Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

seth.avazutracking.net redirect [Solved]


  • This topic is locked This topic is locked

#1
ny1

ny1

    Member

  • Member
  • PipPip
  • 20 posts
When I'm browsing the internet sometimes a new tab in Firefox opens and at first the address seth.avazutracking.net is shown then it redirects to some fake lottery website.

On other forum I was asked to post a Combofix log but Combofix gets stuck when preparing the log and won't finish.



OTL logfile created on: 12/9/2012 12:44:17 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SAMSUNG\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Stany Zjednoczone | Language: ENU | Date Format: M/d/yyyy

5.91 Gb Total Physical Memory | 4.03 Gb Available Physical Memory | 68.08% Memory free
11.83 Gb Paging File | 8.50 Gb Available in Paging File | 71.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 178.00 Gb Total Space | 106.17 Gb Free Space | 59.65% Space Free | Partition Type: NTFS
Drive D: | 465.76 Gb Total Space | 465.66 Gb Free Space | 99.98% Space Free | Partition Type: NTFS
Drive E: | 265.21 Gb Total Space | 265.11 Gb Free Space | 99.96% Space Free | Partition Type: NTFS

Computer Name: SAMSUNG-PC | User Name: SAMSUNG | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/12/09 12:43:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SAMSUNG\Downloads\OTL.exe
PRC - [2012/12/09 10:44:02 | 001,592,208 | ---- | M] () -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Capture.exe
PRC - [2012/10/30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/08/13 13:43:24 | 001,008,032 | ---- | M] () -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe
PRC - [2012/02/23 11:40:41 | 002,886,528 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
PRC - [2011/09/04 11:45:26 | 003,398,736 | ---- | M] (SAMSUNG Electronics) -- C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
PRC - [2011/01/17 18:36:00 | 002,009,704 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/01/17 17:37:40 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2011/01/17 17:37:40 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010/12/06 12:44:36 | 000,943,984 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
PRC - [2010/12/06 12:44:28 | 007,058,800 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Easy Display Manager\WifiManager.exe
PRC - [2010/11/29 06:42:38 | 000,775,848 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
PRC - [2010/11/17 09:24:54 | 004,387,632 | ---- | M] (SEC) -- C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
PRC - [2010/11/10 01:03:52 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
PRC - [2010/10/22 18:58:34 | 000,013,600 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
PRC - [2010/10/06 06:08:46 | 002,655,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/10/06 06:08:42 | 000,325,656 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/08/27 02:52:12 | 002,782,064 | ---- | M] (Samsung Electronics) -- C:\Program Files (x86)\Samsung\Samsung Update Plus\SUPBackground.exe
PRC - [2010/08/25 21:07:38 | 000,075,048 | ---- | M] (cyberlink) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe
PRC - [2010/02/10 15:29:52 | 000,719,360 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
PRC - [2010/02/02 16:08:56 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
PRC - [2009/12/10 03:39:04 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
PRC - [2009/12/10 03:37:16 | 003,690,496 | ---- | M] (PostgreSQL Global Development Group) -- C:\Program Files (x86)\PostgreSQL\8.3\bin\postgres.exe
PRC - [2009/11/02 06:21:26 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2009/08/29 07:00:12 | 000,966,656 | ---- | M] () -- C:\Users\SAMSUNG\Local Settings\Apps\F.lux\flux.exe
PRC - [2009/08/04 17:21:58 | 000,030,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
PRC - [2009/06/24 10:57:04 | 000,136,704 | ---- | M] (HP) -- C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe


========== Modules (No Company Name) ==========

MOD - [2012/11/15 09:35:03 | 001,670,144 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4a29fb5e489e57ccc97b19ca70db94a8\Microsoft.VisualBasic.ni.dll
MOD - [2012/11/15 09:29:59 | 000,212,992 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\17796f2951c17ebf92dd4b7c9b3ce556\System.ServiceProcess.ni.dll
MOD - [2012/11/15 09:29:51 | 011,833,344 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\03cfab5534482e8fc313ead6edc19100\System.Web.ni.dll
MOD - [2012/11/15 09:29:46 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll
MOD - [2012/11/15 09:29:22 | 012,436,480 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll
MOD - [2012/11/15 09:29:15 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll
MOD - [2012/11/15 09:28:47 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
MOD - [2012/11/15 09:28:43 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll
MOD - [2012/11/15 09:28:42 | 007,988,736 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/15 09:28:29 | 011,493,376 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2012/03/27 17:42:35 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2010/11/13 03:03:49 | 000,311,296 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010/07/05 11:42:58 | 000,203,776 | ---- | M] () -- C:\Program Files (x86)\Samsung\Movie Color Enhancer\WinCRT.dll
MOD - [2010/05/07 15:22:18 | 001,636,864 | ---- | M] () -- C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
MOD - [2009/11/02 06:23:36 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
MOD - [2009/11/02 06:20:10 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2009/08/29 07:00:12 | 000,966,656 | ---- | M] () -- C:\Users\SAMSUNG\Local Settings\Apps\F.lux\flux.exe
MOD - [2009/08/04 17:23:16 | 000,063,032 | ---- | M] () -- C:\Program Files (x86)\HP\HP UT LEDM\bin\HPTools.dll
MOD - [2009/08/04 17:23:02 | 000,075,320 | ---- | M] () -- C:\Program Files (x86)\HP\HP UT LEDM\bin\HPToolkit.dll
MOD - [2009/08/04 17:22:32 | 000,678,968 | ---- | M] () -- C:\Program Files (x86)\HP\HP UT LEDM\bin\LEDMXMLObjects.dll
MOD - [2009/08/04 17:22:16 | 000,136,248 | ---- | M] () -- C:\Program Files (x86)\HP\HP UT LEDM\bin\DMBaseObjects.dll
MOD - [2006/08/12 04:48:40 | 000,049,152 | ---- | M] () -- C:\Program Files (x86)\Samsung\Easy Display Manager\HookDllPS2.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/11/08 00:37:39 | 002,828,408 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2012/10/30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2012/09/07 22:38:37 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE -- (!SASCORE)
SRV:64bit: - [2012/03/29 14:40:34 | 000,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV:64bit: - [2011/11/11 03:08:32 | 000,126,520 | ---- | M] (HP) [Auto | Running] -- C:\Windows\SysNative\HPSIsvc.exe -- (HPSIService)
SRV:64bit: - [2010/10/22 18:58:34 | 000,953,632 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2010/10/08 02:24:16 | 000,150,016 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/22 10:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/08/09 20:04:12 | 000,166,704 | ---- | M] (Samsung Electronics CO., LTD.) [On_Demand | Stopped] -- C:\Windows\SysNative\SUPDSvc.exe -- (Samsung UPD Service)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2012/12/05 13:07:58 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/11/11 08:52:56 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/11/01 08:52:52 | 000,070,352 | ---- | M] (Comodo Security Solutions Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe -- (CLPSLauncher)
SRV - [2012/10/31 15:46:38 | 001,467,088 | ---- | M] (Comodo Security Solutions, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2012/08/13 13:43:24 | 001,008,032 | ---- | M] () [Auto | Running] -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe -- (M4-Service)
SRV - [2012/07/27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/29 14:48:40 | 002,028,864 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2012/03/29 14:40:26 | 000,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2012/02/23 11:40:41 | 002,886,528 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2011/01/17 18:36:00 | 002,009,704 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010/10/06 06:08:46 | 002,655,768 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2010/10/06 06:08:42 | 000,325,656 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/08/25 04:07:38 | 000,246,256 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe -- (CLKMSVC10_38F51D56)
SRV - [2010/06/01 07:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/12/10 03:39:04 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe -- (pgsql-8.3)
SRV - [2009/06/24 10:57:04 | 000,136,704 | ---- | M] (HP) [Auto | Running] -- C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe -- (HP LaserJet Service)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/10/30 23:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/30 23:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/30 23:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/30 23:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/30 23:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 17:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/04/25 03:42:16 | 000,258,896 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/10 13:28:16 | 012,311,904 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/11/25 00:25:52 | 000,015,360 | ---- | M] (June Fabrics Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pneteth.sys -- (pneteth)
DRV:64bit: - [2011/10/08 08:28:44 | 000,020,480 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mvusbews.sys -- (mvusbews)
DRV:64bit: - [2011/08/23 04:12:56 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011/07/22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/27 06:35:26 | 000,425,064 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/01/17 18:36:00 | 000,025,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2010/12/03 05:55:32 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/12/03 05:55:32 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010/11/21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/10 01:04:14 | 000,031,088 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\clwvd.sys -- (clwvd)
DRV:64bit: - [2010/10/08 02:23:38 | 000,019,192 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/09/21 18:59:38 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/09/21 08:20:30 | 000,348,712 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwampfl.sys -- (BTWAMPFL)
DRV:64bit: - [2010/09/14 23:59:16 | 000,138,280 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010/09/14 23:59:10 | 000,021,416 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010/09/13 10:24:26 | 000,437,272 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/08/21 01:21:38 | 000,106,536 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2010/07/29 01:23:08 | 003,065,408 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:64bit: - [2010/03/02 08:37:40 | 000,039,464 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 01:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/28 07:38:04 | 000,013,824 | ---- | M] (SAMSUNG ELECTRONICS) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SABI.sys -- (SABI)
DRV - [2012/12/04 09:41:28 | 000,037,976 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | System | Stopped] -- C:\Windows\SysWOW64\drivers\CFRMD.sys -- (CFRMD)
DRV - [2012/02/13 15:32:28 | 000,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung.msn.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.bing.com/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..keyword.URL: "http://www.google.co...ient&gfns=1&q="


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_5_502_110.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011/01/26 14:27:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/11/07 16:08:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 13:07:58 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 13:07:58 | 000,000,000 | ---D | M]

