swmidi - ok
18:51:01.0781 1080  SwPrv - ok
18:51:01.0796 1080  symc810 - ok
18:51:01.0796 1080  symc8xx - ok
18:51:01.0812 1080  sym_hi - ok
18:51:01.0812 1080  sym_u3 - ok
18:51:01.0843 1080  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
18:51:02.0015 1080  sysaudio - ok
18:51:02.0046 1080  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
18:51:02.0203 1080  SysmonLog - ok
18:51:02.0234 1080  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
18:51:02.0375 1080  TapiSrv - ok
18:51:02.0437 1080  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:51:02.0484 1080  Tcpip - ok
18:51:02.0515 1080  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
18:51:02.0671 1080  TDPIPE - ok
18:51:02.0703 1080  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
18:51:02.0843 1080  TDTCP - ok
18:51:02.0875 1080  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
18:51:03.0015 1080  TermDD - ok
18:51:03.0062 1080  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
18:51:03.0234 1080  TermService - ok
18:51:03.0250 1080  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
18:51:03.0281 1080  Themes - ok
18:51:03.0343 1080  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
18:51:03.0437 1080  TlntSvr - ok
18:51:03.0515 1080  [ 0765EE4A7A0D6609BF91CA2E4700E885 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
18:51:03.0531 1080  TomTomHOMEService - ok
18:51:03.0546 1080  TosIde - ok
18:51:03.0578 1080  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
18:51:03.0734 1080  TrkWks - ok
18:51:03.0765 1080  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
18:51:03.0921 1080  Udfs - ok
18:51:03.0921 1080  ultra - ok
18:51:03.0968 1080  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
18:51:04.0140 1080  Update - ok
18:51:04.0171 1080  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
18:51:04.0281 1080  upnphost - ok
18:51:04.0296 1080  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
18:51:04.0484 1080  UPS - ok
18:51:04.0531 1080  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:51:04.0703 1080  usbccgp - ok
18:51:04.0734 1080  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:51:04.0890 1080  usbehci - ok
18:51:04.0921 1080  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:51:05.0078 1080  usbhub - ok
18:51:05.0109 1080  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:51:05.0281 1080  usbprint - ok
18:51:05.0359 1080  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:51:05.0531 1080  usbscan - ok
18:51:05.0562 1080  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:51:05.0734 1080  USBSTOR - ok
18:51:05.0765 1080  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:51:05.0937 1080  usbuhci - ok
18:51:05.0953 1080  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
18:51:06.0140 1080  VgaSave - ok
18:51:06.0156 1080  ViaIde - ok
18:51:06.0187 1080  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
18:51:06.0359 1080  VolSnap - ok
18:51:06.0390 1080  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
18:51:06.0500 1080  VSS - ok
18:51:06.0515 1080  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
18:51:06.0703 1080  W32Time - ok
18:51:06.0734 1080  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:51:06.0906 1080  Wanarp - ok
18:51:06.0906 1080  WDICA - ok
18:51:06.0953 1080  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
18:51:07.0109 1080  wdmaud - ok
18:51:07.0140 1080  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
18:51:07.0296 1080  WebClient - ok
18:51:07.0343 1080  [ F59ED5A43B988A18EF582BB07B2327A7 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
18:51:07.0406 1080  winachsf - ok
18:51:07.0500 1080  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
18:51:07.0671 1080  winmgmt - ok
18:51:07.0703 1080  [ 6EAA72FD9EF993EC1FA9A06DE65105DA ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
18:51:07.0734 1080  WmdmPmSN - ok
18:51:07.0781 1080  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
18:51:07.0828 1080  Wmi - ok
18:51:07.0859 1080  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:51:08.0000 1080  WmiApSrv - ok
18:51:08.0015 1080  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
18:51:08.0203 1080  wscsvc - ok
18:51:08.0234 1080  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
18:51:08.0375 1080  wuauserv - ok
18:51:08.0453 1080  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
18:51:08.0625 1080  WZCSVC - ok
18:51:08.0640 1080  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
18:51:08.0796 1080  xmlprov - ok
18:51:08.0796 1080  ================ Scan global ===============================
18:51:08.0843 1080  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
18:51:08.0890 1080  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
18:51:08.0906 1080  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
18:51:08.0937 1080  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
18:51:08.0937 1080  [Global] - ok
18:51:08.0937 1080  ================ Scan MBR ==================================
18:51:08.0968 1080  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
18:51:09.0203 1080  \Device\Harddisk0\DR0 - ok
18:51:09.0203 1080  ================ Scan VBR ==================================
18:51:09.0203 1080  [ C37CB42CDC9C46193B6390FD719418D3 ] \Device\Harddisk0\DR0\Partition1
18:51:09.0203 1080  \Device\Harddisk0\DR0\Partition1 - ok
18:51:09.0203 1080  ============================================================
18:51:09.0203 1080  Scan finished
18:51:09.0203 1080  ============================================================
18:51:09.0312 3636  Detected object count: 1
18:51:09.0312 3636  Actual detected object count: 1
18:51:19.0718 3636  C:\WINDOWS\system32\DRIVERS\AegisP.sys - copied to quarantine
18:51:19.0796 3636  HKLM\SYSTEM\ControlSet001\services\AegisP - will be deleted on reboot
18:51:19.0812 3636  HKLM\SYSTEM\ControlSet003\services\AegisP - will be deleted on reboot
18:51:19.0843 3636  C:\WINDOWS\system32\DRIVERS\AegisP.sys - will be deleted on reboot
18:51:19.0843 3636  AegisP ( UnsignedFile.Multi.Generic ) - User select action: Delete
18:51:27.0250 3232  Deinitialize success



