[SoullessZ]

I use my internet and when I open browser or watch video etc etc.. It really over downloads.. like instead of a normal DL of 20 or whatever.. It jumps to 200-400-600 odd...
I notice this as I use bit meter, I load a basic website like google and it jumps to 200 odd DL speed and it's not normal.

Why? Do I have a virus or something? I have scanned :/

I need help!

So I am suppose to post my OTL.txt log here?

OTL logfile created on: 8/7/2012 3:01:35 PM - Run 1
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Neox\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.29 Gb Available Physical Memory | 39.69% Memory free
6.73 Gb Paging File | 4.04 Gb Available in Paging File | 60.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 81.54 Gb Free Space | 35.01% Space Free | Partition Type: NTFS
Drive D: | 124.45 Gb Total Space | 60.71 Gb Free Space | 48.79% Space Free | Partition Type: NTFS
Drive E: | 19.53 Gb Total Space | 3.99 Gb Free Space | 20.44% Space Free | Partition Type: NTFS
Drive F: | 5.07 Gb Total Space | 0.91 Gb Free Space | 17.90% Space Free | Partition Type: NTFS

Computer Name: NEOX-PC | User Name: Neox | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/08/07 15:01:15 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Neox\Downloads\OTL.exe
PRC - [2012/07/11 04:07:56 | 000,515,584 | ---- | M] (LOL Replay) -- C:\Program Files\LOLReplay\LOLRecorder.exe
PRC - [2012/07/07 12:22:42 | 003,905,408 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/05/26 06:32:44 | 004,327,744 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe
PRC - [2012/05/24 10:03:45 | 002,686,976 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.90\deploy\LoLLauncher.exe
PRC - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/03/26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012/03/14 11:32:08 | 000,010,240 | ---- | M] (SeriousBit) -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
PRC - [2011/11/10 04:11:50 | 000,417,792 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/10/29 12:42:47 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
PRC - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/04/17 09:05:26 | 001,462,272 | ---- | M] ( ) -- C:\Program Files\Codebox\BitMeter\BitMeter2.exe
PRC - [2010/09/08 15:58:44 | 000,144,384 | ---- | M] (Adobe Systems Inc.) -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.0.187\deploy\LolClient.exe
PRC - [2009/08/08 02:38:18 | 000,109,056 | ---- | M] (none) -- C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe
PRC - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/01/26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
PRC - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
PRC - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


========== Modules (No Company Name) ==========

MOD - [2012/08/07 11:33:09 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/08/07 11:33:09 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/07/31 06:36:14 | 000,442,392 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppgooglenaclpluginchrome.dll
MOD - [2012/07/31 06:36:13 | 012,235,288 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll
MOD - [2012/07/31 06:36:12 | 003,997,720 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll
MOD - [2012/07/31 06:34:57 | 000,526,872 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\libglesv2.dll
MOD - [2012/07/31 06:34:55 | 000,104,984 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\libegl.dll
MOD - [2012/07/31 06:34:45 | 000,144,424 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\avutil-51.dll
MOD - [2012/07/31 06:34:43 | 000,266,792 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\avformat-54.dll
MOD - [2012/07/31 06:34:42 | 002,480,680 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\avcodec-54.dll
MOD - [2012/07/11 04:07:54 | 000,156,160 | ---- | M] () -- C:\Program Files\LOLReplay\Air.dll
MOD - [2012/07/11 04:07:50 | 000,052,224 | ---- | M] () -- C:\Program Files\LOLReplay\Launcher.dll
MOD - [2012/07/11 04:07:48 | 001,036,288 | ---- | M] () -- C:\Program Files\LOLReplay\LOLUtils.dll
MOD - [2012/06/14 22:19:38 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll
MOD - [2012/06/14 22:19:32 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll
MOD - [2012/06/14 22:19:24 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7343fbab1ba137db2f8b284047ef3f3c\PresentationFramework.ni.dll
MOD - [2012/06/14 22:17:30 | 012,219,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b6293b0c23321c255c2530aea8e32bb\PresentationCore.ni.dll
MOD - [2012/05/24 10:03:45 | 002,686,976 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.90\deploy\LoLLauncher.exe
MOD - [2012/05/10 17:14:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll
MOD - [2012/05/10 15:30:30 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll
MOD - [2012/05/10 15:29:42 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\0f2b877ed16daa577f95be735a63d19c\System.Core.ni.dll
MOD - [2012/05/10 15:29:37 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c8c3ab08933fef9fb6657da871395c46\PresentationFramework.Aero.ni.dll
MOD - [2012/05/10 15:29:10 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\54426ee1881b42af5b090e223f43823c\WindowsBase.ni.dll
MOD - [2012/05/10 15:29:08 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll
MOD - [2012/05/10 15:28:54 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
MOD - [2012/04/19 12:54:21 | 004,770,176 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.0.187\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
MOD - [2012/01/10 00:44:07 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/01/10 00:44:07 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2011/11/10 03:11:06 | 000,037,376 | ---- | M] () -- C:\Windows\System32\atitmpxx.dll
MOD - [2011/10/29 12:42:47 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
MOD - [2011/07/14 17:01:59 | 000,958,976 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avformat-53.dll
MOD - [2011/07/14 17:01:59 | 000,132,096 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avutil-51.dll
MOD - [2011/07/14 17:01:58 | 007,006,208 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avcodec-53.dll
MOD - [2011/07/14 17:01:58 | 000,239,616 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\swscale-0.dll
MOD - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
MOD - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
MOD - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007/09/02 22:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/08/05 14:38:42 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/08/04 19:08:23 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/08/03 15:53:26 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/04/22 15:12:21 | 003,417,376 | ---- | M] () [Disabled | Stopped] -- C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll -- (Akamai)
SRV - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012/03/14 11:32:08 | 000,010,240 | ---- | M] (SeriousBit) [Auto | Running] -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe -- (NetBalancerService)
SRV - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2011/08/07 22:40:00 | 003,804,120 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/01/21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva391.sys -- (XDva391)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva390.sys -- (XDva390)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/11/10 04:44:12 | 008,913,920 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/11/10 03:12:20 | 000,263,680 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011/10/17 18:40:34 | 000,082,960 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdLH3.sys -- (AtiHDAudioService)
DRV - [2011/07/22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/05/18 17:11:14 | 000,031,016 | ---- | M] (SeriousBit) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nbdrv.sys -- (Nbdrv)
DRV - [2010/03/25 09:49:06 | 000,082,360 | ---- | M] (Locktime Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\nltdi.sys -- (nltdi)
DRV - [2007/12/28 14:58:30 | 000,289,280 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wg111v3.sys -- (RTL8187B)
DRV - [2007/12/26 19:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTL8187)
DRV - [2007/04/23 10:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2007/01/19 12:20:54 | 000,021,728 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV - [2006/11/02 08:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.c...sa&d=2012-04-25 12:54:12&v=11.1.0.12&sap=hp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?r...GB&dcc=GB&opt=0
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6E 5A 97 A2 C5 E5 CC 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...sa&d=2012-04-25 12:54:12&v=11.0.0.9&sap=dsp&q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "chrome://speeddial/content/speeddial.xul"
FF - prefs.js..keyword.URL: " http://www.google.co...ogle Search&q="
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@gametap.com/npdd,version=1.0: C:\Program Files\Downloader\npdd.dll (Metaboli)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]

[2012/04/21 21:34:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Extensions
[2012/08/05 14:45:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions
[2012/04/21 21:36:23 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/08/05 14:45:38 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/08/05 14:41:13 | 000,276,167 | ---- | M] () (No name found) -- C:\USERS\NEOX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\93HKVLA5.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
[2012/08/05 14:38:43 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/09 15:20:02 | 000,003,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/03/13 05:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/13 05:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.60\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.1.0\\npsitesafety.dll
CHR - plugin: Java™ Platform SE 6 U33 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.330.3 (Enabled) = C:\Windows\system32\npdeployJava1.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: QUAKE LIVE (Enabled) = C:\ProgramData\id Software\QuakeLive\npquakezero.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Neox\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Kagamine Rin & Len Theme = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajbmlfcphelnfmnfmknjhhnajbihaaa\2_0\
CHR - Extension: AdBlock = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.39_0\
CHR - Extension: Speed Dial 2 = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.6.0.9_0\
CHR - Extension: Gmail = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [HF_G_Jul] "C:\Program Files\AVG Secure Search\HF_G_Jul.exe" /DoAction File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Akamai NetSession Interface] C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKCU..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKCU..\Run: [WLAN Optimizer] C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe (none)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.syste...yri_4.5.1.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15E874B8-9A27-4D92-8424-88E7DA202274}: NameServer = 192.168.0.1,192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/12/19 23:53:56 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/11/17 17:30:14 | 000,000,044 | ---- | M] () - D:\AutoRun.inf -- [ NTFS ]
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell - "" = AutoRun
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell\AutoRun\command - "" = M:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012/08/01 11:33:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2012/08/01 11:19:54 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Aeria Games
[2012/08/01 11:19:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Aeria Games
[2012/07/31 15:25:55 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin
[2012/07/31 15:23:41 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/07/30 18:06:11 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\APN
[2012/07/30 18:03:50 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/07/29 22:00:13 | 000,000,000 | ---D | C] -- C:\Users\Neox\Desktop\Music
[2012/07/28 18:51:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBalancer
[2012/07/28 18:51:38 | 000,031,016 | ---- | C] (SeriousBit) -- C:\Windows\System32\drivers\nbdrv.sys
[2012/07/27 16:00:36 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/07/27 16:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012
[2012/07/27 15:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012/07/27 15:47:16 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! US
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\beanfun!
[2012/07/27 12:12:00 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/07/27 01:44:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/07/27 01:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/07/27 01:42:40 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Locktime
[2012/07/27 01:42:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter 2 Monitor
[2012/07/27 01:42:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Locktime
[2012/07/27 01:42:05 | 000,000,000 | ---D | C] -- C:\Program Files\NetLimiter 2 Monitor
[2012/07/25 16:09:10 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Downloaded Installations
[2012/07/24 14:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/24 14:10:10 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/07/21 22:46:29 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\CrystalIdea Software
[2012/07/21 22:45:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/21 22:45:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/21 14:21:42 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Xor-Net
[2012/07/20 13:45:27 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\WhatPulse
[2012/07/20 13:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhatPulse
[2012/07/19 17:54:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Xunlei
[2012/07/19 17:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Thunder Network
[2012/07/19 17:52:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Thunder Network
[2012/07/19 17:52:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Thunder Network
[2012/07/19 17:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\Thunder Network
[2012/07/14 21:37:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! UK
[2012/07/11 16:20:58 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCraft II
[2012/07/11 13:10:31 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Downloader
[2012/07/11 13:10:24 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloader
[2012/07/11 13:10:23 | 000,000,000 | ---D | C] -- C:\Program Files\Downloader
[2012/07/09 00:56:32 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/07/08 23:04:44 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Macromedia
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/08/07 15:06:01 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000UA.job
[2012/08/07 15:04:33 | 003,582,864 | ---- | M] (DevAge, Vestris Inc. & Contributors) -- C:\Users\Neox\Desktop\GROLauncherEMEA.exe
[2012/08/07 14:52:59 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/08/07 13:30:44 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/07 13:30:44 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/07 13:06:00 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000Core.job
[2012/08/07 11:30:41 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/07 11:30:37 | 3488,931,840 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/06 19:50:02 | 000,657,354 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/06 19:50:02 | 000,125,636 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/04 01:32:24 | 244,718,947 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:21 | 000,237,568 | ---- | M] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | M] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\StarCraft II.lnk
[2012/07/28 18:51:41 | 000,000,959 | ---- | M] () -- C:\Users\Public\Desktop\NetBalancer Tray.lnk
[2012/07/28 18:51:41 | 000,000,949 | ---- | M] () -- C:\Users\Public\Desktop\NetBalancer.lnk
[2012/07/27 01:42:14 | 000,001,817 | ---- | M] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | M] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\lol.launcher.exe - Shortcut.lnk
[2012/07/19 21:29:13 | 000,140,480 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:29:02 | 000,298,016 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:23:59 | 000,138,056 | ---- | M] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:49 | 000,189,248 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 20:42:50 | 003,130,440 | ---- | M] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | M] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | M] () -- C:\Windows\wininit.ini
[2012/07/12 22:17:05 | 000,256,680 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/07/11 20:45:37 | 000,001,817 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
[2012/07/11 20:45:37 | 000,001,725 | ---- | M] () -- C:\Users\Public\Desktop\LOL Recorder.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/04 01:32:24 | 244,718,947 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:41 | 000,237,568 | ---- | C] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | C] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\StarCraft II.lnk
[2012/07/28 18:51:41 | 000,000,959 | ---- | C] () -- C:\Users\Public\Desktop\NetBalancer Tray.lnk
[2012/07/28 18:51:41 | 000,000,949 | ---- | C] () -- C:\Users\Public\Desktop\NetBalancer.lnk
[2012/07/27 01:42:14 | 000,001,817 | ---- | C] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | C] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\lol.launcher.exe - Shortcut.lnk
[2012/07/19 21:29:01 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:24:00 | 000,140,480 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:23:59 | 000,138,056 | ---- | C] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:44 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012/07/19 21:23:44 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 21:23:41 | 003,130,440 | ---- | C] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 21:23:41 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | C] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | C] () -- C:\Windows\wininit.ini
[2012/07/11 20:45:37 | 000,001,817 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
[2012/07/11 20:45:37 | 000,001,725 | ---- | C] () -- C:\Users\Public\Desktop\LOL Recorder.lnk
[2012/06/17 12:33:27 | 763,501,080 | ---- | C] () -- C:\Users\Neox\dota 2012-06-17 12-33-27-88.avi
[2012/06/17 12:33:07 | 057,574,536 | ---- | C] () -- C:\Users\Neox\dota 2012-06-17 12-33-07-35.avi
[2012/03/04 22:41:48 | 000,000,037 | -HS- | C] () -- C:\Users\Neox\AppData\Local\1754111884ee9ab5277ca00.95260103
[2011/12/26 05:03:31 | 000,006,656 | ---- | C] () -- C:\Users\Neox\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/23 08:14:15 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011/12/21 04:30:48 | 000,104,496 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/12/18 21:18:28 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/12/18 21:18:28 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/12/18 00:48:22 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/12/17 13:15:32 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/12/17 10:07:19 | 000,001,356 | ---- | C] () -- C:\Users\Neox\AppData\Local\d3d9caps.dat
[2011/11/10 07:39:44 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OpenVideo.dll
[2011/11/10 07:39:32 | 000,054,784 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011/11/10 03:11:06 | 000,037,376 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2011/10/21 20:30:14 | 000,243,168 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/09/19 08:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll
[2011/09/19 08:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat

========== LOP Check ==========

[2012/02/13 02:01:46 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\.minecraft
[2011/12/26 05:02:30 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\BANDISOFT
[2012/01/08 01:09:39 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Bitmeter2
[2011/12/17 13:53:37 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\CoreClient
[2012/07/21 22:46:29 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\CrystalIdea Software
[2012/07/25 16:09:10 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Downloaded Installations
[2012/05/27 14:41:32 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\fltk.org
[2011/12/17 13:37:26 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\ijjigame
[2011/12/17 02:57:56 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\ImgBurn
[2012/07/27 01:42:40 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Locktime
[2011/12/17 14:31:53 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\LolClient
[2012/05/24 10:34:18 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\LolClient2
[2012/01/03 04:34:34 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\OpenOffice.org
[2011/12/17 03:04:23 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Opera
[2012/02/25 13:50:34 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\RotMG.Production
[2011/12/31 17:00:07 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\SplitMediaLabs
[2011/12/18 02:47:36 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\SystemRequirementsLab
[2011/12/26 21:33:31 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\TeamViewer
[2012/07/29 15:46:12 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\TS3Client
[2012/02/13 16:13:22 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\TuneUp Software
[2012/05/09 17:15:15 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Unity
[2012/07/20 13:46:41 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\WhatPulse
[2012/02/09 16:39:38 | 000,000,000 | ---D | M] -- C:\Users\Neox\AppData\Roaming\Wireshark
[2012/03/04 22:41:47 | 000,000,000 | -HSD | M] -- C:\Users\Neox\AppData\Roaming\wyUpdate AU
[2012/08/07 01:46:08 | 000,032,562 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2012/07/26 23:38:40 | 008,926,301 | ---- | M] ()(C:\Users\Neox\Desktop\03 ?????.mp3) -- C:\Users\Neox\Desktop\03 강남스타일.mp3
[2012/07/26 23:30:02 | 008,926,301 | ---- | C] ()(C:\Users\Neox\Desktop\03 ?????.mp3) -- C:\Users\Neox\Desktop\03 강남스타일.mp3
[2012/07/19 17:53:25 | 000,000,000 | ---D | C](C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\迅雷软件

< End of report >

Edited by SoullessZ, 07 August 2012 - 08:13 AM.

[Advertisements]

Hello SoullessZ,
. My name is godawgs and I will be assisting you with your Virus / Malware issues.
We apologize for the delay in responding to your request for help. Here at GeeksToGo we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

I will start working on your Malware issues. This may, or may not, solve other issues you have with your machine. The fixes are specific to your problem and should only be used for this issue on this machine!

If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed.
If you have not, please adhere to the guidelines below and then carefully follow all future instructions:

You must reply to posts within four days. If you haven't replied within that time, the topic will be closed! If you need additional time to complete things, just let me know.
If you're not sure, or if something unexpected happens, Do NOT continue! Stop and ask!

This board can notify you when a new reply is added to a topic. Please read this topic to find out how to do that.

Please do not run any tools unless instructed to do so.

• We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability. Do as the instructions ask, nothing extra. Do Not run things twice unless instructed.
• If I ask a Question just answer it, don't run anything unless directed to.

Please read every post completely before doing anything.

• Pay special attention to the NOTE: lines, or anything in red. These entries identify an individual issue or important step in the cleanup process.
• Please make sure you are saving and printing the instructions out prior to each fix, this way you will have them on hand just in case you are unable to access this site. Some of the steps I will be asking you to do may require you to boot into Safe Mode and this process will be much easier for you to perform if the instructions are printed out for you to follow.
• Please do not use the Attachment feature for any log file. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.

Logs from malware diagnostic or removal programs (OTL is one of them) can take some time to analyze.

• I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forum, (sometimes )
• Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.

Lastly, Please be aware that removing Malware is a hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. Some infections are so severe that we might encounter situations where the only recourse is to re-format and re-install your operating system. Don't worry, this only happens in severe cases, but, sadly, it does happen.
In light of this be prepared to back up your data. Have means of backing up your data available.

I am reviewing your OTL log now. I don't see a lot in the way of malware.
There should have been a Extras.txt file generated when OTL was first run. You will find it in the C:\Users\Neox\Downloads folder. Please post that.
Once you have posted that file and the other scan I want you to run I will review them and get back to you.


Step-1.

Run aswMBR

• Download aswMBR.exe to your desktop.
• Double click the aswMBR.exe file to run it. (Windows /7 users: Right click the file and click Run as Administrator. If you get a UAC window, allow the file to run.
• If it asks you if you want to download the latest virus definitions, click Yes
  
• Click the "Scan" button to start the scan
  
  
• On completion of the scan click save log. Save it to your desktop and post in your next reply.
  

NOTE: When you run aswMBR, if it is shutdown automatically, then it is most likely the infection detecting that aswMBR is running and terminating it. In this situation you should rename executable to iexplore.exe and try it again.


Step-2.

Things For Your Next Post:
1. The Extras.txt log
2. The aswMBR log

[godawgs]

Hello SoullessZ,
. My name is godawgs and I will be assisting you with your Virus / Malware issues.
We apologize for the delay in responding to your request for help. Here at GeeksToGo we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

I will start working on your Malware issues. This may, or may not, solve other issues you have with your machine. The fixes are specific to your problem and should only be used for this issue on this machine!

If you have since resolved the issues you were originally experiencing, or have received help elsewhere, please inform me so that this topic can be closed.
If you have not, please adhere to the guidelines below and then carefully follow all future instructions:

You must reply to posts within four days. If you haven't replied within that time, the topic will be closed! If you need additional time to complete things, just let me know.
If you're not sure, or if something unexpected happens, Do NOT continue! Stop and ask!

This board can notify you when a new reply is added to a topic. Please read this topic to find out how to do that.

Please do not run any tools unless instructed to do so.

• We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability. Do as the instructions ask, nothing extra. Do Not run things twice unless instructed.
• If I ask a Question just answer it, don't run anything unless directed to.

Please read every post completely before doing anything.

• Pay special attention to the NOTE: lines, or anything in red. These entries identify an individual issue or important step in the cleanup process.
• Please make sure you are saving and printing the instructions out prior to each fix, this way you will have them on hand just in case you are unable to access this site. Some of the steps I will be asking you to do may require you to boot into Safe Mode and this process will be much easier for you to perform if the instructions are printed out for you to follow.
• Please do not use the Attachment feature for any log file. Do a Copy/Paste of the entire contents of the log file and submit it inside your post unless directed otherwise.

Logs from malware diagnostic or removal programs (OTL is one of them) can take some time to analyze.

• I need you to be patient while I analyze any logs you post. Please remember, I am a volunteer, and I do have a life outside of these forum, (sometimes )
• Attention to detail is important! Since I cannot see or directly interact with your computer I am dependent on you to "be my eyes" and provide as much information as you can regarding the current state of your computer.

Lastly, Please be aware that removing Malware is a hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. Some infections are so severe that we might encounter situations where the only recourse is to re-format and re-install your operating system. Don't worry, this only happens in severe cases, but, sadly, it does happen.
In light of this be prepared to back up your data. Have means of backing up your data available.

I am reviewing your OTL log now. I don't see a lot in the way of malware.
There should have been a Extras.txt file generated when OTL was first run. You will find it in the C:\Users\Neox\Downloads folder. Please post that.
Once you have posted that file and the other scan I want you to run I will review them and get back to you.


Step-1.

Run aswMBR

• Download aswMBR.exe to your desktop.
• Double click the aswMBR.exe file to run it. (Windows /7 users: Right click the file and click Run as Administrator. If you get a UAC window, allow the file to run.
• If it asks you if you want to download the latest virus definitions, click Yes
  
• Click the "Scan" button to start the scan
  
  
• On completion of the scan click save log. Save it to your desktop and post in your next reply.
  

NOTE: When you run aswMBR, if it is shutdown automatically, then it is most likely the infection detecting that aswMBR is running and terminating it. In this situation you should rename executable to iexplore.exe and try it again.


Step-2.

Things For Your Next Post:
1. The Extras.txt log
2. The aswMBR log

[SoullessZ]

This was my aswMBR thing.. No idea this extra.txt is...

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-10 22:20:47
-----------------------------
22:20:47.410 OS Version: Windows 6.0.6002 Service Pack 2
22:20:47.412 Number of processors: 2 586 0x1706
22:20:47.419 ComputerName: NEOX-PC UserName: Neox
22:21:05.054 Initialize success
22:24:40.886 AVAST engine defs: 12081001
22:25:14.226 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
22:25:14.240 Disk 0 Vendor: MAXTOR_STM3250310AS 3.AAF Size: 238475MB BusType: 3
22:25:14.243 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP4T0L0-5
22:25:14.245 Disk 1 Vendor: SAMSUNG_HD160JJ/P ZM100-38 Size: 152627MB BusType: 3
22:25:14.284 Disk 0 MBR read successfully
22:25:14.287 Disk 0 MBR scan
22:25:14.658 Disk 0 Windows VISTA default MBR code
22:25:14.685 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 238471 MB offset 2048
22:25:14.743 Disk 0 scanning sectors +488391221
22:25:14.835 Disk 0 scanning C:\Windows\system32\drivers
22:25:38.091 Service scanning
22:25:59.860 Service MpKsldc90bcab c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40096790-E70D-497E-87B1-582E847F9C26}\MpKsldc90bcab.sys **LOCKED** 32
22:26:29.219 Modules scanning
22:26:38.087 Disk 0 trace - called modules:
22:26:38.111 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys
22:26:38.112 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8589dac8]
22:26:38.112 3 CLASSPNP.SYS[8b1a38b3] -> nt!IofCallDriver -> [0x851d4918]
22:26:38.113 5 acpi.sys[8aa4d6bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0x8480eb98]
22:26:39.938 AVAST engine scan C:\Windows
22:26:45.072 AVAST engine scan C:\Windows\system32
22:34:22.605 AVAST engine scan C:\Windows\system32\drivers
22:34:52.830 AVAST engine scan C:\Users\Neox
23:06:21.671 AVAST engine scan C:\ProgramData
23:25:24.446 Scan finished successfully
23:34:15.430 Disk 0 MBR has been saved successfully to "C:\Users\Neox\Desktop\MBR.dat"
23:34:15.567 The log file has been saved successfully to "C:\Users\Neox\Desktop\aswMBR.txt"

Edited by SoullessZ, 10 August 2012 - 04:52 PM.

[godawgs]

Hi,

.. No idea this extra.txt is...

OK, we'll do it another way.

The aswMBR log doesn't show any rootkits or anything wrong with the master boot record.

Your Windows service pack needs to be updated. We will do that in due course.

I see the TDSS_Quarantine folder. Did you run TDSSKiller? If so please post that log. You should find it in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt", where [version] is the program version and [date]_[time] is the date and time the program was run. Please copy and paste its contents on your next reply.

You have two antivirus programs running and three antispyware programs running with real time protection. You only need one antivirus program. Running more than one causes program conflicts, system slow downs, uses more system resources and actually provides less antivirus protection.

You have both Microsoft Security Essentials and AVG running. Please let me know which one you want to keep so we can remove the other one.

You have MalwareBytes, SpybotS&D and SuperAntiSpyware installed and all running at start up. At most you should only have two antispyware programs and only one of those should be running in the background. Let me know which program you want to remove, I would suggest SuperAntiSpyware, and which one of the two left that you want to run in the back ground.

I want you to run a new OTL scan but with different settings so we can check out some other areas where malware hides. The scan will produce a Extras.txt log.

After I get these logs and the answer to the questions above we will be ready to start cleaning the system.


Step-1.

OTL Custom Scan

1. Please copy the text in the code box below and paste it in the box in OTL. To do that:

• Highlight everything inside the code box, right click the mouse and click Copy.

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
services.*
consrv.dll
wshelper.dll
/md5stop
HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
C:\Program Files\Common Files\ComObjects\*.* /s

2. Re-open OTL. To do that:

• Double click on the OTL icon to run it. Make sure all other windows are closed.
• You will see a console like the one below:
  
  
  
• Check the box beside Scan All Users at the top of the console<---Important.
• The Include 64bit Scans box should not be available, but if it is Do Not check it
• Make sure the Output box at the top is set to Standard Output.
• In the Extra Registry section, click the radio button beside Use Safelist.<---Very Important
• Place the mouse pointer inside the box, right click and click Paste. This will put the above script inside OTL
• Click the button. Do not change any settings unless otherwise told to do so.
• Let the scan run uninterrupted. The scan won't take long.
• When the scan completes, it will open OTL.Txt on the desktop. Extras.txt will be minimized. These files are also saved in the same location as OTL (it should your C:\Users\Neox\Downloads folder).
• Please copy the contents of these files and paste them into your reply. To do that:
• On the OTL.txt file Menu Bar click Edit then click Select All. This will highlight the contents of the file. Then click Copy.
• Right click inside the forum post window then click Paste. This will paste the contents of the OTL.txt file in the in the post window.

Repeat for the Extras.txt file.


Step-2.

Things For Your Next Post:
1. The new OTL.txt log
2. The Extras.txt log
3. The TDSSKiller log
4. Answer to the questions I asked about the antivirus and antispyware programs

[SoullessZ]

I would like to keep microsoft essentials
and I would like to keep SuperAntiSpyware,

Some small TDSS log..

Spoiler

01:42:10.0465 6064 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
01:42:10.0653 6064 ============================================================
01:42:10.0653 6064 Current date / time: 2012/07/27 01:42:10.0653
01:42:10.0653 6064 SystemInfo:
01:42:10.0653 6064
01:42:10.0653 6064 OS Version: 6.0.6002 ServicePack: 2.0
01:42:10.0653 6064 Product type: Workstation
01:42:10.0653 6064 ComputerName: NEOX-PC
01:42:10.0653 6064 UserName: Neox
01:42:10.0653 6064 Windows directory: C:\Windows
01:42:10.0653 6064 System windows directory: C:\Windows
01:42:10.0653 6064 Processor architecture: Intel x86
01:42:10.0653 6064 Number of processors: 2
01:42:10.0653 6064 Page size: 0x1000
01:42:10.0653 6064 Boot type: Normal boot
01:42:10.0653 6064 ============================================================
01:42:14.0015 6064 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
01:42:14.0043 6064 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
01:42:14.0083 6064 ============================================================
01:42:14.0083 6064 \Device\Harddisk0\DR0:
01:42:14.0107 6064 MBR partitions:
01:42:14.0107 6064 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C3A35
01:42:14.0107 6064 \Device\Harddisk1\DR1:
01:42:14.0107 6064 MBR partitions:
01:42:14.0107 6064 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xF8E436C
01:42:14.0134 6064 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0xF8E6C35, BlocksNum 0x270D776
01:42:14.0134 6064 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x11FF43AB, BlocksNum 0xA24716
01:42:14.0134 6064 ============================================================
01:42:14.0340 6064 C: <-> \Device\Harddisk0\DR0\Partition0
01:42:14.0368 6064 D: <-> \Device\Harddisk1\DR1\Partition0
01:42:14.0409 6064 E: <-> \Device\Harddisk1\DR1\Partition1
01:42:14.0475 6064 F: <-> \Device\Harddisk1\DR1\Partition2
01:42:14.0475 6064 ============================================================
01:42:14.0475 6064 Initialize success
01:42:14.0475 6064 ============================================================
01:42:30.0808 5372 Deinitialize success

Here is the bigger one:

Spoiler

12:00:25.0687 3924 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
12:00:26.0331 3924 ============================================================
12:00:26.0331 3924 Current date / time: 2012/07/27 12:00:26.0331
12:00:26.0331 3924 SystemInfo:
12:00:26.0331 3924
12:00:26.0331 3924 OS Version: 6.0.6002 ServicePack: 2.0
12:00:26.0331 3924 Product type: Workstation
12:00:26.0331 3924 ComputerName: NEOX-PC
12:00:26.0331 3924 UserName: Neox
12:00:26.0331 3924 Windows directory: C:\Windows
12:00:26.0331 3924 System windows directory: C:\Windows
12:00:26.0331 3924 Processor architecture: Intel x86
12:00:26.0331 3924 Number of processors: 2
12:00:26.0331 3924 Page size: 0x1000
12:00:26.0331 3924 Boot type: Normal boot
12:00:26.0331 3924 ============================================================
12:00:29.0197 3924 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:00:29.0220 3924 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:00:29.0296 3924 ============================================================
12:00:29.0296 3924 \Device\Harddisk0\DR0:
12:00:29.0308 3924 MBR partitions:
12:00:29.0308 3924 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C3A35
12:00:29.0308 3924 \Device\Harddisk1\DR1:
12:00:29.0308 3924 MBR partitions:
12:00:29.0308 3924 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xF8E436C
12:00:29.0327 3924 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0xF8E6C35, BlocksNum 0x270D776
12:00:29.0327 3924 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x11FF43AB, BlocksNum 0xA24716
12:00:29.0327 3924 ============================================================
12:00:29.0421 3924 C: <-> \Device\Harddisk0\DR0\Partition0
12:00:29.0461 3924 D: <-> \Device\Harddisk1\DR1\Partition0
12:00:29.0483 3924 E: <-> \Device\Harddisk1\DR1\Partition1
12:00:29.0515 3924 F: <-> \Device\Harddisk1\DR1\Partition2
12:00:29.0515 3924 ============================================================
12:00:29.0515 3924 Initialize success
12:00:29.0515 3924 ============================================================
12:00:32.0333 5188 ============================================================
12:00:32.0333 5188 Scan started
12:00:32.0333 5188 Mode: Manual;
12:00:32.0333 5188 ============================================================
12:00:40.0999 5188 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:00:41.0000 5188 !SASCORE - ok
12:00:43.0869 5188 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
12:00:43.0933 5188 ACPI - ok
12:00:44.0057 5188 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:00:44.0059 5188 AdobeARMservice - ok
12:00:44.0226 5188 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:00:44.0228 5188 AdobeFlashPlayerUpdateSvc - ok
12:00:44.0535 5188 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
12:00:44.0600 5188 adp94xx - ok
12:00:44.0690 5188 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
12:00:44.0697 5188 adpahci - ok
12:00:44.0718 5188 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
12:00:44.0725 5188 adpu160m - ok
12:00:44.0741 5188 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
12:00:44.0747 5188 adpu320 - ok
12:00:44.0784 5188 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
12:00:44.0785 5188 AeLookupSvc - ok
12:00:44.0813 5188 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
12:00:44.0824 5188 AFD - ok
12:00:44.0866 5188 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
12:00:44.0883 5188 agp440 - ok
12:00:44.0918 5188 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
12:00:44.0920 5188 aic78xx - ok
12:00:46.0840 5188 Akamai (1125c7d9fb8898015829c387c1bc87c7) C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll
12:00:47.0003 5188 Akamai - ok
12:00:47.0383 5188 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
12:00:47.0384 5188 ALG - ok
12:00:47.0618 5188 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
12:00:47.0622 5188 aliide - ok
12:00:47.0662 5188 AMD External Events Utility (f970ea885aefeb1b9eb97ca7f1eb226d) C:\Windows\system32\atiesrxx.exe
12:00:47.0663 5188 AMD External Events Utility - ok
12:00:47.0685 5188 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
12:00:47.0686 5188 amdagp - ok
12:00:47.0703 5188 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
12:00:47.0705 5188 amdide - ok
12:00:47.0719 5188 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
12:00:47.0721 5188 AmdK7 - ok
12:00:47.0732 5188 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
12:00:47.0733 5188 AmdK8 - ok
12:00:49.0495 5188 amdkmdag (ab70f110143892eb41aa46500aa5cf00) C:\Windows\system32\DRIVERS\atikmdag.sys
12:00:53.0871 5188 amdkmdag - ok
12:00:54.0357 5188 amdkmdap (32d68d05b871eed5572d0c2c764ea4ec) C:\Windows\system32\DRIVERS\atikmpag.sys
12:00:54.0364 5188 amdkmdap - ok
12:00:54.0506 5188 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
12:00:54.0507 5188 Appinfo - ok
12:00:54.0671 5188 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:00:54.0673 5188 Apple Mobile Device - ok
12:00:54.0798 5188 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
12:00:54.0815 5188 arc - ok
12:00:54.0953 5188 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
12:00:54.0966 5188 arcsas - ok
12:00:55.0470 5188 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:00:55.0471 5188 aspnet_state - ok
12:00:55.0560 5188 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
12:00:55.0565 5188 AsyncMac - ok
12:00:55.0582 5188 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
12:00:55.0583 5188 atapi - ok
12:00:55.0653 5188 AtiHDAudioService (c8f5273b12cfa5c0888263e34140cb8a) C:\Windows\system32\drivers\AtihdLH3.sys
12:00:55.0675 5188 AtiHDAudioService - ok
12:00:55.0919 5188 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:00:55.0944 5188 AudioEndpointBuilder - ok
12:00:55.0947 5188 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:00:55.0949 5188 Audiosrv - ok
12:00:56.0002 5188 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
12:00:56.0002 5188 Beep - ok
12:00:56.0042 5188 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
12:00:56.0054 5188 BFE - ok
12:00:56.0111 5188 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
12:00:56.0145 5188 BITS - ok
12:00:56.0165 5188 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
12:00:56.0166 5188 blbdrive - ok
12:00:56.0339 5188 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
12:00:56.0351 5188 Bonjour Service - ok
12:00:56.0369 5188 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
12:00:56.0372 5188 bowser - ok
12:00:56.0404 5188 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
12:00:56.0405 5188 BrFiltLo - ok
12:00:56.0419 5188 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
12:00:56.0420 5188 BrFiltUp - ok
12:00:56.0450 5188 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
12:00:56.0450 5188 Browser - ok
12:00:56.0485 5188 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
12:00:56.0487 5188 Brserid - ok
12:00:56.0513 5188 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
12:00:56.0514 5188 BrSerWdm - ok
12:00:56.0533 5188 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
12:00:56.0534 5188 BrUsbMdm - ok
12:00:56.0538 5188 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
12:00:56.0541 5188 BrUsbSer - ok
12:00:56.0561 5188 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
12:00:56.0563 5188 BTHMODEM - ok
12:00:56.0588 5188 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
12:00:56.0590 5188 cdfs - ok
12:00:56.0617 5188 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
12:00:56.0619 5188 cdrom - ok
12:00:56.0667 5188 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:00:56.0668 5188 CertPropSvc - ok
12:00:56.0697 5188 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
12:00:56.0698 5188 circlass - ok
12:00:56.0894 5188 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
12:00:56.0908 5188 CLFS - ok
12:00:57.0076 5188 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:00:57.0078 5188 clr_optimization_v2.0.50727_32 - ok
12:00:57.0216 5188 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:00:57.0232 5188 clr_optimization_v4.0.30319_32 - ok
12:00:57.0263 5188 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
12:00:57.0264 5188 cmdide - ok
12:00:57.0297 5188 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
12:00:57.0298 5188 Compbatt - ok
12:00:57.0300 5188 COMSysApp - ok
12:00:57.0315 5188 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
12:00:57.0316 5188 crcdisk - ok
12:00:57.0335 5188 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
12:00:57.0337 5188 Crusoe - ok
12:00:57.0365 5188 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
12:00:57.0366 5188 CryptSvc - ok
12:00:57.0546 5188 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:00:57.0551 5188 DcomLaunch - ok
12:00:57.0664 5188 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
12:00:57.0666 5188 DfsC - ok
12:00:58.0292 5188 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
12:00:58.0345 5188 DFSR - ok
12:00:58.0677 5188 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
12:00:58.0679 5188 Dhcp - ok
12:00:58.0930 5188 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
12:00:58.0932 5188 disk - ok
12:00:58.0955 5188 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
12:00:58.0956 5188 Dnscache - ok
12:00:58.0987 5188 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
12:00:58.0988 5188 dot3svc - ok
12:00:59.0023 5188 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
12:00:59.0024 5188 DPS - ok
12:00:59.0052 5188 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
12:00:59.0053 5188 drmkaud - ok
12:00:59.0463 5188 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
12:00:59.0493 5188 DXGKrnl - ok
12:00:59.0534 5188 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
12:00:59.0540 5188 E1G60 - ok
12:00:59.0565 5188 EagleXNt - ok
12:00:59.0579 5188 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
12:00:59.0580 5188 EapHost - ok
12:00:59.0610 5188 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
12:00:59.0616 5188 Ecache - ok
12:00:59.0978 5188 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
12:01:00.0028 5188 ehRecvr - ok
12:01:00.0160 5188 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
12:01:00.0319 5188 ehSched - ok
12:01:00.0329 5188 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
12:01:00.0330 5188 ehstart - ok
12:01:00.0421 5188 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
12:01:00.0430 5188 elxstor - ok
12:01:00.0739 5188 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
12:01:00.0765 5188 EMDMgmt - ok
12:01:00.0831 5188 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
12:01:00.0839 5188 ErrDev - ok
12:01:00.0904 5188 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
12:01:00.0905 5188 EventSystem - ok
12:01:01.0208 5188 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
12:01:01.0223 5188 exfat - ok
12:01:01.0274 5188 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
12:01:01.0279 5188 fastfat - ok
12:01:01.0321 5188 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
12:01:01.0322 5188 fdc - ok
12:01:01.0355 5188 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
12:01:01.0356 5188 fdPHost - ok
12:01:01.0463 5188 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
12:01:01.0470 5188 FDResPub - ok
12:01:01.0490 5188 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
12:01:01.0491 5188 FileInfo - ok
12:01:01.0511 5188 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
12:01:01.0512 5188 Filetrace - ok
12:01:01.0538 5188 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
12:01:01.0539 5188 flpydisk - ok
12:01:01.0566 5188 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
12:01:01.0568 5188 FltMgr - ok
12:01:01.0899 5188 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
12:01:01.0933 5188 FontCache - ok
12:01:02.0011 5188 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:01:02.0012 5188 FontCache3.0.0.0 - ok
12:01:02.0035 5188 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
12:01:02.0036 5188 Fs_Rec - ok
12:01:02.0067 5188 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
12:01:02.0069 5188 gagp30kx - ok
12:01:02.0295 5188 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:01:02.0296 5188 GEARAspiWDM - ok
12:01:02.0337 5188 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
12:01:02.0351 5188 gpsvc - ok
12:01:02.0404 5188 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
12:01:02.0417 5188 HdAudAddService - ok
12:01:02.0576 5188 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:01:02.0602 5188 HDAudBus - ok
12:01:02.0746 5188 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
12:01:02.0763 5188 HidBth - ok
12:01:02.0781 5188 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
12:01:02.0782 5188 HidIr - ok
12:01:02.0807 5188 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
12:01:02.0808 5188 hidserv - ok
12:01:02.0859 5188 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
12:01:02.0864 5188 HidUsb - ok
12:01:02.0885 5188 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
12:01:02.0886 5188 hkmsvc - ok
12:01:02.0930 5188 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
12:01:02.0934 5188 HpCISSs - ok
12:01:02.0969 5188 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
12:01:02.0978 5188 HTTP - ok
12:01:03.0000 5188 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
12:01:03.0003 5188 i2omp - ok
12:01:03.0035 5188 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
12:01:03.0037 5188 i8042prt - ok
12:01:03.0071 5188 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
12:01:03.0080 5188 iaStorV - ok
12:01:03.0957 5188 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:01:03.0984 5188 idsvc - ok
12:01:04.0005 5188 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
12:01:04.0007 5188 iirsp - ok
12:01:04.0047 5188 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
12:01:04.0081 5188 IKEEXT - ok
12:01:04.0135 5188 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
12:01:04.0136 5188 intelide - ok
12:01:04.0153 5188 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
12:01:04.0154 5188 intelppm - ok
12:01:04.0172 5188 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
12:01:04.0173 5188 IPBusEnum - ok
12:01:04.0336 5188 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:01:04.0388 5188 IpFilterDriver - ok
12:01:04.0422 5188 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
12:01:04.0435 5188 iphlpsvc - ok
12:01:04.0438 5188 IpInIp - ok
12:01:04.0474 5188 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
12:01:04.0475 5188 IPMIDRV - ok
12:01:04.0673 5188 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
12:01:04.0675 5188 IPNAT - ok
12:01:04.0958 5188 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
12:01:04.0962 5188 iPod Service - ok
12:01:05.0018 5188 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
12:01:05.0032 5188 IRENUM - ok
12:01:05.0126 5188 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
12:01:05.0131 5188 isapnp - ok
12:01:05.0169 5188 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
12:01:05.0175 5188 iScsiPrt - ok
12:01:05.0198 5188 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
12:01:05.0199 5188 iteatapi - ok
12:01:05.0330 5188 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
12:01:05.0441 5188 iteraid - ok
12:01:05.0459 5188 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:01:05.0462 5188 kbdclass - ok
12:01:05.0480 5188 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
12:01:05.0481 5188 kbdhid - ok
12:01:05.0512 5188 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:01:05.0513 5188 KeyIso - ok
12:01:05.0543 5188 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
12:01:05.0554 5188 KSecDD - ok
12:01:05.0675 5188 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
12:01:05.0689 5188 KtmRm - ok
12:01:05.0714 5188 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
12:01:05.0716 5188 LanmanServer - ok
12:01:05.0767 5188 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
12:01:05.0770 5188 LanmanWorkstation - ok
12:01:05.0797 5188 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
12:01:05.0800 5188 lltdio - ok
12:01:05.0850 5188 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
12:01:05.0851 5188 lltdsvc - ok
12:01:05.0872 5188 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
12:01:05.0873 5188 lmhosts - ok
12:01:05.0900 5188 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
12:01:05.0906 5188 LSI_FC - ok
12:01:05.0923 5188 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
12:01:05.0950 5188 LSI_SAS - ok
12:01:06.0202 5188 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
12:01:06.0204 5188 LSI_SCSI - ok
12:01:06.0338 5188 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
12:01:06.0341 5188 luafv - ok
12:01:06.0352 5188 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
12:01:06.0353 5188 MBAMProtector - ok
12:01:06.0500 5188 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:01:06.0508 5188 MBAMService - ok
12:01:06.0563 5188 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
12:01:06.0565 5188 Mcx2Svc - ok
12:01:06.0593 5188 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
12:01:06.0600 5188 megasas - ok
12:01:06.0714 5188 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
12:01:06.0748 5188 MegaSR - ok
12:01:06.0787 5188 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:01:06.0793 5188 MMCSS - ok
12:01:06.0807 5188 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
12:01:06.0814 5188 Modem - ok
12:01:06.0902 5188 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
12:01:06.0902 5188 monitor - ok
12:01:06.0925 5188 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
12:01:06.0932 5188 mouclass - ok
12:01:06.0973 5188 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
12:01:06.0989 5188 mouhid - ok
12:01:07.0055 5188 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
12:01:07.0057 5188 MountMgr - ok
12:01:07.0103 5188 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:01:07.0104 5188 MozillaMaintenance - ok
12:01:07.0160 5188 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
12:01:07.0164 5188 MpFilter - ok
12:01:07.0287 5188 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
12:01:07.0337 5188 mpio - ok
12:01:07.0662 5188 MpKsl75aa096d (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{254B3C19-85C9-428C-8613-16386B6679ED}\MpKsl75aa096d.sys
12:01:07.0663 5188 MpKsl75aa096d - ok
12:01:07.0805 5188 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
12:01:07.0823 5188 mpsdrv - ok
12:01:08.0177 5188 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
12:01:08.0259 5188 MpsSvc - ok
12:01:08.0314 5188 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
12:01:08.0315 5188 Mraid35x - ok
12:01:08.0369 5188 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
12:01:08.0399 5188 MRxDAV - ok
12:01:08.0514 5188 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:01:08.0522 5188 mrxsmb - ok
12:01:08.0559 5188 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:01:08.0647 5188 mrxsmb10 - ok
12:01:09.0313 5188 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:01:09.0375 5188 mrxsmb20 - ok
12:01:09.0707 5188 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
12:01:09.0742 5188 msahci - ok
12:01:10.0421 5188 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
12:01:10.0512 5188 msdsm - ok
12:01:11.0451 5188 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
12:01:11.0487 5188 MSDTC - ok
12:01:11.0786 5188 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
12:01:11.0805 5188 Msfs - ok
12:01:12.0116 5188 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
12:01:12.0146 5188 msisadrv - ok
12:01:13.0240 5188 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
12:01:13.0241 5188 MSiSCSI - ok
12:01:13.0244 5188 msiserver - ok
12:01:13.0415 5188 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
12:01:13.0438 5188 MSKSSRV - ok
12:01:14.0133 5188 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:01:14.0155 5188 MsMpSvc - ok
12:01:14.0268 5188 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
12:01:14.0310 5188 MSPCLOCK - ok
12:01:14.0395 5188 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
12:01:14.0397 5188 MSPQM - ok
12:01:15.0041 5188 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
12:01:15.0045 5188 MsRPC - ok
12:01:15.0192 5188 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
12:01:15.0193 5188 mssmbios - ok
12:01:15.0341 5188 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
12:01:15.0345 5188 MSTEE - ok
12:01:15.0638 5188 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
12:01:15.0658 5188 Mup - ok
12:01:16.0117 5188 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
12:01:16.0120 5188 napagent - ok
12:01:16.0537 5188 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
12:01:16.0541 5188 NativeWifiP - ok
12:01:16.0802 5188 Nbdrv (c9deac695b5107c31b451f254df7e3a4) C:\Windows\system32\DRIVERS\nbdrv.sys
12:01:16.0825 5188 Nbdrv - ok
12:01:17.0095 5188 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
12:01:17.0162 5188 NDIS - ok
12:01:17.0346 5188 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
12:01:17.0354 5188 NdisTapi - ok
12:01:17.0453 5188 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
12:01:17.0467 5188 Ndisuio - ok
12:01:18.0358 5188 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:01:18.0390 5188 NdisWan - ok
12:01:18.0639 5188 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
12:01:18.0640 5188 NDProxy - ok
12:01:22.0192 5188 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
12:01:22.0620 5188 Nero BackItUp Scheduler 4.0 - ok
12:01:22.0775 5188 NetBalancer Windows Service (f4769617bb8288b7be9754c6fb0e8567) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
12:01:22.0776 5188 NetBalancer Windows Service - ok
12:01:22.0988 5188 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
12:01:23.0016 5188 NetBIOS - ok
12:01:23.0587 5188 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
12:01:23.0668 5188 netbt - ok
12:01:23.0765 5188 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:01:23.0766 5188 Netlogon - ok
12:01:25.0071 5188 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
12:01:25.0075 5188 Netman - ok
12:01:25.0533 5188 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:01:25.0545 5188 NetMsmqActivator - ok
12:01:25.0548 5188 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:01:25.0549 5188 NetPipeActivator - ok
12:01:25.0670 5188 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
12:01:25.0712 5188 netprofm - ok
12:01:25.0715 5188 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:01:25.0716 5188 NetTcpActivator - ok
12:01:25.0719 5188 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:01:25.0720 5188 NetTcpPortSharing - ok
12:01:25.0831 5188 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
12:01:25.0845 5188 nfrd960 - ok
12:01:25.0902 5188 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:01:25.0904 5188 NisDrv - ok
12:01:26.0361 5188 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:01:26.0365 5188 NisSrv - ok
12:01:26.0518 5188 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
12:01:26.0520 5188 NlaSvc - ok
12:01:26.0819 5188 nlsvc (2681c88281f34e59d1a0b2cedebf8924) C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
12:01:26.0821 5188 nlsvc - ok
12:01:27.0442 5188 nltdi (015ce611f7acf34afdff58a581ec6904) C:\Windows\system32\drivers\nltdi.sys
12:01:27.0547 5188 nltdi - ok
12:01:27.0832 5188 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
12:01:27.0832 5188 Npfs - ok
12:01:27.0846 5188 npggsvc - ok
12:01:27.0881 5188 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
12:01:27.0883 5188 nsi - ok
12:01:27.0907 5188 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
12:01:27.0908 5188 nsiproxy - ok
12:01:28.0031 5188 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
12:01:28.0077 5188 Ntfs - ok
12:01:28.0105 5188 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
12:01:28.0107 5188 ntrigdigi - ok
12:01:28.0125 5188 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
12:01:28.0126 5188 Null - ok
12:01:28.0188 5188 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
12:01:28.0190 5188 nvraid - ok
12:01:28.0210 5188 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
12:01:28.0229 5188 nvstor - ok
12:01:28.0258 5188 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
12:01:28.0262 5188 nv_agp - ok
12:01:28.0264 5188 NwlnkFlt - ok
12:01:28.0267 5188 NwlnkFwd - ok
12:01:28.0282 5188 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
12:01:28.0284 5188 ohci1394 - ok
12:01:28.0412 5188 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:01:28.0440 5188 p2pimsvc - ok
12:01:28.0446 5188 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:01:28.0450 5188 p2psvc - ok
12:01:28.0483 5188 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
12:01:28.0501 5188 Parport - ok
12:01:28.0536 5188 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
12:01:28.0537 5188 partmgr - ok
12:01:28.0559 5188 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
12:01:28.0560 5188 Parvdm - ok
12:01:28.0596 5188 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
12:01:28.0606 5188 PcaSvc - ok
12:01:28.0636 5188 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
12:01:28.0646 5188 pci - ok
12:01:28.0657 5188 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
12:01:28.0658 5188 pciide - ok
12:01:28.0696 5188 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
12:01:28.0703 5188 pcmcia - ok
12:01:28.0835 5188 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
12:01:28.0865 5188 PEAUTH - ok
12:01:29.0059 5188 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
12:01:29.0116 5188 pla - ok
12:01:29.0241 5188 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
12:01:29.0254 5188 PlugPlay - ok
12:01:29.0293 5188 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
12:01:29.0294 5188 PnkBstrA - ok
12:01:29.0399 5188 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:01:29.0403 5188 PNRPAutoReg - ok
12:01:29.0408 5188 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:01:29.0412 5188 PNRPsvc - ok
12:01:29.0466 5188 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
12:01:29.0469 5188 PolicyAgent - ok
12:01:29.0516 5188 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
12:01:29.0517 5188 PptpMiniport - ok
12:01:29.0553 5188 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
12:01:29.0555 5188 Processor - ok
12:01:29.0588 5188 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
12:01:29.0591 5188 ProfSvc - ok
12:01:29.0617 5188 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:01:29.0618 5188 ProtectedStorage - ok
12:01:29.0641 5188 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
12:01:29.0642 5188 PSched - ok
12:01:29.0817 5188 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
12:01:29.0860 5188 ql2300 - ok
12:01:29.0877 5188 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
12:01:29.0889 5188 ql40xx - ok
12:01:29.0961 5188 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
12:01:29.0975 5188 QWAVE - ok
12:01:30.0002 5188 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
12:01:30.0003 5188 QWAVEdrv - ok
12:01:30.0013 5188 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
12:01:30.0014 5188 RasAcd - ok
12:01:30.0030 5188 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
12:01:30.0032 5188 RasAuto - ok
12:01:30.0043 5188 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:01:30.0045 5188 Rasl2tp - ok
12:01:30.0116 5188 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
12:01:30.0121 5188 RasMan - ok
12:01:30.0165 5188 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
12:01:30.0167 5188 RasPppoe - ok
12:01:30.0191 5188 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
12:01:30.0193 5188 RasSstp - ok
12:01:30.0227 5188 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
12:01:30.0242 5188 rdbss - ok
12:01:30.0268 5188 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:01:30.0269 5188 RDPCDD - ok
12:01:30.0325 5188 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
12:01:30.0355 5188 rdpdr - ok
12:01:30.0370 5188 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
12:01:30.0371 5188 RDPENCDD - ok
12:01:30.0437 5188 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
12:01:30.0448 5188 RDPWD - ok
12:01:30.0507 5188 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
12:01:30.0509 5188 RemoteAccess - ok
12:01:30.0572 5188 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
12:01:30.0574 5188 RemoteRegistry - ok
12:01:30.0586 5188 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
12:01:30.0588 5188 RpcLocator - ok
12:01:30.0653 5188 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:01:30.0656 5188 RpcSs - ok
12:01:30.0708 5188 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
12:01:30.0710 5188 rspndr - ok
12:01:30.0749 5188 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
12:01:30.0761 5188 RTL8169 - ok
12:01:30.0815 5188 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
12:01:30.0824 5188 RTL8187 - ok
12:01:30.0902 5188 RTL8187B (318f4f327190b2aee7aae9cafd19bb19) C:\Windows\system32\DRIVERS\wg111v3.sys
12:01:30.0937 5188 RTL8187B - ok
12:01:31.0004 5188 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
12:01:31.0006 5188 RtlProt - ok
12:01:31.0032 5188 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:01:31.0032 5188 SamSs - ok
12:01:31.0078 5188 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:01:31.0079 5188 SASDIFSV - ok
12:01:31.0113 5188 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:01:31.0114 5188 SASKUTIL - ok
12:01:31.0137 5188 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
12:01:31.0139 5188 sbp2port - ok
12:01:31.0196 5188 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
12:01:31.0198 5188 SCardSvr - ok
12:01:31.0275 5188 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
12:01:31.0291 5188 Schedule - ok
12:01:31.0320 5188 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
12:01:31.0321 5188 SCMNdisP - ok
12:01:31.0354 5188 SCM_Service (42660bbed859ac22dfd12ae598a8ffaa) C:\Windows\System32\WinService.exe
12:01:31.0358 5188 SCM_Service - ok
12:01:31.0374 5188 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:01:31.0375 5188 SCPolicySvc - ok
12:01:31.0398 5188 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
12:01:31.0401 5188 SDRSVC - ok
12:01:31.0414 5188 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:01:31.0415 5188 secdrv - ok
12:01:31.0430 5188 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
12:01:31.0433 5188 seclogon - ok
12:01:31.0447 5188 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
12:01:31.0449 5188 SENS - ok
12:01:31.0477 5188 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
12:01:31.0479 5188 Serenum - ok
12:01:31.0507 5188 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
12:01:31.0513 5188 Serial - ok
12:01:31.0537 5188 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
12:01:31.0538 5188 sermouse - ok
12:01:31.0585 5188 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
12:01:31.0587 5188 SessionEnv - ok
12:01:31.0615 5188 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
12:01:31.0616 5188 sffdisk - ok
12:01:31.0629 5188 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
12:01:31.0643 5188 sffp_mmc - ok
12:01:31.0657 5188 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
12:01:31.0659 5188 sffp_sd - ok
12:01:31.0673 5188 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
12:01:31.0674 5188 sfloppy - ok
12:01:31.0745 5188 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
12:01:31.0765 5188 SharedAccess - ok
12:01:32.0105 5188 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
12:01:32.0109 5188 ShellHWDetection - ok
12:01:32.0125 5188 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
12:01:32.0127 5188 sisagp - ok
12:01:32.0163 5188 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
12:01:32.0164 5188 SiSRaid2 - ok
12:01:32.0207 5188 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
12:01:32.0209 5188 SiSRaid4 - ok
12:01:32.0264 5188 SkypeUpdate (ea396139541706b4b433641d62ea53ce) C:\Program Files\Skype\Updater\Updater.exe
12:01:32.0275 5188 SkypeUpdate - ok
12:01:32.0648 5188 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
12:01:34.0261 5188 slsvc - ok
12:01:35.0669 5188 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
12:01:35.0670 5188 SLUINotify - ok
12:01:36.0094 5188 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
12:01:36.0121 5188 Smb - ok
12:01:36.0240 5188 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
12:01:36.0241 5188 SNMPTRAP - ok
12:01:36.0359 5188 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
12:01:36.0367 5188 spldr - ok
12:01:36.0660 5188 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
12:01:36.0678 5188 Spooler - ok
12:01:37.0403 5188 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
12:01:37.0462 5188 srv - ok
12:01:37.0800 5188 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
12:01:37.0805 5188 srv2 - ok
12:01:38.0188 5188 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
12:01:38.0226 5188 srvnet - ok
12:01:38.0680 5188 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
12:01:38.0682 5188 SSDPSRV - ok
12:01:39.0142 5188 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
12:01:39.0144 5188 SstpSvc - ok
12:01:39.0416 5188 Steam Client Service - ok
12:01:40.0570 5188 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
12:01:40.0689 5188 stisvc - ok
12:01:40.0761 5188 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
12:01:40.0779 5188 swenum - ok
12:01:41.0911 5188 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
12:01:41.0963 5188 swprv - ok
12:01:41.0999 5188 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
12:01:42.0000 5188 Symc8xx - ok
12:01:42.0142 5188 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
12:01:42.0145 5188 Sym_hi - ok
12:01:42.0250 5188 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
12:01:42.0251 5188 Sym_u3 - ok
12:01:43.0107 5188 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
12:01:43.0112 5188 SysMain - ok
12:01:43.0437 5188 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
12:01:43.0439 5188 TabletInputService - ok
12:01:44.0153 5188 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
12:01:44.0155 5188 TapiSrv - ok
12:01:44.0445 5188 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
12:01:44.0447 5188 TBS - ok
12:01:44.0958 5188 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
12:01:44.0989 5188 Tcpip - ok
12:01:44.0995 5188 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
12:01:44.0999 5188 Tcpip6 - ok
12:01:45.0022 5188 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
12:01:45.0033 5188 tcpipreg - ok
12:01:45.0061 5188 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
12:01:45.0062 5188 TDPIPE - ok
12:01:45.0083 5188 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
12:01:45.0084 5188 TDTCP - ok
12:01:45.0102 5188 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
12:01:45.0105 5188 tdx - ok
12:01:45.0124 5188 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
12:01:45.0163 5188 TermDD - ok
12:01:45.0204 5188 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
12:01:45.0414 5188 TermService - ok
12:01:45.0780 5188 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
12:01:45.0852 5188 Themes - ok
12:01:46.0021 5188 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:01:46.0022 5188 THREADORDER - ok
12:01:46.0197 5188 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
12:01:46.0198 5188 TrkWks - ok
12:01:46.0438 5188 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
12:01:46.0438 5188 TrustedInstaller - ok
12:01:46.0710 5188 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:01:46.0721 5188 tssecsrv - ok
12:01:46.0796 5188 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
12:01:46.0828 5188 tunmp - ok
12:01:46.0987 5188 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
12:01:47.0006 5188 tunnel - ok
12:01:47.0259 5188 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
12:01:47.0268 5188 uagp35 - ok
12:01:47.0978 5188 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
12:01:48.0091 5188 udfs - ok
12:01:48.0256 5188 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
12:01:48.0258 5188 UI0Detect - ok
12:01:48.0453 5188 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
12:01:48.0469 5188 uliagpkx - ok
12:01:49.0118 5188 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
12:01:49.0153 5188 uliahci - ok
12:01:49.0474 5188 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
12:01:49.0477 5188 UlSata - ok
12:01:49.0655 5188 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
12:01:49.0657 5188 ulsata2 - ok
12:01:49.0738 5188 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
12:01:49.0755 5188 umbus - ok
12:01:50.0112 5188 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
12:01:50.0136 5188 upnphost - ok
12:01:50.0287 5188 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
12:01:50.0312 5188 USBAAPL - ok
12:01:50.0463 5188 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
12:01:50.0478 5188 usbccgp - ok
12:01:50.0624 5188 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
12:01:50.0647 5188 usbcir - ok
12:01:50.0734 5188 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
12:01:50.0743 5188 usbehci - ok
12:01:50.0925 5188 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
12:01:50.0963 5188 usbhub - ok
12:01:51.0049 5188 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
12:01:51.0058 5188 usbohci - ok
12:01:51.0124 5188 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
12:01:51.0145 5188 usbprint - ok
12:01:51.0252 5188 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
12:01:51.0260 5188 usbscan - ok
12:01:51.0427 5188 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:01:51.0466 5188 USBSTOR - ok
12:01:51.0500 5188 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
12:01:51.0517 5188 usbuhci - ok
12:01:51.0569 5188 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
12:01:51.0571 5188 UxSms - ok
12:01:52.0056 5188 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
12:01:52.0060 5188 vds - ok
12:01:52.0111 5188 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
12:01:52.0120 5188 vga - ok
12:01:52.0186 5188 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
12:01:52.0192 5188 VgaSave - ok
12:01:52.0618 5188 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
12:01:52.0620 5188 viaagp - ok
12:01:52.0750 5188 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
12:01:52.0791 5188 ViaC7 - ok
12:01:52.0943 5188 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
12:01:52.0966 5188 viaide - ok
12:01:53.0027 5188 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
12:01:53.0044 5188 volmgr - ok
12:01:53.0413 5188 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
12:01:53.0428 5188 volmgrx - ok
12:01:53.0519 5188 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
12:01:53.0531 5188 volsnap - ok
12:01:53.0586 5188 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
12:01:53.0589 5188 vsmraid - ok
12:01:53.0844 5188 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
12:01:53.0865 5188 VSS - ok
12:01:54.0131 5188 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:01:54.0175 5188 vToolbarUpdater11.2.0 - ok
12:01:54.0399 5188 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
12:01:54.0402 5188 W32Time - ok
12:01:54.0532 5188 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
12:01:54.0534 5188 WacomPen - ok
12:01:54.0594 5188 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:01:54.0595 5188 Wanarp - ok
12:01:54.0600 5188 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:01:54.0600 5188 Wanarpv6 - ok
12:01:54.0892 5188 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
12:01:55.0010 5188 wcncsvc - ok
12:01:55.0173 5188 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
12:01:55.0174 5188 WcsPlugInService - ok
12:01:55.0231 5188 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
12:01:55.0232 5188 Wd - ok
12:01:55.0563 5188 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
12:01:55.0667 5188 Wdf01000 - ok
12:01:55.0829 5188 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:01:55.0831 5188 WdiServiceHost - ok
12:01:55.0833 5188 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:01:55.0835 5188 WdiSystemHost - ok
12:01:56.0119 5188 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
12:01:56.0122 5188 WebClient - ok
12:01:56.0601 5188 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
12:01:56.0604 5188 Wecsvc - ok
12:01:56.0754 5188 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
12:01:56.0756 5188 wercplsupport - ok
12:01:56.0795 5188 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
12:01:56.0796 5188 WerSvc - ok
12:01:57.0201 5188 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
12:01:57.0205 5188 WinDefend - ok
12:01:57.0240 5188 WinHttpAutoProxySvc - ok
12:01:57.0343 5188 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
12:01:57.0349 5188 Winmgmt - ok
12:02:00.0144 5188 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
12:02:00.0644 5188 WinRM - ok
12:02:02.0072 5188 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
12:02:02.0312 5188 Wlansvc - ok
12:02:03.0020 5188 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:02:03.0069 5188 wlidsvc - ok
12:02:04.0280 5188 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
12:02:04.0296 5188 WmiAcpi - ok
12:02:04.0609 5188 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
12:02:04.0610 5188 wmiApSrv - ok
12:02:04.0885 5188 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
12:02:04.0902 5188 WMPNetworkSvc - ok
12:02:04.0953 5188 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
12:02:04.0964 5188 WPCSvc - ok
12:02:04.0986 5188 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
12:02:04.0989 5188 WPDBusEnum - ok
12:02:05.0866 5188 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:02:05.0888 5188 WPFFontCache_v0400 - ok
12:02:05.0942 5188 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
12:02:05.0944 5188 ws2ifsl - ok
12:02:05.0968 5188 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
12:02:05.0970 5188 wscsvc - ok
12:02:05.0974 5188 WSearch - ok
12:02:06.0561 5188 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
12:02:06.0576 5188 wuauserv - ok
12:02:06.0721 5188 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:02:06.0726 5188 WUDFRd - ok
12:02:06.0750 5188 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
12:02:06.0753 5188 wudfsvc - ok
12:02:06.0771 5188 XDva390 - ok
12:02:06.0789 5188 XDva391 - ok
12:02:06.0813 5188 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
12:02:07.0919 5188 \Device\Harddisk0\DR0 - ok
12:02:07.0934 5188 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
12:02:08.0250 5188 \Device\Harddisk1\DR1 - ok
12:02:08.0263 5188 Boot (0x1200) (984fe8ee81be62564a81aa65f63d599e) \Device\Harddisk0\DR0\Partition0
12:02:08.0381 5188 \Device\Harddisk0\DR0\Partition0 - ok
12:02:08.0385 5188 Boot (0x1200) (b96ad8f440d7d0a41c7819ed99d8f22e) \Device\Harddisk1\DR1\Partition0
12:02:08.0386 5188 \Device\Harddisk1\DR1\Partition0 - ok
12:02:08.0388 5188 Boot (0x1200) (2dd793aee5a2d21cd481115492edb0fb) \Device\Harddisk1\DR1\Partition1
12:02:08.0388 5188 \Device\Harddisk1\DR1\Partition1 - ok
12:02:08.0390 5188 Boot (0x1200) (ded30c6b24c51a92dff850dab9df0dc8) \Device\Harddisk1\DR1\Partition2
12:02:08.0392 5188 \Device\Harddisk1\DR1\Partition2 - ok
12:02:08.0392 5188 ============================================================
12:02:08.0392 5188 Scan finished
12:02:08.0392 5188 ============================================================
12:02:08.0401 1892 Detected object count: 0
12:02:08.0401 1892 Actual detected object count: 0
12:08:19.0913 3724 ============================================================
12:08:19.0913 3724 Scan started
12:08:19.0913 3724 Mode: Manual; TDLFS;
12:08:19.0913 3724 ============================================================
12:08:21.0354 3724 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:08:21.0355 3724 !SASCORE - ok
12:08:21.0747 3724 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
12:08:21.0748 3724 ACPI - ok
12:08:21.0970 3724 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:08:21.0970 3724 AdobeARMservice - ok
12:08:22.0272 3724 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:08:22.0273 3724 AdobeFlashPlayerUpdateSvc - ok
12:08:23.0022 3724 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
12:08:23.0024 3724 adp94xx - ok
12:08:23.0351 3724 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
12:08:23.0353 3724 adpahci - ok
12:08:23.0683 3724 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
12:08:23.0687 3724 adpu160m - ok
12:08:24.0008 3724 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
12:08:24.0009 3724 adpu320 - ok
12:08:24.0128 3724 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
12:08:24.0129 3724 AeLookupSvc - ok
12:08:25.0029 3724 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
12:08:25.0030 3724 AFD - ok
12:08:25.0187 3724 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
12:08:25.0188 3724 agp440 - ok
12:08:25.0354 3724 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
12:08:25.0354 3724 aic78xx - ok
12:08:27.0350 3724 Akamai (1125c7d9fb8898015829c387c1bc87c7) C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll
12:08:27.0373 3724 Akamai - ok
12:08:28.0128 3724 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
12:08:28.0128 3724 ALG - ok
12:08:28.0176 3724 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
12:08:28.0189 3724 aliide - ok
12:08:28.0250 3724 AMD External Events Utility (f970ea885aefeb1b9eb97ca7f1eb226d) C:\Windows\system32\atiesrxx.exe
12:08:28.0251 3724 AMD External Events Utility - ok
12:08:28.0312 3724 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
12:08:28.0312 3724 amdagp - ok
12:08:28.0348 3724 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
12:08:28.0349 3724 amdide - ok
12:08:28.0400 3724 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
12:08:28.0400 3724 AmdK7 - ok
12:08:28.0484 3724 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
12:08:28.0484 3724 AmdK8 - ok
12:08:30.0312 3724 amdkmdag (ab70f110143892eb41aa46500aa5cf00) C:\Windows\system32\DRIVERS\atikmdag.sys
12:08:30.0358 3724 amdkmdag - ok
12:08:31.0010 3724 amdkmdap (32d68d05b871eed5572d0c2c764ea4ec) C:\Windows\system32\DRIVERS\atikmpag.sys
12:08:31.0011 3724 amdkmdap - ok
12:08:31.0046 3724 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
12:08:31.0046 3724 Appinfo - ok
12:08:31.0232 3724 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:08:31.0234 3724 Apple Mobile Device - ok
12:08:31.0333 3724 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
12:08:31.0333 3724 arc - ok
12:08:31.0383 3724 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
12:08:31.0384 3724 arcsas - ok
12:08:31.0681 3724 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:08:31.0681 3724 aspnet_state - ok
12:08:31.0741 3724 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
12:08:31.0742 3724 AsyncMac - ok
12:08:31.0853 3724 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
12:08:31.0854 3724 atapi - ok
12:08:32.0000 3724 AtiHDAudioService (c8f5273b12cfa5c0888263e34140cb8a) C:\Windows\system32\drivers\AtihdLH3.sys
12:08:32.0001 3724 AtiHDAudioService - ok
12:08:32.0028 3724 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:08:32.0031 3724 AudioEndpointBuilder - ok
12:08:32.0037 3724 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:08:32.0038 3724 Audiosrv - ok
12:08:32.0090 3724 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
12:08:32.0090 3724 Beep - ok
12:08:32.0135 3724 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
12:08:32.0137 3724 BFE - ok
12:08:32.0643 3724 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
12:08:32.0648 3724 BITS - ok
12:08:32.0777 3724 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
12:08:32.0777 3724 blbdrive - ok
12:08:32.0975 3724 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
12:08:32.0978 3724 Bonjour Service - ok
12:08:33.0115 3724 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
12:08:33.0115 3724 bowser - ok
12:08:33.0192 3724 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
12:08:33.0192 3724 BrFiltLo - ok
12:08:33.0233 3724 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
12:08:33.0233 3724 BrFiltUp - ok
12:08:33.0370 3724 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
12:08:33.0371 3724 Browser - ok
12:08:33.0497 3724 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
12:08:33.0498 3724 Brserid - ok
12:08:33.0518 3724 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
12:08:33.0518 3724 BrSerWdm - ok
12:08:33.0573 3724 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
12:08:33.0573 3724 BrUsbMdm - ok
12:08:33.0624 3724 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
12:08:33.0624 3724 BrUsbSer - ok
12:08:33.0640 3724 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
12:08:33.0640 3724 BTHMODEM - ok
12:08:33.0701 3724 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
12:08:33.0701 3724 cdfs - ok
12:08:33.0779 3724 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
12:08:33.0780 3724 cdrom - ok
12:08:33.0796 3724 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:08:33.0797 3724 CertPropSvc - ok
12:08:33.0924 3724 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
12:08:33.0925 3724 circlass - ok
12:08:34.0074 3724 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
12:08:34.0076 3724 CLFS - ok
12:08:34.0251 3724 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:08:34.0252 3724 clr_optimization_v2.0.50727_32 - ok
12:08:34.0570 3724 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:08:34.0571 3724 clr_optimization_v4.0.30319_32 - ok
12:08:34.0601 3724 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
12:08:34.0601 3724 cmdide - ok
12:08:34.0683 3724 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
12:08:34.0684 3724 Compbatt - ok
12:08:34.0689 3724 COMSysApp - ok
12:08:34.0788 3724 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
12:08:34.0788 3724 crcdisk - ok
12:08:34.0874 3724 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
12:08:34.0874 3724 Crusoe - ok
12:08:34.0977 3724 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
12:08:34.0978 3724 CryptSvc - ok
12:08:35.0195 3724 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:08:35.0199 3724 DcomLaunch - ok
12:08:35.0384 3724 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
12:08:35.0386 3724 DfsC - ok
12:08:35.0719 3724 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
12:08:35.0729 3724 DFSR - ok
12:08:36.0006 3724 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
12:08:36.0007 3724 Dhcp - ok
12:08:36.0052 3724 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
12:08:36.0052 3724 disk - ok
12:08:36.0142 3724 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
12:08:36.0143 3724 Dnscache - ok
12:08:36.0223 3724 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
12:08:36.0224 3724 dot3svc - ok
12:08:36.0276 3724 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
12:08:36.0277 3724 DPS - ok
12:08:36.0320 3724 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
12:08:36.0320 3724 drmkaud - ok
12:08:36.0529 3724 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
12:08:36.0533 3724 DXGKrnl - ok
12:08:36.0647 3724 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
12:08:36.0648 3724 E1G60 - ok
12:08:36.0650 3724 EagleXNt - ok
12:08:36.0784 3724 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
12:08:36.0784 3724 EapHost - ok
12:08:36.0844 3724 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
12:08:36.0845 3724 Ecache - ok
12:08:37.0177 3724 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
12:08:37.0214 3724 ehRecvr - ok
12:08:37.0313 3724 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
12:08:37.0335 3724 ehSched - ok
12:08:37.0399 3724 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
12:08:37.0411 3724 ehstart - ok
12:08:37.0576 3724 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
12:08:37.0578 3724 elxstor - ok
12:08:37.0752 3724 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
12:08:37.0755 3724 EMDMgmt - ok
12:08:37.0795 3724 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
12:08:37.0796 3724 ErrDev - ok
12:08:38.0225 3724 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
12:08:38.0236 3724 EventSystem - ok
12:08:38.0274 3724 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
12:08:38.0275 3724 exfat - ok
12:08:38.0411 3724 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
12:08:38.0412 3724 fastfat - ok
12:08:38.0505 3724 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
12:08:38.0505 3724 fdc - ok
12:08:38.0534 3724 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
12:08:38.0535 3724 fdPHost - ok
12:08:38.0540 3724 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
12:08:38.0541 3724 FDResPub - ok
12:08:38.0578 3724 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
12:08:38.0578 3724 FileInfo - ok
12:08:38.0668 3724 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
12:08:38.0668 3724 Filetrace - ok
12:08:38.0767 3724 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
12:08:38.0768 3724 flpydisk - ok
12:08:38.0908 3724 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
12:08:38.0909 3724 FltMgr - ok
12:08:39.0002 3724 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
12:08:39.0006 3724 FontCache - ok
12:08:39.0157 3724 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:08:39.0170 3724 FontCache3.0.0.0 - ok
12:08:39.0259 3724 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
12:08:39.0260 3724 Fs_Rec - ok
12:08:39.0297 3724 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
12:08:39.0297 3724 gagp30kx - ok
12:08:39.0428 3724 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:08:39.0429 3724 GEARAspiWDM - ok
12:08:39.0585 3724 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
12:08:39.0588 3724 gpsvc - ok
12:08:39.0644 3724 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
12:08:39.0646 3724 HdAudAddService - ok
12:08:39.0807 3724 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:08:39.0810 3724 HDAudBus - ok
12:08:39.0944 3724 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
12:08:39.0945 3724 HidBth - ok
12:08:39.0961 3724 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
12:08:39.0961 3724 HidIr - ok
12:08:40.0083 3724 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
12:08:40.0084 3724 hidserv - ok
12:08:40.0161 3724 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
12:08:40.0171 3724 HidUsb - ok
12:08:40.0196 3724 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
12:08:40.0198 3724 hkmsvc - ok
12:08:40.0404 3724 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
12:08:40.0404 3724 HpCISSs - ok
12:08:40.0442 3724 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
12:08:40.0443 3724 HTTP - ok
12:08:40.0563 3724 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
12:08:40.0563 3724 i2omp - ok
12:08:40.0705 3724 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
12:08:40.0706 3724 i8042prt - ok
12:08:40.0767 3724 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
12:08:40.0768 3724 iaStorV - ok
12:08:41.0110 3724 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:08:41.0114 3724 idsvc - ok
12:08:41.0324 3724 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
12:08:41.0325 3724 iirsp - ok
12:08:41.0481 3724 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
12:08:41.0482 3724 IKEEXT - ok
12:08:41.0614 3724 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
12:08:41.0616 3724 intelide - ok
12:08:41.0658 3724 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
12:08:41.0658 3724 intelppm - ok
12:08:41.0700 3724 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
12:08:41.0701 3724 IPBusEnum - ok
12:08:41.0755 3724 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:08:41.0756 3724 IpFilterDriver - ok
12:08:41.0941 3724 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
12:08:41.0942 3724 iphlpsvc - ok
12:08:41.0946 3724 IpInIp - ok
12:08:42.0151 3724 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
12:08:42.0173 3724 IPMIDRV - ok
12:08:42.0380 3724 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
12:08:42.0382 3724 IPNAT - ok
12:08:42.0973 3724 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
12:08:43.0019 3724 iPod Service - ok
12:08:43.0041 3724 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
12:08:43.0042 3724 IRENUM - ok
12:08:43.0072 3724 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
12:08:43.0073 3724 isapnp - ok
12:08:43.0107 3724 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
12:08:43.0112 3724 iScsiPrt - ok
12:08:43.0136 3724 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
12:08:43.0137 3724 iteatapi - ok
12:08:43.0146 3724 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
12:08:43.0147 3724 iteraid - ok
12:08:43.0173 3724 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:08:43.0174 3724 kbdclass - ok
12:08:43.0194 3724 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
12:08:43.0195 3724 kbdhid - ok
12:08:43.0216 3724 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:08:43.0217 3724 KeyIso - ok
12:08:43.0433 3724 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
12:08:43.0442 3724 KSecDD - ok
12:08:43.0474 3724 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
12:08:43.0524 3724 KtmRm - ok
12:08:43.0602 3724 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
12:08:43.0604 3724 LanmanServer - ok
12:08:43.0745 3724 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
12:08:43.0748 3724 LanmanWorkstation - ok
12:08:44.0066 3724 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
12:08:44.0068 3724 lltdio - ok
12:08:44.0139 3724 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
12:08:44.0140 3724 lltdsvc - ok
12:08:44.0176 3724 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
12:08:44.0178 3724 lmhosts - ok
12:08:44.0805 3724 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
12:08:44.0807 3724 LSI_FC - ok
12:08:44.0848 3724 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
12:08:44.0854 3724 LSI_SAS - ok
12:08:44.0874 3724 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
12:08:44.0880 3724 LSI_SCSI - ok
12:08:44.0900 3724 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
12:08:44.0907 3724 luafv - ok
12:08:44.0923 3724 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
12:08:44.0924 3724 MBAMProtector - ok
12:08:45.0000 3724 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:08:45.0003 3724 MBAMService - ok
12:08:45.0104 3724 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
12:08:45.0105 3724 Mcx2Svc - ok
12:08:45.0222 3724 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
12:08:45.0223 3724 megasas - ok
12:08:46.0195 3724 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
12:08:46.0209 3724 MegaSR - ok
12:08:46.0243 3724 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:08:46.0248 3724 MMCSS - ok
12:08:46.0383 3724 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
12:08:46.0384 3724 Modem - ok
12:08:46.0624 3724 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
12:08:46.0700 3724 monitor - ok
12:08:46.0975 3724 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
12:08:46.0977 3724 mouclass - ok
12:08:46.0994 3724 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
12:08:46.0995 3724 mouhid - ok
12:08:47.0010 3724 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
12:08:47.0011 3724 MountMgr - ok
12:08:47.0074 3724 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:08:47.0075 3724 MozillaMaintenance - ok
12:08:48.0284 3724 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
12:08:48.0402 3724 MpFilter - ok
12:08:49.0239 3724 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
12:08:49.0278 3724 mpio - ok
12:08:49.0892 3724 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
12:08:49.0897 3724 mpsdrv - ok
12:08:51.0046 3724 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
12:08:51.0049 3724 MpsSvc - ok
12:08:51.0120 3724 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
12:08:51.0121 3724 Mraid35x - ok
12:08:51.0163 3724 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
12:08:51.0168 3724 MRxDAV - ok
12:08:51.0242 3724 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:08:51.0283 3724 mrxsmb - ok
12:08:51.0842 3724 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:08:51.0932 3724 mrxsmb10 - ok
12:08:52.0375 3724 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:08:52.0429 3724 mrxsmb20 - ok
12:08:52.0587 3724 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
12:08:52.0588 3724 msahci - ok
12:08:52.0631 3724 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
12:08:52.0634 3724 msdsm - ok
12:08:52.0695 3724 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
12:08:52.0696 3724 MSDTC - ok
12:08:52.0729 3724 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
12:08:52.0749 3724 Msfs - ok
12:08:52.0757 3724 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
12:08:52.0758 3724 msisadrv - ok
12:08:52.0784 3724 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
12:08:52.0786 3724 MSiSCSI - ok
12:08:52.0791 3724 msiserver - ok
12:08:52.0814 3724 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
12:08:52.0828 3724 MSKSSRV - ok
12:08:52.0948 3724 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:08:52.0948 3724 MsMpSvc - ok
12:08:52.0997 3724 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
12:08:53.0002 3724 MSPCLOCK - ok
12:08:53.0061 3724 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
12:08:53.0070 3724 MSPQM - ok
12:08:53.0126 3724 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
12:08:53.0139 3724 MsRPC - ok
12:08:53.0164 3724 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
12:08:53.0164 3724 mssmbios - ok
12:08:53.0210 3724 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
12:08:53.0228 3724 MSTEE - ok
12:08:53.0273 3724 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
12:08:53.0288 3724 Mup - ok
12:08:53.0358 3724 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
12:08:53.0360 3724 napagent - ok
12:08:53.0499 3724 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
12:08:53.0538 3724 NativeWifiP - ok
12:08:53.0580 3724 Nbdrv (c9deac695b5107c31b451f254df7e3a4) C:\Windows\system32\DRIVERS\nbdrv.sys
12:08:53.0581 3724 Nbdrv - ok
12:08:53.0631 3724 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
12:08:53.0783 3724 NDIS - ok
12:08:53.0836 3724 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
12:08:53.0837 3724 NdisTapi - ok
12:08:53.0868 3724 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
12:08:53.0870 3724 Ndisuio - ok
12:08:53.0929 3724 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:08:53.0951 3724 NdisWan - ok
12:08:54.0079 3724 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
12:08:54.0083 3724 NDProxy - ok
12:08:54.0496 3724 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
12:08:54.0527 3724 Nero BackItUp Scheduler 4.0 - ok
12:08:54.0713 3724 NetBalancer Windows Service (f4769617bb8288b7be9754c6fb0e8567) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
12:08:54.0714 3724 NetBalancer Windows Service - ok
12:08:54.0759 3724 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
12:08:54.0759 3724 NetBIOS - ok
12:08:54.0790 3724 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
12:08:54.0829 3724 netbt - ok
12:08:54.0852 3724 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:08:54.0853 3724 Netlogon - ok
12:08:54.0896 3724 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
12:08:54.0899 3724 Netman - ok
12:08:55.0380 3724 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:08:55.0445 3724 NetMsmqActivator - ok
12:08:55.0448 3724 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:08:55.0449 3724 NetPipeActivator - ok
12:08:55.0681 3724 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
12:08:55.0683 3724 netprofm - ok
12:08:55.0688 3724 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:08:55.0689 3724 NetTcpActivator - ok
12:08:55.0692 3724 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:08:55.0692 3724 NetTcpPortSharing - ok