[2012/03/13 12:48:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SAMSUNG\AppData\Roaming\mozilla\Extensions
[2012/10/23 09:16:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SAMSUNG\AppData\Roaming\mozilla\Firefox\Profiles\meoh6j69.default\extensions
[2012/12/05 13:07:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012/12/05 13:07:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012/12/05 13:07:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2012/12/05 13:07:58 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/08/31 08:07:24 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/10/12 20:03:04 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/12/08 18:16:44 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Samsung BHO Class) - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe (cyberlink)
O4 - HKLM..\Run: [CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [HPUsageTrackingLEDM] C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKCU..\Run: [F.lux] C:\Users\SAMSUNG\Local Settings\Apps\F.lux\flux.exe ()
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware.com)
O4 - Startup: C:\Users\SAMSUNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe (Hewlett-Packard)
O9 - Extra Button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{62CBC4F6-E5E4-4CEC-90DF-D5961FDF241A}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{62CBC4F6-E5E4-4CEC-90DF-D5961FDF241A}: NameServer = 8.26.56.26,156.154.70.22
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B40C4298-8B63-4E00-B45C-910B79E92CF9}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B40C4298-8B63-4E00-B45C-910B79E92CF9}: NameServer = 8.26.56.26,156.154.70.22
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:64bit: - AppInit_DLLs: (C:\windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20:64bit: - AppInit_DLLs: (C:\windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) - C:\Windows\SysWOW64\guard32.dll (COMODO)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/09 12:29:31 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/12/09 11:58:21 | 000,000,000 | ---D | C] -- C:\windows\temp
[2012/12/09 11:31:26 | 000,000,000 | ---D | C] -- C:\ComboFix
[2012/12/08 18:09:32 | 000,518,144 | ---- | C] (SteelWerX) -- C:\windows\SWREG.exe
[2012/12/08 18:09:32 | 000,406,528 | ---- | C] (SteelWerX) -- C:\windows\SWSC.exe
[2012/12/08 18:09:32 | 000,060,416 | ---- | C] (NirSoft) -- C:\windows\NIRCMD.exe
[2012/12/08 18:06:51 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/12/08 18:06:03 | 000,000,000 | ---D | C] -- C:\windows\erdnt
[2012/12/08 17:59:52 | 005,010,414 | R--- | C] (Swearware) -- C:\Users\SAMSUNG\Desktop\ComboFix.exe
[2012/12/08 11:27:09 | 000,000,000 | ---D | C] -- C:\windows\pss
[2012/12/05 13:07:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/12/04 09:41:28 | 000,037,976 | ---- | C] (Windows ® Win 7 DDK provider) -- C:\windows\SysWow64\drivers\CFRMD.sys
[2012/11/27 13:04:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sharkystrator
[2012/11/26 19:44:26 | 000,015,360 | ---- | C] (June Fabrics Technology Inc.) -- C:\windows\SysNative\drivers\pneteth.sys
[2012/11/21 13:22:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/11/21 13:22:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/11/21 11:18:00 | 000,000,000 | ---D | C] -- C:\Users\SAMSUNG\Desktop\DW
[2012/11/11 20:13:02 | 000,000,000 | ---D | C] -- C:\Users\SAMSUNG\AppData\Local\cache
[2012/11/10 12:32:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flopzilla
[2012/11/10 12:32:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Flopzilla

========== Files - Modified Within 30 Days ==========

[2012/12/09 12:37:35 | 000,021,200 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/09 12:37:35 | 000,021,200 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/09 12:37:00 | 000,000,930 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2012/12/09 12:28:19 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/12/09 12:28:14 | 2055,512,063 | -HS- | M] () -- C:\hiberfil.sys
[2012/12/09 00:20:51 | 000,000,378 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121209_002048.reg
[2012/12/09 00:14:35 | 000,013,857 | ---- | M] () -- C:\Users\SAMSUNG\Documents\1213MGAM.ods
[2012/12/08 21:38:26 | 000,000,234 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121208_213822.reg
[2012/12/08 18:55:29 | 000,000,234 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121208_185520.reg
[2012/12/08 18:16:44 | 000,000,027 | ---- | M] () -- C:\windows\SysNative\drivers\etc\hosts
[2012/12/08 18:00:05 | 005,010,414 | R--- | M] (Swearware) -- C:\Users\SAMSUNG\Desktop\ComboFix.exe
[2012/12/08 16:40:34 | 000,014,546 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121208_164029.reg
[2012/12/08 14:39:15 | 000,019,608 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121208_143912.reg
[2012/12/07 23:51:09 | 000,000,334 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121207_235104.reg
[2012/12/07 19:26:55 | 000,008,365 | ---- | M] () -- C:\Users\SAMSUNG\Documents\Partie Twic.ini
[2012/12/07 17:14:59 | 000,012,714 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121207_171452.reg
[2012/12/04 21:03:33 | 000,001,116 | ---- | M] () -- C:\Users\SAMSUNG\Desktop\PokerTracker 4.lnk
[2012/12/04 09:41:28 | 000,037,976 | ---- | M] (Windows ® Win 7 DDK provider) -- C:\windows\SysWow64\drivers\CFRMD.sys
[2012/11/28 13:03:42 | 011,362,025 | ---- | M] () -- C:\Users\SAMSUNG\Documents\Playing history audit.html
[2012/11/28 09:45:53 | 000,094,604 | ---- | M] () -- C:\Users\SAMSUNG\Documents\cc_20121128_094527.reg
[2012/11/27 13:04:14 | 000,001,109 | ---- | M] () -- C:\Users\SAMSUNG\Desktop\Sharkystrator.lnk
[2012/11/26 19:36:21 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf
[2012/11/26 18:51:24 | 001,549,696 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012/11/26 18:51:24 | 000,697,912 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
[2012/11/26 18:51:24 | 000,616,008 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012/11/26 18:51:24 | 000,134,990 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
[2012/11/26 18:51:24 | 000,106,388 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012/11/26 18:50:01 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/11/26 12:23:52 | 000,023,696 | ---- | M] () -- C:\Users\SAMSUNG\Documents\3bregschart.ods
[2012/11/21 13:22:16 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/11/21 07:35:05 | 000,321,992 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012/11/20 22:21:54 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\config.nt
[2012/11/20 17:11:51 | 000,006,113 | ---- | M] () -- C:\windows\unins000.dat
[2012/11/20 17:09:32 | 000,715,253 | ---- | M] () -- C:\windows\unins000.exe
[2012/11/10 20:18:44 | 000,221,115 | ---- | M] () -- C:\Users\SAMSUNG\Documents\IMG_10112012_141832.png
[2012/11/10 12:32:59 | 000,001,153 | ---- | M] () -- C:\Users\Public\Desktop\Flopzilla.lnk

========== Files Created - No Company Name ==========

[2012/12/09 00:20:49 | 000,000,378 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121209_002048.reg
[2012/12/08 21:38:24 | 000,000,234 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121208_213822.reg
[2012/12/08 18:55:28 | 000,000,234 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121208_185520.reg
[2012/12/08 18:09:32 | 000,256,000 | ---- | C] () -- C:\windows\PEV.exe
[2012/12/08 18:09:32 | 000,208,896 | ---- | C] () -- C:\windows\MBR.exe
[2012/12/08 18:09:32 | 000,098,816 | ---- | C] () -- C:\windows\sed.exe
[2012/12/08 18:09:32 | 000,080,412 | ---- | C] () -- C:\windows\grep.exe
[2012/12/08 18:09:32 | 000,068,096 | ---- | C] () -- C:\windows\zip.exe
[2012/12/08 16:40:32 | 000,014,546 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121208_164029.reg
[2012/12/08 14:39:14 | 000,019,608 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121208_143912.reg
[2012/12/08 11:58:19 | 000,002,081 | -H-- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
[2012/12/08 11:58:19 | 000,001,277 | ---- | C] () -- C:\Users\SAMSUNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
[2012/12/08 11:58:19 | 000,000,834 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2012/12/07 23:51:08 | 000,000,334 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121207_235104.reg
[2012/12/07 17:14:55 | 000,012,714 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121207_171452.reg
[2012/11/28 09:45:40 | 000,094,604 | ---- | C] () -- C:\Users\SAMSUNG\Documents\cc_20121128_094527.reg
[2012/11/26 19:36:21 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_WinUsb_01007.Wdf
[2012/11/26 18:50:01 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012/11/22 16:45:16 | 000,013,857 | ---- | C] () -- C:\Users\SAMSUNG\Documents\1213MGAM.ods
[2012/11/21 13:22:16 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012/11/20 17:11:51 | 000,715,253 | ---- | C] () -- C:\windows\unins000.exe
[2012/11/14 22:55:05 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/14 22:47:15 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/11/10 20:18:40 | 000,221,115 | ---- | C] () -- C:\Users\SAMSUNG\Documents\IMG_10112012_141832.png
[2012/11/10 12:32:59 | 000,001,153 | ---- | C] () -- C:\Users\Public\Desktop\Flopzilla.lnk
[2012/09/03 09:03:33 | 000,006,113 | ---- | C] () -- C:\windows\unins000.dat
[2012/07/19 11:50:49 | 000,003,584 | ---- | C] () -- C:\Users\SAMSUNG\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/07/18 12:32:28 | 000,004,915 | ---- | C] () -- C:\ProgramData\flwjycbm.bab
[2012/07/03 12:23:43 | 000,000,017 | ---- | C] () -- C:\Users\SAMSUNG\AppData\Local\resmon.resmoncfg
[2012/03/28 11:21:49 | 000,004,142 | ---- | C] () -- C:\ProgramData\kmytnfun.aqy
[2012/03/16 12:42:42 | 000,002,924 | ---- | C] () -- C:\Users\SAMSUNG\URPreferences.xml
[2012/03/13 13:52:43 | 000,005,098 | ---- | C] () -- C:\ProgramData\oinwddee.jeg
[2012/01/10 13:27:24 | 000,963,884 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2012/01/10 13:27:24 | 000,221,264 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2012/01/10 13:16:52 | 000,056,832 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012/01/10 12:29:52 | 013,904,384 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
[2011/04/22 09:31:06 | 000,258,864 | ---- | C] () -- C:\windows\SUPDRun.exe
[2011/04/22 09:27:15 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2011/04/21 21:01:21 | 000,307,200 | ---- | C] () -- C:\windows\SetDisplayResolution.exe
[2011/04/21 20:22:05 | 000,000,496 | ---- | C] () -- C:\windows\HotFixList.ini
[2011/04/21 20:21:39 | 000,142,128 | ---- | C] () -- C:\windows\wiainst64.exe
[2011/04/21 19:46:23 | 000,008,192 | ---- | C] () -- C:\windows\SysWow64\drivers\IntelMEFWVer.dll