#4 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 26 July 2013 - 12:36 AM

Everything you took out with TDSS-Killer was legit, so you removed essential system files.

Please download and unzip TDSSQLook to your desktop: http://www.malwareinfo.nl/tools/TDSSQlook.exe

 

Run the tool by double click and hit scan.

 

When finished, it creates a log. Post it up here.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#5 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 26 July 2013 - 12:25 PM

Ahhh so it appears the mystery has been solved and I'm simply an idiot.  My girlfriend will be happy to hear her suspicion is accurate.

 

Here is the log:

 

TDSSKiller Quarantine Information log
TDSS Qlook Version 1.0.0.5 - Pete - Fri 07/26/2013 - 13:22:42.73.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3  
***** START SCAN Fri 07/26/2013 13:22:44.62 *****
 
---------- TDSSKiller logs ----------
 
TDSSKiller.2.8.16.0_24.07.2013_16.59.06_log.txt
TDSSKiller.2.8.16.0_24.07.2013_17.05.30_log.txt
TDSSKiller.2.8.16.0_24.07.2013_17.23.48_log.txt
TDSSKiller.2.8.16.0_24.07.2013_18.34.25_log.txt
TDSSKiller.2.8.16.0_24.07.2013_18.49.44_log.txt
 
---------- TDSSStarter logs ----------
 
 
---------- DIR LIST ----------
 
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000\tsk0000.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000\tsk0000.dta
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000\object.ini
C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000\tsk0000.ini
 
---------- INI FILES ----------
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: AegisP
Type: Kernel driver (0x1)
Start: Auto (0x2)
ImagePath: system32\DRIVERS\AegisP.sys
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\system32\DRIVERS\AegisP.sys
md5: 15E655BAA989444F56787EF558823643
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: CCALib8
Type: n/a (0x10)
Start: Auto (0x2)
ImagePath: C:\Program Files\Canon\CAL\CALMAIN.exe
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\Program Files\Canon\CAL\CALMAIN.exe
md5: 8EF654045E518AC00E52E7A1E2D3AD70
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: ehRecvr
Type: n/a (0x10)
Start: Auto (0x2)
ImagePath: C:\WINDOWS\eHome\ehRecvr.exe
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\eHome\ehRecvr.exe
md5: 27434C42A13C11F92CA45840B720D671
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: MHN
Type: n/a (0x20)
Start: Demand (0x3)
ImagePath: %SystemRoot%\System32\svchost.exe -k netsvcs
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\System32\mhn.dll
md5: B7521F69C0A9B29D356157229376FB21
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: MHNDRV
Type: Kernel driver (0x1)
Start: Demand (0x3)
ImagePath: system32\DRIVERS\mhndrv.sys
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\system32\DRIVERS\mhndrv.sys
md5: 7F2F1D2815A6449D346FCCCBC569FBD6
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: UMWdf
Type: n/a (0x10)
Start: Demand (0x3)
ImagePath: C:\WINDOWS\system32\wdfmgr.exe
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\system32\wdfmgr.exe
md5: 1977313E362C8732C1AF4D1BCB9C06B7
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: AegisP
Type: Kernel driver (0x1)
Start: Auto (0x2)
ImagePath: system32\DRIVERS\AegisP.sys
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.34.25\susp0000\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\system32\DRIVERS\AegisP.sys
md5: 15E655BAA989444F56787EF558823643
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\object.ini
 