12:08:56.0054 3724 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
12:08:56.0076 3724 nfrd960 - ok
12:08:56.0156 3724 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:08:56.0260 3724 NisDrv - ok
12:08:56.0323 3724 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:08:56.0323 3724 NisSrv - ok
12:08:56.0399 3724 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
12:08:56.0400 3724 NlaSvc - ok
12:08:56.0862 3724 nlsvc (2681c88281f34e59d1a0b2cedebf8924) C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
12:08:56.0864 3724 nlsvc - ok
12:08:57.0023 3724 nltdi (015ce611f7acf34afdff58a581ec6904) C:\Windows\system32\drivers\nltdi.sys
12:08:57.0105 3724 nltdi - ok
12:08:57.0152 3724 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
12:08:57.0153 3724 Npfs - ok
12:08:57.0158 3724 npggsvc - ok
12:08:57.0178 3724 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
12:08:57.0179 3724 nsi - ok
12:08:57.0249 3724 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
12:08:57.0263 3724 nsiproxy - ok
12:08:57.0360 3724 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
12:08:57.0365 3724 Ntfs - ok
12:08:57.0497 3724 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
12:08:57.0497 3724 ntrigdigi - ok
12:08:57.0539 3724 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
12:08:57.0539 3724 Null - ok
12:08:57.0773 3724 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
12:08:57.0774 3724 nvraid - ok
12:08:57.0826 3724 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
12:08:57.0826 3724 nvstor - ok
12:08:57.0859 3724 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
12:08:57.0860 3724 nv_agp - ok
12:08:57.0865 3724 NwlnkFlt - ok
12:08:57.0869 3724 NwlnkFwd - ok
12:08:57.0988 3724 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
12:08:57.0989 3724 ohci1394 - ok
12:08:58.0112 3724 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:08:58.0116 3724 p2pimsvc - ok
12:08:58.0123 3724 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:08:58.0127 3724 p2psvc - ok
12:08:58.0203 3724 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
12:08:58.0204 3724 Parport - ok
12:08:58.0225 3724 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
12:08:58.0225 3724 partmgr - ok
12:08:58.0268 3724 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
12:08:58.0268 3724 Parvdm - ok
12:08:58.0456 3724 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
12:08:58.0458 3724 PcaSvc - ok
12:08:58.0986 3724 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
12:08:58.0987 3724 pci - ok
12:08:59.0007 3724 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
12:08:59.0007 3724 pciide - ok
12:08:59.0075 3724 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
12:08:59.0076 3724 pcmcia - ok
12:08:59.0423 3724 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
12:08:59.0427 3724 PEAUTH - ok
12:08:59.0959 3724 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
12:08:59.0968 3724 pla - ok
12:09:00.0347 3724 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
12:09:00.0349 3724 PlugPlay - ok
12:09:00.0389 3724 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
12:09:00.0391 3724 PnkBstrA - ok
12:09:00.0722 3724 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:09:00.0726 3724 PNRPAutoReg - ok
12:09:00.0733 3724 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:09:00.0737 3724 PNRPsvc - ok
12:09:00.0824 3724 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
12:09:00.0826 3724 PolicyAgent - ok
12:09:01.0277 3724 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
12:09:01.0278 3724 PptpMiniport - ok
12:09:01.0342 3724 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
12:09:01.0342 3724 Processor - ok
12:09:01.0455 3724 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
12:09:01.0457 3724 ProfSvc - ok
12:09:01.0481 3724 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:09:01.0482 3724 ProtectedStorage - ok
12:09:01.0669 3724 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
12:09:01.0669 3724 PSched - ok
12:09:01.0781 3724 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
12:09:01.0786 3724 ql2300 - ok
12:09:01.0875 3724 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
12:09:01.0875 3724 ql40xx - ok
12:09:02.0065 3724 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
12:09:02.0067 3724 QWAVE - ok
12:09:02.0091 3724 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
12:09:02.0092 3724 QWAVEdrv - ok
12:09:02.0115 3724 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
12:09:02.0116 3724 RasAcd - ok
12:09:02.0159 3724 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
12:09:02.0161 3724 RasAuto - ok
12:09:02.0180 3724 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:09:02.0185 3724 Rasl2tp - ok
12:09:02.0223 3724 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
12:09:02.0226 3724 RasMan - ok
12:09:02.0290 3724 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
12:09:02.0291 3724 RasPppoe - ok
12:09:02.0372 3724 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
12:09:02.0387 3724 RasSstp - ok
12:09:02.0427 3724 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
12:09:02.0448 3724 rdbss - ok
12:09:02.0475 3724 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:09:02.0475 3724 RDPCDD - ok
12:09:02.0590 3724 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
12:09:02.0612 3724 rdpdr - ok
12:09:02.0618 3724 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
12:09:02.0619 3724 RDPENCDD - ok
12:09:02.0715 3724 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
12:09:02.0747 3724 RDPWD - ok
12:09:03.0094 3724 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
12:09:03.0095 3724 RemoteAccess - ok
12:09:03.0134 3724 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
12:09:03.0146 3724 RemoteRegistry - ok
12:09:03.0160 3724 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
12:09:03.0161 3724 RpcLocator - ok
12:09:03.0268 3724 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:09:03.0273 3724 RpcSs - ok
12:09:03.0349 3724 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
12:09:03.0351 3724 rspndr - ok
12:09:03.0421 3724 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
12:09:03.0421 3724 RTL8169 - ok
12:09:03.0502 3724 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
12:09:03.0528 3724 RTL8187 - ok
12:09:03.0684 3724 RTL8187B (318f4f327190b2aee7aae9cafd19bb19) C:\Windows\system32\DRIVERS\wg111v3.sys
12:09:03.0688 3724 RTL8187B - ok
12:09:03.0804 3724 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
12:09:03.0804 3724 RtlProt - ok
12:09:03.0838 3724 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:09:03.0839 3724 SamSs - ok
12:09:04.0021 3724 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:09:04.0022 3724 SASDIFSV - ok
12:09:04.0498 3724 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:09:04.0500 3724 SASKUTIL - ok
12:09:04.0755 3724 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
12:09:04.0757 3724 sbp2port - ok
12:09:04.0930 3724 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
12:09:04.0932 3724 SCardSvr - ok
12:09:05.0023 3724 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
12:09:05.0055 3724 Schedule - ok
12:09:05.0076 3724 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
12:09:05.0086 3724 SCMNdisP - ok
12:09:05.0191 3724 SCM_Service (42660bbed859ac22dfd12ae598a8ffaa) C:\Windows\System32\WinService.exe
12:09:05.0194 3724 SCM_Service - ok
12:09:05.0319 3724 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:09:05.0320 3724 SCPolicySvc - ok
12:09:05.0432 3724 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
12:09:05.0434 3724 SDRSVC - ok
12:09:05.0513 3724 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:09:05.0514 3724 secdrv - ok
12:09:05.0521 3724 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
12:09:05.0523 3724 seclogon - ok
12:09:05.0535 3724 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
12:09:05.0537 3724 SENS - ok
12:09:05.0652 3724 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
12:09:05.0673 3724 Serenum - ok
12:09:05.0736 3724 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
12:09:05.0738 3724 Serial - ok
12:09:05.0800 3724 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
12:09:05.0801 3724 sermouse - ok
12:09:05.0948 3724 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
12:09:05.0950 3724 SessionEnv - ok
12:09:06.0019 3724 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
12:09:06.0020 3724 sffdisk - ok
12:09:06.0070 3724 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
12:09:06.0071 3724 sffp_mmc - ok
12:09:06.0096 3724 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
12:09:06.0097 3724 sffp_sd - ok
12:09:06.0152 3724 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
12:09:06.0174 3724 sfloppy - ok
12:09:06.0659 3724 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
12:09:06.0673 3724 SharedAccess - ok
12:09:06.0894 3724 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
12:09:06.0896 3724 ShellHWDetection - ok
12:09:07.0029 3724 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
12:09:07.0030 3724 sisagp - ok
12:09:07.0239 3724 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
12:09:07.0246 3724 SiSRaid2 - ok
12:09:07.0490 3724 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
12:09:07.0528 3724 SiSRaid4 - ok
12:09:07.0660 3724 SkypeUpdate (ea396139541706b4b433641d62ea53ce) C:\Program Files\Skype\Updater\Updater.exe
12:09:07.0671 3724 SkypeUpdate - ok
12:09:08.0754 3724 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
12:09:08.0772 3724 slsvc - ok
12:09:09.0003 3724 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
12:09:09.0005 3724 SLUINotify - ok
12:09:09.0044 3724 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
12:09:09.0045 3724 Smb - ok
12:09:09.0138 3724 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
12:09:09.0140 3724 SNMPTRAP - ok
12:09:09.0212 3724 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
12:09:09.0214 3724 spldr - ok
12:09:09.0277 3724 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
12:09:09.0279 3724 Spooler - ok
12:09:09.0478 3724 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
12:09:09.0503 3724 srv - ok
12:09:09.0708 3724 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
12:09:09.0715 3724 srv2 - ok
12:09:09.0736 3724 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
12:09:09.0742 3724 srvnet - ok
12:09:09.0873 3724 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
12:09:09.0875 3724 SSDPSRV - ok
12:09:09.0946 3724 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
12:09:09.0948 3724 SstpSvc - ok
12:09:10.0033 3724 Steam Client Service - ok
12:09:10.0381 3724 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
12:09:10.0495 3724 stisvc - ok
12:09:10.0545 3724 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
12:09:10.0545 3724 swenum - ok
12:09:10.0599 3724 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
12:09:10.0602 3724 swprv - ok
12:09:10.0655 3724 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
12:09:10.0656 3724 Symc8xx - ok
12:09:10.0776 3724 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
12:09:10.0776 3724 Sym_hi - ok
12:09:10.0861 3724 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
12:09:10.0862 3724 Sym_u3 - ok
12:09:11.0011 3724 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
12:09:11.0067 3724 SysMain - ok
12:09:11.0095 3724 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
12:09:11.0096 3724 TabletInputService - ok
12:09:11.0178 3724 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
12:09:11.0180 3724 TapiSrv - ok
12:09:11.0197 3724 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
12:09:11.0199 3724 TBS - ok
12:09:11.0487 3724 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
12:09:11.0582 3724 Tcpip - ok
12:09:11.0591 3724 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
12:09:11.0595 3724 Tcpip6 - ok
12:09:11.0607 3724 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
12:09:11.0607 3724 tcpipreg - ok
12:09:11.0680 3724 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
12:09:11.0681 3724 TDPIPE - ok
12:09:11.0701 3724 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
12:09:11.0702 3724 TDTCP - ok
12:09:11.0754 3724 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
12:09:11.0756 3724 tdx - ok
12:09:11.0941 3724 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
12:09:11.0942 3724 TermDD - ok
12:09:12.0103 3724 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
12:09:12.0106 3724 TermService - ok
12:09:12.0251 3724 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
12:09:12.0254 3724 Themes - ok
12:09:12.0342 3724 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:09:12.0343 3724 THREADORDER - ok
12:09:12.0462 3724 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
12:09:12.0464 3724 TrkWks - ok
12:09:12.0633 3724 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
12:09:12.0633 3724 TrustedInstaller - ok
12:09:12.0717 3724 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:09:12.0718 3724 tssecsrv - ok
12:09:12.0735 3724 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
12:09:12.0736 3724 tunmp - ok
12:09:12.0775 3724 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
12:09:12.0775 3724 tunnel - ok
12:09:12.0792 3724 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
12:09:12.0793 3724 uagp35 - ok
12:09:12.0951 3724 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
12:09:13.0028 3724 udfs - ok
12:09:13.0135 3724 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
12:09:13.0137 3724 UI0Detect - ok
12:09:13.0269 3724 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
12:09:13.0271 3724 uliagpkx - ok
12:09:13.0372 3724 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
12:09:13.0487 3724 uliahci - ok
12:09:13.0702 3724 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
12:09:13.0704 3724 UlSata - ok
12:09:13.0723 3724 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
12:09:13.0754 3724 ulsata2 - ok
12:09:13.0774 3724 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
12:09:13.0775 3724 umbus - ok
12:09:13.0807 3724 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
12:09:13.0809 3724 upnphost - ok
12:09:13.0862 3724 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
12:09:13.0863 3724 USBAAPL - ok
12:09:14.0082 3724 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
12:09:14.0103 3724 usbccgp - ok
12:09:14.0138 3724 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
12:09:14.0140 3724 usbcir - ok
12:09:14.0183 3724 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
12:09:14.0184 3724 usbehci - ok
12:09:14.0243 3724 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
12:09:14.0250 3724 usbhub - ok
12:09:14.0349 3724 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
12:09:14.0350 3724 usbohci - ok
12:09:14.0419 3724 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
12:09:14.0436 3724 usbprint - ok
12:09:14.0497 3724 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
12:09:14.0497 3724 usbscan - ok
12:09:14.0521 3724 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:09:14.0547 3724 USBSTOR - ok
12:09:14.0570 3724 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
12:09:14.0585 3724 usbuhci - ok
12:09:14.0640 3724 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
12:09:14.0641 3724 UxSms - ok
12:09:14.0753 3724 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
12:09:14.0757 3724 vds - ok
12:09:14.0861 3724 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
12:09:14.0862 3724 vga - ok
12:09:14.0876 3724 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
12:09:14.0877 3724 VgaSave - ok
12:09:14.0904 3724 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
12:09:14.0930 3724 viaagp - ok
12:09:14.0975 3724 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
12:09:14.0976 3724 ViaC7 - ok
12:09:15.0065 3724 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
12:09:15.0066 3724 viaide - ok
12:09:15.0140 3724 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
12:09:15.0141 3724 volmgr - ok
12:09:15.0299 3724 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
12:09:15.0322 3724 volmgrx - ok
12:09:15.0409 3724 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
12:09:15.0416 3724 volsnap - ok
12:09:15.0485 3724 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
12:09:15.0491 3724 vsmraid - ok
12:09:15.0720 3724 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
12:09:15.0725 3724 VSS - ok
12:09:16.0180 3724 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:09:16.0216 3724 vToolbarUpdater11.2.0 - ok
12:09:16.0449 3724 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
12:09:16.0452 3724 W32Time - ok
12:09:16.0703 3724 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
12:09:16.0704 3724 WacomPen - ok
12:09:16.0740 3724 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:09:16.0742 3724 Wanarp - ok
12:09:16.0745 3724 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:09:16.0745 3724 Wanarpv6 - ok
12:09:16.0806 3724 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
12:09:16.0809 3724 wcncsvc - ok
12:09:16.0918 3724 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
12:09:16.0920 3724 WcsPlugInService - ok
12:09:16.0966 3724 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
12:09:16.0967 3724 Wd - ok
12:09:17.0214 3724 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
12:09:17.0221 3724 Wdf01000 - ok
12:09:17.0236 3724 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:09:17.0238 3724 WdiServiceHost - ok
12:09:17.0242 3724 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:09:17.0244 3724 WdiSystemHost - ok
12:09:17.0308 3724 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
12:09:17.0311 3724 WebClient - ok
12:09:17.0445 3724 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
12:09:17.0447 3724 Wecsvc - ok
12:09:17.0535 3724 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
12:09:17.0537 3724 wercplsupport - ok
12:09:17.0619 3724 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
12:09:17.0621 3724 WerSvc - ok
12:09:17.0811 3724 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
12:09:17.0824 3724 WinDefend - ok
12:09:17.0831 3724 WinHttpAutoProxySvc - ok
12:09:18.0106 3724 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
12:09:18.0187 3724 Winmgmt - ok
12:09:18.0388 3724 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
12:09:18.0449 3724 WinRM - ok
12:09:18.0535 3724 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
12:09:18.0539 3724 Wlansvc - ok
12:09:19.0002 3724 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:09:19.0134 3724 wlidsvc - ok
12:09:19.0662 3724 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
12:09:19.0663 3724 WmiAcpi - ok
12:09:19.0769 3724 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
12:09:19.0770 3724 wmiApSrv - ok
12:09:20.0053 3724 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
12:09:20.0292 3724 WMPNetworkSvc - ok
12:09:20.0326 3724 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
12:09:20.0328 3724 WPCSvc - ok
12:09:20.0427 3724 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
12:09:20.0429 3724 WPDBusEnum - ok
12:09:20.0921 3724 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:09:20.0981 3724 WPFFontCache_v0400 - ok
12:09:21.0082 3724 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
12:09:21.0115 3724 ws2ifsl - ok
12:09:21.0182 3724 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
12:09:21.0185 3724 wscsvc - ok
12:09:21.0188 3724 WSearch - ok
12:09:21.0592 3724 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
12:09:21.0877 3724 wuauserv - ok
12:09:22.0194 3724 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:22.0201 3724 WUDFRd - ok
12:09:22.0225 3724 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
12:09:22.0227 3724 wudfsvc - ok
12:09:22.0232 3724 XDva390 - ok
12:09:22.0236 3724 XDva391 - ok
12:09:22.0262 3724 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
12:09:22.0981 3724 \Device\Harddisk0\DR0 - ok
12:09:23.0017 3724 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
12:09:23.0508 3724 \Device\Harddisk1\DR1 - ok
12:09:23.0530 3724 Boot (0x1200) (984fe8ee81be62564a81aa65f63d599e) \Device\Harddisk0\DR0\Partition0
12:09:23.0560 3724 \Device\Harddisk0\DR0\Partition0 - ok
12:09:23.0585 3724 Boot (0x1200) (b96ad8f440d7d0a41c7819ed99d8f22e) \Device\Harddisk1\DR1\Partition0
12:09:23.0586 3724 \Device\Harddisk1\DR1\Partition0 - ok
12:09:23.0588 3724 Boot (0x1200) (2dd793aee5a2d21cd481115492edb0fb) \Device\Harddisk1\DR1\Partition1
12:09:23.0590 3724 \Device\Harddisk1\DR1\Partition1 - ok
12:09:23.0620 3724 Boot (0x1200) (ded30c6b24c51a92dff850dab9df0dc8) \Device\Harddisk1\DR1\Partition2
12:09:23.0621 3724 \Device\Harddisk1\DR1\Partition2 - ok
12:09:23.0622 3724 ============================================================
12:09:23.0622 3724 Scan finished
12:09:23.0622 3724 ============================================================
12:09:23.0627 5192 Detected object count: 0
12:09:23.0627 5192 Actual detected object count: 0
12:10:05.0433 4984 ============================================================
12:10:05.0433 4984 Scan started
12:10:05.0433 4984 Mode: Manual; SigCheck; TDLFS;
12:10:05.0433 4984 ============================================================
12:10:06.0719 4984 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
12:10:06.0889 4984 !SASCORE - ok
12:10:06.0971 4984 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
12:10:06.0985 4984 ACPI - ok
12:10:07.0132 4984 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:10:07.0140 4984 AdobeARMservice - ok
12:10:07.0239 4984 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:10:07.0248 4984 AdobeFlashPlayerUpdateSvc - ok
12:10:07.0293 4984 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
12:10:07.0312 4984 adp94xx - ok
12:10:07.0343 4984 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
12:10:07.0354 4984 adpahci - ok
12:10:07.0396 4984 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
12:10:07.0406 4984 adpu160m - ok
12:10:07.0496 4984 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
12:10:07.0507 4984 adpu320 - ok
12:10:07.0535 4984 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
12:10:07.0578 4984 AeLookupSvc - ok
12:10:07.0633 4984 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
12:10:07.0670 4984 AFD - ok
12:10:07.0715 4984 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
12:10:07.0724 4984 agp440 - ok
12:10:07.0759 4984 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
12:10:07.0769 4984 aic78xx - ok
12:10:08.0707 4984 Akamai (1125c7d9fb8898015829c387c1bc87c7) C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll
12:10:08.0816 4984 Akamai - ok
12:10:08.0992 4984 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
12:10:09.0011 4984 ALG - ok
12:10:09.0097 4984 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
12:10:09.0106 4984 aliide - ok
12:10:09.0137 4984 AMD External Events Utility (f970ea885aefeb1b9eb97ca7f1eb226d) C:\Windows\system32\atiesrxx.exe
12:10:09.0183 4984 AMD External Events Utility - ok
12:10:09.0202 4984 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
12:10:09.0210 4984 amdagp - ok
12:10:09.0270 4984 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
12:10:09.0279 4984 amdide - ok
12:10:09.0333 4984 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
12:10:09.0350 4984 AmdK7 - ok
12:10:09.0382 4984 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
12:10:09.0400 4984 AmdK8 - ok
12:10:11.0053 4984 amdkmdag (ab70f110143892eb41aa46500aa5cf00) C:\Windows\system32\DRIVERS\atikmdag.sys
12:10:11.0393 4984 amdkmdag - ok
12:10:11.0679 4984 amdkmdap (32d68d05b871eed5572d0c2c764ea4ec) C:\Windows\system32\DRIVERS\atikmpag.sys
12:10:11.0690 4984 amdkmdap - ok
12:10:11.0718 4984 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
12:10:11.0745 4984 Appinfo - ok
12:10:11.0829 4984 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:10:11.0837 4984 Apple Mobile Device - ok
12:10:11.0871 4984 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
12:10:11.0880 4984 arc - ok
12:10:11.0888 4984 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
12:10:11.0899 4984 arcsas - ok
12:10:11.0966 4984 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:10:11.0974 4984 aspnet_state - ok
12:10:11.0988 4984 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
12:10:12.0006 4984 AsyncMac - ok
12:10:12.0019 4984 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
12:10:12.0027 4984 atapi - ok
12:10:12.0057 4984 AtiHDAudioService (c8f5273b12cfa5c0888263e34140cb8a) C:\Windows\system32\drivers\AtihdLH3.sys
12:10:14.0294 4984 AtiHDAudioService - ok
12:10:14.0326 4984 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:10:14.0343 4984 AudioEndpointBuilder - ok
12:10:14.0347 4984 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
12:10:14.0362 4984 Audiosrv - ok
12:10:14.0379 4984 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
12:10:14.0396 4984 Beep - ok
12:10:14.0427 4984 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
12:10:14.0448 4984 BFE - ok
12:10:14.0497 4984 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
12:10:14.0556 4984 BITS - ok
12:10:14.0608 4984 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
12:10:14.0626 4984 blbdrive - ok
12:10:14.0723 4984 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
12:10:14.0734 4984 Bonjour Service - ok
12:10:14.0754 4984 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
12:10:14.0774 4984 bowser - ok
12:10:14.0798 4984 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
12:10:14.0810 4984 BrFiltLo - ok
12:10:14.0830 4984 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
12:10:14.0843 4984 BrFiltUp - ok
12:10:14.0876 4984 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
12:10:14.0894 4984 Browser - ok
12:10:14.0912 4984 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
12:10:14.0945 4984 Brserid - ok
12:10:14.0965 4984 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
12:10:14.0995 4984 BrSerWdm - ok
12:10:15.0018 4984 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
12:10:15.0047 4984 BrUsbMdm - ok
12:10:15.0050 4984 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
12:10:15.0095 4984 BrUsbSer - ok
12:10:15.0104 4984 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
12:10:15.0135 4984 BTHMODEM - ok
12:10:15.0168 4984 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
12:10:15.0186 4984 cdfs - ok
12:10:15.0210 4984 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
12:10:15.0224 4984 cdrom - ok
12:10:15.0258 4984 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:10:15.0272 4984 CertPropSvc - ok
12:10:15.0298 4984 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
12:10:15.0314 4984 circlass - ok
12:10:15.0356 4984 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
12:10:15.0368 4984 CLFS - ok
12:10:15.0425 4984 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:10:15.0433 4984 clr_optimization_v2.0.50727_32 - ok
12:10:15.0485 4984 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:10:15.0493 4984 clr_optimization_v4.0.30319_32 - ok
12:10:15.0523 4984 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
12:10:15.0532 4984 cmdide - ok
12:10:15.0549 4984 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
12:10:15.0557 4984 Compbatt - ok
12:10:15.0559 4984 COMSysApp - ok
12:10:15.0576 4984 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
12:10:15.0584 4984 crcdisk - ok
12:10:15.0597 4984 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
12:10:15.0647 4984 Crusoe - ok
12:10:15.0677 4984 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
12:10:15.0721 4984 CryptSvc - ok
12:10:15.0768 4984 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:10:15.0789 4984 DcomLaunch - ok
12:10:15.0825 4984 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
12:10:15.0854 4984 DfsC - ok
12:10:15.0946 4984 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
12:10:16.0052 4984 DFSR - ok
12:10:16.0172 4984 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
12:10:16.0187 4984 Dhcp - ok
12:10:16.0225 4984 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
12:10:16.0234 4984 disk - ok
12:10:16.0258 4984 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
12:10:16.0286 4984 Dnscache - ok
12:10:16.0321 4984 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
12:10:16.0337 4984 dot3svc - ok
12:10:16.0367 4984 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
12:10:16.0387 4984 DPS - ok
12:10:16.0405 4984 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
12:10:16.0418 4984 drmkaud - ok
12:10:16.0469 4984 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
12:10:16.0488 4984 DXGKrnl - ok
12:10:16.0545 4984 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
12:10:16.0563 4984 E1G60 - ok
12:10:16.0565 4984 EagleXNt - ok
12:10:16.0624 4984 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
12:10:16.0638 4984 EapHost - ok
12:10:16.0662 4984 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
12:10:16.0673 4984 Ecache - ok
12:10:16.0720 4984 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
12:10:16.0748 4984 ehRecvr - ok
12:10:16.0761 4984 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
12:10:16.0770 4984 ehSched - ok
12:10:16.0774 4984 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
12:10:16.0786 4984 ehstart - ok
12:10:16.0820 4984 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
12:10:16.0834 4984 elxstor - ok
12:10:16.0885 4984 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
12:10:16.0963 4984 EMDMgmt - ok
12:10:16.0980 4984 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
12:10:16.0997 4984 ErrDev - ok
12:10:17.0022 4984 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
12:10:17.0039 4984 EventSystem - ok
12:10:17.0080 4984 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
12:10:17.0124 4984 exfat - ok
12:10:17.0178 4984 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
12:10:17.0193 4984 fastfat - ok
12:10:17.0225 4984 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
12:10:17.0242 4984 fdc - ok
12:10:17.0259 4984 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
12:10:17.0275 4984 fdPHost - ok
12:10:17.0278 4984 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
12:10:17.0310 4984 FDResPub - ok
12:10:17.0319 4984 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
12:10:17.0328 4984 FileInfo - ok
12:10:17.0340 4984 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
12:10:17.0398 4984 Filetrace - ok
12:10:17.0425 4984 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
12:10:17.0479 4984 flpydisk - ok
12:10:17.0507 4984 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
12:10:17.0517 4984 FltMgr - ok
12:10:17.0683 4984 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
12:10:17.0780 4984 FontCache - ok
12:10:17.0847 4984 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:10:17.0855 4984 FontCache3.0.0.0 - ok
12:10:17.0909 4984 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
12:10:17.0935 4984 Fs_Rec - ok
12:10:18.0096 4984 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
12:10:18.0106 4984 gagp30kx - ok
12:10:18.0170 4984 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:10:18.0175 4984 GEARAspiWDM - ok
12:10:18.0532 4984 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
12:10:18.0552 4984 gpsvc - ok
12:10:18.0632 4984 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
12:10:18.0693 4984 HdAudAddService - ok
12:10:18.0769 4984 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:10:18.0805 4984 HDAudBus - ok
12:10:18.0902 4984 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
12:10:18.0932 4984 HidBth - ok
12:10:18.0943 4984 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
12:10:18.0972 4984 HidIr - ok
12:10:18.0994 4984 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
12:10:19.0004 4984 hidserv - ok
12:10:19.0032 4984 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
12:10:19.0059 4984 HidUsb - ok
12:10:19.0170 4984 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
12:10:19.0207 4984 hkmsvc - ok
12:10:19.0242 4984 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
12:10:19.0250 4984 HpCISSs - ok
12:10:19.0331 4984 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
12:10:19.0362 4984 HTTP - ok
12:10:19.0395 4984 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
12:10:19.0404 4984 i2omp - ok
12:10:19.0447 4984 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
12:10:19.0463 4984 i8042prt - ok
12:10:19.0530 4984 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
12:10:19.0541 4984 iaStorV - ok
12:10:20.0135 4984 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:10:20.0184 4984 idsvc - ok
12:10:20.0209 4984 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
12:10:20.0216 4984 iirsp - ok
12:10:20.0351 4984 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
12:10:20.0373 4984 IKEEXT - ok
12:10:20.0416 4984 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
12:10:20.0424 4984 intelide - ok
12:10:20.0458 4984 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
12:10:20.0475 4984 intelppm - ok
12:10:20.0521 4984 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
12:10:20.0542 4984 IPBusEnum - ok
12:10:20.0672 4984 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:10:20.0689 4984 IpFilterDriver - ok
12:10:20.0784 4984 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
12:10:20.0813 4984 iphlpsvc - ok
12:10:20.0815 4984 IpInIp - ok
12:10:20.0861 4984 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
12:10:20.0878 4984 IPMIDRV - ok
12:10:20.0902 4984 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
12:10:20.0919 4984 IPNAT - ok
12:10:21.0757 4984 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
12:10:21.0800 4984 iPod Service - ok
12:10:21.0815 4984 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
12:10:21.0832 4984 IRENUM - ok
12:10:21.0887 4984 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
12:10:21.0896 4984 isapnp - ok
12:10:21.0930 4984 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
12:10:21.0946 4984 iScsiPrt - ok
12:10:21.0969 4984 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
12:10:21.0977 4984 iteatapi - ok
12:10:21.0987 4984 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
12:10:21.0996 4984 iteraid - ok
12:10:22.0012 4984 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:10:22.0021 4984 kbdclass - ok
12:10:22.0033 4984 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
12:10:22.0050 4984 kbdhid - ok
12:10:22.0065 4984 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:10:22.0088 4984 KeyIso - ok
12:10:22.0122 4984 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
12:10:22.0146 4984 KSecDD - ok
12:10:22.0204 4984 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
12:10:22.0227 4984 KtmRm - ok
12:10:22.0283 4984 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
12:10:22.0311 4984 LanmanServer - ok
12:10:22.0344 4984 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
12:10:22.0375 4984 LanmanWorkstation - ok
12:10:22.0408 4984 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
12:10:22.0425 4984 lltdio - ok
12:10:22.0452 4984 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
12:10:22.0473 4984 lltdsvc - ok
12:10:22.0492 4984 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
12:10:22.0522 4984 lmhosts - ok
12:10:22.0545 4984 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
12:10:22.0559 4984 LSI_FC - ok
12:10:22.0572 4984 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
12:10:22.0587 4984 LSI_SAS - ok
12:10:22.0606 4984 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
12:10:22.0621 4984 LSI_SCSI - ok
12:10:22.0641 4984 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
12:10:22.0665 4984 luafv - ok
12:10:22.0689 4984 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
12:10:22.0698 4984 MBAMProtector - ok
12:10:22.0769 4984 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
12:10:22.0787 4984 MBAMService - ok
12:10:22.0850 4984 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
12:10:22.0859 4984 Mcx2Svc - ok
12:10:22.0886 4984 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
12:10:22.0895 4984 megasas - ok
12:10:22.0922 4984 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
12:10:22.0946 4984 MegaSR - ok
12:10:22.0990 4984 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:10:23.0008 4984 MMCSS - ok
12:10:23.0019 4984 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
12:10:23.0037 4984 Modem - ok
12:10:23.0066 4984 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
12:10:23.0089 4984 monitor - ok
12:10:23.0102 4984 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
12:10:23.0112 4984 mouclass - ok
12:10:23.0119 4984 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
12:10:23.0136 4984 mouhid - ok
12:10:23.0167 4984 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
12:10:23.0181 4984 MountMgr - ok
12:10:23.0215 4984 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:10:23.0229 4984 MozillaMaintenance - ok
12:10:23.0257 4984 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
12:10:23.0278 4984 MpFilter - ok
12:10:23.0307 4984 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
12:10:23.0323 4984 mpio - ok
12:10:23.0344 4984 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
12:10:23.0358 4984 mpsdrv - ok
12:10:23.0396 4984 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
12:10:23.0419 4984 MpsSvc - ok
12:10:23.0443 4984 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
12:10:23.0452 4984 Mraid35x - ok
12:10:23.0463 4984 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
12:10:23.0483 4984 MRxDAV - ok
12:10:23.0536 4984 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:10:23.0578 4984 mrxsmb - ok
12:10:23.0605 4984 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:10:23.0637 4984 mrxsmb10 - ok
12:10:23.0645 4984 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:10:23.0656 4984 mrxsmb20 - ok
12:10:23.0687 4984 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
12:10:23.0696 4984 msahci - ok
12:10:23.0720 4984 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
12:10:23.0736 4984 msdsm - ok
12:10:23.0771 4984 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
12:10:23.0789 4984 MSDTC - ok
12:10:23.0807 4984 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
12:10:23.0826 4984 Msfs - ok
12:10:23.0838 4984 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
12:10:23.0849 4984 msisadrv - ok
12:10:23.0870 4984 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
12:10:23.0890 4984 MSiSCSI - ok
12:10:23.0893 4984 msiserver - ok
12:10:23.0908 4984 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
12:10:23.0924 4984 MSKSSRV - ok
12:10:23.0966 4984 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:10:23.0976 4984 MsMpSvc - ok
12:10:23.0999 4984 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
12:10:24.0056 4984 MSPCLOCK - ok
12:10:24.0063 4984 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
12:10:24.0079 4984 MSPQM - ok
12:10:24.0113 4984 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
12:10:24.0128 4984 MsRPC - ok
12:10:24.0173 4984 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
12:10:24.0197 4984 mssmbios - ok
12:10:24.0212 4984 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
12:10:24.0266 4984 MSTEE - ok
12:10:24.0291 4984 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
12:10:24.0303 4984 Mup - ok
12:10:24.0338 4984 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
12:10:24.0356 4984 napagent - ok
12:10:24.0386 4984 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
12:10:24.0403 4984 NativeWifiP - ok
12:10:24.0422 4984 Nbdrv (c9deac695b5107c31b451f254df7e3a4) C:\Windows\system32\DRIVERS\nbdrv.sys
12:10:24.0430 4984 Nbdrv - ok
12:10:24.0512 4984 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
12:10:24.0562 4984 NDIS - ok
12:10:24.0579 4984 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
12:10:24.0598 4984 NdisTapi - ok
12:10:24.0606 4984 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
12:10:24.0645 4984 Ndisuio - ok
12:10:24.0674 4984 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:10:24.0694 4984 NdisWan - ok
12:10:24.0709 4984 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
12:10:24.0723 4984 NDProxy - ok
12:10:24.0830 4984 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
12:10:24.0866 4984 Nero BackItUp Scheduler 4.0 - ok
12:10:24.0916 4984 NetBalancer Windows Service (f4769617bb8288b7be9754c6fb0e8567) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
12:10:24.0919 4984 NetBalancer Windows Service ( UnsignedFile.Multi.Generic ) - warning
12:10:24.0919 4984 NetBalancer Windows Service - detected UnsignedFile.Multi.Generic (1)
12:10:24.0929 4984 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
12:10:24.0947 4984 NetBIOS - ok
12:10:24.0968 4984 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
12:10:24.0988 4984 netbt - ok
12:10:25.0013 4984 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:10:25.0022 4984 Netlogon - ok
12:10:25.0046 4984 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
12:10:25.0067 4984 Netman - ok
12:10:25.0124 4984 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:10:25.0138 4984 NetMsmqActivator - ok
12:10:25.0141 4984 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:10:25.0173 4984 NetPipeActivator - ok
12:10:25.0213 4984 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
12:10:25.0232 4984 netprofm - ok
12:10:25.0235 4984 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:10:25.0243 4984 NetTcpActivator - ok
12:10:25.0245 4984 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:10:25.0253 4984 NetTcpPortSharing - ok
12:10:25.0285 4984 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
12:10:25.0294 4984 nfrd960 - ok
12:10:25.0326 4984 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:10:25.0336 4984 NisDrv - ok
12:10:25.0398 4984 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
12:10:25.0420 4984 NisSrv - ok
12:10:25.0451 4984 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
12:10:25.0474 4984 NlaSvc - ok
12:10:25.0553 4984 nlsvc (2681c88281f34e59d1a0b2cedebf8924) C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe
12:10:25.0571 4984 nlsvc ( UnsignedFile.Multi.Generic ) - warning
12:10:25.0571 4984 nlsvc - detected UnsignedFile.Multi.Generic (1)
12:10:25.0617 4984 nltdi (015ce611f7acf34afdff58a581ec6904) C:\Windows\system32\drivers\nltdi.sys
12:10:25.0626 4984 nltdi - ok
12:10:25.0666 4984 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
12:10:25.0683 4984 Npfs - ok
12:10:25.0687 4984 npggsvc - ok
12:10:25.0706 4984 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
12:10:25.0729 4984 nsi - ok
12:10:25.0751 4984 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
12:10:25.0771 4984 nsiproxy - ok
12:10:25.0852 4984 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
12:10:25.0903 4984 Ntfs - ok
12:10:25.0943 4984 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
12:10:25.0972 4984 ntrigdigi - ok
12:10:25.0988 4984 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
12:10:26.0005 4984 Null - ok
12:10:26.0029 4984 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
12:10:26.0042 4984 nvraid - ok
12:10:26.0064 4984 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
12:10:26.0073 4984 nvstor - ok
12:10:26.0094 4984 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
12:10:26.0109 4984 nv_agp - ok
12:10:26.0111 4984 NwlnkFlt - ok
12:10:26.0113 4984 NwlnkFwd - ok
12:10:26.0134 4984 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
12:10:26.0190 4984 ohci1394 - ok
12:10:26.0238 4984 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:10:26.0304 4984 p2pimsvc - ok
12:10:26.0309 4984 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:10:26.0329 4984 p2psvc - ok
12:10:26.0366 4984 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
12:10:26.0399 4984 Parport - ok
12:10:26.0436 4984 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
12:10:26.0445 4984 partmgr - ok
12:10:26.0466 4984 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
12:10:26.0495 4984 Parvdm - ok
12:10:26.0553 4984 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
12:10:26.0580 4984 PcaSvc - ok
12:10:26.0613 4984 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
12:10:26.0644 4984 pci - ok
12:10:26.0652 4984 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
12:10:26.0662 4984 pciide - ok
12:10:26.0701 4984 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
12:10:26.0715 4984 pcmcia - ok
12:10:26.0767 4984 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
12:10:26.0843 4984 PEAUTH - ok
12:10:26.0927 4984 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
12:10:27.0000 4984 pla - ok
12:10:27.0097 4984 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
12:10:27.0113 4984 PlugPlay - ok
12:10:27.0137 4984 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
12:10:27.0146 4984 PnkBstrA - ok
12:10:27.0196 4984 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:10:27.0219 4984 PNRPAutoReg - ok
12:10:27.0227 4984 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
12:10:27.0282 4984 PNRPsvc - ok
12:10:27.0327 4984 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
12:10:27.0349 4984 PolicyAgent - ok
12:10:27.0418 4984 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
12:10:27.0438 4984 PptpMiniport - ok
12:10:27.0473 4984 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
12:10:27.0490 4984 Processor - ok
12:10:27.0529 4984 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
12:10:27.0545 4984 ProfSvc - ok
12:10:27.0570 4984 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:10:27.0579 4984 ProtectedStorage - ok
12:10:27.0600 4984 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
12:10:27.0615 4984 PSched - ok
12:10:27.0682 4984 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
12:10:27.0751 4984 ql2300 - ok
12:10:27.0794 4984 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
12:10:27.0812 4984 ql40xx - ok
12:10:27.0855 4984 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
12:10:27.0884 4984 QWAVE - ok
12:10:27.0898 4984 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
12:10:27.0909 4984 QWAVEdrv - ok
12:10:27.0916 4984 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
12:10:27.0934 4984 RasAcd - ok
12:10:27.0963 4984 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
12:10:27.0984 4984 RasAuto - ok
12:10:27.0993 4984 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:10:28.0011 4984 Rasl2tp - ok
12:10:28.0039 4984 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
12:10:28.0056 4984 RasMan - ok
12:10:28.0079 4984 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
12:10:28.0093 4984 RasPppoe - ok
12:10:28.0104 4984 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
12:10:28.0114 4984 RasSstp - ok
12:10:28.0140 4984 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
12:10:28.0183 4984 rdbss - ok
12:10:28.0205 4984 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:10:28.0224 4984 RDPCDD - ok
12:10:28.0247 4984 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
12:10:28.0277 4984 rdpdr - ok
12:10:28.0279 4984 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
12:10:28.0296 4984 RDPENCDD - ok
12:10:28.0328 4984 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
12:10:28.0366 4984 RDPWD - ok
12:10:28.0405 4984 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
12:10:28.0424 4984 RemoteAccess - ok
12:10:28.0445 4984 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
12:10:28.0461 4984 RemoteRegistry - ok
12:10:28.0466 4984 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
12:10:28.0485 4984 RpcLocator - ok
12:10:28.0527 4984 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
12:10:28.0554 4984 RpcSs - ok
12:10:28.0589 4984 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
12:10:28.0607 4984 rspndr - ok
12:10:28.0636 4984 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
12:10:28.0666 4984 RTL8169 - ok
12:10:28.0697 4984 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
12:10:28.0709 4984 RTL8187 - ok
12:10:28.0757 4984 RTL8187B (318f4f327190b2aee7aae9cafd19bb19) C:\Windows\system32\DRIVERS\wg111v3.sys
12:10:28.0783 4984 RTL8187B - ok
12:10:28.0802 4984 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
12:10:28.0813 4984 RtlProt - ok
12:10:28.0836 4984 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
12:10:28.0846 4984 SamSs - ok
12:10:28.0892 4984 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
12:10:28.0900 4984 SASDIFSV - ok
12:10:28.0923 4984 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
12:10:28.0930 4984 SASKUTIL - ok
12:10:28.0955 4984 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
12:10:28.0964 4984 sbp2port - ok
12:10:29.0003 4984 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
12:10:29.0021 4984 SCardSvr - ok
12:10:29.0061 4984 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
12:10:29.0112 4984 Schedule - ok
12:10:29.0141 4984 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
12:10:29.0169 4984 SCMNdisP - ok
12:10:29.0183 4984 SCM_Service (42660bbed859ac22dfd12ae598a8ffaa) C:\Windows\System32\WinService.exe
12:10:29.0189 4984 SCM_Service ( UnsignedFile.Multi.Generic ) - warning
12:10:29.0189 4984 SCM_Service - detected UnsignedFile.Multi.Generic (1)
12:10:29.0212 4984 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
12:10:29.0227 4984 SCPolicySvc - ok
12:10:29.0249 4984 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
12:10:29.0283 4984 SDRSVC - ok
12:10:29.0302 4984 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:10:29.0331 4984 secdrv - ok
12:10:29.0343 4984 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
12:10:29.0361 4984 seclogon - ok
12:10:29.0374 4984 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
12:10:29.0394 4984 SENS - ok
12:10:29.0417 4984 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
12:10:29.0435 4984 Serenum - ok
12:10:29.0443 4984 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
12:10:29.0467 4984 Serial - ok
12:10:29.0508 4984 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
12:10:29.0524 4984 sermouse - ok
12:10:29.0562 4984 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
12:10:29.0584 4984 SessionEnv - ok
12:10:29.0602 4984 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
12:10:29.0620 4984 sffdisk - ok
12:10:29.0633 4984 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
12:10:29.0650 4984 sffp_mmc - ok
12:10:29.0686 4984 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
12:10:29.0704 4984 sffp_sd - ok
12:10:29.0718 4984 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
12:10:29.0747 4984 sfloppy - ok
12:10:29.0792 4984 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
12:10:29.0810 4984 SharedAccess - ok
12:10:29.0842 4984 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
12:10:29.0879 4984 ShellHWDetection - ok
12:10:29.0894 4984 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
12:10:29.0902 4984 sisagp - ok
12:10:29.0932 4984 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
12:10:29.0940 4984 SiSRaid2 - ok
12:10:29.0955 4984 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
12:10:29.0965 4984 SiSRaid4 - ok
12:10:30.0023 4984 SkypeUpdate (ea396139541706b4b433641d62ea53ce) C:\Program Files\Skype\Updater\Updater.exe
12:10:30.0037 4984 SkypeUpdate - ok
12:10:30.0192 4984 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
12:10:30.0482 4984 slsvc - ok
12:10:30.0560 4984 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
12:10:30.0588 4984 SLUINotify - ok
12:10:30.0643 4984 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
12:10:30.0661 4984 Smb - ok
12:10:30.0679 4984 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
12:10:30.0694 4984 SNMPTRAP - ok
12:10:30.0715 4984 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
12:10:30.0724 4984 spldr - ok
12:10:30.0751 4984 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
12:10:30.0778 4984 Spooler - ok
12:10:30.0815 4984 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
12:10:30.0854 4984 srv - ok
12:10:30.0881 4984 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
12:10:30.0918 4984 srv2 - ok
12:10:30.0944 4984 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
12:10:30.0964 4984 srvnet - ok
12:10:30.0982 4984 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
12:10:31.0002 4984 SSDPSRV - ok
12:10:31.0013 4984 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
12:10:31.0031 4984 SstpSvc - ok
12:10:31.0066 4984 Steam Client Service - ok
12:10:31.0097 4984 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
12:10:31.0113 4984 stisvc - ok
12:10:31.0178 4984 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
12:10:31.0186 4984 swenum - ok
12:10:31.0213 4984 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
12:10:31.0240 4984 swprv - ok
12:10:31.0257 4984 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
12:10:31.0265 4984 Symc8xx - ok
12:10:31.0281 4984 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
12:10:31.0290 4984 Sym_hi - ok
12:10:31.0304 4984 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
12:10:31.0312 4984 Sym_u3 - ok
12:10:31.0364 4984 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
12:10:31.0391 4984 SysMain - ok
12:10:31.0435 4984 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
12:10:31.0448 4984 TabletInputService - ok
12:10:31.0481 4984 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
12:10:31.0502 4984 TapiSrv - ok
12:10:31.0514 4984 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
12:10:31.0533 4984 TBS - ok
12:10:31.0571 4984 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
12:10:31.0613 4984 Tcpip - ok
12:10:31.0621 4984 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
12:10:31.0646 4984 Tcpip6 - ok
12:10:31.0689 4984 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
12:10:31.0729 4984 tcpipreg - ok
12:10:31.0771 4984 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
12:10:31.0789 4984 TDPIPE - ok
12:10:31.0809 4984 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
12:10:31.0828 4984 TDTCP - ok
12:10:31.0846 4984 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
12:10:31.0861 4984 tdx - ok
12:10:31.0876 4984 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
12:10:31.0887 4984 TermDD - ok
12:10:31.0922 4984 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
12:10:31.0951 4984 TermService - ok
12:10:32.0011 4984 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
12:10:32.0022 4984 Themes - ok
12:10:32.0044 4984 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
12:10:32.0065 4984 THREADORDER - ok
12:10:32.0088 4984 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
12:10:32.0109 4984 TrkWks - ok
12:10:32.0167 4984 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
12:10:32.0182 4984 TrustedInstaller - ok
12:10:32.0210 4984 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:10:32.0230 4984 tssecsrv - ok
12:10:32.0262 4984 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
12:10:32.0271 4984 tunmp - ok
12:10:32.0288 4984 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
12:10:32.0298 4984 tunnel - ok
12:10:32.0317 4984 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
12:10:32.0326 4984 uagp35 - ok
12:10:32.0373 4984 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
12:10:32.0398 4984 udfs - ok
12:10:32.0427 4984 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
12:10:32.0447 4984 UI0Detect - ok
12:10:32.0460 4984 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
12:10:32.0470 4984 uliagpkx - ok
12:10:32.0505 4984 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
12:10:32.0523 4984 uliahci - ok
12:10:32.0547 4984 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
12:10:32.0561 4984 UlSata - ok
12:10:32.0582 4984 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
12:10:32.0596 4984 ulsata2 - ok
12:10:32.0617 4984 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
12:10:32.0635 4984 umbus - ok
12:10:32.0665 4984 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
12:10:32.0688 4984 upnphost - ok
12:10:32.0728 4984 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
12:10:32.0745 4984 USBAAPL - ok
12:10:32.0776 4984 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
12:10:32.0796 4984 usbccgp - ok
12:10:32.0861 4984 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
12:10:32.0897 4984 usbcir - ok
12:10:32.0984 4984 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
12:10:33.0044 4984 usbehci - ok
12:10:33.0069 4984 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
12:10:33.0176 4984 usbhub - ok
12:10:33.0241 4984 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
12:10:33.0335 4984 usbohci - ok
12:10:33.0362 4984 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
12:10:33.0389 4984 usbprint - ok
12:10:33.0464 4984 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
12:10:33.0553 4984 usbscan - ok
12:10:33.0589 4984 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:10:33.0699 4984 USBSTOR - ok
12:10:33.0721 4984 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
12:10:33.0738 4984 usbuhci - ok
12:10:33.0880 4984 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
12:10:34.0089 4984 UxSms - ok
12:10:34.0143 4984 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
12:10:34.0327 4984 vds - ok
12:10:34.0392 4984 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
12:10:34.0509 4984 vga - ok
12:10:34.0526 4984 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
12:10:34.0570 4984 VgaSave - ok
12:10:34.0648 4984 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
12:10:34.0660 4984 viaagp - ok
12:10:34.0675 4984 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
12:10:34.0694 4984 ViaC7 - ok
12:10:34.0724 4984 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
12:10:34.0733 4984 viaide - ok
12:10:34.0766 4984 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
12:10:34.0777 4984 volmgr - ok
12:10:34.0812 4984 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
12:10:34.0834 4984 volmgrx - ok
12:10:34.0961 4984 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
12:10:34.0977 4984 volsnap - ok
12:10:35.0076 4984 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
12:10:35.0100 4984 vsmraid - ok
12:10:35.0326 4984 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
12:10:35.0476 4984 VSS - ok
12:10:35.0630 4984 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
12:10:35.0708 4984 vToolbarUpdater11.2.0 - ok
12:10:35.0804 4984 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
12:10:35.0821 4984 W32Time - ok
12:10:35.0916 4984 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
12:10:35.0946 4984 WacomPen - ok
12:10:36.0134 4984 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:10:36.0174 4984 Wanarp - ok
12:10:36.0176 4984 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:10:36.0198 4984 Wanarpv6 - ok
12:10:36.0233 4984 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
12:10:36.0254 4984 wcncsvc - ok
12:10:36.0292 4984 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
12:10:36.0307 4984 WcsPlugInService - ok
12:10:36.0334 4984 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
12:10:36.0345 4984 Wd - ok
12:10:36.0440 4984 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
12:10:36.0470 4984 Wdf01000 - ok
12:10:36.0494 4984 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:10:36.0512 4984 WdiServiceHost - ok
12:10:36.0516 4984 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
12:10:36.0536 4984 WdiSystemHost - ok
12:10:36.0613 4984 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
12:10:36.0633 4984 WebClient - ok
12:10:36.0660 4984 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
12:10:36.0689 4984 Wecsvc - ok
12:10:36.0728 4984 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
12:10:36.0744 4984 wercplsupport - ok
12:10:36.0885 4984 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
12:10:36.0962 4984 WerSvc - ok
12:10:37.0041 4984 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
12:10:37.0060 4984 WinDefend - ok
12:10:37.0065 4984 WinHttpAutoProxySvc - ok
12:10:37.0099 4984 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
12:10:37.0143 4984 Winmgmt - ok
12:10:37.0239 4984 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
12:10:37.0408 4984 WinRM - ok
12:10:37.0518 4984 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
12:10:37.0567 4984 Wlansvc - ok
12:10:37.0762 4984 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:10:37.0913 4984 wlidsvc - ok
12:10:38.0168 4984 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
12:10:38.0187 4984 WmiAcpi - ok
12:10:38.0229 4984 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
12:10:38.0252 4984 wmiApSrv - ok
12:10:39.0273 4984 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
12:10:39.0317 4984 WMPNetworkSvc - ok
12:10:39.0376 4984 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
12:10:39.0405 4984 WPCSvc - ok
12:10:39.0463 4984 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
12:10:39.0475 4984 WPDBusEnum - ok
12:10:39.0634 4984 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:10:39.0668 4984 WPFFontCache_v0400 - ok
12:10:39.0726 4984 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
12:10:39.0765 4984 ws2ifsl - ok
12:10:39.0793 4984 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
12:10:39.0806 4984 wscsvc - ok
12:10:39.0810 4984 WSearch - ok
12:10:39.0899 4984 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
12:10:40.0050 4984 wuauserv - ok
12:10:40.0338 4984 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:10:40.0364 4984 WUDFRd - ok
12:10:40.0424 4984 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
12:10:40.0445 4984 wudfsvc - ok
12:10:40.0447 4984 XDva390 - ok
12:10:40.0450 4984 XDva391 - ok
12:10:40.0472 4984 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
12:10:42.0627 4984 \Device\Harddisk0\DR0 - ok
12:10:42.0644 4984 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
12:10:43.0118 4984 \Device\Harddisk1\DR1 - ok
12:10:43.0132 4984 Boot (0x1200) (984fe8ee81be62564a81aa65f63d599e) \Device\Harddisk0\DR0\Partition0
12:10:43.0134 4984 \Device\Harddisk0\DR0\Partition0 - ok
12:10:43.0169 4984 Boot (0x1200) (b96ad8f440d7d0a41c7819ed99d8f22e) \Device\Harddisk1\DR1\Partition0
12:10:43.0170 4984 \Device\Harddisk1\DR1\Partition0 - ok
12:10:43.0203 4984 Boot (0x1200) (2dd793aee5a2d21cd481115492edb0fb) \Device\Harddisk1\DR1\Partition1
12:10:43.0204 4984 \Device\Harddisk1\DR1\Partition1 - ok
12:10:43.0238 4984 Boot (0x1200) (ded30c6b24c51a92dff850dab9df0dc8) \Device\Harddisk1\DR1\Partition2
12:10:43.0240 4984 \Device\Harddisk1\DR1\Partition2 - ok
12:10:43.0240 4984 ============================================================
12:10:43.0240 4984 Scan finished
12:10:43.0240 4984 ============================================================
12:10:43.0246 4720 Detected object count: 3
12:10:43.0246 4720 Actual detected object count: 3
12:12:00.0120 4720 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe - copied to quarantine
12:12:00.0137 4720 HKLM\SYSTEM\ControlSet001\services\NetBalancer Windows Service - will be deleted on reboot
12:12:00.0176 4720 HKLM\SYSTEM\ControlSet002\services\NetBalancer Windows Service - will be deleted on reboot
12:12:00.0201 4720 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe - will be deleted on reboot
12:12:00.0201 4720 NetBalancer Windows Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:12:01.0111 4720 C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe - copied to quarantine
12:12:01.0236 4720 HKLM\SYSTEM\ControlSet001\services\nlsvc - will be deleted on reboot
12:12:01.0237 4720 HKLM\SYSTEM\ControlSet002\services\nlsvc - will be deleted on reboot
12:12:01.0240 4720 C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe - will be deleted on reboot
12:12:01.0240 4720 nlsvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:12:01.0391 4720 C:\Windows\System32\WinService.exe - copied to quarantine
12:12:01.0512 4720 HKLM\SYSTEM\ControlSet001\services\SCM_Service - will be deleted on reboot
12:12:01.0528 4720 HKLM\SYSTEM\ControlSet002\services\SCM_Service - will be deleted on reboot
12:12:01.0531 4720 C:\Windows\System32\WinService.exe - will be deleted on reboot
12:12:01.0531 4720 SCM_Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:12:13.0220 5168 Deinitialize success