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/05/22 14:03:36 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\BANDISOFT
[2012/04/15 12:51:12 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\ChessBase
[2012/07/19 11:47:14 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\GetRightToGo
[2012/03/13 12:53:35 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\GHISLER
[2012/07/18 20:59:06 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\HEM Data
[2012/04/12 15:04:42 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\Internet Chess Club
[2012/12/09 10:44:01 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4
[2012/03/27 17:44:47 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\OpenOffice.org
[2012/10/02 13:06:15 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\postgresql
[2012/03/16 22:09:04 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\TeamViewer
[2012/04/08 13:11:28 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\TuneUp Software
[2012/09/12 17:55:32 | 000,000,000 | ---D | M] -- C:\Users\SAMSUNG\AppData\Roaming\WPT

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Results of screen317's Security Check version 0.99.56
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
TuneUp Utilities 2011
TuneUp Utilities Language Pack (pl-PL)
Adobe Flash Player 11.5.502.110
Adobe Reader XI
Mozilla Firefox (17.0.1)
````````Process Check: objlist.exe by Laurent````````
Comodo Firewall cmdagent.exe
Comodo Firewall cfp.exe
Symantec Norton Online Backup NOBuAgent.exe
AVAST Software Avast AvastSvc.exe
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
  • 0

#4
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
this Adw log is unfortunately in polish but hopefully it's still somehow readable? At the end it says "registry is fine". Sorry for confusion, I'm in Poland and polish version gets downloaded, idk how to download the english one.


# AdwCleaner v2.011 - Log utworzony 09/12/2012 o 21:06:04
# Aktualizacja 02/12/2012 przez Xplode
# System operacyjny : Windows 7 Home Premium Service Pack 1 (64 bits)
# Użytkownik : SAMSUNG - SAMSUNG-PC
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\SAMSUNG\Desktop\adwcleaner.exe
# Opcja [Usuń]

***** [Usługi] *****


***** [Pliki / Foldery] *****

Folder Usunięto : C:\ProgramData\Tarma Installer
Plik Usunięto : C:\user.js

***** [Rejestr] *****

Klucz Usunięto : HKCU\Software\BabylonToolbar
Klucz Usunięto : HKLM\Software\Babylon
Klucz Usunięto : HKLM\Software\BabylonToolbar
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Klucz Usunięto : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}

***** [Przeglądarki Internetowe] *****

-\\ Internet Explorer v9.0.8112.16455

[OK] Rejestr w porządku.

-\\ Mozilla Firefox v17.0.1 (en-US)

Nazwa profilu : default-1355075155595 [Profil par défaut]
Plik : C:\Users\SAMSUNG\AppData\Roaming\Mozilla\Firefox\Profiles\smlm34xs.default-1355075155595\prefs.js

[OK] Plik w porządku.

*************************

AdwCleaner[S1].txt - [2069 octets] - [09/12/2012 21:06:04]

########## EOF - C:\AdwCleaner[S1].txt - [2129 octets] ##########
  • 0

#5
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
RogueKiller V8.3.2 [Dec 7 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : SAMSUNG [Admin rights]
Mode : Remove -- Date : 12/09/2012 21:23:51

¤¤¤ Bad processes : 2 ¤¤¤
[SUSP PATH] M4-Service.exe -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe -> KILLED [TermProc]
[SUSP PATH] M4-Capture.exe -- C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Capture.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 7 ¤¤¤
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{62CBC4F6-E5E4-4CEC-90DF-D5961FDF241A} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{B40C4298-8B63-4E00-B45C-910B79E92CF9} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{62CBC4F6-E5E4-4CEC-90DF-D5961FDF241A} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{B40C4298-8B63-4E00-B45C-910B79E92CF9} : NameServer (8.26.56.26,156.154.70.22) -> NOT REMOVED, USE DNSFIX
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HN-M500MBB +++++
--- User ---
[MBR] 0516945b75f5ab48c8cdb4c2b5acf222
[BSP] c5e4bedac671e545fcd2fbeac806a115 : KIWI Image system MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 182272 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 373499904 | Size: 271576 Mo
3 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 929687552 | Size: 22989 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: SAMSUNG HN-M500MBB +++++
--- User ---
[MBR] a98fdad9c89f70f3baadbddf2712f7eb
[BSP] 46739c4d72ef462edde0bcada35a06e8 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_12092012_02d2123.txt >>
RKreport[1]_S_12092012_02d2121.txt ; RKreport[2]_D_12092012_02d2123.txt
  • 0

#6
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#7
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
Like I said in the OP, Combofix at some point stops working, when the window says it's preparing a log, that window disappears immediately and then nothing happens (except that the internet gets reconnected, so I guess Combofix just gets closed at that point? I waited more than 2h and nothing happened, no log displayed). How do I make Combofix working? I have read and followed the instruction very carefully, I have no idea what went wrong.
  • 0

#8
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

Ok lets try this, I want you to run combofix in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.
  • If the computer is running, shut down Windows, and then turn off the power.
  • Wait 30 seconds, and then turn the computer on.
  • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
  • Ensure that the Safe Mode option is selected.
  • Press Enter. The computer then begins to start in Safe mode.
  • Login on your usual account.

after combofix has finished its scan please post the report back here.

Gringo
  • 0

#9
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
It doesn't work in safe mode either. The exact same thing happens, combofix preparing a log then its window disappears and nothing happens for a long time, except the internet gets eventually reconnected.
  • 0

#10
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
  • 0

Advertisements


#11
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
20:51:30.0905 4492 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:51:31.0107 4492 ============================================================
20:51:31.0107 4492 Current date / time: 2012/12/10 20:51:31.0107
20:51:31.0107 4492 SystemInfo:
20:51:31.0107 4492
20:51:31.0107 4492 OS Version: 6.1.7601 ServicePack: 1.0
20:51:31.0107 4492 Product type: Workstation
20:51:31.0123 4492 ComputerName: SAMSUNG-PC
20:51:31.0123 4492 UserName: SAMSUNG
20:51:31.0123 4492 Windows directory: C:\windows
20:51:31.0123 4492 System windows directory: C:\windows
20:51:31.0123 4492 Running under WOW64
20:51:31.0123 4492 Processor architecture: Intel x64
20:51:31.0123 4492 Number of processors: 8
20:51:31.0123 4492 Page size: 0x1000
20:51:31.0123 4492 Boot type: Normal boot
20:51:31.0123 4492 ============================================================
20:51:31.0638 4492 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:51:32.0012 4492 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:51:32.0028 4492 ============================================================
20:51:32.0028 4492 \Device\Harddisk0\DR0:
20:51:32.0028 4492 MBR partitions:
20:51:32.0028 4492 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:51:32.0028 4492 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x16400000
20:51:32.0043 4492 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x16433000, BlocksNum 0x2126B800
20:51:32.0043 4492 \Device\Harddisk1\DR1:
20:51:32.0043 4492 MBR partitions:
20:51:32.0043 4492 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384800
20:51:32.0043 4492 ============================================================
20:51:32.0090 4492 C: <-> \Device\Harddisk0\DR0\Partition2
20:51:32.0106 4492 D: <-> \Device\Harddisk1\DR1\Partition1
20:51:32.0168 4492 E: <-> \Device\Harddisk0\DR0\Partition3
20:51:32.0184 4492 ============================================================
20:51:32.0184 4492 Initialize success
20:51:32.0184 4492 ============================================================
20:51:49.0469 7476 ============================================================
20:51:49.0469 7476 Scan started
20:51:49.0469 7476 Mode: Manual;
20:51:49.0469 7476 ============================================================
20:51:50.0763 7476 ================ Scan system memory ========================
20:51:50.0763 7476 System memory - ok
20:51:50.0763 7476 ================ Scan services =============================
20:51:50.0857 7476 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
20:51:50.0873 7476 !SASCORE - ok
20:51:51.0029 7476 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:51:51.0029 7476 1394ohci - ok
20:51:51.0091 7476 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:51:51.0091 7476 ACPI - ok
20:51:51.0138 7476 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:51:51.0138 7476 AcpiPmi - ok
20:51:51.0278 7476 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:51:51.0278 7476 AdobeARMservice - ok
20:51:51.0465 7476 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:51:51.0465 7476 AdobeFlashPlayerUpdateSvc - ok
20:51:51.0559 7476 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
20:51:51.0575 7476 adp94xx - ok
20:51:51.0637 7476 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
20:51:51.0653 7476 adpahci - ok
20:51:51.0684 7476 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
20:51:51.0699 7476 adpu320 - ok
20:51:51.0731 7476 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:51:51.0731 7476 AeLookupSvc - ok
20:51:51.0793 7476 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:51:51.0809 7476 AFD - ok
20:51:51.0871 7476 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:51:51.0871 7476 agp440 - ok
20:51:51.0902 7476 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:51:51.0918 7476 ALG - ok
20:51:51.0949 7476 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:51:51.0965 7476 aliide - ok
20:51:51.0996 7476 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:51:52.0011 7476 amdide - ok
20:51:52.0027 7476 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
20:51:52.0027 7476 AmdK8 - ok
20:51:52.0043 7476 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
20:51:52.0043 7476 AmdPPM - ok
20:51:52.0089 7476 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:51:52.0089 7476 amdsata - ok
20:51:52.0152 7476 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
20:51:52.0152 7476 amdsbs - ok
20:51:52.0183 7476 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:51:52.0183 7476 amdxata - ok
20:51:52.0214 7476 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:51:52.0214 7476 AppID - ok
20:51:52.0245 7476 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:51:52.0245 7476 AppIDSvc - ok
20:51:52.0261 7476 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