[InfectedObject]
Verdict: UnsignedFile.Multi.Generic
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000\object.ini
 
[InfectedObject]
Type: Service
Name: AegisP
Type: Kernel driver (0x1)
Start: Auto (0x2)
ImagePath: system32\DRIVERS\AegisP.sys
 
 
=== C:\TDSSKiller_Quarantine\24.07.2013_18.49.44\susp0000\svc0000\tsk0000.ini
 
[InfectedFile]
Type: Raw image
Src: C:\WINDOWS\system32\DRIVERS\AegisP.sys
md5: 15E655BAA989444F56787EF558823643
 
 
***** END SCAN Fri 07/26/2013 13:22:45.60 *****
 



#6 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 26 July 2013 - 12:33 PM

I'm tempted to hit the "fix" option in the TDSSQLook but I'll wait for your reply...  I don't want to make a mistake and further enhance the legend of my idiocy.



#7 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 27 July 2013 - 07:56 AM

Run the tool again and hit fix.

Copy the content of the following box into the opening textfield:

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\tsk0000.dta AegisP.sys
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0000\svc0000\AegisP.sys C:\WINDOWS\system32\DRIVERS

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\tsk0000.dta CALMAIN.exe
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0001\svc0000\CALMAIN.exe C:\Program Files\Canon\CAL

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\tsk0000.dta ehRecvr.exe
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0002\svc0000\ehRecvr.exe C:\WINDOWS\eHome

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\tsk0000.dta mhn.dll
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0003\svc0000\mhn.dll C:\WINDOWS\System32

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\tsk0000.dta mhndrv.sys
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004\svc0000\mhndrv.sys C:\WINDOWS\system32\DRIVERS

REN C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\tsk0000.dta wdfmgr.exe
COPY C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0005\svc0000\wdfmgr.exe C:\WINDOWS\system32

Now close this window. When prompted, save the file next to the tool as 1.bat.

Reboot and do the following:

 

Scan with Farbar´s Service Scanner

Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
    • Windows Defender

  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#8 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 27 July 2013 - 10:56 AM

Farbar Service Scanner Version: 26-07-2013
Ran by Pete (administrator) on 27-07-2013 at 11:54:13
Running from "E:\"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
aswTdi(8) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0A0000000500000001000000020000000300000004000000080000000600000007000000090000000A000000
IpSec Tag value is correct.

**** End of log ****



#9 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 27 July 2013 - 11:03 AM

I'm not sure it matters but I was never prompted to rename the file after running the fix and copying the data into the open textfield.  I hit save and the window just disappeared and brought me back to the desktop.  Nev er gave me the option of renaming to 1.bat.



#10 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 29 July 2013 - 12:45 AM

good!

Now zip the content of C:\TDSSKiller_Quarantine\24.07.2013_16.59.08\susp0004

and upload the file here: http://www.bleepingcomputer.com/submit-malware.php?channel=156


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#11 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 29 July 2013 - 05:15 PM

File submitted...  awaiting further instruction.



#12 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 30 July 2013 - 03:05 AM

ESET Services Repair

Download ESET services repair from here and save the file to your desktop.

Run it by right click --> "run as administrator".

After the tool is finished, reboot.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#13 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 30 July 2013 - 04:24 PM

Completed.

 

I tried turning on the wireless network connection (I had it disabled) and still not connecting.  Says acquiring address but does not connect.


Edited by Pac1012, 30 July 2013 - 08:09 PM.


#14 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:38 AM

Posted 31 July 2013 - 03:35 AM

Do a repair installation following these steps: http://www.wikihow.com/Do-a-Windows-XP-%22Repair-Install%22


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#15 Pac1012

Pac1012
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:07:38 PM

Posted 31 July 2013 - 07:49 AM

I don't have an XP disk..  Windows was already installed via Dell when I bought the computer.
 
Is there a way around this or do I need the disk?


EDIT: just found this article.. I'll give this a shot.

http://www.wikihow.com/Reinstall-Windows-XP-Without-the-CD

Edited by Pac1012, 31 July 2013 - 07:56 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users