Here is my OTL log:

Spoiler

OTL logfile created on: 8/11/2012 12:29:38 PM - Run 2
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Neox\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.34 Gb Available Physical Memory | 41.19% Memory free
6.72 Gb Paging File | 4.16 Gb Available in Paging File | 61.81% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 79.65 Gb Free Space | 34.20% Space Free | Partition Type: NTFS
Drive D: | 124.45 Gb Total Space | 56.34 Gb Free Space | 45.27% Space Free | Partition Type: NTFS
Drive E: | 19.53 Gb Total Space | 3.99 Gb Free Space | 20.44% Space Free | Partition Type: NTFS
Drive F: | 5.07 Gb Total Space | 0.91 Gb Free Space | 17.90% Space Free | Partition Type: NTFS

Computer Name: NEOX-PC | User Name: Neox | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/08/07 15:01:15 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Neox\Downloads\OTL.exe
PRC - [2012/07/11 04:07:56 | 000,515,584 | ---- | M] (LOL Replay) -- C:\Program Files\LOLReplay\LOLRecorder.exe
PRC - [2012/07/07 12:22:42 | 003,905,408 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/07/03 13:46:44 | 000,462,920 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/05/26 06:32:44 | 004,327,744 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe
PRC - [2012/05/24 10:03:45 | 002,686,976 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.91\deploy\LoLLauncher.exe
PRC - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/03/26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2012/03/14 11:32:08 | 000,010,240 | ---- | M] (SeriousBit) -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
PRC - [2011/11/10 04:11:50 | 000,417,792 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/10/29 12:42:47 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
PRC - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/04/17 09:05:26 | 001,462,272 | ---- | M] ( ) -- C:\Program Files\Codebox\BitMeter\BitMeter2.exe
PRC - [2010/09/08 15:58:44 | 000,144,384 | ---- | M] (Adobe Systems Inc.) -- C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.0.187\deploy\LolClient.exe
PRC - [2009/08/08 02:38:18 | 000,109,056 | ---- | M] (none) -- C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe
PRC - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/01/26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
PRC - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
PRC - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