20:51:52.0261 7476 Appinfo - ok
20:51:52.0323 7476 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
20:51:52.0323 7476 arc - ok
20:51:52.0339 7476 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
20:51:52.0339 7476 arcsas - ok
20:51:52.0401 7476 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
20:51:52.0401 7476 aswFsBlk - ok
20:51:52.0526 7476 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
20:51:52.0526 7476 aswMonFlt - ok
20:51:52.0589 7476 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
20:51:52.0589 7476 aswRdr - ok
20:51:52.0667 7476 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
20:51:52.0698 7476 aswSnx - ok
20:51:52.0760 7476 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
20:51:52.0776 7476 aswSP - ok
20:51:52.0823 7476 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
20:51:52.0823 7476 aswTdi - ok
20:51:52.0869 7476 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:51:52.0869 7476 AsyncMac - ok
20:51:52.0916 7476 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:51:52.0916 7476 atapi - ok
20:51:52.0963 7476 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:51:52.0979 7476 AudioEndpointBuilder - ok
20:51:52.0994 7476 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:51:53.0010 7476 AudioSrv - ok
20:51:53.0119 7476 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:51:53.0119 7476 avast! Antivirus - ok
20:51:53.0150 7476 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:51:53.0150 7476 AxInstSV - ok
20:51:53.0213 7476 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
20:51:53.0228 7476 b06bdrv - ok
20:51:53.0259 7476 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:51:53.0259 7476 b57nd60a - ok
20:51:53.0415 7476 [ 63DD9C990883709053DD2C427DF0DB6F ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
20:51:53.0462 7476 BCM43XX - ok
20:51:53.0493 7476 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:51:53.0493 7476 BDESVC - ok
20:51:53.0540 7476 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:51:53.0540 7476 Beep - ok
20:51:53.0587 7476 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:51:53.0603 7476 BFE - ok
20:51:53.0634 7476 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:51:53.0649 7476 BITS - ok
20:51:53.0681 7476 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:51:53.0681 7476 blbdrive - ok
20:51:53.0712 7476 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:51:53.0712 7476 bowser - ok
20:51:53.0743 7476 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
20:51:53.0743 7476 BrFiltLo - ok
20:51:53.0759 7476 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
20:51:53.0759 7476 BrFiltUp - ok
20:51:53.0774 7476 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:51:53.0774 7476 BridgeMP - ok
20:51:53.0852 7476 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:51:53.0852 7476 Browser - ok
20:51:53.0868 7476 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:51:53.0883 7476 Brserid - ok
20:51:53.0883 7476 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:51:53.0883 7476 BrSerWdm - ok
20:51:53.0899 7476 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:51:53.0899 7476 BrUsbMdm - ok
20:51:53.0899 7476 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:51:53.0899 7476 BrUsbSer - ok
20:51:53.0946 7476 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
20:51:53.0961 7476 BthEnum - ok
20:51:53.0977 7476 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
20:51:53.0993 7476 BTHMODEM - ok
20:51:54.0008 7476 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
20:51:54.0008 7476 BthPan - ok
20:51:54.0071 7476 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
20:51:54.0086 7476 BTHPORT - ok
20:51:54.0117 7476 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:51:54.0117 7476 bthserv - ok
20:51:54.0149 7476 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
20:51:54.0149 7476 BTHUSB - ok
20:51:54.0195 7476 [ 72CC5DCC4E67E7927F94801166CFDCDA ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
20:51:54.0211 7476 BTWAMPFL - ok
20:51:54.0242 7476 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
20:51:54.0258 7476 btwaudio - ok
20:51:54.0305 7476 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
20:51:54.0305 7476 btwavdt - ok
20:51:54.0367 7476 [ F0AF04A96CA48B869284B5DC4CDB8CBB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:51:54.0398 7476 btwdins - ok
20:51:54.0414 7476 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
20:51:54.0414 7476 btwl2cap - ok
20:51:54.0461 7476 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
20:51:54.0461 7476 btwrchid - ok
20:51:54.0617 7476 catchme - ok
20:51:54.0663 7476 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:51:54.0663 7476 cdfs - ok
20:51:54.0726 7476 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:51:54.0726 7476 cdrom - ok
20:51:54.0757 7476 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:51:54.0757 7476 CertPropSvc - ok
20:51:54.0788 7476 CFRMD - ok
20:51:54.0804 7476 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
20:51:54.0804 7476 circlass - ok
20:51:54.0835 7476 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:51:54.0835 7476 CLFS - ok
20:51:54.0975 7476 [ FE1C81A049E5C5D67C4AB7C31C899F6F ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
20:51:54.0975 7476 CLKMSVC10_38F51D56 - ok
20:51:55.0069 7476 [ 5724D9ECBF2A378EBF85FDC3BDA01F98 ] CLPSLauncher C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
20:51:55.0069 7476 CLPSLauncher - ok
20:51:55.0163 7476 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:51:55.0163 7476 clr_optimization_v2.0.50727_32 - ok
20:51:55.0209 7476 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:51:55.0209 7476 clr_optimization_v2.0.50727_64 - ok
20:51:55.0287 7476 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:51:55.0287 7476 clr_optimization_v4.0.30319_32 - ok
20:51:55.0334 7476 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:51:55.0350 7476 clr_optimization_v4.0.30319_64 - ok
20:51:55.0381 7476 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
20:51:55.0381 7476 clwvd - ok
20:51:55.0428 7476 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:51:55.0428 7476 CmBatt - ok
20:51:55.0599 7476 [ 65FB5097D9EE7E3A99E932CFA0E4B344 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
20:51:55.0615 7476 cmdAgent - ok
20:51:55.0677 7476 [ 919ACCC22ABDC1C3CA68326C0E5DEAF9 ] cmdGuard C:\windows\system32\DRIVERS\cmdguard.sys
20:51:55.0677 7476 cmdGuard - ok
20:51:55.0724 7476 [ F8FECE0F1D44C4A58778083B00EEADAC ] cmdHlp C:\windows\system32\DRIVERS\cmdhlp.sys
20:51:55.0724 7476 cmdHlp - ok
20:51:55.0755 7476 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:51:55.0755 7476 cmdide - ok
20:51:55.0818 7476 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:51:55.0833 7476 CNG - ok
20:51:55.0880 7476 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
20:51:55.0880 7476 Compbatt - ok
20:51:55.0911 7476 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
20:51:55.0911 7476 CompositeBus - ok
20:51:55.0943 7476 COMSysApp - ok
20:51:55.0958 7476 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
20:51:55.0958 7476 crcdisk - ok
20:51:55.0989 7476 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
20:51:55.0989 7476 CryptSvc - ok
20:51:56.0052 7476 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:51:56.0052 7476 DcomLaunch - ok
20:51:56.0114 7476 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:51:56.0114 7476 defragsvc - ok
20:51:56.0145 7476 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:51:56.0161 7476 DfsC - ok
20:51:56.0192 7476 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:51:56.0208 7476 Dhcp - ok
20:51:56.0223 7476 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:51:56.0223 7476 discache - ok
20:51:56.0255 7476 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
20:51:56.0255 7476 Disk - ok
20:51:56.0286 7476 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:51:56.0286 7476 Dnscache - ok
20:51:56.0317 7476 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:51:56.0333 7476 dot3svc - ok
20:51:56.0348 7476 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:51:56.0348 7476 DPS - ok
20:51:56.0379 7476 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:51:56.0379 7476 drmkaud - ok
20:51:56.0411 7476 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:51:56.0411 7476 DXGKrnl - ok
20:51:56.0426 7476 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:51:56.0426 7476 EapHost - ok
20:51:56.0535 7476 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
20:51:56.0613 7476 ebdrv - ok
20:51:56.0645 7476 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:51:56.0645 7476 EFS - ok
20:51:56.0707 7476 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:51:56.0707 7476 ehRecvr - ok
20:51:56.0723 7476 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:51:56.0723 7476 ehSched - ok
20:51:56.0816 7476 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
20:51:56.0832 7476 elxstor - ok
20:51:56.0847 7476 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:51:56.0847 7476 ErrDev - ok
20:51:56.0925 7476 [ 0C8324462B9791A1ECE2A329A7378A55 ] ETD C:\windows\system32\DRIVERS\ETD.sys
20:51:56.0941 7476 ETD - ok
20:51:56.0988 7476 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:51:57.0003 7476 EventSystem - ok
20:51:57.0035 7476 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:51:57.0035 7476 exfat - ok
20:51:57.0050 7476 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:51:57.0050 7476 fastfat - ok
20:51:57.0097 7476 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:51:57.0113 7476 Fax - ok
20:51:57.0144 7476 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
20:51:57.0144 7476 fdc - ok
20:51:57.0159 7476 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:51:57.0159 7476 fdPHost - ok
20:51:57.0175 7476 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:51:57.0175 7476 FDResPub - ok
20:51:57.0206 7476 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:51:57.0206 7476 FileInfo - ok
20:51:57.0222 7476 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:51:57.0222 7476 Filetrace - ok
20:51:57.0237 7476 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
20:51:57.0237 7476 flpydisk - ok
20:51:57.0269 7476 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:51:57.0269 7476 FltMgr - ok
20:51:57.0331 7476 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\windows\system32\FntCache.dll
20:51:57.0362 7476 FontCache - ok
20:51:57.0409 7476 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:51:57.0409 7476 FontCache3.0.0.0 - ok
20:51:57.0425 7476 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:51:57.0440 7476 FsDepends - ok
20:51:57.0487 7476 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:51:57.0487 7476 Fs_Rec - ok
20:51:57.0534 7476 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:51:57.0549 7476 fvevol - ok
20:51:57.0565 7476 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
20:51:57.0565 7476 gagp30kx - ok
20:51:57.0627 7476 [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
20:51:57.0627 7476 GameConsoleService - ok
20:51:57.0752 7476 [ 31B5C233933CAF0FB1499F458F04FD9A ] GeekBuddyRSP C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
20:51:57.0783 7476 GeekBuddyRSP - ok
20:51:57.0846 7476 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:51:57.0861 7476 gpsvc - ok
20:51:57.0893 7476 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:51:57.0893 7476 hcw85cir - ok
20:51:57.0939 7476 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:51:57.0955 7476 HdAudAddService - ok
20:51:57.0971 7476 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:51:57.0971 7476 HDAudBus - ok
20:51:57.0986 7476 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
20:51:58.0002 7476 HidBatt - ok
20:51:58.0002 7476 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
20:51:58.0002 7476 HidBth - ok
20:51:58.0033 7476 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
20:51:58.0033 7476 HidIr - ok
20:51:58.0064 7476 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:51:58.0064 7476 hidserv - ok
20:51:58.0111 7476 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
20:51:58.0111 7476 HidUsb - ok
20:51:58.0158 7476 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:51:58.0158 7476 hkmsvc - ok
20:51:58.0189 7476 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:51:58.0205 7476 HomeGroupListener - ok
20:51:58.0251 7476 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:51:58.0251 7476 HomeGroupProvider - ok
20:51:58.0361 7476 [ 53DCA61931847E35C950504BFB7559C6 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
20:51:58.0361 7476 HP LaserJet Service - ok
20:51:58.0407 7476 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:51:58.0407 7476 HpSAMD - ok
20:51:58.0439 7476 [ F7BC8C61850E51FADA9087B6D3155023 ] HPSIService C:\windows\system32\HPSIsvc.exe
20:51:58.0439 7476 HPSIService - ok
20:51:58.0485 7476 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:51:58.0501 7476 HTTP - ok
20:51:58.0548 7476 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:51:58.0563 7476 hwpolicy - ok
20:51:58.0579 7476 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
20:51:58.0595 7476 i8042prt - ok
20:51:58.0641 7476 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:51:58.0657 7476 iaStor - ok
20:51:58.0704 7476 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:51:58.0704 7476 iaStorV - ok
20:51:58.0782 7476 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:51:58.0797 7476 idsvc - ok
20:51:59.0094 7476 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:51:59.0312 7476 igfx - ok
20:51:59.0359 7476 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
20:51:59.0359 7476 iirsp - ok
20:51:59.0406 7476 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:51:59.0421 7476 IKEEXT - ok
20:51:59.0499 7476 [ C4E67D3037DC79E39D7136581A947F50 ] inspect C:\windows\system32\DRIVERS\inspect.sys
20:51:59.0499 7476 inspect - ok
20:51:59.0624 7476 [ B54138716EC5945BAE6914AD8DA086C0 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:51:59.0640 7476 IntcAzAudAddService - ok
20:51:59.0687 7476 [ AE594CC17C33AC146739494615E14851 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
20:51:59.0702 7476 IntcDAud - ok
20:51:59.0733 7476 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:51:59.0733 7476 intelide - ok
20:51:59.0780 7476 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:51:59.0780 7476 intelppm - ok
20:51:59.0812 7476 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:51:59.0827 7476 IPBusEnum - ok
20:51:59.0858 7476 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:51:59.0858 7476 IpFilterDriver - ok
20:51:59.0936 7476 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:51:59.0952 7476 iphlpsvc - ok
20:51:59.0968 7476 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:51:59.0968 7476 IPMIDRV - ok
20:51:59.0999 7476 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:51:59.0999 7476 IPNAT - ok
20:52:00.0014 7476 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:52:00.0014 7476 IRENUM - ok
20:52:00.0030 7476 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:52:00.0030 7476 isapnp - ok
20:52:00.0061 7476 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:52:00.0061 7476 iScsiPrt - ok
20:52:00.0077 7476 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
20:52:00.0092 7476 kbdclass - ok
20:52:00.0108 7476 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:52:00.0108 7476 kbdhid - ok
20:52:00.0124 7476 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:52:00.0139 7476 KeyIso - ok
20:52:00.0170 7476 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:52:00.0170 7476 KSecDD - ok
20:52:00.0202 7476 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:52:00.0202 7476 KSecPkg - ok
20:52:00.0217 7476 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:52:00.0217 7476 ksthunk - ok
20:52:00.0264 7476 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:52:00.0280 7476 KtmRm - ok
20:52:00.0326 7476 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:52:00.0326 7476 LanmanServer - ok
20:52:00.0358 7476 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:52:00.0358 7476 LanmanWorkstation - ok
20:52:00.0389 7476 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:52:00.0404 7476 lltdio - ok
20:52:00.0451 7476 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:52:00.0451 7476 lltdsvc - ok
20:52:00.0482 7476 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:52:00.0482 7476 lmhosts - ok
20:52:00.0545 7476 [ 926EBA26A8B49D1597751CED06B50862 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:52:00.0560 7476 LMS - ok
20:52:00.0592 7476 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
20:52:00.0592 7476 LSI_FC - ok
20:52:00.0654 7476 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
20:52:00.0654 7476 LSI_SAS - ok
20:52:00.0685 7476 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
20:52:00.0685 7476 LSI_SAS2 - ok
20:52:00.0716 7476 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
20:52:00.0716 7476 LSI_SCSI - ok
20:52:00.0748 7476 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:52:00.0748 7476 luafv - ok
20:52:00.0888 7476 [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe
20:52:00.0904 7476 M4-Service - ok
20:52:00.0935 7476 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:52:00.0950 7476 Mcx2Svc - ok
20:52:00.0966 7476 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
20:52:00.0982 7476 megasas - ok
20:52:01.0044 7476 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
20:52:01.0060 7476 MegaSR - ok
20:52:01.0091 7476 [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:52:01.0091 7476 MEIx64 - ok
20:52:01.0138 7476 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:52:01.0138 7476 MMCSS - ok
20:52:01.0169 7476 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:52:01.0169 7476 Modem - ok
20:52:01.0184 7476 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:52:01.0184 7476 monitor - ok
20:52:01.0216 7476 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
20:52:01.0216 7476 mouclass - ok
20:52:01.0247 7476 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:52:01.0247 7476 mouhid - ok
20:52:01.0278 7476 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:52:01.0278 7476 mountmgr - ok
20:52:01.0372 7476 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:52:01.0372 7476 MozillaMaintenance - ok
20:52:01.0403 7476 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:52:01.0403 7476 mpio - ok
20:52:01.0418 7476 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:52:01.0418 7476 mpsdrv - ok
20:52:01.0481 7476 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:52:01.0512 7476 MpsSvc - ok
20:52:01.0528 7476 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:52:01.0528 7476 MRxDAV - ok
20:52:01.0559 7476 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:52:01.0559 7476 mrxsmb - ok
20:52:01.0574 7476 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:52:01.0590 7476 mrxsmb10 - ok
20:52:01.0590 7476 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:52:01.0606 7476 mrxsmb20 - ok
20:52:01.0621 7476 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:52:01.0621 7476 msahci - ok
20:52:01.0637 7476 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:52:01.0652 7476 msdsm - ok
20:52:01.0668 7476 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:52:01.0668 7476 MSDTC - ok
20:52:01.0684 7476 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:52:01.0684 7476 Msfs - ok
20:52:01.0699 7476 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:52:01.0699 7476 mshidkmdf - ok
20:52:01.0715 7476 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:52:01.0715 7476 msisadrv - ok
20:52:01.0730 7476 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:52:01.0746 7476 MSiSCSI - ok
20:52:01.0746 7476 msiserver - ok
20:52:01.0762 7476 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:52:01.0762 7476 MSKSSRV - ok
20:52:01.0793 7476 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:52:01.0793 7476 MSPCLOCK - ok
20:52:01.0808 7476 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:52:01.0808 7476 MSPQM - ok
20:52:01.0824 7476 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:52:01.0840 7476 MsRPC - ok
20:52:01.0871 7476 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
20:52:01.0871 7476 mssmbios - ok
20:52:01.0902 7476 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:52:01.0902 7476 MSTEE - ok
20:52:01.0918 7476 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
20:52:01.0918 7476 MTConfig - ok
20:52:01.0933 7476 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:52:01.0933 7476 Mup - ok
20:52:01.0964 7476 [ F1B096BF8C2A7A5A1E42DC5A13E35952 ] mvusbews C:\windows\system32\Drivers\mvusbews.sys
20:52:01.0964 7476 mvusbews - ok
20:52:02.0011 7476 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:52:02.0027 7476 napagent - ok
20:52:02.0074 7476 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:52:02.0089 7476 NativeWifiP - ok
20:52:02.0167 7476 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:52:02.0183 7476 NDIS - ok
20:52:02.0214 7476 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:52:02.0214 7476 NdisCap - ok
20:52:02.0261 7476 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:52:02.0261 7476 NdisTapi - ok
20:52:02.0292 7476 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:52:02.0292 7476 Ndisuio - ok
20:52:02.0308 7476 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:52:02.0308 7476 NdisWan - ok
20:52:02.0339 7476 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:52:02.0339 7476 NDProxy - ok
20:52:02.0370 7476 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:52:02.0370 7476 NetBIOS - ok
20:52:02.0386 7476 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:52:02.0401 7476 NetBT - ok
20:52:02.0417 7476 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:52:02.0417 7476 Netlogon - ok
20:52:02.0464 7476 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:52:02.0479 7476 Netman - ok
20:52:02.0510 7476 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:52:02.0510 7476 netprofm - ok