========== Modules (No Company Name) ==========

MOD - [2012/08/11 12:07:53 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/08/11 12:07:53 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/08/07 07:43:40 | 000,442,392 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\ppgooglenaclpluginchrome.dll
MOD - [2012/08/07 07:43:39 | 012,235,800 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\PepperFlash\pepflashplayer.dll
MOD - [2012/08/07 07:43:37 | 003,997,720 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\pdf.dll
MOD - [2012/08/07 07:42:21 | 000,526,872 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\libglesv2.dll
MOD - [2012/08/07 07:42:20 | 000,104,984 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\libegl.dll
MOD - [2012/08/07 07:42:09 | 000,144,424 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avutil-51.dll
MOD - [2012/08/07 07:42:08 | 000,266,792 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avformat-54.dll
MOD - [2012/08/07 07:42:07 | 002,480,680 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avcodec-54.dll
MOD - [2012/07/11 04:07:54 | 000,156,160 | ---- | M] () -- C:\Program Files\LOLReplay\Air.dll
MOD - [2012/07/11 04:07:50 | 000,052,224 | ---- | M] () -- C:\Program Files\LOLReplay\Launcher.dll
MOD - [2012/07/11 04:07:48 | 001,036,288 | ---- | M] () -- C:\Program Files\LOLReplay\LOLUtils.dll
MOD - [2012/06/14 22:19:38 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll
MOD - [2012/06/14 22:19:32 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll
MOD - [2012/06/14 22:19:24 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7343fbab1ba137db2f8b284047ef3f3c\PresentationFramework.ni.dll
MOD - [2012/06/14 22:17:30 | 012,219,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b6293b0c23321c255c2530aea8e32bb\PresentationCore.ni.dll
MOD - [2012/05/24 10:03:45 | 002,686,976 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.91\deploy\LoLLauncher.exe
MOD - [2012/05/10 17:14:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll
MOD - [2012/05/10 15:30:30 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll
MOD - [2012/05/10 15:29:42 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\0f2b877ed16daa577f95be735a63d19c\System.Core.ni.dll
MOD - [2012/05/10 15:29:37 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c8c3ab08933fef9fb6657da871395c46\PresentationFramework.Aero.ni.dll
MOD - [2012/05/10 15:29:10 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\54426ee1881b42af5b090e223f43823c\WindowsBase.ni.dll
MOD - [2012/05/10 15:29:08 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll
MOD - [2012/05/10 15:28:54 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
MOD - [2012/01/10 00:44:07 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/01/10 00:44:07 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2011/11/10 03:11:06 | 000,037,376 | ---- | M] () -- C:\Windows\System32\atitmpxx.dll
MOD - [2011/10/29 12:42:47 | 001,294,336 | ---- | M] () -- C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
MOD - [2011/07/14 17:01:59 | 000,958,976 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avformat-53.dll
MOD - [2011/07/14 17:01:59 | 000,132,096 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avutil-51.dll
MOD - [2011/07/14 17:01:58 | 007,006,208 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avcodec-53.dll
MOD - [2011/07/14 17:01:58 | 000,239,616 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\swscale-0.dll
MOD - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
MOD - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
MOD - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007/09/02 22:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/08/05 14:38:42 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/08/04 19:08:23 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/08/03 15:53:26 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/04/22 15:12:21 | 003,417,376 | ---- | M] () [Disabled | Stopped] -- C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll -- (Akamai)
SRV - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012/03/14 11:32:08 | 000,010,240 | ---- | M] (SeriousBit) [Auto | Running] -- C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe -- (NetBalancerService)
SRV - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2011/08/07 22:40:00 | 003,804,120 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/01/21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva391.sys -- (XDva391)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva390.sys -- (XDva390)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2012/08/11 12:24:42 | 000,029,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6401BA86-6643-408A-B6A1-7C4C57C0BC8E}\MpKsle5e6ca9a.sys -- (MpKsle5e6ca9a)
DRV - [2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/11/10 04:44:12 | 008,913,920 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/11/10 03:12:20 | 000,263,680 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011/10/17 18:40:34 | 000,082,960 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdLH3.sys -- (AtiHDAudioService)
DRV - [2011/07/22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/05/18 17:11:14 | 000,031,016 | ---- | M] (SeriousBit) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nbdrv.sys -- (Nbdrv)
DRV - [2010/03/25 09:49:06 | 000,082,360 | ---- | M] (Locktime Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\nltdi.sys -- (nltdi)
DRV - [2007/12/28 14:58:30 | 000,289,280 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wg111v3.sys -- (RTL8187B)
DRV - [2007/12/26 19:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTL8187)
DRV - [2007/04/23 10:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2007/01/19 12:20:54 | 000,021,728 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV - [2006/11/02 08:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?r...GB&dcc=GB&opt=0
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6E 5A 97 A2 C5 E5 CC 01 [binary data]
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...000000fb5cb892d
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...sa&d=2012-04-25 12:54:12&v=11.0.0.9&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://search.babylo...00000fb5cb892d"
FF - prefs.js..keyword.URL: "http://search.babylo...00fb5cb892d&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@gametap.com/npdd,version=1.0: C:\Program Files\Downloader\npdd.dll (Metaboli)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]

[2012/04/21 21:34:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Extensions
[2012/08/08 16:04:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions
[2012/04/21 21:36:23 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/08/05 14:45:38 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/08/05 14:41:13 | 000,276,167 | ---- | M] () (No name found) -- C:\USERS\NEOX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\93HKVLA5.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
[2012/08/05 14:38:43 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/09 15:20:02 | 000,003,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/08/08 16:03:36 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/03/13 05:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/13 05:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.1.0\\npsitesafety.dll
CHR - plugin: Java™ Platform SE 6 U33 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.330.3 (Enabled) = C:\Windows\system32\npdeployJava1.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: QUAKE LIVE (Enabled) = C:\ProgramData\id Software\QuakeLive\npquakezero.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Neox\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Kagamine Rin & Len Theme = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajbmlfcphelnfmnfmknjhhnajbihaaa\2_0\
CHR - Extension: AdBlock = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.40_0\
CHR - Extension: Speed Dial 2 = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.6.0.9_0\
CHR - Extension: Gmail = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [HF_G_Jul] "C:\Program Files\AVG Secure Search\HF_G_Jul.exe" /DoAction File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [Akamai NetSession Interface] C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [WLAN Optimizer] C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe (none)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.syste...yri_4.5.1.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15E874B8-9A27-4D92-8424-88E7DA202274}: NameServer = 192.168.0.1,192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/12/19 23:53:56 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/11/17 17:30:14 | 000,000,044 | ---- | M] () - D:\AutoRun.inf -- [ NTFS ]
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell - "" = AutoRun
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell\AutoRun\command - "" = M:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

========== Files/Folders - Created Within 30 Days ==========

[2012/08/08 16:04:58 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\groove-dl
[2012/08/08 16:03:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/08/08 15:57:59 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\ProgSense
[2012/08/08 15:57:39 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\OpenCandy
[2012/08/08 15:56:56 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Orbit
[2012/08/08 12:27:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
[2012/08/08 12:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Grinding Gear Games
[2012/08/07 15:44:32 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\JGsoft
[2012/08/07 15:39:56 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Notepad++
[2012/08/07 15:39:56 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2012/08/07 15:14:48 | 000,000,000 | ---D | C] -- C:\Ubisoft
[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012/08/01 11:33:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2012/08/01 11:19:54 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Aeria Games
[2012/08/01 11:19:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Aeria Games
[2012/07/31 15:25:55 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin
[2012/07/31 15:23:41 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/07/30 18:06:11 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\APN
[2012/07/30 18:03:50 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/07/29 22:00:13 | 000,000,000 | ---D | C] -- C:\Users\Neox\Desktop\Music
[2012/07/28 18:51:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBalancer
[2012/07/28 18:51:38 | 000,031,016 | ---- | C] (SeriousBit) -- C:\Windows\System32\drivers\nbdrv.sys
[2012/07/27 16:00:36 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/07/27 16:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012
[2012/07/27 15:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012/07/27 15:47:16 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! US
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\beanfun!
[2012/07/27 12:12:00 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/07/27 01:44:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/07/27 01:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/07/27 01:42:40 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Locktime
[2012/07/27 01:42:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter 2 Monitor
[2012/07/27 01:42:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Locktime
[2012/07/27 01:42:05 | 000,000,000 | ---D | C] -- C:\Program Files\NetLimiter 2 Monitor
[2012/07/25 16:09:10 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Downloaded Installations
[2012/07/24 14:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/24 14:10:10 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/07/21 22:46:29 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\CrystalIdea Software
[2012/07/21 22:45:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/21 22:45:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/21 14:21:42 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Xor-Net
[2012/07/20 13:45:27 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\WhatPulse
[2012/07/20 13:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhatPulse
[2012/07/19 17:54:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Xunlei
[2012/07/19 17:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Thunder Network
[2012/07/19 17:52:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Thunder Network
[2012/07/19 17:52:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Thunder Network
[2012/07/19 17:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\Thunder Network
[2012/07/14 21:37:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! UK
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/08/11 12:07:31 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000UA.job
[2012/08/11 12:05:25 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/11 12:05:24 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/11 12:05:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/11 12:05:13 | 3488,931,840 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/11 01:53:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/08/10 23:34:15 | 000,000,512 | ---- | M] () -- C:\Users\Neox\Desktop\MBR.dat
[2012/08/10 15:46:58 | 000,657,354 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/10 15:46:58 | 000,125,636 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/10 13:06:01 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000Core.job
[2012/08/09 21:51:50 | 000,000,632 | ---- | M] () -- C:\Users\Neox\Desktop\AvA.lnk
[2012/08/08 16:05:02 | 000,000,880 | ---- | M] () -- C:\Users\Neox\Desktop\groove-dl.lnk
[2012/08/08 16:03:55 | 000,000,304 | ---- | M] () -- C:\user.js
[2012/08/08 12:27:19 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012/08/07 15:39:37 | 000,000,395 | ---- | M] () -- C:\Users\Neox\Desktop\Downloads.lnk
[2012/08/04 01:32:24 | 244,718,947 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:21 | 000,237,568 | ---- | M] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | M] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\StarCraft II.lnk
[2012/08/03 15:53:25 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/08/03 15:53:25 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/07/28 18:51:41 | 000,000,959 | ---- | M] () -- C:\Users\Public\Desktop\NetBalancer Tray.lnk
[2012/07/28 18:51:41 | 000,000,949 | ---- | M] () -- C:\Users\Public\Desktop\NetBalancer.lnk
[2012/07/27 01:42:14 | 000,001,817 | ---- | M] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | M] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\lol.launcher.exe - Shortcut.lnk
[2012/07/20 00:52:58 | 001,676,288 | ---- | M] () -- C:\ava_us_steam_launcher_installer_20120719.exe
[2012/07/19 21:29:13 | 000,140,480 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:29:02 | 000,298,016 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:23:59 | 000,138,056 | ---- | M] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:49 | 000,189,248 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 20:42:50 | 003,130,440 | ---- | M] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | M] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | M] () -- C:\Windows\wininit.ini
[2012/07/12 22:17:05 | 000,256,680 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/10 23:34:15 | 000,000,512 | ---- | C] () -- C:\Users\Neox\Desktop\MBR.dat
[2012/08/09 21:51:50 | 000,000,632 | ---- | C] () -- C:\Users\Neox\Desktop\AvA.lnk
[2012/08/08 16:05:02 | 000,000,888 | ---- | C] () -- C:\Users\Neox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\groove-dl.lnk
[2012/08/08 16:05:02 | 000,000,880 | ---- | C] () -- C:\Users\Neox\Desktop\groove-dl.lnk
[2012/08/08 16:03:52 | 000,000,304 | ---- | C] () -- C:\user.js
[2012/08/08 12:27:19 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012/08/07 15:39:37 | 000,000,395 | ---- | C] () -- C:\Users\Neox\Desktop\Downloads.lnk
[2012/08/04 01:32:24 | 244,718,947 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:41 | 000,237,568 | ---- | C] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | C] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\StarCraft II.lnk
[2012/07/28 18:51:41 | 000,000,959 | ---- | C] () -- C:\Users\Public\Desktop\NetBalancer Tray.lnk
[2012/07/28 18:51:41 | 000,000,949 | ---- | C] () -- C:\Users\Public\Desktop\NetBalancer.lnk
[2012/07/27 01:42:14 | 000,001,817 | ---- | C] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | C] () -- C:\Users\Neox\Application Data\Microsoft\Internet Explorer\Quick Launch\lol.launcher.exe - Shortcut.lnk
[2012/07/20 00:52:58 | 001,676,288 | ---- | C] () -- C:\ava_us_steam_launcher_installer_20120719.exe
[2012/07/19 21:29:01 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:24:00 | 000,140,480 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:23:59 | 000,138,056 | ---- | C] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:44 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012/07/19 21:23:44 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 21:23:41 | 003,130,440 | ---- | C] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 21:23:41 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | C] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | C] () -- C:\Windows\wininit.ini
[2012/03/04 22:41:48 | 000,000,037 | -HS- | C] () -- C:\Users\Neox\AppData\Local\1754111884ee9ab5277ca00.95260103
[2011/12/26 05:03:31 | 000,006,656 | ---- | C] () -- C:\Users\Neox\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/23 08:14:15 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011/12/21 04:30:48 | 000,104,496 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/12/18 21:18:28 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/12/18 21:18:28 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/12/18 00:48:22 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/12/17 13:15:32 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/12/17 10:07:19 | 000,001,356 | ---- | C] () -- C:\Users\Neox\AppData\Local\d3d9caps.dat
[2011/11/10 07:39:44 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OpenVideo.dll
[2011/11/10 07:39:32 | 000,054,784 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011/11/10 03:11:06 | 000,037,376 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2011/10/21 20:30:14 | 000,243,168 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/09/19 08:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll
[2011/09/19 08:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2012/07/20 00:52:58 | 001,676,288 | ---- | M] () -- C:\ava_us_steam_launcher_installer_20120719.exe

< MD5 for: EXPLORER.EXE >
[2008/10/29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/21 03:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: SERVICES >
[2006/09/18 22:41:30 | 000,017,244 | ---- | M] () MD5=9F534244B7F8F55D5C0BB498D8D481E7 -- C:\Windows\System32\drivers\etc\services
[2006/09/18 22:41:30 | 000,017,244 | ---- | M] () MD5=9F534244B7F8F55D5C0BB498D8D481E7 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.0.6000.16386_none_024e4071fa6fea95\services

< MD5 for: SERVICES.CFG >
[2012/04/04 06:53:54 | 000,585,987 | ---- | M] () MD5=7BAB089A4F862C6BC86E0201D5BF1779 -- C:\Program Files\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2011/06/06 12:55:30 | 000,584,045 | R--- | M] () MD5=B82DD53FA8C260DDD7FDC42182DB816E -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\services.cfg

< MD5 for: SERVICES.EXE >
[2008/01/21 03:24:48 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2009/04/11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\System32\services.exe
[2009/04/11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2006/11/02 13:40:53 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:\Windows\System32\en-US\services.exe.mui
[2006/11/02 13:40:53 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=1626EACF0E7E59F85C59DDDD27C4169C -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.0.6000.16386_en-us_67c6851b290a1ced\services.exe.mui

< MD5 for: SERVICES.LNK >
[2008/01/21 03:42:58 | 000,001,688 | ---- | M] () MD5=C50AE46E57C3F3FB61A3B3A1E5D9C412 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2008/01/21 03:42:58 | 000,001,688 | ---- | M] () MD5=C50AE46E57C3F3FB61A3B3A1E5D9C412 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOCHIADS.COM.SOL >
[2012/07/31 01:08:45 | 000,000,313 | ---- | M] () MD5=E32FC1C5E8CE9E21551871A24BB078AD -- C:\Users\Neox\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\UMPAJ5VC\mochiads.com\services.mochiads.com.sol

< MD5 for: SERVICES.MOF >
[2006/09/18 22:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\System32\wbem\services.mof
[2006/09/18 22:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.mof
[2006/09/18 22:46:11 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.mof

< MD5 for: SERVICES.MSC >
[2006/11/02 13:41:29 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\en-US\services.msc
[2006/09/18 22:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\services.msc
[2006/11/02 13:41:29 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.0.6000.16386_en-us_a2085506ff73b6e0\services.msc
[2006/09/18 22:29:40 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.0.6001.18000_none_cf63e2a445bae4e3\services.msc

< MD5 for: SERVICES.RDB >
[2011/01/18 04:14:32 | 000,237,568 | ---- | M] () MD5=507957679AE4579C15D57FA741EA6FFA -- C:\Program Files\OpenOffice.org 3\URE\misc\services.rdb
[2011/01/18 04:14:04 | 005,539,328 | ---- | M] () MD5=F2B666905F7FDAA80C86A101A7DE62F9 -- C:\Program Files\OpenOffice.org 3\Basis\program\services.rdb

< MD5 for: SERVICES.SBS >
[2011/03/01 08:58:46 | 000,034,818 | ---- | M] () MD5=62AFD4B2025CE6D4706B36F4C4808F9B -- C:\Program Files\Spybot - Search & Destroy\Includes\Services.sbs

< MD5 for: SVCHOST.EXE >
[2008/01/21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2012/07/03 13:46:42 | 000,217,672 | ---- | M] () MD5=8A7F34F0BBD076EC3815680A7309114F -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008/01/21 03:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< MD5 for: WSHELPER.DLL >
[2006/11/02 10:46:14 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=20614C9F12A3A09A5015C9EBBD4419D2 -- C:\Windows\System32\wshelper.dll
[2006/11/02 10:46:14 | 000,014,336 | ---- | M] (Microsoft Corporation) MD5=20614C9F12A3A09A5015C9EBBD4419D2 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.0.6000.16386_none_024e4071fa6fea95\wshelper.dll

< HKEY_CURRENT_USER\Software\Microsoft\Windows Media\WMSDK\Local\AutoProxyCache /s >

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT /s >
"DisplayName" = NETBT
"Group" = PNP_TDI
"ImagePath" = System32\DRIVERS\netbt.sys -- [2009/04/11 05:45:37 | 000,185,856 | ---- | M] (Microsoft Corporation)
"Description" = This service implements NetBios over TCP/IP.
"ErrorControl" = 1
"Start" = 1
"Type" = 1
"DependOnService" = Tdxtcpip [binary data]
"Tag" = 87
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Linkage]
"OtherDependencies" = Tcpip [binary data]
"Bind" = [Binary data over 100 bytes]
"Route" = [Binary data over 100 bytes]
"Export" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters]
"BcastNameQueryCount" = 3
"BcastQueryTimeout" = 750
"CacheTimeout" = 600000
"EnableLMHOSTS" = 1
"NameServerPort" = 137
"NameSrvQueryCount" = 3
"NameSrvQueryTimeout" = 1500
"NbProvider" = _tcp
"SessionKeepAlive" = 3600000
"Size/Small/Medium/Large" = 1
"TransportBindName" = \Device\
"UseNewSmb" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces\Tcpip_{15E874B8-9A27-4D92-8424-88E7DA202274}]
"NameServerList" = [binary data]
"NetbiosOptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces\Tcpip_{4463CECA-98D8-44CB-A811-DB7963582475}]
"NameServerList" = [binary data]
"NetbiosOptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Parameters\Interfaces\Tcpip_{55DA9C4D-5D80-4A2D-B782-28F542070C18}]
"NameServerList" = [binary data]
"NetbiosOptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Security]
"Security" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT\Enum]
"0" = Root\LEGACY_NETBT\0000
"Count" = 1
"NextInstance" = 1

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS /s >
"Type" = 2
"Start" = 1
"ErrorControl" = 1
"Tag" = 2
"ImagePath" = system32\DRIVERS\netbios.sys -- [2008/01/21 03:24:20 | 000,035,840 | ---- | M] (Microsoft Corporation)
"DisplayName" = NetBIOS Interface
"Group" = NetBIOSGroup
"Description" = NetBIOS Interface
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Linkage]
"LanaMap" = 01 03 01 01 01 06 01 08 01 05 01 00 01 04 01 02 01 07 [binary data]
"Bind" = [Binary data over 100 bytes]
"Route" = [Binary data over 100 bytes]
"Export" = [Binary data over 100 bytes]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Parameters]
"MaxLana" = 8
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Parameters\Winsock]
"HelperDllName" = %SystemRoot%\System32\wshnetbs.dll -- [2006/11/02 10:46:14 | 000,011,264 | ---- | M] (Microsoft Corporation)
"MaxSockAddrLength" = 20
"MinSockAddrLength" = 20
"Mapping" = 02 00 00 00 03 00 00 00 11 00 00 00 05 00 00 00 00 00 00 00 11 00 00 00 02 00 00 00 00 00 00 00 [binary data]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS\Enum]
"0" = Root\LEGACY_NETBIOS\0000
"Count" = 1
"NextInstance" = 1

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --show-icons [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --hide-icons [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/05/15 07:37:18 | 000,638,048 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/05/15 07:37:18 | 000,638,048 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/08/05 14:38:39 | 000,865,776 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/08/05 14:38:43 | 000,913,888 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --show-icons [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --hide-icons [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Users\Neox\AppData\Local\Google\Chrome\Application\chrome.exe" [2012/08/07 07:43:41 | 001,229,848 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2012/05/15 04:25:37 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2012/05/15 07:37:18 | 000,638,048 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2012/05/15 07:37:18 | 000,638,048 | ---- | M] (Microsoft Corporation)

< C:\Program Files\Common Files\ComObjects\*.* /s >

========== Files - Unicode (All) ==========
[2012/07/19 17:53:25 | 000,000,000 | ---D | C](C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\迅雷软件

< End of report >

Edited by SoullessZ, 11 August 2012 - 05:42 AM.

[godawgs]

Hi,

I would like to keep microsoft essentials

Fair enough.

and I would like to keep SuperAntiSpyware,

OK. Of the two that are left, which one do you want to keep? And between SuperAntiSpyware and the other one you want to keep, which one do you want running in the background?

You still did not include the Extras.txt file.

The TDSSKiller log you posted shows that you have deleted good files and services:

12:12:00.0120 4720 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe - copied to quarantine
12:12:00.0137 4720 HKLM\SYSTEM\ControlSet001\services\NetBalancer Windows Service - will be deleted on reboot
12:12:00.0176 4720 HKLM\SYSTEM\ControlSet002\services\NetBalancer Windows Service - will be deleted on reboot
12:12:00.0201 4720 C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe - will be deleted on reboot
12:12:00.0201 4720 NetBalancer Windows Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:12:01.0111 4720 C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe - copied to quarantine
12:12:01.0236 4720 HKLM\SYSTEM\ControlSet001\services\nlsvc - will be deleted on reboot
12:12:01.0237 4720 HKLM\SYSTEM\ControlSet002\services\nlsvc - will be deleted on reboot
12:12:01.0240 4720 C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe - will be deleted on reboot
12:12:01.0240 4720 nlsvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
12:12:01.0391 4720 C:\Windows\System32\WinService.exe - copied to quarantine
12:12:01.0512 4720 HKLM\SYSTEM\ControlSet001\services\SCM_Service - will be deleted on reboot
12:12:01.0528 4720 HKLM\SYSTEM\ControlSet002\services\SCM_Service - will be deleted on reboot
12:12:01.0531 4720 C:\Windows\System32\WinService.exe - will be deleted on reboot
12:12:01.0531 4720 SCM_Service ( UnsignedFile.Multi.Generic ) - User select action: Delete

NetBalancer appears to be a monitor for bandwidth consumption
NetLimiter is an internet traffic and bandwidth monitor
WinService.exe ans SMC_Service appears to be your Netgear Wireless router.
The NetBalancer and NetLimiter deletions may well be why the internet is over downloading.

You ran the TDSSKiller program on July 24, 2012. You need to see if you can restore your computer to a date prior to 7/24/2012. Do you know how to do that? If you don't, please stop and let me know. If you do know how to do that, please only try the restore one time. If it isn't successful Stop and let me know.

When you find the date prior to 7/24/2012 to restore your system to, Windows will shut down and reboot as part of the process.
When Windows finishes you should get a message that the restore was successful. If you get that message:

Download the latest version of TDSSKiller from here and save it to your Desktop

Double click the tdsskiller.exe file to run the program.

Very Important: Do Not allow it to fix anything!

If it finds anything and recommends Cure as the default action, change it to SKIP
Leave everything found with SKIP as the recommended action alone.

Post the resulting log file. NOTE:It is not necessary to post the logs behind Spoiler tags, just copy and past them into the post. That makes them easier for me to read. Use more than one post if you need to.

[SoullessZ]

I got nothing other than the net balance thing again as "skip"

[godawgs]

Did you do the system restore?

[SoullessZ]

Nothing. I still get this. Is it some sort of virus or something?

[godawgs]

Hi SoullessZ,

Nothing.

Is this a response to my question about running System Restore? If it is I don't know what you meant.

I still get this.

You still get what?

Is it some sort of virus or something?

If you mean the downloading problem, I don't know yet. The first thing we need to do is get the conflicting programs cleaned off of the system, then either get the files and services restored or uninstall the programs that they are a part of and see if the problem is still there.

In order to help you I need to know what is going on. Since I can't interact with your computer, you have to tell me what is going on.
When I ask a question I need you to answer it. I'll try asking them again, a few at a time. Please answer them in the order asked. Just type 1. and then answer question number 1 ect. Please don't run any tools, just answer my question(s).

1. Did you try to do a system restore to a date before 7/24/2012?
2. Did you download and run TDSSKiller after trying the system restore?

[SoullessZ]

Yes & Yes the same problem I have occurs

Didn't you also tell me to remove like some virus protection programs and only keep 1 or 2? How do I do that as well

[godawgs]

Thank you for the answers.
When you answer the next questions, I will be able to cobble together a fix that will include uninstalling one of the antivirus programs and and cutting the antispyware programs from three to two with only one of them running in the background.

You told me that you wanted to keep Microsoft Security Essentials as the antivirus.
You told me that you want to keep SuperAntiSpyware. That leaves MalwareBytes and SpybotS&D. Since we will be using MalwareBytes we will uninstall SpybotS&D.


Things I need for your next reply
1. Between SuperAntiSpyware and MalwareBytes, which program do you want running the background?

2. I still need the Extras.txt log from OTL. You can find it in the C:\Users\Neox\Downloads folder (the same folder you ran OTL from.

3. I want to see the log from the last TDSSKiller scan. You should find it in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt", where [version] is the program version and [date]_[time] is the date and time the program was run. Please copy and paste its contents on your next reply.(The date that you ran the last scan should have been 8/11/2012)

Get me that answer to number 1 and the log files for numbers 2 & 3 and we will start the cleaning process.

[SoullessZ]