20:52:02.0542 7476 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:52:02.0542 7476 NetTcpPortSharing - ok
20:52:02.0573 7476 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
20:52:02.0588 7476 nfrd960 - ok
20:52:02.0651 7476 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
20:52:02.0651 7476 NlaSvc - ok
20:52:02.0776 7476 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:52:02.0822 7476 NOBU - ok
20:52:02.0838 7476 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:52:02.0838 7476 Npfs - ok
20:52:02.0854 7476 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:52:02.0854 7476 nsi - ok
20:52:02.0885 7476 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:52:02.0885 7476 nsiproxy - ok
20:52:02.0963 7476 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:52:02.0994 7476 Ntfs - ok
20:52:03.0025 7476 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:52:03.0041 7476 Null - ok
20:52:03.0072 7476 [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
20:52:03.0072 7476 nusb3hub - ok
20:52:03.0088 7476 [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
20:52:03.0088 7476 nusb3xhc - ok
20:52:03.0384 7476 [ FBE6AC1C3591CB67543FAD15ABD26BCB ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
20:52:03.0634 7476 nvlddmkm - ok
20:52:03.0665 7476 [ 680C5BAF7D0190B1485068FC4BA75F1C ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
20:52:03.0680 7476 nvpciflt - ok
20:52:03.0712 7476 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:52:03.0712 7476 nvraid - ok
20:52:03.0743 7476 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:52:03.0758 7476 nvstor - ok
20:52:03.0821 7476 [ 147B0D17255FD796F990CC6F745605C5 ] NVSvc C:\windows\system32\nvvsvc.exe
20:52:03.0836 7476 NVSvc - ok
20:52:03.0946 7476 [ 812BF9531C827E1D8029843CDDB2B5D6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:52:03.0977 7476 nvUpdatusService - ok
20:52:04.0024 7476 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:52:04.0024 7476 nv_agp - ok
20:52:04.0039 7476 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:52:04.0039 7476 ohci1394 - ok
20:52:04.0070 7476 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:52:04.0086 7476 p2pimsvc - ok
20:52:04.0133 7476 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:52:04.0133 7476 p2psvc - ok
20:52:04.0164 7476 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
20:52:04.0164 7476 Parport - ok
20:52:04.0211 7476 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:52:04.0211 7476 partmgr - ok
20:52:04.0242 7476 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:52:04.0242 7476 PcaSvc - ok
20:52:04.0258 7476 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:52:04.0273 7476 pci - ok
20:52:04.0289 7476 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:52:04.0304 7476 pciide - ok
20:52:04.0320 7476 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
20:52:04.0320 7476 pcmcia - ok
20:52:04.0336 7476 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:52:04.0336 7476 pcw - ok
20:52:04.0351 7476 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:52:04.0367 7476 PEAUTH - ok
20:52:04.0460 7476 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:52:04.0460 7476 PerfHost - ok
20:52:04.0538 7476 [ ACC93675D78D1C07DAD09D7837F2397A ] pgsql-8.3 C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
20:52:04.0538 7476 pgsql-8.3 - ok
20:52:04.0616 7476 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:52:04.0648 7476 pla - ok
20:52:04.0710 7476 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:52:04.0726 7476 PlugPlay - ok
20:52:04.0788 7476 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\windows\system32\DRIVERS\pneteth.sys
20:52:04.0788 7476 pneteth - ok
20:52:04.0804 7476 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:52:04.0819 7476 PNRPAutoReg - ok
20:52:04.0835 7476 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:52:04.0850 7476 PNRPsvc - ok
20:52:04.0913 7476 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:52:04.0913 7476 PolicyAgent - ok
20:52:04.0960 7476 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
20:52:04.0960 7476 Power - ok
20:52:04.0991 7476 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:52:05.0006 7476 PptpMiniport - ok
20:52:05.0022 7476 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
20:52:05.0022 7476 Processor - ok
20:52:05.0069 7476 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:52:05.0069 7476 ProfSvc - ok
20:52:05.0100 7476 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:52:05.0100 7476 ProtectedStorage - ok
20:52:05.0131 7476 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:52:05.0131 7476 Psched - ok
20:52:05.0194 7476 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
20:52:05.0225 7476 ql2300 - ok
20:52:05.0240 7476 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
20:52:05.0240 7476 ql40xx - ok
20:52:05.0272 7476 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:52:05.0287 7476 QWAVE - ok
20:52:05.0303 7476 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:52:05.0318 7476 QWAVEdrv - ok
20:52:05.0318 7476 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:52:05.0318 7476 RasAcd - ok
20:52:05.0365 7476 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:52:05.0365 7476 RasAgileVpn - ok
20:52:05.0412 7476 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:52:05.0412 7476 RasAuto - ok
20:52:05.0428 7476 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:52:05.0428 7476 Rasl2tp - ok
20:52:05.0459 7476 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:52:05.0459 7476 RasMan - ok
20:52:05.0474 7476 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:52:05.0474 7476 RasPppoe - ok
20:52:05.0490 7476 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:52:05.0490 7476 RasSstp - ok
20:52:05.0506 7476 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:52:05.0506 7476 rdbss - ok
20:52:05.0521 7476 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
20:52:05.0521 7476 rdpbus - ok
20:52:05.0552 7476 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:52:05.0552 7476 RDPCDD - ok
20:52:05.0568 7476 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:52:05.0568 7476 RDPENCDD - ok
20:52:05.0584 7476 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:52:05.0584 7476 RDPREFMP - ok
20:52:05.0599 7476 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:52:05.0615 7476 RDPWD - ok
20:52:05.0630 7476 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:52:05.0646 7476 rdyboost - ok
20:52:05.0662 7476 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:52:05.0677 7476 RemoteAccess - ok
20:52:05.0708 7476 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:52:05.0708 7476 RemoteRegistry - ok
20:52:05.0755 7476 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
20:52:05.0755 7476 RFCOMM - ok
20:52:05.0849 7476 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
20:52:05.0849 7476 RichVideo - ok
20:52:05.0880 7476 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:52:05.0880 7476 RpcEptMapper - ok
20:52:05.0911 7476 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:52:05.0927 7476 RpcLocator - ok
20:52:05.0958 7476 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:52:05.0958 7476 RpcSs - ok
20:52:06.0005 7476 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:52:06.0005 7476 rspndr - ok
20:52:06.0052 7476 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
20:52:06.0067 7476 RTL8167 - ok
20:52:06.0098 7476 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\windows\system32\Drivers\SABI.sys
20:52:06.0098 7476 SABI - ok
20:52:06.0114 7476 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:52:06.0114 7476 SamSs - ok
20:52:06.0145 7476 [ D641337B75B9A9D5AE10687AA1097755 ] Samsung UPD Service C:\windows\System32\SUPDSvc.exe
20:52:06.0145 7476 Samsung UPD Service - ok
20:52:06.0239 7476 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
20:52:06.0239 7476 SASDIFSV - ok
20:52:06.0270 7476 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
20:52:06.0270 7476 SASKUTIL - ok
20:52:06.0301 7476 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:52:06.0317 7476 sbp2port - ok
20:52:06.0348 7476 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:52:06.0364 7476 SCardSvr - ok
20:52:06.0379 7476 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:52:06.0379 7476 scfilter - ok
20:52:06.0426 7476 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:52:06.0457 7476 Schedule - ok
20:52:06.0488 7476 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:52:06.0488 7476 SCPolicySvc - ok
20:52:06.0520 7476 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:52:06.0535 7476 SDRSVC - ok
20:52:06.0566 7476 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:52:06.0582 7476 secdrv - ok
20:52:06.0598 7476 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:52:06.0598 7476 seclogon - ok
20:52:06.0629 7476 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:52:06.0629 7476 SENS - ok
20:52:06.0644 7476 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:52:06.0660 7476 SensrSvc - ok
20:52:06.0676 7476 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
20:52:06.0691 7476 Serenum - ok
20:52:06.0722 7476 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
20:52:06.0722 7476 Serial - ok
20:52:06.0754 7476 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
20:52:06.0754 7476 sermouse - ok
20:52:06.0785 7476 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:52:06.0800 7476 SessionEnv - ok
20:52:06.0800 7476 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:52:06.0800 7476 sffdisk - ok
20:52:06.0816 7476 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:52:06.0832 7476 sffp_mmc - ok
20:52:06.0832 7476 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:52:06.0832 7476 sffp_sd - ok
20:52:06.0847 7476 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
20:52:06.0847 7476 sfloppy - ok
20:52:06.0894 7476 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:52:06.0910 7476 SharedAccess - ok
20:52:06.0956 7476 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:52:06.0972 7476 ShellHWDetection - ok
20:52:07.0003 7476 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
20:52:07.0003 7476 SiSRaid2 - ok
20:52:07.0019 7476 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
20:52:07.0019 7476 SiSRaid4 - ok
20:52:07.0066 7476 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:52:07.0081 7476 SkypeUpdate - ok
20:52:07.0112 7476 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:52:07.0112 7476 Smb - ok
20:52:07.0159 7476 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:52:07.0159 7476 SNMPTRAP - ok
20:52:07.0175 7476 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:52:07.0175 7476 spldr - ok
20:52:07.0222 7476 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:52:07.0237 7476 Spooler - ok
20:52:07.0378 7476 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:52:07.0471 7476 sppsvc - ok
20:52:07.0487 7476 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:52:07.0487 7476 sppuinotify - ok