1. SuperAntiSpyware
2. I still really can't find it.. I even tried to search =.=
3.

Spoiler

20:00:41.0064 5476 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
20:00:41.0170 5476 ============================================================
20:00:41.0170 5476 Current date / time: 2012/08/11 20:00:41.0170
20:00:41.0170 5476 SystemInfo:
20:00:41.0170 5476
20:00:41.0170 5476 OS Version: 6.0.6002 ServicePack: 2.0
20:00:41.0170 5476 Product type: Workstation
20:00:41.0170 5476 ComputerName: NEOX-PC
20:00:41.0170 5476 UserName: Neox
20:00:41.0171 5476 Windows directory: C:\Windows
20:00:41.0171 5476 System windows directory: C:\Windows
20:00:41.0171 5476 Processor architecture: Intel x86
20:00:41.0171 5476 Number of processors: 2
20:00:41.0171 5476 Page size: 0x1000
20:00:41.0171 5476 Boot type: Normal boot
20:00:41.0171 5476 ============================================================
20:00:42.0843 5476 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:00:42.0853 5476 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:00:43.0054 5476 ============================================================
20:00:43.0054 5476 \Device\Harddisk0\DR0:
20:00:43.0075 5476 MBR partitions:
20:00:43.0075 5476 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C3A35
20:00:43.0075 5476 \Device\Harddisk1\DR1:
20:00:43.0076 5476 MBR partitions:
20:00:43.0076 5476 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xF8E436C
20:00:43.0103 5476 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0xF8E6C35, BlocksNum 0x270D776
20:00:43.0103 5476 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x11FF43AB, BlocksNum 0xA24716
20:00:43.0103 5476 ============================================================
20:00:43.0323 5476 C: <-> \Device\Harddisk0\DR0\Partition0
20:00:43.0362 5476 D: <-> \Device\Harddisk1\DR1\Partition0
20:00:43.0402 5476 E: <-> \Device\Harddisk1\DR1\Partition1
20:00:43.0443 5476 F: <-> \Device\Harddisk1\DR1\Partition2
20:00:43.0460 5476 ============================================================
20:00:43.0460 5476 Initialize success
20:00:43.0460 5476 ============================================================
20:00:47.0629 5060 ============================================================
20:00:47.0629 5060 Scan started
20:00:47.0629 5060 Mode: Manual;
20:00:47.0629 5060 ============================================================
20:00:49.0384 5060 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
20:00:49.0386 5060 !SASCORE - ok
20:00:49.0659 5060 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:00:49.0674 5060 ACPI - ok
20:00:50.0028 5060 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:00:50.0029 5060 AdobeARMservice - ok
20:00:50.0093 5060 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:00:50.0104 5060 AdobeFlashPlayerUpdateSvc - ok
20:00:50.0156 5060 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:00:50.0166 5060 adp94xx - ok
20:00:50.0197 5060 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:00:50.0204 5060 adpahci - ok
20:00:50.0226 5060 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:00:50.0233 5060 adpu160m - ok
20:00:50.0249 5060 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:00:50.0255 5060 adpu320 - ok
20:00:50.0292 5060 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
20:00:50.0293 5060 AeLookupSvc - ok
20:00:50.0336 5060 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:00:50.0348 5060 AFD - ok
20:00:50.0423 5060 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:00:50.0425 5060 agp440 - ok
20:00:50.0479 5060 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:00:50.0481 5060 aic78xx - ok
20:00:51.0071 5060 Akamai (1125c7d9fb8898015829c387c1bc87c7) C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll
20:00:51.0248 5060 Akamai - ok
20:00:51.0984 5060 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
20:00:51.0985 5060 ALG - ok
20:00:52.0030 5060 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:00:52.0031 5060 aliide - ok
20:00:52.0072 5060 AMD External Events Utility (f970ea885aefeb1b9eb97ca7f1eb226d) C:\Windows\system32\atiesrxx.exe
20:00:52.0085 5060 AMD External Events Utility - ok
20:00:52.0110 5060 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:00:52.0111 5060 amdagp - ok
20:00:52.0128 5060 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:00:52.0130 5060 amdide - ok
20:00:52.0145 5060 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:00:52.0146 5060 AmdK7 - ok
20:00:52.0156 5060 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:00:52.0158 5060 AmdK8 - ok
20:00:53.0288 5060 amdkmdag (ab70f110143892eb41aa46500aa5cf00) C:\Windows\system32\DRIVERS\atikmdag.sys
20:00:53.0485 5060 amdkmdag - ok
20:00:53.0596 5060 amdkmdap (32d68d05b871eed5572d0c2c764ea4ec) C:\Windows\system32\DRIVERS\atikmpag.sys
20:00:53.0607 5060 amdkmdap - ok
20:00:53.0626 5060 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
20:00:53.0627 5060 Appinfo - ok
20:00:53.0707 5060 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:00:53.0708 5060 Apple Mobile Device - ok
20:00:53.0746 5060 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:00:53.0748 5060 arc - ok
20:00:53.0788 5060 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:00:53.0790 5060 arcsas - ok
20:00:53.0877 5060 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:00:53.0894 5060 aspnet_state - ok
20:00:53.0904 5060 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:00:53.0905 5060 AsyncMac - ok
20:00:53.0919 5060 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:00:53.0919 5060 atapi - ok
20:00:53.0957 5060 AtiHDAudioService (c8f5273b12cfa5c0888263e34140cb8a) C:\Windows\system32\drivers\AtihdLH3.sys
20:00:53.0965 5060 AtiHDAudioService - ok
20:00:54.0011 5060 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:00:54.0022 5060 AudioEndpointBuilder - ok
20:00:54.0025 5060 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:00:54.0026 5060 Audiosrv - ok
20:00:54.0056 5060 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:00:54.0057 5060 Beep - ok
20:00:54.0079 5060 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
20:00:54.0092 5060 BFE - ok
20:00:54.0147 5060 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
20:00:54.0174 5060 BITS - ok
20:00:54.0192 5060 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:00:54.0194 5060 blbdrive - ok
20:00:54.0274 5060 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
20:00:54.0284 5060 Bonjour Service - ok
20:00:54.0313 5060 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:00:54.0315 5060 bowser - ok
20:00:54.0350 5060 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:00:54.0351 5060 BrFiltLo - ok
20:00:54.0364 5060 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:00:54.0365 5060 BrFiltUp - ok
20:00:54.0395 5060 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
20:00:54.0396 5060 Browser - ok
20:00:54.0421 5060 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:00:54.0424 5060 Brserid - ok
20:00:54.0441 5060 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:00:54.0442 5060 BrSerWdm - ok
20:00:54.0461 5060 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:00:54.0462 5060 BrUsbMdm - ok
20:00:54.0465 5060 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:00:54.0466 5060 BrUsbSer - ok
20:00:54.0472 5060 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
20:00:54.0474 5060 BTHMODEM - ok
20:00:54.0500 5060 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:00:54.0501 5060 cdfs - ok
20:00:54.0521 5060 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:00:54.0522 5060 cdrom - ok
20:00:54.0560 5060 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:00:54.0561 5060 CertPropSvc - ok
20:00:54.0574 5060 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
20:00:54.0576 5060 circlass - ok
20:00:54.0615 5060 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:00:54.0628 5060 CLFS - ok
20:00:54.0685 5060 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:00:54.0687 5060 clr_optimization_v2.0.50727_32 - ok
20:00:54.0754 5060 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:00:54.0810 5060 clr_optimization_v4.0.30319_32 - ok
20:00:54.0842 5060 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:00:54.0843 5060 cmdide - ok
20:00:54.0858 5060 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
20:00:54.0859 5060 Compbatt - ok
20:00:54.0861 5060 COMSysApp - ok
20:00:54.0886 5060 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:00:54.0887 5060 crcdisk - ok
20:00:54.0897 5060 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:00:54.0899 5060 Crusoe - ok
20:00:54.0937 5060 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
20:00:54.0941 5060 CryptSvc - ok
20:00:54.0991 5060 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:00:55.0019 5060 DcomLaunch - ok
20:00:55.0043 5060 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:00:55.0045 5060 DfsC - ok
20:00:55.0144 5060 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
20:00:55.0205 5060 DFSR - ok
20:00:55.0322 5060 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
20:00:55.0323 5060 Dhcp - ok
20:00:55.0368 5060 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:00:55.0370 5060 disk - ok
20:00:55.0397 5060 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
20:00:55.0405 5060 Dnscache - ok
20:00:55.0415 5060 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
20:00:55.0421 5060 dot3svc - ok
20:00:55.0460 5060 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
20:00:55.0466 5060 DPS - ok
20:00:55.0499 5060 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:00:55.0499 5060 drmkaud - ok
20:00:55.0551 5060 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:00:55.0565 5060 DXGKrnl - ok
20:00:55.0604 5060 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:00:55.0611 5060 E1G60 - ok
20:00:55.0634 5060 EagleXNt - ok
20:00:55.0658 5060 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
20:00:55.0660 5060 EapHost - ok
20:00:55.0697 5060 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:00:55.0703 5060 Ecache - ok
20:00:55.0747 5060 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
20:00:55.0758 5060 ehRecvr - ok
20:00:55.0770 5060 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
20:00:55.0776 5060 ehSched - ok
20:00:55.0780 5060 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
20:00:55.0781 5060 ehstart - ok
20:00:55.0826 5060 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:00:55.0834 5060 elxstor - ok
20:00:55.0880 5060 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
20:00:55.0894 5060 EMDMgmt - ok
20:00:55.0924 5060 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
20:00:55.0925 5060 ErrDev - ok
20:00:55.0973 5060 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
20:00:55.0983 5060 EventSystem - ok
20:00:56.0023 5060 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:00:56.0030 5060 exfat - ok
20:00:56.0054 5060 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:00:56.0059 5060 fastfat - ok
20:00:56.0102 5060 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:00:56.0103 5060 fdc - ok
20:00:56.0122 5060 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
20:00:56.0124 5060 fdPHost - ok
20:00:56.0129 5060 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
20:00:56.0130 5060 FDResPub - ok
20:00:56.0145 5060 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:00:56.0147 5060 FileInfo - ok
20:00:56.0157 5060 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:00:56.0158 5060 Filetrace - ok
20:00:56.0161 5060 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:00:56.0163 5060 flpydisk - ok
20:00:56.0184 5060 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:00:56.0187 5060 FltMgr - ok
20:00:56.0518 5060 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
20:00:56.0537 5060 FontCache - ok
20:00:56.0583 5060 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:00:56.0584 5060 FontCache3.0.0.0 - ok
20:00:56.0604 5060 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
20:00:56.0605 5060 Fs_Rec - ok
20:00:56.0639 5060 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:00:56.0640 5060 gagp30kx - ok
20:00:56.0669 5060 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:00:56.0670 5060 GEARAspiWDM - ok
20:00:56.0706 5060 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
20:00:56.0723 5060 gpsvc - ok
20:00:56.0751 5060 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
20:00:56.0765 5060 HdAudAddService - ok
20:00:56.0799 5060 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:00:56.0815 5060 HDAudBus - ok
20:00:56.0838 5060 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:00:56.0840 5060 HidBth - ok
20:00:56.0853 5060 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
20:00:56.0854 5060 HidIr - ok
20:00:56.0879 5060 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
20:00:56.0881 5060 hidserv - ok
20:00:56.0885 5060 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:00:56.0886 5060 HidUsb - ok
20:00:56.0906 5060 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
20:00:56.0908 5060 hkmsvc - ok
20:00:56.0919 5060 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
20:00:56.0921 5060 HpCISSs - ok
20:00:56.0956 5060 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:00:56.0966 5060 HTTP - ok
20:00:56.0989 5060 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:00:56.0990 5060 i2omp - ok
20:00:57.0024 5060 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:00:57.0025 5060 i8042prt - ok
20:00:57.0056 5060 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:00:57.0069 5060 iaStorV - ok
20:00:57.0165 5060 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:00:57.0199 5060 idsvc - ok
20:00:57.0220 5060 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:00:57.0221 5060 iirsp - ok
20:00:57.0253 5060 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
20:00:57.0276 5060 IKEEXT - ok
20:00:57.0342 5060 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
20:00:57.0343 5060 intelide - ok
20:00:57.0368 5060 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:00:57.0370 5060 intelppm - ok
20:00:57.0386 5060 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
20:00:57.0388 5060 IPBusEnum - ok
20:00:57.0407 5060 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:00:57.0408 5060 IpFilterDriver - ok
20:00:57.0436 5060 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
20:00:57.0449 5060 iphlpsvc - ok
20:00:57.0452 5060 IpInIp - ok
20:00:57.0488 5060 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
20:00:57.0489 5060 IPMIDRV - ok
20:00:57.0513 5060 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:00:57.0519 5060 IPNAT - ok
20:00:57.0584 5060 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
20:00:57.0612 5060 iPod Service - ok
20:00:57.0627 5060 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:00:57.0628 5060 IRENUM - ok
20:00:57.0649 5060 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:00:57.0650 5060 isapnp - ok
20:00:57.0683 5060 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:00:57.0689 5060 iScsiPrt - ok
20:00:57.0704 5060 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:00:57.0706 5060 iteatapi - ok
20:00:57.0740 5060 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:00:57.0741 5060 iteraid - ok
20:00:57.0758 5060 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:00:57.0759 5060 kbdclass - ok
20:00:57.0769 5060 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
20:00:57.0770 5060 kbdhid - ok
20:00:57.0801 5060 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:00:57.0802 5060 KeyIso - ok
20:00:57.0841 5060 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
20:00:57.0852 5060 KSecDD - ok
20:00:57.0899 5060 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
20:00:57.0911 5060 KtmRm - ok
20:00:57.0939 5060 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
20:00:57.0951 5060 LanmanServer - ok
20:00:57.0989 5060 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
20:00:57.0996 5060 LanmanWorkstation - ok
20:00:58.0019 5060 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:00:58.0021 5060 lltdio - ok
20:00:58.0056 5060 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
20:00:58.0070 5060 lltdsvc - ok
20:00:58.0095 5060 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
20:00:58.0095 5060 lmhosts - ok
20:00:58.0114 5060 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:00:58.0121 5060 LSI_FC - ok
20:00:58.0134 5060 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:00:58.0140 5060 LSI_SAS - ok
20:00:58.0159 5060 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:00:58.0166 5060 LSI_SCSI - ok
20:00:58.0186 5060 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:00:58.0193 5060 luafv - ok
20:00:58.0216 5060 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
20:00:58.0217 5060 MBAMProtector - ok
20:00:58.0283 5060 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:00:58.0303 5060 MBAMService - ok
20:00:58.0329 5060 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
20:00:58.0331 5060 Mcx2Svc - ok
20:00:58.0373 5060 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:00:58.0374 5060 megasas - ok
20:00:58.0420 5060 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:00:58.0428 5060 MegaSR - ok
20:00:58.0477 5060 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:00:58.0479 5060 MMCSS - ok
20:00:58.0498 5060 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:00:58.0499 5060 Modem - ok
20:00:58.0510 5060 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:00:58.0512 5060 monitor - ok
20:00:58.0521 5060 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:00:58.0523 5060 mouclass - ok
20:00:58.0528 5060 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:00:58.0529 5060 mouhid - ok
20:00:58.0539 5060 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:00:58.0540 5060 MountMgr - ok
20:00:58.0627 5060 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:00:58.0634 5060 MozillaMaintenance - ok
20:00:58.0675 5060 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
20:00:58.0679 5060 MpFilter - ok
20:00:58.0718 5060 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
20:00:58.0725 5060 mpio - ok
20:00:58.0832 5060 MpKsle5e6ca9a (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6401BA86-6643-408A-B6A1-7C4C57C0BC8E}\MpKsle5e6ca9a.sys
20:00:58.0833 5060 MpKsle5e6ca9a - ok
20:00:58.0847 5060 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:00:58.0848 5060 mpsdrv - ok
20:00:58.0883 5060 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
20:00:58.0899 5060 MpsSvc - ok
20:00:58.0930 5060 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:00:58.0931 5060 Mraid35x - ok
20:00:58.0967 5060 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:00:58.0973 5060 MRxDAV - ok
20:00:58.0998 5060 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:00:59.0005 5060 mrxsmb - ok
20:00:59.0016 5060 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:00:59.0030 5060 mrxsmb10 - ok
20:00:59.0040 5060 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:00:59.0042 5060 mrxsmb20 - ok
20:00:59.0054 5060 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
20:00:59.0055 5060 msahci - ok
20:00:59.0074 5060 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
20:00:59.0081 5060 msdsm - ok
20:00:59.0107 5060 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
20:00:59.0114 5060 MSDTC - ok
20:00:59.0127 5060 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:00:59.0128 5060 Msfs - ok
20:00:59.0150 5060 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:00:59.0151 5060 msisadrv - ok
20:00:59.0166 5060 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
20:00:59.0173 5060 MSiSCSI - ok
20:00:59.0175 5060 msiserver - ok
20:00:59.0211 5060 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:00:59.0212 5060 MSKSSRV - ok
20:00:59.0267 5060 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:00:59.0268 5060 MsMpSvc - ok
20:00:59.0294 5060 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:00:59.0295 5060 MSPCLOCK - ok
20:00:59.0307 5060 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:00:59.0308 5060 MSPQM - ok
20:00:59.0341 5060 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:00:59.0347 5060 MsRPC - ok
20:00:59.0362 5060 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:00:59.0363 5060 mssmbios - ok
20:00:59.0390 5060 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:00:59.0391 5060 MSTEE - ok
20:00:59.0412 5060 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:00:59.0414 5060 Mup - ok
20:00:59.0444 5060 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
20:00:59.0455 5060 napagent - ok
20:00:59.0491 5060 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:00:59.0497 5060 NativeWifiP - ok
20:00:59.0521 5060 Nbdrv (c9deac695b5107c31b451f254df7e3a4) C:\Windows\system32\DRIVERS\nbdrv.sys
20:00:59.0522 5060 Nbdrv - ok
20:00:59.0576 5060 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:00:59.0598 5060 NDIS - ok
20:00:59.0626 5060 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:00:59.0627 5060 NdisTapi - ok
20:00:59.0641 5060 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:00:59.0642 5060 Ndisuio - ok
20:00:59.0670 5060 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:00:59.0675 5060 NdisWan - ok
20:00:59.0685 5060 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:00:59.0686 5060 NDProxy - ok
20:00:59.0952 5060 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:00:59.0992 5060 Nero BackItUp Scheduler 4.0 - ok
20:01:00.0031 5060 NetBalancerService (2076d18535b524b203cf92cb83abe4c6) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
20:01:00.0032 5060 NetBalancerService - ok
20:01:00.0041 5060 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:01:00.0043 5060 NetBIOS - ok
20:01:00.0074 5060 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:01:00.0088 5060 netbt - ok
20:01:00.0116 5060 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:00.0117 5060 Netlogon - ok
20:01:00.0143 5060 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
20:01:00.0155 5060 Netman - ok
20:01:00.0220 5060 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:00.0259 5060 NetMsmqActivator - ok
20:01:00.0262 5060 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:00.0263 5060 NetPipeActivator - ok
20:01:00.0291 5060 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
20:01:00.0303 5060 netprofm - ok
20:01:00.0306 5060 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:00.0307 5060 NetTcpActivator - ok
20:01:00.0309 5060 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:00.0310 5060 NetTcpPortSharing - ok
20:01:00.0339 5060 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:01:00.0340 5060 nfrd960 - ok
20:01:00.0380 5060 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:01:00.0381 5060 NisDrv - ok
20:01:00.0443 5060 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:01:00.0457 5060 NisSrv - ok
20:01:00.0498 5060 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
20:01:00.0512 5060 NlaSvc - ok
20:01:00.0549 5060 nltdi (015ce611f7acf34afdff58a581ec6904) C:\Windows\system32\drivers\nltdi.sys
20:01:00.0556 5060 nltdi - ok
20:01:00.0579 5060 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:01:00.0580 5060 Npfs - ok
20:01:00.0583 5060 npggsvc - ok
20:01:00.0602 5060 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
20:01:00.0604 5060 nsi - ok
20:01:00.0622 5060 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:01:00.0624 5060 nsiproxy - ok
20:01:00.0691 5060 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:01:00.0752 5060 Ntfs - ok
20:01:00.0771 5060 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:01:00.0772 5060 ntrigdigi - ok
20:01:00.0793 5060 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:01:00.0794 5060 Null - ok
20:01:00.0814 5060 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:01:00.0821 5060 nvraid - ok
20:01:00.0842 5060 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:01:00.0844 5060 nvstor - ok
20:01:00.0864 5060 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:01:00.0871 5060 nv_agp - ok
20:01:00.0873 5060 NwlnkFlt - ok
20:01:00.0876 5060 NwlnkFwd - ok
20:01:00.0921 5060 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
20:01:00.0923 5060 ohci1394 - ok
20:01:00.0968 5060 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:01.0000 5060 p2pimsvc - ok
20:01:01.0005 5060 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:01.0009 5060 p2psvc - ok
20:01:01.0028 5060 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
20:01:01.0031 5060 Parport - ok
20:01:01.0048 5060 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
20:01:01.0050 5060 partmgr - ok
20:01:01.0067 5060 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
20:01:01.0068 5060 Parvdm - ok
20:01:01.0102 5060 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
20:01:01.0104 5060 PcaSvc - ok
20:01:01.0132 5060 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:01:01.0137 5060 pci - ok
20:01:01.0156 5060 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
20:01:01.0157 5060 pciide - ok
20:01:01.0180 5060 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:01:01.0186 5060 pcmcia - ok
20:01:01.0254 5060 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:01:01.0289 5060 PEAUTH - ok
20:01:01.0360 5060 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
20:01:01.0415 5060 pla - ok
20:01:01.0592 5060 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
20:01:01.0605 5060 PlugPlay - ok
20:01:01.0642 5060 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
20:01:01.0645 5060 PnkBstrA - ok
20:01:01.0682 5060 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:01.0686 5060 PNRPAutoReg - ok
20:01:01.0692 5060 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:01.0696 5060 PNRPsvc - ok
20:01:01.0852 5060 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
20:01:01.0868 5060 PolicyAgent - ok
20:01:01.0904 5060 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:01:01.0905 5060 PptpMiniport - ok
20:01:01.0936 5060 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
20:01:01.0938 5060 Processor - ok
20:01:01.0967 5060 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
20:01:01.0974 5060 ProfSvc - ok
20:01:01.0981 5060 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:01.0983 5060 ProtectedStorage - ok
20:01:02.0003 5060 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:01:02.0005 5060 PSched - ok
20:01:02.0070 5060 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:01:02.0101 5060 ql2300 - ok
20:01:02.0132 5060 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:01:02.0138 5060 ql40xx - ok
20:01:02.0180 5060 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
20:01:02.0193 5060 QWAVE - ok
20:01:02.0202 5060 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:01:02.0203 5060 QWAVEdrv - ok
20:01:02.0211 5060 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:01:02.0213 5060 RasAcd - ok
20:01:02.0226 5060 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
20:01:02.0233 5060 RasAuto - ok
20:01:02.0247 5060 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:01:02.0250 5060 Rasl2tp - ok
20:01:02.0282 5060 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
20:01:02.0290 5060 RasMan - ok
20:01:02.0316 5060 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:01:02.0318 5060 RasPppoe - ok
20:01:02.0344 5060 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:01:02.0346 5060 RasSstp - ok
20:01:02.0370 5060 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:01:02.0383 5060 rdbss - ok
20:01:02.0401 5060 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:01:02.0402 5060 RDPCDD - ok
20:01:02.0426 5060 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
20:01:02.0438 5060 rdpdr - ok
20:01:02.0461 5060 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:01:02.0462 5060 RDPENCDD - ok
20:01:02.0499 5060 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
20:01:02.0505 5060 RDPWD - ok
20:01:02.0542 5060 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
20:01:02.0545 5060 RemoteAccess - ok
20:01:02.0566 5060 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
20:01:02.0573 5060 RemoteRegistry - ok
20:01:02.0590 5060 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
20:01:02.0592 5060 RpcLocator - ok
20:01:02.0638 5060 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:01:02.0642 5060 RpcSs - ok
20:01:02.0668 5060 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:01:02.0669 5060 rspndr - ok
20:01:02.0698 5060 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
20:01:02.0700 5060 RTL8169 - ok
20:01:02.0728 5060 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
20:01:02.0739 5060 RTL8187 - ok
20:01:02.0767 5060 RTL8187B (318f4f327190b2aee7aae9cafd19bb19) C:\Windows\system32\DRIVERS\wg111v3.sys
20:01:02.0779 5060 RTL8187B - ok
20:01:02.0806 5060 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
20:01:02.0807 5060 RtlProt - ok
20:01:02.0814 5060 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:02.0815 5060 SamSs - ok
20:01:02.0854 5060 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
20:01:02.0855 5060 SASDIFSV - ok
20:01:02.0876 5060 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
20:01:02.0878 5060 SASKUTIL - ok
20:01:02.0909 5060 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:01:02.0911 5060 sbp2port - ok
20:01:02.0957 5060 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
20:01:02.0964 5060 SCardSvr - ok
20:01:03.0009 5060 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
20:01:03.0024 5060 Schedule - ok
20:01:03.0053 5060 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
20:01:03.0054 5060 SCMNdisP - ok
20:01:03.0066 5060 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:01:03.0066 5060 SCPolicySvc - ok
20:01:03.0096 5060 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
20:01:03.0103 5060 SDRSVC - ok
20:01:03.0115 5060 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:01:03.0117 5060 secdrv - ok
20:01:03.0130 5060 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
20:01:03.0132 5060 seclogon - ok
20:01:03.0144 5060 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
20:01:03.0146 5060 SENS - ok
20:01:03.0169 5060 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
20:01:03.0171 5060 Serenum - ok
20:01:03.0198 5060 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
20:01:03.0205 5060 Serial - ok
20:01:03.0229 5060 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:01:03.0230 5060 sermouse - ok
20:01:03.0267 5060 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
20:01:03.0275 5060 SessionEnv - ok
20:01:03.0298 5060 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
20:01:03.0299 5060 sffdisk - ok
20:01:03.0321 5060 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
20:01:03.0322 5060 sffp_mmc - ok
20:01:03.0332 5060 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
20:01:03.0333 5060 sffp_sd - ok
20:01:03.0347 5060 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:01:03.0348 5060 sfloppy - ok
20:01:03.0390 5060 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
20:01:03.0401 5060 SharedAccess - ok
20:01:03.0424 5060 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
20:01:03.0429 5060 ShellHWDetection - ok
20:01:03.0449 5060 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:01:03.0450 5060 sisagp - ok
20:01:03.0460 5060 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:01:03.0462 5060 SiSRaid2 - ok
20:01:03.0476 5060 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:01:03.0478 5060 SiSRaid4 - ok
20:01:03.0544 5060 SkypeUpdate (ea396139541706b4b433641d62ea53ce) C:\Program Files\Skype\Updater\Updater.exe
20:01:03.0549 5060 SkypeUpdate - ok
20:01:03.0676 5060 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
20:01:03.0760 5060 slsvc - ok
20:01:03.0849 5060 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
20:01:03.0851 5060 SLUINotify - ok
20:01:03.0898 5060 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:01:03.0900 5060 Smb - ok
20:01:03.0917 5060 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
20:01:03.0919 5060 SNMPTRAP - ok
20:01:03.0945 5060 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:01:03.0946 5060 spldr - ok
20:01:03.0964 5060 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
20:01:03.0970 5060 Spooler - ok
20:01:03.0999 5060 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:01:04.0017 5060 srv - ok
20:01:04.0036 5060 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:01:04.0037 5060 srv2 - ok
20:01:04.0048 5060 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:01:04.0055 5060 srvnet - ok
20:01:04.0067 5060 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
20:01:04.0071 5060 SSDPSRV - ok
20:01:04.0101 5060 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
20:01:04.0108 5060 SstpSvc - ok
20:01:04.0154 5060 Steam Client Service - ok
20:01:04.0208 5060 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
20:01:04.0218 5060 stisvc - ok
20:01:04.0241 5060 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:01:04.0242 5060 swenum - ok
20:01:04.0276 5060 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
20:01:04.0287 5060 swprv - ok
20:01:04.0311 5060 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:01:04.0312 5060 Symc8xx - ok
20:01:04.0328 5060 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:01:04.0329 5060 Sym_hi - ok
20:01:04.0342 5060 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:01:04.0343 5060 Sym_u3 - ok
20:01:04.0380 5060 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
20:01:04.0396 5060 SysMain - ok
20:01:04.0423 5060 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
20:01:04.0426 5060 TabletInputService - ok
20:01:04.0452 5060 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
20:01:04.0463 5060 TapiSrv - ok
20:01:04.0471 5060 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
20:01:04.0474 5060 TBS - ok
20:01:04.0901 5060 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
20:01:04.0928 5060 Tcpip - ok
20:01:04.0935 5060 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
20:01:04.0940 5060 Tcpip6 - ok
20:01:04.0961 5060 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
20:01:04.0962 5060 tcpipreg - ok
20:01:04.0993 5060 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:01:04.0993 5060 TDPIPE - ok
20:01:05.0015 5060 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:01:05.0016 5060 TDTCP - ok
20:01:05.0042 5060 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
20:01:05.0043 5060 tdx - ok
20:01:05.0064 5060 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:01:05.0066 5060 TermDD - ok
20:01:05.0096 5060 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
20:01:05.0112 5060 TermService - ok
20:01:05.0142 5060 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
20:01:05.0145 5060 Themes - ok
20:01:05.0173 5060 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:01:05.0175 5060 THREADORDER - ok
20:01:05.0209 5060 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
20:01:05.0212 5060 TrkWks - ok
20:01:05.0253 5060 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
20:01:05.0254 5060 TrustedInstaller - ok
20:01:05.0281 5060 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:01:05.0282 5060 tssecsrv - ok
20:01:05.0315 5060 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:01:05.0316 5060 tunmp - ok
20:01:05.0659 5060 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:01:05.0660 5060 tunnel - ok
20:01:05.0680 5060 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:01:05.0682 5060 uagp35 - ok
20:01:05.0722 5060 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:01:05.0737 5060 udfs - ok
20:01:05.0764 5060 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
20:01:05.0767 5060 UI0Detect - ok
20:01:05.0782 5060 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:01:05.0782 5060 uliagpkx - ok
20:01:05.0807 5060 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:01:05.0818 5060 uliahci - ok
20:01:05.0834 5060 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:01:05.0841 5060 UlSata - ok
20:01:05.0861 5060 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:01:05.0867 5060 ulsata2 - ok
20:01:05.0889 5060 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:01:05.0890 5060 umbus - ok
20:01:05.0906 5060 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
20:01:05.0919 5060 upnphost - ok
20:01:05.0939 5060 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
20:01:05.0941 5060 USBAAPL - ok
20:01:05.0973 5060 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:01:05.0974 5060 usbccgp - ok
20:01:05.0991 5060 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:01:05.0993 5060 usbcir - ok
20:01:06.0031 5060 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:01:06.0032 5060 usbehci - ok
20:01:06.0050 5060 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:01:06.0065 5060 usbhub - ok
20:01:06.0096 5060 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
20:01:06.0098 5060 usbohci - ok
20:01:06.0133 5060 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:01:06.0135 5060 usbprint - ok
20:01:06.0177 5060 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:01:06.0179 5060 usbscan - ok
20:01:06.0202 5060 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:01:06.0204 5060 USBSTOR - ok
20:01:06.0209 5060 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:01:06.0210 5060 usbuhci - ok
20:01:06.0229 5060 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
20:01:06.0231 5060 UxSms - ok
20:01:06.0266 5060 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
20:01:06.0277 5060 vds - ok
20:01:06.0304 5060 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:01:06.0305 5060 vga - ok
20:01:06.0323 5060 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:01:06.0324 5060 VgaSave - ok
20:01:06.0343 5060 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:01:06.0345 5060 viaagp - ok
20:01:06.0381 5060 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:01:06.0382 5060 ViaC7 - ok
20:01:06.0396 5060 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:01:06.0397 5060 viaide - ok
20:01:06.0421 5060 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:01:06.0423 5060 volmgr - ok
20:01:06.0459 5060 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:01:06.0471 5060 volmgrx - ok
20:01:06.0493 5060 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:01:06.0497 5060 volsnap - ok
20:01:06.0524 5060 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:01:06.0530 5060 vsmraid - ok
20:01:06.0600 5060 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
20:01:06.0638 5060 VSS - ok
20:01:06.0664 5060 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
20:01:06.0676 5060 W32Time - ok
20:01:06.0726 5060 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:01:06.0727 5060 WacomPen - ok
20:01:06.0746 5060 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:01:06.0748 5060 Wanarp - ok
20:01:06.0750 5060 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:01:06.0751 5060 Wanarpv6 - ok
20:01:06.0779 5060 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
20:01:06.0789 5060 wcncsvc - ok
20:01:06.0817 5060 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
20:01:06.0820 5060 WcsPlugInService - ok
20:01:06.0840 5060 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:01:06.0842 5060 Wd - ok
20:01:06.0879 5060 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
20:01:06.0987 5060 Wdf01000 - ok
20:01:07.0016 5060 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:01:07.0020 5060 WdiServiceHost - ok
20:01:07.0022 5060 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:01:07.0024 5060 WdiSystemHost - ok
20:01:07.0060 5060 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
20:01:07.0075 5060 WebClient - ok
20:01:07.0104 5060 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
20:01:07.0159 5060 Wecsvc - ok
20:01:07.0183 5060 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
20:01:07.0186 5060 wercplsupport - ok
20:01:07.0217 5060 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
20:01:07.0225 5060 WerSvc - ok
20:01:07.0390 5060 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
20:01:07.0397 5060 WinDefend - ok
20:01:07.0409 5060 WinHttpAutoProxySvc - ok
20:01:07.0445 5060 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
20:01:07.0452 5060 Winmgmt - ok
20:01:07.0506 5060 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
20:01:07.0565 5060 WinRM - ok
20:01:07.0599 5060 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
20:01:07.0616 5060 Wlansvc - ok
20:01:07.0734 5060 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:01:07.0776 5060 wlidsvc - ok
20:01:07.0868 5060 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
20:01:07.0869 5060 WmiAcpi - ok
20:01:07.0910 5060 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
20:01:07.0917 5060 wmiApSrv - ok
20:01:08.0010 5060 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:01:08.0026 5060 WMPNetworkSvc - ok
20:01:08.0039 5060 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
20:01:08.0046 5060 WPCSvc - ok
20:01:08.0075 5060 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
20:01:08.0081 5060 WPDBusEnum - ok
20:01:08.0249 5060 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:01:08.0276 5060 WPFFontCache_v0400 - ok
20:01:08.0332 5060 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:01:08.0333 5060 ws2ifsl - ok
20:01:08.0375 5060 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
20:01:08.0378 5060 wscsvc - ok
20:01:08.0380 5060 WSearch - ok
20:01:08.0468 5060 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
20:01:08.0526 5060 wuauserv - ok
20:01:08.0643 5060 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:01:08.0649 5060 WUDFRd - ok
20:01:08.0675 5060 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
20:01:08.0678 5060 wudfsvc - ok
20:01:08.0686 5060 XDva390 - ok
20:01:08.0696 5060 XDva391 - ok
20:01:08.0730 5060 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:01:09.0003 5060 \Device\Harddisk0\DR0 - ok
20:01:09.0005 5060 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
20:01:09.0278 5060 \Device\Harddisk1\DR1 - ok
20:01:09.0297 5060 Boot (0x1200) (984fe8ee81be62564a81aa65f63d599e) \Device\Harddisk0\DR0\Partition0
20:01:09.0298 5060 \Device\Harddisk0\DR0\Partition0 - ok
20:01:09.0300 5060 Boot (0x1200) (b96ad8f440d7d0a41c7819ed99d8f22e) \Device\Harddisk1\DR1\Partition0
20:01:09.0301 5060 \Device\Harddisk1\DR1\Partition0 - ok
20:01:09.0303 5060 Boot (0x1200) (2dd793aee5a2d21cd481115492edb0fb) \Device\Harddisk1\DR1\Partition1
20:01:09.0304 5060 \Device\Harddisk1\DR1\Partition1 - ok
20:01:09.0305 5060 Boot (0x1200) (ded30c6b24c51a92dff850dab9df0dc8) \Device\Harddisk1\DR1\Partition2
20:01:09.0307 5060 \Device\Harddisk1\DR1\Partition2 - ok
20:01:09.0307 5060 ============================================================
20:01:09.0307 5060 Scan finished
20:01:09.0307 5060 ============================================================
20:01:09.0313 3828 Detected object count: 0
20:01:09.0313 3828 Actual detected object count: 0
20:01:31.0670 4144 ============================================================
20:01:31.0670 4144 Scan started
20:01:31.0670 4144 Mode: Manual; SigCheck; TDLFS;
20:01:31.0670 4144 ============================================================
20:01:32.0004 4144 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
20:01:32.0095 4144 !SASCORE - ok
20:01:32.0139 4144 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:01:32.0153 4144 ACPI - ok
20:01:32.0210 4144 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:01:32.0217 4144 AdobeARMservice - ok
20:01:32.0260 4144 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:01:32.0269 4144 AdobeFlashPlayerUpdateSvc - ok
20:01:32.0308 4144 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:01:32.0325 4144 adp94xx - ok
20:01:32.0362 4144 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:01:32.0373 4144 adpahci - ok
20:01:32.0395 4144 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:01:32.0405 4144 adpu160m - ok
20:01:32.0418 4144 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:01:32.0429 4144 adpu320 - ok
20:01:32.0454 4144 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
20:01:32.0539 4144 AeLookupSvc - ok
20:01:32.0564 4144 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:01:32.0598 4144 AFD - ok
20:01:32.0635 4144 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:01:32.0643 4144 agp440 - ok
20:01:32.0679 4144 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:01:32.0688 4144 aic78xx - ok
20:01:32.0863 4144 Akamai (1125c7d9fb8898015829c387c1bc87c7) C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll
20:01:32.0965 4144 Akamai - ok
20:01:33.0053 4144 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
20:01:33.0166 4144 ALG - ok
20:01:33.0226 4144 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:01:33.0234 4144 aliide - ok
20:01:33.0265 4144 AMD External Events Utility (f970ea885aefeb1b9eb97ca7f1eb226d) C:\Windows\system32\atiesrxx.exe
20:01:33.0349 4144 AMD External Events Utility - ok
20:01:33.0363 4144 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:01:33.0372 4144 amdagp - ok
20:01:33.0399 4144 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:01:33.0407 4144 amdide - ok
20:01:33.0423 4144 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:01:33.0467 4144 AmdK7 - ok
20:01:33.0485 4144 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:01:33.0525 4144 AmdK8 - ok
20:01:33.0805 4144 amdkmdag (ab70f110143892eb41aa46500aa5cf00) C:\Windows\system32\DRIVERS\atikmdag.sys
20:01:34.0035 4144 amdkmdag - ok
20:01:34.0141 4144 amdkmdap (32d68d05b871eed5572d0c2c764ea4ec) C:\Windows\system32\DRIVERS\atikmpag.sys
20:01:34.0177 4144 amdkmdap - ok
20:01:34.0213 4144 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
20:01:34.0251 4144 Appinfo - ok
20:01:34.0328 4144 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:01:34.0335 4144 Apple Mobile Device - ok
20:01:34.0367 4144 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:01:34.0375 4144 arc - ok
20:01:34.0384 4144 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:01:34.0393 4144 arcsas - ok
20:01:34.0464 4144 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:01:34.0472 4144 aspnet_state - ok
20:01:34.0484 4144 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:01:34.0553 4144 AsyncMac - ok
20:01:34.0581 4144 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:01:34.0589 4144 atapi - ok
20:01:34.0619 4144 AtiHDAudioService (c8f5273b12cfa5c0888263e34140cb8a) C:\Windows\system32\drivers\AtihdLH3.sys
20:01:34.0645 4144 AtiHDAudioService - ok
20:01:34.0674 4144 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:01:34.0727 4144 AudioEndpointBuilder - ok
20:01:34.0730 4144 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:01:34.0745 4144 Audiosrv - ok
20:01:34.0785 4144 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:01:34.0818 4144 Beep - ok
20:01:34.0857 4144 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
20:01:34.0893 4144 BFE - ok
20:01:34.0943 4144 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
20:01:35.0013 4144 BITS - ok
20:01:35.0055 4144 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:01:35.0073 4144 blbdrive - ok
20:01:35.0144 4144 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
20:01:35.0156 4144 Bonjour Service - ok
20:01:35.0202 4144 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:01:35.0253 4144 bowser - ok
20:01:35.0278 4144 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:01:35.0311 4144 BrFiltLo - ok
20:01:35.0326 4144 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:01:35.0349 4144 BrFiltUp - ok
20:01:35.0381 4144 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
20:01:35.0415 4144 Browser - ok
20:01:35.0433 4144 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:01:35.0550 4144 Brserid - ok
20:01:35.0578 4144 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:01:35.0634 4144 BrSerWdm - ok
20:01:35.0664 4144 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:01:35.0716 4144 BrUsbMdm - ok
20:01:35.0718 4144 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:01:35.0748 4144 BrUsbSer - ok
20:01:35.0768 4144 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
20:01:35.0815 4144 BTHMODEM - ok
20:01:35.0836 4144 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:01:35.0871 4144 cdfs - ok
20:01:35.0907 4144 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:01:35.0944 4144 cdrom - ok
20:01:35.0979 4144 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:01:36.0019 4144 CertPropSvc - ok
20:01:36.0053 4144 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
20:01:36.0086 4144 circlass - ok
20:01:36.0126 4144 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:01:36.0138 4144 CLFS - ok
20:01:36.0197 4144 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:01:36.0204 4144 clr_optimization_v2.0.50727_32 - ok
20:01:36.0257 4144 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:01:36.0265 4144 clr_optimization_v4.0.30319_32 - ok
20:01:36.0295 4144 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:01:36.0304 4144 cmdide - ok
20:01:36.0321 4144 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
20:01:36.0329 4144 Compbatt - ok
20:01:36.0331 4144 COMSysApp - ok
20:01:36.0347 4144 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:01:36.0356 4144 crcdisk - ok
20:01:36.0368 4144 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:01:36.0407 4144 Crusoe - ok
20:01:36.0439 4144 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
20:01:36.0488 4144 CryptSvc - ok
20:01:36.0543 4144 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:01:36.0585 4144 DcomLaunch - ok
20:01:36.0622 4144 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:01:36.0676 4144 DfsC - ok
20:01:36.0755 4144 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
20:01:36.0954 4144 DFSR - ok
20:01:37.0042 4144 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
20:01:37.0090 4144 Dhcp - ok
20:01:37.0147 4144 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:01:37.0155 4144 disk - ok
20:01:37.0209 4144 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
20:01:37.0258 4144 Dnscache - ok
20:01:37.0293 4144 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
20:01:37.0308 4144 dot3svc - ok
20:01:37.0338 4144 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
20:01:37.0371 4144 DPS - ok
20:01:37.0410 4144 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:01:37.0446 4144 drmkaud - ok
20:01:37.0860 4144 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:01:37.0878 4144 DXGKrnl - ok
20:01:37.0907 4144 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:01:37.0942 4144 E1G60 - ok
20:01:37.0945 4144 EagleXNt - ok
20:01:38.0004 4144 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
20:01:38.0046 4144 EapHost - ok
20:01:38.0340 4144 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:01:38.0350 4144 Ecache - ok
20:01:38.0526 4144 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
20:01:38.0548 4144 ehRecvr - ok
20:01:38.0573 4144 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
20:01:38.0625 4144 ehSched - ok
20:01:38.0633 4144 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
20:01:38.0662 4144 ehstart - ok
20:01:38.0708 4144 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:01:38.0722 4144 elxstor - ok
20:01:38.0772 4144 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
20:01:38.0832 4144 EMDMgmt - ok
20:01:38.0859 4144 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
20:01:38.0893 4144 ErrDev - ok
20:01:38.0941 4144 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
20:01:38.0978 4144 EventSystem - ok
20:01:39.0474 4144 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:01:39.0550 4144 exfat - ok
20:01:39.0711 4144 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:01:39.0748 4144 fastfat - ok
20:01:39.0847 4144 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:01:39.0883 4144 fdc - ok
20:01:39.0953 4144 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
20:01:39.0970 4144 fdPHost - ok
20:01:40.0007 4144 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
20:01:40.0066 4144 FDResPub - ok
20:01:40.0165 4144 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:01:40.0174 4144 FileInfo - ok
20:01:40.0228 4144 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:01:40.0265 4144 Filetrace - ok
20:01:40.0309 4144 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:01:40.0348 4144 flpydisk - ok
20:01:40.0443 4144 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:01:40.0454 4144 FltMgr - ok
20:01:41.0391 4144 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
20:01:41.0461 4144 FontCache - ok
20:01:41.0560 4144 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:01:41.0568 4144 FontCache3.0.0.0 - ok
20:01:41.0614 4144 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
20:01:41.0681 4144 Fs_Rec - ok
20:01:41.0760 4144 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:01:41.0768 4144 gagp30kx - ok
20:01:41.0899 4144 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:01:41.0905 4144 GEARAspiWDM - ok
20:01:42.0614 4144 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
20:01:42.0671 4144 gpsvc - ok
20:01:43.0257 4144 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
20:01:43.0296 4144 HdAudAddService - ok
20:01:43.0349 4144 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:01:43.0389 4144 HDAudBus - ok
20:01:43.0439 4144 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:01:43.0483 4144 HidBth - ok
20:01:43.0504 4144 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
20:01:43.0549 4144 HidIr - ok
20:01:43.0580 4144 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
20:01:43.0615 4144 hidserv - ok
20:01:43.0643 4144 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:01:43.0657 4144 HidUsb - ok
20:01:43.0698 4144 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
20:01:43.0740 4144 hkmsvc - ok
20:01:43.0769 4144 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
20:01:43.0778 4144 HpCISSs - ok
20:01:43.0814 4144 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:01:43.0873 4144 HTTP - ok
20:01:43.0889 4144 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:01:43.0898 4144 i2omp - ok
20:01:43.0917 4144 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:01:43.0951 4144 i8042prt - ok
20:01:43.0981 4144 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:01:43.0992 4144 iaStorV - ok
20:01:44.0088 4144 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:01:44.0111 4144 idsvc - ok
20:01:44.0136 4144 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:01:44.0145 4144 iirsp - ok
20:01:44.0177 4144 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
20:01:44.0235 4144 IKEEXT - ok
20:01:44.0275 4144 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
20:01:44.0283 4144 intelide - ok
20:01:44.0302 4144 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:01:44.0337 4144 intelppm - ok
20:01:44.0370 4144 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
20:01:44.0404 4144 IPBusEnum - ok
20:01:44.0425 4144 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:01:44.0458 4144 IpFilterDriver - ok
20:01:44.0494 4144 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
20:01:44.0541 4144 iphlpsvc - ok
20:01:44.0543 4144 IpInIp - ok
20:01:44.0589 4144 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
20:01:44.0605 4144 IPMIDRV - ok
20:01:44.0622 4144 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:01:44.0654 4144 IPNAT - ok
20:01:44.0731 4144 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
20:01:44.0752 4144 iPod Service - ok
20:01:44.0777 4144 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:01:44.0794 4144 IRENUM - ok
20:01:44.0816 4144 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:01:44.0825 4144 isapnp - ok
20:01:44.0858 4144 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:01:44.0869 4144 iScsiPrt - ok
20:01:44.0888 4144 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:01:44.0897 4144 iteatapi - ok
20:01:44.0907 4144 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:01:44.0916 4144 iteraid - ok
20:01:44.0932 4144 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:01:44.0942 4144 kbdclass - ok
20:01:44.0954 4144 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
20:01:44.0989 4144 kbdhid - ok
20:01:45.0026 4144 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:45.0050 4144 KeyIso - ok
20:01:45.0084 4144 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
20:01:45.0116 4144 KSecDD - ok
20:01:45.0329 4144 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
20:01:45.0361 4144 KtmRm - ok
20:01:45.0412 4144 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
20:01:45.0455 4144 LanmanServer - ok
20:01:45.0555 4144 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
20:01:45.0599 4144 LanmanWorkstation - ok
20:01:45.0777 4144 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:01:45.0816 4144 lltdio - ok
20:01:45.0914 4144 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
20:01:45.0952 4144 lltdsvc - ok
20:01:45.0969 4144 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
20:01:46.0002 4144 lmhosts - ok
20:01:46.0040 4144 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:01:46.0048 4144 LSI_FC - ok
20:01:46.0067 4144 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:01:46.0076 4144 LSI_SAS - ok
20:01:46.0092 4144 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:01:46.0101 4144 LSI_SCSI - ok
20:01:46.0120 4144 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:01:46.0160 4144 luafv - ok
20:01:46.0191 4144 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
20:01:46.0199 4144 MBAMProtector - ok
20:01:46.0264 4144 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:01:46.0282 4144 MBAMService - ok
20:01:46.0338 4144 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
20:01:46.0363 4144 Mcx2Svc - ok
20:01:46.0415 4144 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:01:46.0423 4144 megasas - ok
20:01:46.0452 4144 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:01:46.0467 4144 MegaSR - ok
20:01:46.0510 4144 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:01:46.0533 4144 MMCSS - ok
20:01:46.0547 4144 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:01:46.0591 4144 Modem - ok
20:01:46.0687 4144 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:01:46.0775 4144 monitor - ok
20:01:46.0854 4144 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:01:46.0863 4144 mouclass - ok
20:01:46.0886 4144 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:01:46.0925 4144 mouhid - ok
20:01:46.0955 4144 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:01:46.0963 4144 MountMgr - ok
20:01:47.0059 4144 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:01:47.0068 4144 MozillaMaintenance - ok
20:01:47.0092 4144 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
20:01:47.0106 4144 MpFilter - ok
20:01:47.0144 4144 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
20:01:47.0153 4144 mpio - ok
20:01:47.0232 4144 MpKsle5e6ca9a (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6401BA86-6643-408A-B6A1-7C4C57C0BC8E}\MpKsle5e6ca9a.sys
20:01:47.0239 4144 MpKsle5e6ca9a - ok
20:01:47.0247 4144 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:01:47.0273 4144 mpsdrv - ok
20:01:47.0306 4144 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
20:01:47.0362 4144 MpsSvc - ok
20:01:47.0396 4144 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:01:47.0404 4144 Mraid35x - ok
20:01:47.0442 4144 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:01:47.0464 4144 MRxDAV - ok
20:01:47.0498 4144 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:01:47.0545 4144 mrxsmb - ok
20:01:47.0574 4144 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:01:47.0585 4144 mrxsmb10 - ok
20:01:47.0615 4144 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:01:47.0642 4144 mrxsmb20 - ok
20:01:47.0679 4144 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
20:01:47.0688 4144 msahci - ok
20:01:47.0707 4144 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
20:01:47.0716 4144 msdsm - ok
20:01:47.0740 4144 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
20:01:47.0779 4144 MSDTC - ok
20:01:47.0801 4144 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:01:47.0836 4144 Msfs - ok
20:01:47.0843 4144 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:01:47.0851 4144 msisadrv - ok
20:01:47.0890 4144 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
20:01:47.0921 4144 MSiSCSI - ok
20:01:47.0924 4144 msiserver - ok
20:01:47.0952 4144 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:01:47.0988 4144 MSKSSRV - ok
20:01:48.0041 4144 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:01:48.0049 4144 MsMpSvc - ok
20:01:48.0069 4144 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:01:48.0103 4144 MSPCLOCK - ok
20:01:48.0125 4144 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:01:48.0152 4144 MSPQM - ok
20:01:48.0183 4144 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:01:48.0194 4144 MsRPC - ok
20:01:48.0211 4144 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:01:48.0220 4144 mssmbios - ok
20:01:48.0240 4144 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:01:48.0275 4144 MSTEE - ok
20:01:48.0294 4144 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:01:48.0304 4144 Mup - ok
20:01:48.0333 4144 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
20:01:48.0367 4144 napagent - ok
20:01:48.0406 4144 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:01:48.0433 4144 NativeWifiP - ok
20:01:48.0462 4144 Nbdrv (c9deac695b5107c31b451f254df7e3a4) C:\Windows\system32\DRIVERS\nbdrv.sys
20:01:48.0470 4144 Nbdrv - ok
20:01:48.0497 4144 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:01:48.0514 4144 NDIS - ok
20:01:48.0562 4144 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:01:48.0616 4144 NdisTapi - ok
20:01:48.0687 4144 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:01:48.0703 4144 Ndisuio - ok
20:01:48.0727 4144 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:01:48.0762 4144 NdisWan - ok
20:01:48.0785 4144 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:01:48.0797 4144 NDProxy - ok
20:01:48.0888 4144 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:01:48.0937 4144 Nero BackItUp Scheduler 4.0 - ok
20:01:48.0964 4144 NetBalancerService (2076d18535b524b203cf92cb83abe4c6) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
20:01:48.0984 4144 NetBalancerService ( UnsignedFile.Multi.Generic ) - warning
20:01:48.0984 4144 NetBalancerService - detected UnsignedFile.Multi.Generic (1)
20:01:49.0007 4144 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:01:49.0041 4144 NetBIOS - ok
20:01:49.0088 4144 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:01:49.0120 4144 netbt - ok
20:01:49.0157 4144 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:49.0168 4144 Netlogon - ok
20:01:49.0200 4144 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
20:01:49.0238 4144 Netman - ok
20:01:49.0311 4144 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:49.0320 4144 NetMsmqActivator - ok
20:01:49.0322 4144 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:49.0330 4144 NetPipeActivator - ok
20:01:49.0356 4144 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
20:01:49.0395 4144 netprofm - ok
20:01:49.0398 4144 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:49.0406 4144 NetTcpActivator - ok
20:01:49.0408 4144 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:01:49.0415 4144 NetTcpPortSharing - ok
20:01:49.0455 4144 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:01:49.0463 4144 nfrd960 - ok
20:01:49.0496 4144 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:01:49.0504 4144 NisDrv - ok
20:01:49.0559 4144 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:01:49.0574 4144 NisSrv - ok
20:01:49.0605 4144 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
20:01:49.0641 4144 NlaSvc - ok
20:01:49.0673 4144 nltdi (015ce611f7acf34afdff58a581ec6904) C:\Windows\system32\drivers\nltdi.sys
20:01:49.0681 4144 nltdi - ok
20:01:49.0704 4144 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:01:49.0735 4144 Npfs - ok
20:01:49.0737 4144 npggsvc - ok
20:01:49.0768 4144 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
20:01:49.0809 4144 nsi - ok
20:01:49.0838 4144 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:01:49.0872 4144 nsiproxy - ok
20:01:49.0945 4144 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:01:49.0972 4144 Ntfs - ok
20:01:49.0995 4144 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:01:50.0025 4144 ntrigdigi - ok
20:01:50.0041 4144 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:01:50.0058 4144 Null - ok
20:01:50.0080 4144 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:01:50.0090 4144 nvraid - ok
20:01:50.0109 4144 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:01:50.0118 4144 nvstor - ok
20:01:50.0138 4144 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:01:50.0148 4144 nv_agp - ok
20:01:50.0150 4144 NwlnkFlt - ok
20:01:50.0152 4144 NwlnkFwd - ok
20:01:50.0170 4144 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
20:01:50.0202 4144 ohci1394 - ok
20:01:50.0248 4144 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:50.0289 4144 p2pimsvc - ok
20:01:50.0293 4144 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:50.0313 4144 p2psvc - ok
20:01:50.0394 4144 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
20:01:50.0424 4144 Parport - ok
20:01:50.0448 4144 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
20:01:50.0456 4144 partmgr - ok
20:01:50.0475 4144 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
20:01:50.0517 4144 Parvdm - ok
20:01:50.0543 4144 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
20:01:50.0571 4144 PcaSvc - ok
20:01:50.0598 4144 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:01:50.0608 4144 pci - ok
20:01:50.0622 4144 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
20:01:50.0631 4144 pciide - ok
20:01:50.0662 4144 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:01:50.0672 4144 pcmcia - ok
20:01:50.0717 4144 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:01:50.0762 4144 PEAUTH - ok
20:01:50.0836 4144 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
20:01:50.0912 4144 pla - ok
20:01:51.0000 4144 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
20:01:51.0044 4144 PlugPlay - ok
20:01:51.0075 4144 PnkBstrA (205e1b699fd3f2f9b036eea2ec30c620) C:\Windows\system32\PnkBstrA.exe
20:01:51.0083 4144 PnkBstrA - ok
20:01:51.0148 4144 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:51.0167 4144 PNRPAutoReg - ok
20:01:51.0174 4144 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:01:51.0228 4144 PNRPsvc - ok
20:01:51.0318 4144 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
20:01:51.0355 4144 PolicyAgent - ok
20:01:51.0419 4144 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:01:51.0457 4144 PptpMiniport - ok
20:01:51.0501 4144 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
20:01:51.0518 4144 Processor - ok
20:01:51.0558 4144 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
20:01:51.0574 4144 ProfSvc - ok
20:01:51.0597 4144 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:51.0607 4144 ProtectedStorage - ok
20:01:51.0627 4144 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:01:51.0657 4144 PSched - ok
20:01:51.0733 4144 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:01:51.0765 4144 ql2300 - ok
20:01:51.0797 4144 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:01:51.0807 4144 ql40xx - ok
20:01:51.0845 4144 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
20:01:51.0877 4144 QWAVE - ok
20:01:51.0908 4144 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:01:51.0917 4144 QWAVEdrv - ok
20:01:51.0928 4144 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:01:51.0964 4144 RasAcd - ok
20:01:51.0991 4144 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
20:01:52.0030 4144 RasAuto - ok
20:01:52.0054 4144 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:01:52.0072 4144 Rasl2tp - ok
20:01:52.0109 4144 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
20:01:52.0125 4144 RasMan - ok
20:01:52.0149 4144 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:01:52.0180 4144 RasPppoe - ok
20:01:52.0218 4144 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:01:52.0239 4144 RasSstp - ok
20:01:52.0260 4144 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:01:52.0275 4144 rdbss - ok
20:01:52.0300 4144 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:01:52.0335 4144 RDPCDD - ok
20:01:52.0365 4144 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
20:01:52.0384 4144 rdpdr - ok
20:01:52.0387 4144 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:01:52.0416 4144 RDPENCDD - ok
20:01:52.0465 4144 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
20:01:52.0509 4144 RDPWD - ok
20:01:52.0550 4144 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
20:01:52.0568 4144 RemoteAccess - ok
20:01:52.0590 4144 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
20:01:52.0605 4144 RemoteRegistry - ok
20:01:52.0614 4144 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
20:01:52.0630 4144 RpcLocator - ok
20:01:52.0663 4144 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:01:52.0686 4144 RpcSs - ok
20:01:52.0768 4144 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:01:52.0807 4144 rspndr - ok
20:01:52.0830 4144 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
20:01:52.0862 4144 RTL8169 - ok
20:01:52.0884 4144 RTL8187 (99c27fceb21347daf3ee9e8c205314d6) C:\Windows\system32\DRIVERS\wg111v2.sys
20:01:52.0922 4144 RTL8187 - ok
20:01:52.0975 4144 RTL8187B (318f4f327190b2aee7aae9cafd19bb19) C:\Windows\system32\DRIVERS\wg111v3.sys
20:01:53.0036 4144 RTL8187B - ok
20:01:53.0055 4144 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
20:01:53.0062 4144 RtlProt - ok
20:01:53.0088 4144 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:01:53.0098 4144 SamSs - ok
20:01:53.0136 4144 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
20:01:53.0143 4144 SASDIFSV - ok
20:01:53.0342 4144 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
20:01:53.0349 4144 SASKUTIL - ok
20:01:53.0374 4144 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:01:53.0383 4144 sbp2port - ok
20:01:53.0414 4144 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
20:01:53.0429 4144 SCardSvr - ok
20:01:53.0472 4144 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
20:01:53.0523 4144 Schedule - ok
20:01:53.0552 4144 SCMNdisP (3b68015683c27cb00c7a6b60a37cbcfd) C:\Windows\system32\DRIVERS\scmndisp.sys
20:01:53.0559 4144 SCMNdisP - ok
20:01:53.0587 4144 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:01:53.0600 4144 SCPolicySvc - ok
20:01:53.0619 4144 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
20:01:53.0655 4144 SDRSVC - ok
20:01:53.0680 4144 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:01:53.0726 4144 secdrv - ok
20:01:53.0762 4144 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
20:01:53.0780 4144 seclogon - ok
20:01:53.0793 4144 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
20:01:53.0829 4144 SENS - ok
20:01:53.0860 4144 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
20:01:53.0877 4144 Serenum - ok
20:01:53.0888 4144 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
20:01:53.0925 4144 Serial - ok
20:01:53.0969 4144 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:01:53.0985 4144 sermouse - ok
20:01:54.0025 4144 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
20:01:54.0062 4144 SessionEnv - ok
20:01:54.0079 4144 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
20:01:54.0093 4144 sffdisk - ok
20:01:54.0103 4144 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
20:01:54.0119 4144 sffp_mmc - ok
20:01:54.0131 4144 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
20:01:54.0158 4144 sffp_sd - ok
20:01:54.0180 4144 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:01:54.0281 4144 sfloppy - ok
20:01:54.0408 4144 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
20:01:54.0427 4144 SharedAccess - ok
20:01:54.0455 4144 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
20:01:54.0495 4144 ShellHWDetection - ok
20:01:54.0539 4144 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:01:54.0547 4144 sisagp - ok
20:01:54.0575 4144 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:01:54.0584 4144 SiSRaid2 - ok
20:01:54.0600 4144 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:01:54.0608 4144 SiSRaid4 - ok
20:01:54.0676 4144 SkypeUpdate (ea396139541706b4b433641d62ea53ce) C:\Program Files\Skype\Updater\Updater.exe
20:01:54.0684 4144 SkypeUpdate - ok
20:01:54.0825 4144 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
20:01:54.0964 4144 slsvc - ok
20:01:55.0047 4144 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
20:01:55.0082 4144 SLUINotify - ok
20:01:55.0130 4144 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:01:55.0156 4144 Smb - ok
20:01:55.0183 4144 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
20:01:55.0193 4144 SNMPTRAP - ok
20:01:55.0209 4144 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:01:55.0218 4144 spldr - ok
20:01:55.0245 4144 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
20:01:55.0297 4144 Spooler - ok
20:01:55.0330 4144 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:01:55.0373 4144 srv - ok
20:01:55.0411 4144 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:01:55.0439 4144 srv2 - ok
20:01:55.0463 4144 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:01:55.0495 4144 srvnet - ok
20:01:55.0534 4144 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
20:01:55.0571 4144 SSDPSRV - ok
20:01:55.0599 4144 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
20:01:55.0609 4144 SstpSvc - ok
20:01:55.0644 4144 Steam Client Service - ok
20:01:55.0672 4144 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
20:01:55.0721 4144 stisvc - ok
20:01:55.0756 4144 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:01:55.0764 4144 swenum - ok
20:01:55.0791 4144 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
20:01:55.0824 4144 swprv - ok
20:01:55.0867 4144 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:01:55.0875 4144 Symc8xx - ok
20:01:55.0952 4144 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:01:55.0965 4144 Sym_hi - ok
20:01:56.0126 4144 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:01:56.0134 4144 Sym_u3 - ok
20:01:56.0519 4144 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
20:01:56.0561 4144 SysMain - ok
20:01:56.0604 4144 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
20:01:56.0637 4144 TabletInputService - ok
20:01:56.0673 4144 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
20:01:56.0711 4144 TapiSrv - ok
20:01:56.0744 4144 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
20:01:56.0763 4144 TBS - ok
20:01:56.0799 4144 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
20:01:56.0856 4144 Tcpip - ok
20:01:56.0863 4144 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
20:01:56.0889 4144 Tcpip6 - ok
20:01:56.0918 4144 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
20:01:56.0948 4144 tcpipreg - ok
20:01:56.0999 4144 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:01:57.0036 4144 TDPIPE - ok
20:01:57.0071 4144 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:01:57.0088 4144 TDTCP - ok
20:01:57.0106 4144 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
20:01:57.0121 4144 tdx - ok
20:01:57.0137 4144 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:01:57.0146 4144 TermDD - ok
20:01:57.0176 4144 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
20:01:57.0246 4144 TermService - ok
20:01:57.0281 4144 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
20:01:57.0294 4144 Themes - ok
20:01:57.0347 4144 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:01:57.0364 4144 THREADORDER - ok
20:01:57.0391 4144 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
20:01:57.0431 4144 TrkWks - ok
20:01:57.0475 4144 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
20:01:57.0512 4144 TrustedInstaller - ok
20:01:57.0554 4144 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:01:57.0582 4144 tssecsrv - ok
20:01:57.0613 4144 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:01:57.0623 4144 tunmp - ok
20:01:57.0656 4144 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:01:57.0685 4144 tunnel - ok
20:01:57.0736 4144 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:01:57.0745 4144 uagp35 - ok
20:01:57.0787 4144 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:01:57.0802 4144 udfs - ok
20:01:57.0829 4144 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
20:01:57.0847 4144 UI0Detect - ok
20:01:57.0862 4144 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:01:57.0871 4144 uliagpkx - ok
20:01:57.0894 4144 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:01:57.0905 4144 uliahci - ok
20:01:57.0924 4144 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:01:57.0933 4144 UlSata - ok
20:01:57.0951 4144 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:01:57.0960 4144 ulsata2 - ok
20:01:57.0978 4144 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:01:57.0996 4144 umbus - ok
20:01:58.0028 4144 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
20:01:58.0070 4144 upnphost - ok
20:01:58.0103 4144 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
20:01:58.0119 4144 USBAAPL - ok
20:01:58.0145 4144 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:01:58.0179 4144 usbccgp - ok
20:01:58.0222 4144 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:01:58.0265 4144 usbcir - ok
20:01:58.0296 4144 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:01:58.0326 4144 usbehci - ok
20:01:58.0355 4144 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:01:58.0388 4144 usbhub - ok
20:01:58.0428 4144 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
20:01:58.0458 4144 usbohci - ok
20:01:58.0498 4144 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:01:58.0514 4144 usbprint - ok
20:01:58.0533 4144 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:01:58.0561 4144 usbscan - ok
20:01:58.0592 4144 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:01:58.0622 4144 USBSTOR - ok
20:01:58.0657 4144 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:01:58.0670 4144 usbuhci - ok
20:01:58.0693 4144 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
20:01:58.0708 4144 UxSms - ok
20:01:58.0738 4144 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
20:01:58.0757 4144 vds - ok
20:01:58.0785 4144 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:01:58.0815 4144 vga - ok
20:01:58.0838 4144 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:01:58.0859 4144 VgaSave - ok
20:01:58.0883 4144 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:01:58.0891 4144 viaagp - ok
20:01:58.0903 4144 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:01:58.0921 4144 ViaC7 - ok
20:01:58.0935 4144 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:01:58.0944 4144 viaide - ok
20:01:58.0969 4144 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:01:58.0977 4144 volmgr - ok
20:01:59.0006 4144 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:01:59.0017 4144 volmgrx - ok
20:01:59.0046 4144 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:01:59.0056 4144 volsnap - ok
20:01:59.0088 4144 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:01:59.0097 4144 vsmraid - ok
20:01:59.0160 4144 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
20:01:59.0211 4144 VSS - ok
20:01:59.0261 4144 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
20:01:59.0276 4144 W32Time - ok
20:01:59.0332 4144 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:01:59.0373 4144 WacomPen - ok
20:01:59.0394 4144 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:01:59.0407 4144 Wanarp - ok
20:01:59.0409 4144 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:01:59.0423 4144 Wanarpv6 - ok
20:01:59.0451 4144 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
20:01:59.0468 4144 wcncsvc - ok
20:01:59.0514 4144 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
20:01:59.0547 4144 WcsPlugInService - ok
20:01:59.0588 4144 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:01:59.0596 4144 Wd - ok
20:01:59.0634 4144 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
20:01:59.0648 4144 Wdf01000 - ok
20:01:59.0664 4144 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:01:59.0703 4144 WdiServiceHost - ok
20:01:59.0705 4144 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:01:59.0723 4144 WdiSystemHost - ok
20:01:59.0774 4144 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
20:01:59.0787 4144 WebClient - ok
20:01:59.0826 4144 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
20:01:59.0866 4144 Wecsvc - ok
20:01:59.0897 4144 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
20:01:59.0912 4144 wercplsupport - ok
20:01:59.0939 4144 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
20:01:59.0955 4144 WerSvc - ok
20:02:00.0023 4144 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
20:02:00.0034 4144 WinDefend - ok
20:02:00.0041 4144 WinHttpAutoProxySvc - ok
20:02:00.0077 4144 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
20:02:00.0092 4144 Winmgmt - ok
20:02:00.0146 4144 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
20:02:00.0178 4144 WinRM - ok
20:02:00.0247 4144 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
20:02:00.0276 4144 Wlansvc - ok
20:02:00.0407 4144 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:02:00.0456 4144 wlidsvc - ok
20:02:00.0583 4144 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
20:02:00.0595 4144 WmiAcpi - ok
20:02:00.0633 4144 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
20:02:00.0664 4144 wmiApSrv - ok
20:02:00.0754 4144 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:02:00.0820 4144 WMPNetworkSvc - ok
20:02:00.0845 4144 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
20:02:00.0891 4144 WPCSvc - ok
20:02:00.0930 4144 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
20:02:00.0951 4144 WPDBusEnum - ok
20:02:01.0051 4144 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:02:01.0071 4144 WPFFontCache_v0400 - ok
20:02:01.0130 4144 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:02:01.0146 4144 ws2ifsl - ok
20:02:01.0181 4144 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
20:02:01.0214 4144 wscsvc - ok
20:02:01.0217 4144 WSearch - ok
20:02:01.0307 4144 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
20:02:01.0356 4144 wuauserv - ok
20:02:01.0457 4144 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:02:01.0474 4144 WUDFRd - ok
20:02:01.0497 4144 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
20:02:01.0537 4144 wudfsvc - ok
20:02:01.0540 4144 XDva390 - ok
20:02:01.0543 4144 XDva391 - ok
20:02:01.0568 4144 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:02:01.0920 4144 \Device\Harddisk0\DR0 - ok
20:02:01.0922 4144 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
20:02:02.0279 4144 \Device\Harddisk1\DR1 - ok
20:02:02.0302 4144 Boot (0x1200) (984fe8ee81be62564a81aa65f63d599e) \Device\Harddisk0\DR0\Partition0
20:02:02.0303 4144 \Device\Harddisk0\DR0\Partition0 - ok
20:02:02.0305 4144 Boot (0x1200) (b96ad8f440d7d0a41c7819ed99d8f22e) \Device\Harddisk1\DR1\Partition0
20:02:02.0306 4144 \Device\Harddisk1\DR1\Partition0 - ok
20:02:02.0307 4144 Boot (0x1200) (2dd793aee5a2d21cd481115492edb0fb) \Device\Harddisk1\DR1\Partition1
20:02:02.0309 4144 \Device\Harddisk1\DR1\Partition1 - ok
20:02:02.0310 4144 Boot (0x1200) (ded30c6b24c51a92dff850dab9df0dc8) \Device\Harddisk1\DR1\Partition2
20:02:02.0311 4144 \Device\Harddisk1\DR1\Partition2 - ok
20:02:02.0311 4144 ============================================================
20:02:02.0311 4144 Scan finished
20:02:02.0311 4144 ============================================================
20:02:02.0316 5952 Detected object count: 1
20:02:02.0316 5952 Actual detected object count: 1
20:02:17.0212 5952 NetBalancerService ( UnsignedFile.Multi.Generic ) - skipped by user
20:02:17.0213 5952 NetBalancerService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:02:20.0596 4316 Deinitialize success

Edited by SoullessZ, 12 August 2012 - 08:04 AM.

[godawgs]

The system restore did not replace the following files:
C:\Program Files\NetLimiter 2 Monitor\nlsvc.exe---This is one of or part of the bandwidth monitor
C:\Windows\System32\WinService.exe----This is part of your Netgear wireless router.

If it didn't replace the files, then the services are probably still gone too...so we will check.

Questions
1. Are you having the download problem in all browsers or just certain ones?
2. When did the problem start? Was it around the time you ran TDSSKiller the first time on 7/24/2012?

The following scan will check for the services. If you check the boxes in the instructions correctly, it will also produce a Extras.txt file.

Please DO NOT put the logs behind Spoiler tags. Just Copy and Paste them into the post.


Step-1

OTL Custom Scan

1. Please copy the text in the code box below and paste it in the box in OTL. To do that:

• Highlight everything inside the code box, right click the mouse and click Copy.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBalancer Windows Service 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nlsvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SCM_Service

2. Re-open OTL on the desktop. To do that:

• Double click on the OTL icon to run it. Make sure all other windows are closed.
• You will see a console like the one below:
  
  
  
• Check the box beside Scan All Users at the top of the console
• Make sure the Output box at the top is set to Standard Output.
  
  This next instruction will produce the Extras.txt file
  
• In the Extra Registry section, click the button beside Use Safelist<---VERY IMPORTANT
  
• Check the boxes beside LOP Check and Purity Check.
• Place the mouse pointer inside the box, right click and click Paste. This will put the above script inside OTL
• Click the button. Do not change any settings unless otherwise told to do so.
• Let the scan run uninterrupted.
• When the scan completes, it will open OTL.Txt on the desktop. Extras.txt will be minimized on the Task Bar. These files are also saved in the same location as OTL (it should be in your Downloads folder).
• Please copy the contents of this file and paste it into your reply. To do that:
• On the OTL.txt file Menu Bar click Edit then click Select All. This will highlight the contents of the file. Then click Copy.
• Right click inside the forum post window then click Paste.This will paste the contents of the OTL.txt file in the in the post window.
• Close the OTL.txt file.
• Click on the Extras.txt file on the Task Bar and it will open.
• Highlight all text inside the file, right click and click Copy.
• Inside the next forum post, right click and click Paste. This will put the contents it the post.

Step-2.

Things For Your Next Post:
1. Answer to questions 1 and 2 above.
2. The new OTL.txt log
3. The Extras.txt log

Please remember, just copy and paste your logs into the post.

[SoullessZ]

1. Yes it over DL's when opening browsers or streams and it lags myself unable to load streams or videos
2. I really don't know...
3... OTL

Spoiler

OTL logfile created on: 8/12/2012 11:04:10 PM - Run 3
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Neox\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.55 Gb Available Physical Memory | 47.71% Memory free
6.73 Gb Paging File | 4.57 Gb Available in Paging File | 67.89% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 79.29 Gb Free Space | 34.05% Space Free | Partition Type: NTFS
Drive D: | 124.45 Gb Total Space | 56.18 Gb Free Space | 45.14% Space Free | Partition Type: NTFS
Drive E: | 19.53 Gb Total Space | 3.99 Gb Free Space | 20.44% Space Free | Partition Type: NTFS
Drive F: | 5.07 Gb Total Space | 0.91 Gb Free Space | 17.90% Space Free | Partition Type: NTFS

Computer Name: NEOX-PC | User Name: Neox | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/08/07 15:01:15 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Neox\Downloads\OTL.exe
PRC - [2012/07/11 04:07:56 | 000,515,584 | ---- | M] (LOL Replay) -- C:\Program Files\LOLReplay\LOLRecorder.exe
PRC - [2012/07/07 12:22:42 | 003,905,408 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
PRC - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/07/03 13:46:44 | 000,462,920 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/05/26 06:32:44 | 004,327,744 | ---- | M] (Akamai Technologies, Inc) -- C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe
PRC - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/03/26 17:08:12 | 000,931,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2011/11/10 04:11:50 | 000,417,792 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011/04/17 09:05:26 | 001,462,272 | ---- | M] ( ) -- C:\Program Files\Codebox\BitMeter\BitMeter2.exe
PRC - [2009/08/08 02:38:18 | 000,109,056 | ---- | M] (none) -- C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe
PRC - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/01/26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
PRC - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
PRC - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


========== Modules (No Company Name) ==========

MOD - [2012/08/12 22:50:30 | 000,065,024 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
MOD - [2012/08/12 22:50:30 | 000,052,736 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
MOD - [2012/08/07 07:43:40 | 000,442,392 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\ppgooglenaclpluginchrome.dll
MOD - [2012/08/07 07:43:39 | 012,235,800 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\PepperFlash\pepflashplayer.dll
MOD - [2012/08/07 07:43:37 | 003,997,720 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\pdf.dll
MOD - [2012/08/07 07:42:21 | 000,526,872 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\libglesv2.dll
MOD - [2012/08/07 07:42:20 | 000,104,984 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\libegl.dll
MOD - [2012/08/07 07:42:09 | 000,144,424 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avutil-51.dll
MOD - [2012/08/07 07:42:08 | 000,266,792 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avformat-54.dll
MOD - [2012/08/07 07:42:07 | 002,480,680 | ---- | M] () -- C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\avcodec-54.dll
MOD - [2012/07/11 04:07:48 | 001,036,288 | ---- | M] () -- C:\Program Files\LOLReplay\LOLUtils.dll
MOD - [2012/06/14 22:19:38 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f2691cfa7671cdc58179e56ba9227591\System.Windows.Forms.ni.dll
MOD - [2012/06/14 22:19:32 | 001,592,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\18f9789aa214c657113e676b3a9015aa\System.Drawing.ni.dll
MOD - [2012/06/14 22:19:24 | 014,329,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7343fbab1ba137db2f8b284047ef3f3c\PresentationFramework.ni.dll
MOD - [2012/06/14 22:17:30 | 012,219,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b6293b0c23321c255c2530aea8e32bb\PresentationCore.ni.dll
MOD - [2012/05/10 17:14:11 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bd76aaaa03ddc15d1840207b5a480644\System.Configuration.ni.dll
MOD - [2012/05/10 15:30:30 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2630342a066a7cb9056d9eb6157687a\System.Xml.ni.dll
MOD - [2012/05/10 15:29:42 | 002,295,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\0f2b877ed16daa577f95be735a63d19c\System.Core.ni.dll
MOD - [2012/05/10 15:29:37 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c8c3ab08933fef9fb6657da871395c46\PresentationFramework.Aero.ni.dll
MOD - [2012/05/10 15:29:10 | 003,325,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\54426ee1881b42af5b090e223f43823c\WindowsBase.ni.dll
MOD - [2012/05/10 15:29:08 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\28d633338fc8d29f8af31935ef7d001b\System.ni.dll
MOD - [2012/05/10 15:28:54 | 011,492,352 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
MOD - [2012/01/10 00:44:07 | 000,117,760 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
MOD - [2012/01/10 00:44:07 | 000,052,224 | ---- | M] () -- C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
MOD - [2011/11/10 03:11:06 | 000,037,376 | ---- | M] () -- C:\Windows\System32\atitmpxx.dll
MOD - [2011/07/14 17:01:59 | 000,958,976 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avformat-53.dll
MOD - [2011/07/14 17:01:59 | 000,132,096 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avutil-51.dll
MOD - [2011/07/14 17:01:58 | 007,006,208 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\avcodec-53.dll
MOD - [2011/07/14 17:01:58 | 000,239,616 | ---- | M] () -- C:\Program Files\SplitMediaLabs\XSplit\swscale-0.dll
MOD - [2008/06/13 15:26:54 | 002,498,560 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
MOD - [2007/09/14 01:35:08 | 001,261,568 | ---- | M] () -- C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
MOD - [2007/09/02 22:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007/09/02 22:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/08/05 14:38:42 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/08/04 19:08:23 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012/08/03 15:53:26 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/07/03 13:19:28 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/04/22 15:12:21 | 003,417,376 | ---- | M] () [Disabled | Stopped] -- C:/Program Files/Common Files/Akamai/netsession_win_6c825ce.dll -- (Akamai)
SRV - [2012/04/04 06:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/11/10 04:11:20 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/08/12 00:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
SRV - [2011/08/07 22:40:00 | 003,804,120 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2009/07/20 20:51:52 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/01/21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva391.sys -- (XDva391)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\XDva390.sys -- (XDva390)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nbdrv.sys -- (Nbdrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - [2012/07/03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/11/10 04:44:12 | 008,913,920 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/11/10 03:12:20 | 000,263,680 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011/10/17 18:40:34 | 000,082,960 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdLH3.sys -- (AtiHDAudioService)
DRV - [2011/07/22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2010/03/25 09:49:06 | 000,082,360 | ---- | M] (Locktime Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\nltdi.sys -- (nltdi)
DRV - [2007/12/28 14:58:30 | 000,289,280 | ---- | M] (NETGEAR Inc. ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wg111v3.sys -- (RTL8187B)
DRV - [2007/12/26 19:46:00 | 000,288,768 | ---- | M] (NETGEAR Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wg111v2.sys -- (RTL8187)
DRV - [2007/04/23 10:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2007/01/19 12:20:54 | 000,021,728 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SCMNdisP.sys -- (SCMNdisP)
DRV - [2006/11/02 08:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?r...GB&dcc=GB&opt=0
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 6E 5A 97 A2 C5 E5 CC 01 [binary data]
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...000000fb5cb892d
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.c...sa&d=2012-04-25 12:54:12&v=11.0.0.9&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "http://search.babylo...00000fb5cb892d"
FF - prefs.js..keyword.URL: "http://search.babylo...00fb5cb892d&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@gametap.com/npdd,version=1.0: C:\Program Files\Downloader\npdd.dll (Metaboli)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Neox\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/05 14:38:43 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/07/28 19:26:25 | 000,000,000 | ---D | M]