20:52:07.0534 7476 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:52:07.0549 7476 srv - ok
20:52:07.0549 7476 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:52:07.0565 7476 srv2 - ok
20:52:07.0565 7476 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:52:07.0565 7476 srvnet - ok
20:52:07.0596 7476 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:52:07.0596 7476 SSDPSRV - ok
20:52:07.0612 7476 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:52:07.0627 7476 SstpSvc - ok
20:52:07.0643 7476 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
20:52:07.0643 7476 stexstor - ok
20:52:07.0674 7476 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
20:52:07.0690 7476 StillCam - ok
20:52:07.0752 7476 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:52:07.0768 7476 stisvc - ok
20:52:07.0783 7476 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
20:52:07.0783 7476 swenum - ok
20:52:07.0830 7476 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:52:07.0846 7476 swprv - ok
20:52:07.0908 7476 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:52:07.0939 7476 SysMain - ok
20:52:07.0986 7476 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:52:07.0986 7476 TabletInputService - ok
20:52:08.0002 7476 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:52:08.0017 7476 TapiSrv - ok
20:52:08.0033 7476 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:52:08.0033 7476 TBS - ok
20:52:08.0126 7476 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:52:08.0142 7476 Tcpip - ok
20:52:08.0189 7476 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:52:08.0204 7476 TCPIP6 - ok
20:52:08.0236 7476 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:52:08.0236 7476 tcpipreg - ok
20:52:08.0267 7476 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:52:08.0267 7476 TDPIPE - ok
20:52:08.0314 7476 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:52:08.0314 7476 TDTCP - ok
20:52:08.0345 7476 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:52:08.0360 7476 tdx - ok
20:52:08.0516 7476 [ 74FC70AE64A7B7DABEC9697CE0A1F4FA ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
20:52:08.0548 7476 TeamViewer7 - ok
20:52:08.0579 7476 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
20:52:08.0579 7476 TermDD - ok
20:52:08.0610 7476 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:52:08.0626 7476 TermService - ok
20:52:08.0641 7476 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:52:08.0641 7476 Themes - ok
20:52:08.0657 7476 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:52:08.0657 7476 THREADORDER - ok
20:52:08.0672 7476 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:52:08.0672 7476 TrkWks - ok
20:52:08.0735 7476 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:52:08.0735 7476 TrustedInstaller - ok
20:52:08.0766 7476 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:52:08.0766 7476 tssecsrv - ok
20:52:08.0782 7476 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:52:08.0782 7476 TsUsbFlt - ok
20:52:08.0828 7476 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
20:52:08.0828 7476 TsUsbGD - ok
20:52:08.0969 7476 [ 8F10CB1E51AF1083CA757DD07116B703 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
20:52:08.0984 7476 TuneUp.UtilitiesSvc - ok
20:52:09.0047 7476 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
20:52:09.0047 7476 TuneUpUtilitiesDrv - ok
20:52:09.0094 7476 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:52:09.0094 7476 tunnel - ok
20:52:09.0156 7476 [ 48743B69EA47C020A792D8649F753F44 ] TurboB C:\windows\system32\DRIVERS\TurboB.sys
20:52:09.0156 7476 TurboB - ok
20:52:09.0234 7476 [ 759F59E3EA3802FF23F93DCDB6FE9171 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:52:09.0234 7476 TurboBoost - ok
20:52:09.0265 7476 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
20:52:09.0265 7476 uagp35 - ok
20:52:09.0296 7476 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:52:09.0312 7476 udfs - ok
20:52:09.0343 7476 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:52:09.0343 7476 UI0Detect - ok
20:52:09.0374 7476 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:52:09.0390 7476 uliagpkx - ok
20:52:09.0406 7476 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:52:09.0421 7476 umbus - ok
20:52:09.0452 7476 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
20:52:09.0452 7476 UmPass - ok
20:52:09.0593 7476 [ FDF92EC84FECEE834FB10A2A0A19BCDA ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:52:09.0624 7476 UNS - ok
20:52:09.0640 7476 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:52:09.0655 7476 upnphost - ok
20:52:09.0686 7476 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:52:09.0686 7476 usbccgp - ok
20:52:09.0733 7476 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:52:09.0733 7476 usbcir - ok
20:52:09.0749 7476 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
20:52:09.0764 7476 usbehci - ok
20:52:09.0796 7476 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:52:09.0796 7476 usbhub - ok
20:52:09.0811 7476 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:52:09.0811 7476 usbohci - ok
20:52:09.0842 7476 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
20:52:09.0842 7476 usbprint - ok
20:52:09.0889 7476 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
20:52:09.0889 7476 usbscan - ok
20:52:09.0936 7476 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:52:09.0936 7476 USBSTOR - ok
20:52:09.0967 7476 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:52:09.0967 7476 usbuhci - ok
20:52:10.0014 7476 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
20:52:10.0014 7476 usbvideo - ok
20:52:10.0045 7476 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:52:10.0045 7476 UxSms - ok
20:52:10.0123 7476 [ 1DF649FA5380AD8558273CCEC44E573F ] UxTuneUp C:\windows\System32\uxtuneup.dll
20:52:10.0123 7476 UxTuneUp - ok
20:52:10.0139 7476 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:52:10.0154 7476 VaultSvc - ok
20:52:10.0186 7476 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:52:10.0186 7476 vdrvroot - ok
20:52:10.0217 7476 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:52:10.0232 7476 vds - ok
20:52:10.0264 7476 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:52:10.0264 7476 vga - ok
20:52:10.0279 7476 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:52:10.0279 7476 VgaSave - ok
20:52:10.0295 7476 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:52:10.0310 7476 vhdmp - ok
20:52:10.0342 7476 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:52:10.0342 7476 viaide - ok
20:52:10.0357 7476 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:52:10.0357 7476 volmgr - ok
20:52:10.0373 7476 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:52:10.0373 7476 volmgrx - ok
20:52:10.0404 7476 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:52:10.0404 7476 volsnap - ok
20:52:10.0451 7476 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
20:52:10.0451 7476 vsmraid - ok
20:52:10.0529 7476 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:52:10.0560 7476 VSS - ok
20:52:10.0576 7476 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:52:10.0576 7476 vwifibus - ok
20:52:10.0607 7476 [ 13A0DECD1794DE60A8427862C8669D27 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:52:10.0607 7476 vwififlt - ok
20:52:10.0638 7476 [ 49003B357D101CDC474937437ECF5ABC ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:52:10.0638 7476 vwifimp - ok
20:52:10.0685 7476 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:52:10.0700 7476 W32Time - ok
20:52:10.0732 7476 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
20:52:10.0732 7476 WacomPen - ok
20:52:10.0778 7476 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:52:10.0778 7476 WANARP - ok
20:52:10.0794 7476 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:52:10.0794 7476 Wanarpv6 - ok
20:52:10.0888 7476 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:52:10.0903 7476 WatAdminSvc - ok
20:52:10.0981 7476 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:52:10.0997 7476 wbengine - ok
20:52:11.0028 7476 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:52:11.0028 7476 WbioSrvc - ok
20:52:11.0044 7476 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:52:11.0059 7476 wcncsvc - ok
20:52:11.0059 7476 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:52:11.0075 7476 WcsPlugInService - ok
20:52:11.0106 7476 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
20:52:11.0106 7476 Wd - ok
20:52:11.0153 7476 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:52:11.0168 7476 Wdf01000 - ok
20:52:11.0184 7476 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:52:11.0184 7476 WdiServiceHost - ok
20:52:11.0184 7476 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:52:11.0184 7476 WdiSystemHost - ok
20:52:11.0215 7476 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:52:11.0215 7476 WebClient - ok
20:52:11.0262 7476 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:52:11.0278 7476 Wecsvc - ok
20:52:11.0293 7476 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:52:11.0309 7476 wercplsupport - ok
20:52:11.0324 7476 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:52:11.0324 7476 WerSvc - ok
20:52:11.0356 7476 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:52:11.0371 7476 WfpLwf - ok
20:52:11.0387 7476 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:52:11.0387 7476 WIMMount - ok
20:52:11.0418 7476 WinDefend - ok
20:52:11.0418 7476 WinHttpAutoProxySvc - ok
20:52:11.0496 7476 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:52:11.0496 7476 Winmgmt - ok
20:52:11.0590 7476 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:52:11.0621 7476 WinRM - ok
20:52:11.0699 7476 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
20:52:11.0699 7476 WinUsb - ok
20:52:11.0761 7476 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:52:11.0777 7476 Wlansvc - ok
20:52:11.0824 7476 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:52:11.0839 7476 wlcrasvc - ok
20:52:11.0917 7476 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:52:11.0948 7476 wlidsvc - ok
20:52:11.0980 7476 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
20:52:11.0980 7476 WmiAcpi - ok
20:52:11.0995 7476 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:52:11.0995 7476 wmiApSrv - ok
20:52:12.0042 7476 WMPNetworkSvc - ok
20:52:12.0073 7476 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:52:12.0073 7476 WPCSvc - ok
20:52:12.0089 7476 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:52:12.0104 7476 WPDBusEnum - ok
20:52:12.0120 7476 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:52:12.0120 7476 ws2ifsl - ok
20:52:12.0120 7476 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:52:12.0120 7476 wscsvc - ok
20:52:12.0136 7476 WSearch - ok
20:52:12.0229 7476 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:52:12.0260 7476 wuauserv - ok
20:52:12.0292 7476 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:52:12.0292 7476 WudfPf - ok
20:52:12.0354 7476 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:52:12.0354 7476 WUDFRd - ok