[2012/04/21 21:34:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Extensions
[2012/08/08 16:04:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions
[2012/04/21 21:36:23 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/08/05 14:45:38 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Neox\AppData\Roaming\Mozilla\Firefox\Profiles\93hkvla5.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/25 20:00:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/08/05 14:41:13 | 000,276,167 | ---- | M] () (No name found) -- C:\USERS\NEOX\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\93HKVLA5.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
[2012/08/05 14:38:43 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/09 15:20:02 | 000,003,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/08/08 16:03:36 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/03/13 05:38:32 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/03/13 05:38:32 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\Application\21.0.1180.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: AVG SiteSafety plugin (Enabled) = C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.1.0\\npsitesafety.dll
CHR - plugin: Java™ Platform SE 6 U33 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 6.0.330.3 (Enabled) = C:\Windows\system32\npdeployJava1.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: QUAKE LIVE (Enabled) = C:\ProgramData\id Software\QuakeLive\npquakezero.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Neox\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Neox\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Kagamine Rin & Len Theme = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajbmlfcphelnfmnfmknjhhnajbihaaa\2_0\
CHR - Extension: AdBlock = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.41_0\
CHR - Extension: Speed Dial 2 = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpfpebmajhhopeonhlcgidhclcccjcik\1.6.0.9_0\
CHR - Extension: Gmail = C:\Users\Neox\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found.
O4 - HKLM..\Run: [HF_G_Jul] "C:\Program Files\AVG Secure Search\HF_G_Jul.exe" /DoAction File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [Akamai NetSession Interface] C:\Users\Neox\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - HKU\S-1-5-21-4133368832-3342889942-1754129440-1000..\Run: [WLAN Optimizer] C:\Users\Neox\Desktop\All Folders\Virus scanners\wopt021\WLAN Optimizer.exe (none)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.syste...yri_4.5.1.0.cab (SysInfo Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15E874B8-9A27-4D92-8424-88E7DA202274}: NameServer = 192.168.0.1,192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Neox\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/12/19 23:53:56 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2011/11/17 17:30:14 | 000,000,044 | ---- | M] () - D:\AutoRun.inf -- [ NTFS ]
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell - "" = AutoRun
O33 - MountPoints2\{ff6c0242-288d-11e1-ba10-002185028e00}\Shell\AutoRun\command - "" = M:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/08/08 16:04:58 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\groove-dl
[2012/08/08 16:03:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/08/08 15:57:59 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\ProgSense
[2012/08/08 15:57:39 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\OpenCandy
[2012/08/08 15:56:56 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Orbit
[2012/08/08 12:27:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grinding Gear Games
[2012/08/08 12:27:18 | 000,000,000 | ---D | C] -- C:\Program Files\Grinding Gear Games
[2012/08/07 15:44:32 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\JGsoft
[2012/08/07 15:39:56 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Notepad++
[2012/08/07 15:39:56 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2012/08/07 15:14:48 | 000,000,000 | ---D | C] -- C:\Ubisoft
[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
[2012/08/01 11:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012/08/01 11:33:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Battle.net
[2012/08/01 11:19:54 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Aeria Games
[2012/08/01 11:19:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Aeria Games
[2012/07/31 15:25:55 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin
[2012/07/31 15:23:41 | 000,000,000 | ---D | C] -- C:\AeriaGames
[2012/07/30 18:06:11 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\APN
[2012/07/30 18:03:50 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/07/29 22:00:13 | 000,000,000 | ---D | C] -- C:\Users\Neox\Desktop\Music
[2012/07/27 16:00:36 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/07/27 16:00:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012
[2012/07/27 15:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012/07/27 15:47:16 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! US
[2012/07/27 12:33:13 | 000,000,000 | ---D | C] -- C:\Program Files\beanfun!
[2012/07/27 12:12:00 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/07/27 01:44:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/07/27 01:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/07/27 01:42:40 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Locktime
[2012/07/27 01:42:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter 2 Monitor
[2012/07/27 01:42:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Locktime
[2012/07/27 01:42:05 | 000,000,000 | ---D | C] -- C:\Program Files\NetLimiter 2 Monitor
[2012/07/25 16:09:10 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\Downloaded Installations
[2012/07/24 14:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/07/24 14:10:10 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/07/24 14:10:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/07/21 22:46:29 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\CrystalIdea Software
[2012/07/21 22:45:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/07/21 22:45:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/21 14:21:42 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Local\Xor-Net
[2012/07/20 13:45:27 | 000,000,000 | ---D | C] -- C:\Users\Neox\AppData\Roaming\WhatPulse
[2012/07/20 13:45:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhatPulse
[2012/07/19 17:54:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Xunlei
[2012/07/19 17:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Thunder Network
[2012/07/19 17:52:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Thunder Network
[2012/07/19 17:52:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Thunder Network
[2012/07/19 17:52:09 | 000,000,000 | ---D | C] -- C:\Program Files\Thunder Network
[2012/07/14 21:37:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\beanfun! UK
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/08/12 23:06:02 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000UA.job
[2012/08/12 22:53:15 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/08/12 22:48:52 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/08/12 22:48:52 | 000,003,712 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/08/12 22:48:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/08/12 22:48:40 | 3488,931,840 | -HS- | M] () -- C:\hiberfil.sys
[2012/08/12 13:06:01 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4133368832-3342889942-1754129440-1000Core.job
[2012/08/12 01:28:30 | 000,657,354 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/08/12 01:28:30 | 000,125,636 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/08/10 23:34:15 | 000,000,512 | ---- | M] () -- C:\Users\Neox\Desktop\MBR.dat
[2012/08/09 21:51:50 | 000,000,632 | ---- | M] () -- C:\Users\Neox\Desktop\AvA.lnk
[2012/08/08 16:05:02 | 000,000,880 | ---- | M] () -- C:\Users\Neox\Desktop\groove-dl.lnk
[2012/08/08 16:03:55 | 000,000,304 | ---- | M] () -- C:\user.js
[2012/08/08 12:27:19 | 000,002,010 | ---- | M] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012/08/07 15:39:37 | 000,000,395 | ---- | M] () -- C:\Users\Neox\Desktop\Downloads.lnk
[2012/08/04 01:32:24 | 244,718,947 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:21 | 000,237,568 | ---- | M] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | M] () -- C:\Users\Neox\Desktop\StarCraft II.lnk
[2012/08/03 15:53:25 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/08/03 15:53:25 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/07/27 01:42:14 | 000,001,817 | ---- | M] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | M] () -- C:\Users\Neox\Desktop\lol.launcher.exe - Shortcut.lnk
[2012/07/20 00:52:58 | 001,676,288 | ---- | M] () -- C:\ava_us_steam_launcher_installer_20120719.exe
[2012/07/19 21:29:13 | 000,140,480 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:29:02 | 000,298,016 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:23:59 | 000,138,056 | ---- | M] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:49 | 000,189,248 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 20:42:50 | 003,130,440 | ---- | M] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | M] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | M] () -- C:\Windows\wininit.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/10 23:34:15 | 000,000,512 | ---- | C] () -- C:\Users\Neox\Desktop\MBR.dat
[2012/08/09 21:51:50 | 000,000,632 | ---- | C] () -- C:\Users\Neox\Desktop\AvA.lnk
[2012/08/08 16:05:02 | 000,000,888 | ---- | C] () -- C:\Users\Neox\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\groove-dl.lnk
[2012/08/08 16:05:02 | 000,000,880 | ---- | C] () -- C:\Users\Neox\Desktop\groove-dl.lnk
[2012/08/08 16:03:52 | 000,000,304 | ---- | C] () -- C:\user.js
[2012/08/08 12:27:19 | 000,002,010 | ---- | C] () -- C:\Users\Public\Desktop\Path of Exile.lnk
[2012/08/07 15:39:37 | 000,000,395 | ---- | C] () -- C:\Users\Neox\Desktop\Downloads.lnk
[2012/08/04 01:32:24 | 244,718,947 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/08/04 01:11:41 | 000,237,568 | ---- | C] () -- C:\Users\Neox\Desktop\RiotComic Competition.jpg
[2012/08/03 23:06:05 | 000,000,750 | ---- | C] () -- C:\Users\Neox\Desktop\StarCraft II.lnk
[2012/07/27 01:42:14 | 000,001,817 | ---- | C] () -- C:\Users\Public\Desktop\NetLimiter 2 Monitor.lnk
[2012/07/24 14:11:12 | 000,001,703 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/07/20 20:20:58 | 000,000,845 | ---- | C] () -- C:\Users\Neox\Desktop\lol.launcher.exe - Shortcut.lnk
[2012/07/20 00:52:58 | 001,676,288 | ---- | C] () -- C:\ava_us_steam_launcher_installer_20120719.exe
[2012/07/19 21:29:01 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2012/07/19 21:24:00 | 000,140,480 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012/07/19 21:23:59 | 000,138,056 | ---- | C] () -- C:\Users\Neox\AppData\Roaming\PnkBstrK.sys
[2012/07/19 21:23:44 | 000,298,016 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012/07/19 21:23:44 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2012/07/19 21:23:41 | 003,130,440 | ---- | C] () -- C:\Windows\System32\pbsvc_blr.exe
[2012/07/19 21:23:41 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012/07/19 17:52:59 | 000,000,020 | ---- | C] () -- C:\Windows\System32\pub_store.dat
[2012/07/19 17:06:59 | 000,000,062 | ---- | C] () -- C:\Windows\wininit.ini
[2012/03/04 22:41:48 | 000,000,037 | -HS- | C] () -- C:\Users\Neox\AppData\Local\1754111884ee9ab5277ca00.95260103
[2011/12/26 05:03:31 | 000,006,656 | ---- | C] () -- C:\Users\Neox\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/23 08:14:15 | 000,000,032 | R--- | C] () -- C:\ProgramData\hash.dat
[2011/12/21 04:30:48 | 000,104,496 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/12/18 21:18:28 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/12/18 21:18:28 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/12/18 00:48:22 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2011/12/17 13:15:32 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011/12/17 10:07:19 | 000,001,356 | ---- | C] () -- C:\Users\Neox\AppData\Local\d3d9caps.dat
[2011/11/10 07:39:44 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OpenVideo.dll
[2011/11/10 07:39:32 | 000,054,784 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011/11/10 03:11:06 | 000,037,376 | ---- | C] () -- C:\Windows\System32\atitmpxx.dll
[2011/10/21 20:30:14 | 000,243,168 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011/09/19 08:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll
[2011/09/19 08:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll
[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat

========== Custom Scans ==========

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBalancer Windows Service >

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\nlsvc >

< HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SCM_Service >

========== Files - Unicode (All) ==========
[2012/07/19 17:53:25 | 000,000,000 | ---D | C](C:\ProgramData\Microsoft\Windows\Start Menu\Programs\????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\迅雷软件

< End of report >

Extras...

Spoiler

OTL Extras logfile created on: 8/12/2012 11:15:14 PM - Run 3
OTL by OldTimer - Version 3.2.56.0 Folder = C:\Users\Neox\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19272)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.25 Gb Total Physical Memory | 1.38 Gb Available Physical Memory | 42.54% Memory free
6.73 Gb Paging File | 4.42 Gb Available in Paging File | 65.73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 232.88 Gb Total Space | 79.29 Gb Free Space | 34.05% Space Free | Partition Type: NTFS
Drive D: | 124.45 Gb Total Space | 56.18 Gb Free Space | 45.14% Space Free | Partition Type: NTFS
Drive E: | 19.53 Gb Total Space | 3.99 Gb Free Space | 20.44% Space Free | Partition Type: NTFS
Drive F: | 5.07 Gb Total Space | 0.91 Gb Free Space | 17.90% Space Free | Partition Type: NTFS

Computer Name: NEOX-PC | User Name: Neox | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{08CD0A73-F3B5-4DE7-ABAB-ACABAEB1D292}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{2D75433C-6A22-4A81-B81D-28AF7A5A3CAE}" = rport=137 | protocol=17 | dir=out | app=system |
"{48132FED-8B68-4BAE-8580-E047ED88FB07}" = lport=445 | protocol=6 | dir=in | app=system |
"{4D346723-8057-4D63-9E98-C34384744054}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4FEC67F3-79FD-4C12-B0D8-86C11C400F54}" = lport=138 | protocol=17 | dir=in | app=system |
"{683E3888-A0EE-4F7D-9DDB-20B22B9DB264}" = lport=137 | protocol=17 | dir=in | app=system |
"{8D9E5C28-6E10-4051-A0D1-F23046DF0B22}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{9ACFA7EA-A32B-48DD-B474-C781BFAF6134}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{A8B04432-EA5C-495D-A7D3-C4F1DE3C3EAA}" = rport=138 | protocol=17 | dir=out | app=system |
"{C9AC067E-C989-402F-A762-6EADEED92E0F}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{CC14EA1F-CA30-4C8A-8227-F23C663DA489}" = rport=139 | protocol=6 | dir=out | app=system |
"{DD7B44F8-6609-4481-8FF4-11B40FDC1CF9}" = rport=445 | protocol=6 | dir=out | app=system |
"{E44FABE1-D8FC-469C-A979-76F9CECDEB03}" = lport=139 | protocol=6 | dir=in | app=system |
"{E4C546B9-6542-4BEA-BBDE-06E3A59E09F4}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0477BE99-9E08-4998-8CC6-76E19C398409}" = protocol=17 | dir=in | app=d:\program files\starcraft ii\starcraft ii public test.exe |
"{059F1C2A-9DE6-4050-A2A9-066DDCF60AAF}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{0A2C8DE4-564F-4D21-9745-B07AD349DED4}" = protocol=17 | dir=in | app=d:\reactor\ijjioptimizer.exe |
"{0BEA7716-8E65-426D-9CA9-9D5486141073}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{0D33325B-F38F-46FA-A027-C9658C8DD40B}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{0D8799C8-BC57-4C79-9047-A1D020EFE436}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{129BCDB6-1CAD-4D6C-BDB3-E9B7953EB479}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\common\ava\reactor.exe |
"{14EF093F-F025-4A86-8534-2B5E14473E1D}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{161283CD-100E-4F44-A4D7-B81AB732B234}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe |
"{211AB2A7-2B0B-46FF-BF4D-875F0F6EF594}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{2EACCA60-CBB8-4AEB-8912-47A2566A3550}" = protocol=1 | dir=out | [email protected],-28544 |
"{3994B3B8-D555-4DB1-8CC0-091C598F7B2F}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{4271F8F1-2F80-4E9F-B60C-1529372648FC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{4692B743-B2EB-4D57-A1DC-B5ECC0BE92E7}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{4C14E71F-E871-4957-A0AA-D85D426268F5}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe |
"{54813D77-3AC6-45AA-9660-8F8E810CB219}" = protocol=6 | dir=in | app=d:\reactor\ijjioptimizer.exe |
"{5A4AFB71-667E-4F36-A180-197DE320EBC1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe |
"{5C5BC588-50F3-4AF8-AB3E-774B0AB8694C}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{5C5CAABF-E5B7-4207-98F3-81AA6631FC66}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{617942FA-D52F-4E6E-95B5-0CD6AD310147}" = protocol=1 | dir=in | [email protected],-28543 |
"{63BB54FE-F0A5-4699-BEDF-B6DF562925F4}" = protocol=17 | dir=in | app=d:\program files\steam\steam.exe |
"{64F1A9AD-BA12-47AC-9004-49327A2C19E6}" = protocol=58 | dir=in | [email protected],-28545 |
"{6DBE6EFA-B4B1-4EE7-9DE8-A278F390F85E}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe |
"{701B7B92-89A4-4489-85A6-86335497437C}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\call of duty modern warfare 3\iw5mp.exe |
"{7C26120B-0775-4153-BF1C-55A49B748273}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1199\agent.exe |
"{88C6789A-E380-4608-8FE4-4F99027B14A5}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{8FF9D8FE-42B4-4C27-9E2D-AA7292EC56C1}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{9261677B-D4A4-4212-9C0D-2E2D3BE15289}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{93E74C26-4C89-4472-B901-04EA2E642F3E}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{97B38919-7F75-4FFF-8E0A-D3855A7EBF46}" = protocol=58 | dir=out | [email protected],-28546 |
"{9E1197E9-3B79-47A0-8490-78E5AE46A74B}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{A47CF152-76CA-4A4F-BF8A-A8E9A9BB13BD}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{AA5B57B4-BAA9-4964-9356-84710B619955}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\common\ava\reactor.exe |
"{AAFC1432-4D86-4086-BFEE-5CD0F3807E43}" = protocol=6 | dir=in | app=c:\users\neox\appdata\local\akamai\netsession_win.exe |
"{AE299A8A-CB37-4041-83EA-A7A67F32C201}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\call of duty modern warfare 3\iw5sp.exe |
"{B7E78B69-0E61-4212-8CB4-83C4F70D5639}" = protocol=6 | dir=in | app=d:\program files\steam\steam.exe |
"{C1F931C2-A6DE-49FC-9B55-26794D96587A}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{C22C9FC1-4E25-4660-92CC-0257E1662189}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1199\agent.exe |
"{C2B7B501-7E48-4F4D-BAC5-05C6020CBCB0}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{C372D28B-C347-4B55-B161-B49A8DA0C419}" = protocol=6 | dir=in | app=d:\reactor\ijjioptimizer.exe |
"{C393CFD1-901B-4CE9-BCDD-2D006DC31680}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{C623E7A7-E235-4AD4-B98E-FD8EAA6D8E0D}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\borderlands\binaries\borderlands.exe |
"{CBC8A322-2E67-4F94-8E00-5F7E26293586}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe |
"{CD78883F-C246-4BF8-99C0-35AF201A81B9}" = protocol=17 | dir=in | app=c:\users\neox\appdata\local\akamai\netsession_win.exe |
"{CDC64D65-D2A2-4A7E-838F-E067DFBFADD1}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{D35B20D6-AD72-4D29-937A-F0A669C8E9FF}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\renegade ops\renegadeops.exe |
"{D6A3B633-BB14-4C8E-864A-B8208AFE79A0}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\common\dota 2 beta\dota.exe |
"{DA5A4275-A393-4D52-92F9-FF8F4D8952AE}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{DCC26848-C344-4228-BB69-2C94FC048E79}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{E73C97C0-7A90-4F33-901A-A6C9DAE1A6DF}" = protocol=17 | dir=in | app=d:\reactor\ijjioptimizer.exe |
"{E97BC09F-F843-4225-BDE0-CB9F4A68146E}" = protocol=6 | dir=in | app=d:\program files\starcraft ii\starcraft ii public test.exe |
"{F0F842E0-A273-4AE6-9C42-03265B926517}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F20C9A08-BA50-427C-950D-94C879C67451}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\renegade ops\renegadeops.exe |
"{FB499118-5040-4B8F-9479-1BECE1855AA0}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\stalker shadow of chernobyl\bin\xr_3da.exe |
"{FF2F5186-9D5D-4A74-9659-657584406F73}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"TCP Query User{05E8A8BA-F0DC-4909-992A-25E235D94A27}C:\program files\lolreplay\lolreplay.exe" = protocol=6 | dir=in | app=c:\program files\lolreplay\lolreplay.exe |
"TCP Query User{113E267E-37D7-46EE-97DA-C58745B119B2}C:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe" = protocol=6 | dir=in | app=c:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe |
"TCP Query User{427EC347-A496-4DE8-89C0-EA2A49957D3F}C:\users\neox\appdata\local\apps\2.0\e3gdeg1g.9h8\xa649byo.vvp\laun...app_59711684aa47878d_0001.001b_bcc4041724b93450\launcher.exe" = protocol=6 | dir=in | app=c:\users\neox\appdata\local\apps\2.0\e3gdeg1g.9h8\xa649byo.vvp\laun...app_59711684aa47878d_0001.001b_bcc4041724b93450\launcher.exe |
"TCP Query User{4504210E-5AF6-4896-8FAB-F95BEDCE79A4}D:\program files\steam\steamapps\common\ava\binaries\ava.exe" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\common\ava\binaries\ava.exe |
"TCP Query User{5670C20B-6482-4A09-842E-0EAC1F2FC1DF}C:\program files\orbitdownloader\orbitnet.exe" = protocol=6 | dir=in | app=c:\program files\orbitdownloader\orbitnet.exe |
"TCP Query User{6A2936DB-F596-4BD9-89CB-B216C5C06228}D:\program files\starcraft ii\versions\base19679\sc2.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\versions\base19679\sc2.exe |
"TCP Query User{6AC11988-25B4-4968-844B-C88A4A83AC01}D:\program files\starcraft ii\versions\base21029\sc2.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\versions\base21029\sc2.exe |
"TCP Query User{6BFBA600-430B-4416-B7D5-9B4F894C87AF}C:\users\neox\desktop\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = protocol=6 | dir=in | app=c:\users\neox\desktop\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe |
"TCP Query User{749F2381-EF35-4151-886C-B5A5134ADE8E}D:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\support\blizzarddownloader.exe |
"TCP Query User{79617510-6A5C-4AF8-831C-88D44360DCF5}D:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=d:\program files\skype\phone\skype.exe |
"TCP Query User{8A9B72C6-4209-48DA-9CEC-DA3BDEAF9F0B}C:\program files\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files\mirc\mirc.exe |
"TCP Query User{8F6E8A75-AFC3-4020-84C3-C229C8128071}C:\users\neox\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\neox\appdata\local\akamai\netsession_win.exe |
"TCP Query User{8FC65243-D683-4810-B658-FF3E0CFE87AB}D:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe |
"TCP Query User{98339230-F2B4-457E-A79D-2DCCCA463DA9}C:\program files\steam\steamapps\krazeh884\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\krazeh884\team fortress 2\hl2.exe |
"TCP Query User{AE078A11-90D2-4985-A5D4-07C34161F894}D:\program files\starcraft ii\versions\base22612\sc2.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\versions\base22612\sc2.exe |
"TCP Query User{C1006A1B-9D07-45CF-8B57-C31EC7BC9A78}D:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\support\blizzarddownloader.exe |
"TCP Query User{C526D674-EAF7-4964-B526-8DB0CC64E273}D:\program files\starcraft ii\versions\base21029\sc2.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\versions\base21029\sc2.exe |
"TCP Query User{CBCD124B-38AD-49F2-9A82-14230B9BE960}D:\program files\starcraft ii\starcraft ii.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\starcraft ii.exe |
"TCP Query User{D0999796-5381-4928-8D4C-9EBD6B7B2227}C:\program files\lolreplay\lolreplay.exe" = protocol=6 | dir=in | app=c:\program files\lolreplay\lolreplay.exe |
"TCP Query User{E0D56438-E542-4F21-9430-AC7CF04BEEE5}C:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe" = protocol=6 | dir=in | app=c:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe |
"TCP Query User{E8422018-50A2-4EC4-A7E7-235064CF605A}C:\users\neox\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\neox\appdata\roaming\spotify\spotify.exe |
"TCP Query User{FA63FF60-CDA7-498D-A2C5-C8C55127D907}D:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=d:\program files\skype\phone\skype.exe |
"TCP Query User{FD9BE435-8361-4F9B-AC1E-E35A86280BB5}D:\program files\starcraft ii\starcraft ii.exe" = protocol=6 | dir=in | app=d:\program files\starcraft ii\starcraft ii.exe |
"TCP Query User{FDD044FF-486F-450A-A503-C61908B12167}D:\reactor\reactor.exe" = protocol=6 | dir=in | app=d:\reactor\reactor.exe |
"UDP Query User{059C366B-737B-4D20-9657-EA1BA77BA849}D:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe |
"UDP Query User{08716FDB-3A36-402A-81FF-B6E37174A867}D:\program files\starcraft ii\starcraft ii.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\starcraft ii.exe |
"UDP Query User{184AD877-E7E3-4951-BA6D-137CA7AECD8E}C:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe" = protocol=17 | dir=in | app=c:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe |
"UDP Query User{37F51D5B-8DEA-4DE7-B95A-FF5C39C82AFA}C:\users\neox\desktop\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = protocol=17 | dir=in | app=c:\users\neox\desktop\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe |
"UDP Query User{4189C20E-30B6-463C-9A2C-A788A0307394}D:\program files\starcraft ii\versions\base22612\sc2.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\versions\base22612\sc2.exe |
"UDP Query User{4DA98FA8-23A7-4B19-8BA3-D630108CF72A}C:\users\neox\appdata\local\apps\2.0\e3gdeg1g.9h8\xa649byo.vvp\laun...app_59711684aa47878d_0001.001b_bcc4041724b93450\launcher.exe" = protocol=17 | dir=in | app=c:\users\neox\appdata\local\apps\2.0\e3gdeg1g.9h8\xa649byo.vvp\laun...app_59711684aa47878d_0001.001b_bcc4041724b93450\launcher.exe |
"UDP Query User{563420DC-D9E5-404F-98C2-5DDB4BEA8E52}D:\program files\starcraft ii\starcraft ii.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\starcraft ii.exe |
"UDP Query User{669A981F-2A4B-47D8-912C-E4A67EEB68DF}C:\program files\orbitdownloader\orbitnet.exe" = protocol=17 | dir=in | app=c:\program files\orbitdownloader\orbitnet.exe |
"UDP Query User{6D9CB599-DF70-447F-B926-94AA2DF3B844}D:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=d:\program files\skype\phone\skype.exe |
"UDP Query User{6EEFF979-7476-4F55-8E28-5ECC8696513F}D:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\support\blizzarddownloader.exe |
"UDP Query User{6FE72B09-11C1-4A9A-8FB5-6F586B7F812E}C:\program files\lolreplay\lolreplay.exe" = protocol=17 | dir=in | app=c:\program files\lolreplay\lolreplay.exe |
"UDP Query User{8DA31AC2-4E07-4877-BF17-1D4462779CED}C:\program files\steam\steamapps\krazeh884\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\krazeh884\team fortress 2\hl2.exe |
"UDP Query User{9B0570E4-D816-4E00-8811-7CE1047505F9}D:\program files\starcraft ii\versions\base21029\sc2.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\versions\base21029\sc2.exe |
"UDP Query User{9EAE5FB1-3482-40A5-BFE5-5F5DDC7EA943}D:\program files\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\support\blizzarddownloader.exe |
"UDP Query User{A0E934A1-3F54-46C9-A989-237C76EC1FF1}C:\users\neox\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\neox\appdata\local\akamai\netsession_win.exe |
"UDP Query User{B0090F98-5683-4162-A1DB-2CF46E7EA8BA}D:\program files\starcraft ii\versions\base19679\sc2.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\versions\base19679\sc2.exe |
"UDP Query User{B0D36E04-6906-4BCA-8F9B-904E1727E509}D:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=d:\program files\skype\phone\skype.exe |
"UDP Query User{C87C1D94-4315-4787-8CBD-523C613D2958}D:\program files\starcraft ii\versions\base21029\sc2.exe" = protocol=17 | dir=in | app=d:\program files\starcraft ii\versions\base21029\sc2.exe |
"UDP Query User{C90CF58D-4979-47E8-815A-65B514C58309}C:\program files\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files\mirc\mirc.exe |
"UDP Query User{DCABE67E-62DB-444B-9572-75F0380F0BA2}D:\program files\steam\steamapps\common\ava\binaries\ava.exe" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\common\ava\binaries\ava.exe |
"UDP Query User{DD798560-7C3B-4918-A31C-F758EF584C42}C:\program files\lolreplay\lolreplay.exe" = protocol=17 | dir=in | app=c:\program files\lolreplay\lolreplay.exe |
"UDP Query User{F52CD4FE-FCD6-4C67-BE5B-37BCD70AA3A6}D:\reactor\reactor.exe" = protocol=17 | dir=in | app=d:\reactor\reactor.exe |
"UDP Query User{F557B2E3-2240-4763-B4FC-5B702B9E67EC}C:\users\neox\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\neox\appdata\roaming\spotify\spotify.exe |
"UDP Query User{F9E4F1BD-4312-4A4D-B58D-1899ACBD5E7E}C:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe" = protocol=17 | dir=in | app=c:\program files\gretech\gomtvstreamer\gomtvstreamerlive.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05CAF469-9765-8FBF-10AD-FD621091824A}" = CCC Help English
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java™ 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}" = Catalyst Control Center - Branding
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{4102037D-E8E0-48E0-B203-E521D194FB71}" = NETGEAR WG111v2 wireless USB 2.0 adapter
"{43E39830-1826-415D-8BAE-86845787B54B}" = Nero Vision
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E1D0591-14F7-736E-143A-62DC3E552A1A}" = Catalyst Control Center InstallProxy
"{529125EF-E3AC-4B74-97E6-F688A7C0F1BF}" = Paint.NET v3.5.10
"{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}" = NETGEAR WG111v3 wireless USB 2.0 adapter
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{62AC81F6-BDD3-4110-9D36-3E9EAAB40999}" = Nero CoverDesigner
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6AD9F5F3-5BD0-4000-BD9C-B536CF86D988}" = iTunes
"{6F64A42C-6D93-6788-EB4F-07CC066DE194}" = Catalyst Control Center Graphics Previews Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76D1FBEB-FBBF-0D1E-BB0A-CAA0D19E2C7F}" = ccc-utility
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{82AF3E91-57E1-4754-84D0-40A46E2479AB}" = OpenOffice.org 3.3
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{83AA2913-C123-4146-85BD-AD8F93971D39}" = BabylonObjectInstaller
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D8B8115-40C1-A707-B7DA-599514076A81}" = Catalyst Control Center
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F1ADE4D-EFAC-4F5A-B346-23C2687FAF50}" = Apple Mobile Device Support
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C684A01-7F9C-40E7-AF94-BFE24BC89C97}" = XSplit
"{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A942958E-AF92-7901-861B-7F373A1B6ABA}" = AMD Catalyst Install Manager
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.3)
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BF6379E6-9936-46B0-B6AC-C56EE3987D2E}" = inSSIDer
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C6F39786-216E-480B-8369-0DBE21E5EDDA}" = Path of Exile
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D9DCF92E-72EB-412D-AC71-3B01276E5F8B}" = Nero ShowTime
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{FA66CFD7-0977-4C45-AACD-A8BB994B1A05}" = Quake Live Mozilla Plugin
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{Stalker Complete 2009 v1.4.4}}_is1" = Stalker Complete 2009
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Akamai" = Akamai NetSession Interface Service
"BandiMPEG1" = Bandisoft MPEG-1 Decoder
"BitMeter" = BitMeter
"CCleaner" = CCleaner
"Downloader" = Downloader
"ExpressBurn" = Express Burn Disc Burning Software
"ExpressZip" = Express Zip File Compression Software
"Fraps" = Fraps
"GOM Player" = GOM Player
"GomTVStreamer" = GOMTV Streamer
"ImgBurn" = ImgBurn
"InstallShield_{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}" = NETGEAR WG111v3 wireless USB 2.0 adapter
"LOLReplay" = LOLReplay
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.62.0.1300
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Security Client" = Microsoft Security Essentials
"mIRC" = mIRC
"Mozilla Firefox 14.0.1 (x86 en-US)" = Mozilla Firefox 14.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NetLimiter 2 Monitor" = NetLimiter 2 Monitor (remove only)
"OpenAL" = OpenAL
"PunkBusterSvc" = PunkBuster Services
"RocketDock_is1" = RocketDock 1.3.5
"StarCraft II" = StarCraft II
"Steam App 102700" = Alliance of Valiant Arms
"Steam App 42680" = Call of Duty: Modern Warfare 3
"Steam App 570" = Dota 2
"Steam App 99300" = Renegade Ops
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.10 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4133368832-3342889942-1754129440-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 8/10/2012 8:22:55 PM | Computer Name = Neox-PC | Source = Application Hang | ID = 1002
Description = The program Client.exe version 0.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: 1384 Start Time: 01cd77576ad7a859 Termination Time: 12

Error - 8/11/2012 7:06:58 AM | Computer Name = Neox-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/11/2012 8:31:07 AM | Computer Name = Neox-PC | Source = Application Error | ID = 1000
Description = Faulting application Client.exe, version 0.0.0.0, time stamp 0x50243fd0,
faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception
code 0xe0000001, fault offset 0x0003fc56, process id 0x1540, application start time
0x01cd77b645eb6221.

Error - 8/11/2012 1:27:36 PM | Computer Name = Neox-PC | Source = Application Error | ID = 1000
Description = Faulting application Client.exe, version 0.0.0.0, time stamp 0x50243fd0,
faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception
code 0xe0000001, fault offset 0x0003fc56, process id 0x1390, application start time
0x01cd77d3e36faa17.

Error - 8/11/2012 6:06:08 PM | Computer Name = Neox-PC | Source = Application Hang | ID = 1002
Description = The program Client.exe version 0.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: 1678 Start Time: 01cd77f9d1fba053 Termination Time: 200

Error - 8/12/2012 6:36:34 AM | Computer Name = Neox-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/12/2012 8:49:03 AM | Computer Name = Neox-PC | Source = Application Error | ID = 1000
Description = Faulting application Client.exe, version 0.0.0.0, time stamp 0x50243fd0,
faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception
code 0xe0000001, fault offset 0x0003fc56, process id 0x1390, application start time
0x01cd7880e539c12b.

Error - 8/12/2012 1:26:59 PM | Computer Name = Neox-PC | Source = Application Error | ID = 1000
Description = Faulting application Client.exe, version 0.0.0.0, time stamp 0x50243fd0,
faulting module Client.exe, version 0.0.0.0, time stamp 0x50243fd0, exception code
0xc0000005, fault offset 0x002ec696, process id 0x1760, application start time 0x01cd78a166c9b313.

Error - 8/12/2012 1:27:01 PM | Computer Name = Neox-PC | Source = Application Error | ID = 1000
Description = Faulting application Client.exe, version 0.0.0.0, time stamp 0x50243fd0,
faulting module Client.exe, version 0.0.0.0, time stamp 0x50243fd0, exception code
0xc0000005, fault offset 0x002b2cce, process id 0x1760, application start time 0x01cd78a166c9b313.

Error - 8/12/2012 5:50:27 PM | Computer Name = Neox-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 8/8/2012 7:57:35 AM | Computer Name = Neox-PC | Source = disk | ID = 262151
Description = The device, \Device\Harddisk0\DR0, has a bad block.

Error - 8/9/2012 4:41:50 PM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/9/2012 5:14:16 PM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/9/2012 6:11:07 PM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/10/2012 7:07:05 AM | Computer Name = Neox-PC | Source = disk | ID = 262151
Description = The device, \Device\Harddisk0\DR0, has a bad block.

Error - 8/10/2012 7:07:10 AM | Computer Name = Neox-PC | Source = disk | ID = 262151
Description = The device, \Device\Harddisk0\DR0, has a bad block.

Error - 8/10/2012 9:44:14 AM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/11/2012 7:07:17 AM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7022
Description =

Error - 8/11/2012 2:23:21 PM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 8/11/2012 3:03:39 PM | Computer Name = Neox-PC | Source = Service Control Manager | ID = 7034
Description =


< End of report >