20:52:12.0416 7476 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:52:12.0416 7476 wudfsvc - ok
20:52:12.0463 7476 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
20:52:12.0479 7476 WwanSvc - ok
20:52:12.0526 7476 ================ Scan global ===============================
20:52:12.0557 7476 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:52:12.0588 7476 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:52:12.0604 7476 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:52:12.0635 7476 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:52:12.0682 7476 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:52:12.0682 7476 [Global] - ok
20:52:12.0697 7476 ================ Scan MBR ==================================
20:52:12.0713 7476 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
20:52:12.0962 7476 \Device\Harddisk0\DR0 - ok
20:52:12.0962 7476 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
20:52:12.0978 7476 \Device\Harddisk1\DR1 - ok
20:52:12.0978 7476 ================ Scan VBR ==================================
20:52:12.0978 7476 [ BC57708C0B00AF17ADBD39A69AC98CD2 ] \Device\Harddisk0\DR0\Partition1
20:52:12.0978 7476 \Device\Harddisk0\DR0\Partition1 - ok
20:52:12.0994 7476 [ F4757C677653BF07B50ED8C7FC2A185B ] \Device\Harddisk0\DR0\Partition2
20:52:12.0994 7476 \Device\Harddisk0\DR0\Partition2 - ok
20:52:13.0025 7476 [ 61EEAD2FD93EB54BE66D3D6081540277 ] \Device\Harddisk0\DR0\Partition3
20:52:13.0025 7476 \Device\Harddisk0\DR0\Partition3 - ok
20:52:13.0040 7476 [ 27CE155235D5C57985D8437721C5DB5D ] \Device\Harddisk1\DR1\Partition1
20:52:13.0040 7476 \Device\Harddisk1\DR1\Partition1 - ok
20:52:13.0040 7476 ============================================================
20:52:13.0040 7476 Scan finished
20:52:13.0040 7476 ============================================================
20:52:13.0056 5288 Detected object count: 0
20:52:13.0056 5288 Actual detected object count: 0
20:52:42.0571 2964 ============================================================
20:52:42.0571 2964 Scan started
20:52:42.0571 2964 Mode: Manual; SigCheck; TDLFS;
20:52:42.0571 2964 ============================================================
20:52:42.0883 2964 ================ Scan system memory ========================
20:52:42.0883 2964 System memory - ok
20:52:42.0883 2964 ================ Scan services =============================
20:52:42.0946 2964 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
20:52:43.0086 2964 !SASCORE - ok
20:52:43.0195 2964 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:52:43.0507 2964 1394ohci - ok
20:52:43.0538 2964 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:52:43.0570 2964 ACPI - ok
20:52:43.0601 2964 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:52:43.0710 2964 AcpiPmi - ok
20:52:43.0788 2964 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:52:43.0819 2964 AdobeARMservice - ok
20:52:43.0928 2964 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:52:43.0960 2964 AdobeFlashPlayerUpdateSvc - ok
20:52:44.0006 2964 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
20:52:44.0022 2964 adp94xx - ok
20:52:44.0053 2964 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
20:52:44.0069 2964 adpahci - ok
20:52:44.0084 2964 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
20:52:44.0100 2964 adpu320 - ok
20:52:44.0131 2964 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:52:44.0318 2964 AeLookupSvc - ok
20:52:44.0365 2964 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:52:44.0474 2964 AFD - ok
20:52:44.0490 2964 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:52:44.0506 2964 agp440 - ok
20:52:44.0537 2964 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:52:44.0599 2964 ALG - ok
20:52:44.0615 2964 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:52:44.0630 2964 aliide - ok
20:52:44.0646 2964 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:52:44.0662 2964 amdide - ok
20:52:44.0662 2964 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
20:52:44.0724 2964 AmdK8 - ok
20:52:44.0740 2964 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
20:52:44.0771 2964 AmdPPM - ok
20:52:44.0786 2964 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:52:44.0802 2964 amdsata - ok
20:52:44.0833 2964 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
20:52:44.0864 2964 amdsbs - ok
20:52:44.0880 2964 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:52:44.0896 2964 amdxata - ok
20:52:44.0911 2964 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:52:45.0083 2964 AppID - ok
20:52:45.0114 2964 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:52:45.0192 2964 AppIDSvc - ok
20:52:45.0208 2964 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
20:52:45.0254 2964 Appinfo - ok
20:52:45.0286 2964 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
20:52:45.0301 2964 arc - ok
20:52:45.0317 2964 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
20:52:45.0332 2964 arcsas - ok
20:52:45.0348 2964 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
20:52:45.0379 2964 aswFsBlk - ok
20:52:45.0426 2964 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
20:52:45.0457 2964 aswMonFlt - ok
20:52:45.0473 2964 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
20:52:45.0504 2964 aswRdr - ok
20:52:45.0535 2964 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
20:52:45.0566 2964 aswSnx - ok
20:52:45.0629 2964 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
20:52:45.0660 2964 aswSP - ok
20:52:45.0676 2964 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
20:52:45.0691 2964 aswTdi - ok
20:52:45.0707 2964 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:52:45.0769 2964 AsyncMac - ok
20:52:45.0785 2964 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:52:45.0800 2964 atapi - ok
20:52:45.0832 2964 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:52:45.0878 2964 AudioEndpointBuilder - ok
20:52:45.0894 2964 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:52:45.0925 2964 AudioSrv - ok
20:52:46.0034 2964 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:52:46.0066 2964 avast! Antivirus - ok
20:52:46.0081 2964 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:52:46.0159 2964 AxInstSV - ok
20:52:46.0206 2964 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
20:52:46.0300 2964 b06bdrv - ok
20:52:46.0300 2964 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:52:46.0346 2964 b57nd60a - ok
20:52:46.0456 2964 [ 63DD9C990883709053DD2C427DF0DB6F ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
20:52:46.0502 2964 BCM43XX - ok
20:52:46.0518 2964 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:52:46.0549 2964 BDESVC - ok
20:52:46.0580 2964 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:52:46.0627 2964 Beep - ok
20:52:46.0658 2964 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:52:46.0705 2964 BFE - ok
20:52:46.0752 2964 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:52:46.0846 2964 BITS - ok
20:52:46.0846 2964 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:52:46.0877 2964 blbdrive - ok
20:52:46.0908 2964 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:52:46.0970 2964 bowser - ok
20:52:47.0002 2964 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
20:52:47.0048 2964 BrFiltLo - ok
20:52:47.0064 2964 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
20:52:47.0080 2964 BrFiltUp - ok
20:52:47.0080 2964 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:52:47.0126 2964 BridgeMP - ok
20:52:47.0158 2964 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:52:47.0189 2964 Browser - ok
20:52:47.0204 2964 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:52:47.0251 2964 Brserid - ok
20:52:47.0251 2964 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:52:47.0282 2964 BrSerWdm - ok
20:52:47.0282 2964 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:52:47.0360 2964 BrUsbMdm - ok
20:52:47.0360 2964 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:52:47.0376 2964 BrUsbSer - ok
20:52:47.0407 2964 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
20:52:47.0470 2964 BthEnum - ok
20:52:47.0470 2964 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
20:52:47.0516 2964 BTHMODEM - ok
20:52:47.0548 2964 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
20:52:47.0594 2964 BthPan - ok
20:52:47.0641 2964 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
20:52:47.0704 2964 BTHPORT - ok
20:52:47.0735 2964 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:52:47.0782 2964 bthserv - ok
20:52:47.0828 2964 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
20:52:47.0875 2964 BTHUSB - ok
20:52:47.0922 2964 [ 72CC5DCC4E67E7927F94801166CFDCDA ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
20:52:47.0953 2964 BTWAMPFL - ok
20:52:47.0969 2964 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
20:52:47.0984 2964 btwaudio - ok
20:52:48.0000 2964 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
20:52:48.0016 2964 btwavdt - ok
20:52:48.0062 2964 [ F0AF04A96CA48B869284B5DC4CDB8CBB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:52:48.0094 2964 btwdins - ok
20:52:48.0109 2964 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
20:52:48.0109 2964 btwl2cap - ok
20:52:48.0125 2964 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
20:52:48.0125 2964 btwrchid - ok
20:52:48.0265 2964 catchme - ok
20:52:48.0296 2964 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:52:48.0421 2964 cdfs - ok
20:52:48.0437 2964 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:52:48.0468 2964 cdrom - ok
20:52:48.0499 2964 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:52:48.0593 2964 CertPropSvc - ok
20:52:48.0593 2964 CFRMD - ok
20:52:48.0608 2964 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
20:52:48.0640 2964 circlass - ok
20:52:48.0655 2964 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:52:48.0671 2964 CLFS - ok
20:52:48.0780 2964 [ FE1C81A049E5C5D67C4AB7C31C899F6F ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
20:52:48.0811 2964 CLKMSVC10_38F51D56 - ok
20:52:48.0874 2964 [ 5724D9ECBF2A378EBF85FDC3BDA01F98 ] CLPSLauncher C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
20:52:48.0905 2964 CLPSLauncher - ok
20:52:48.0998 2964 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:52:49.0030 2964 clr_optimization_v2.0.50727_32 - ok
20:52:49.0076 2964 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:52:49.0108 2964 clr_optimization_v2.0.50727_64 - ok
20:52:49.0170 2964 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:52:49.0201 2964 clr_optimization_v4.0.30319_32 - ok
20:52:49.0232 2964 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:52:49.0248 2964 clr_optimization_v4.0.30319_64 - ok
20:52:49.0279 2964 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
20:52:49.0295 2964 clwvd - ok
20:52:49.0310 2964 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:52:49.0342 2964 CmBatt - ok
20:52:49.0498 2964 [ 65FB5097D9EE7E3A99E932CFA0E4B344 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
20:52:49.0544 2964 cmdAgent - ok
20:52:49.0591 2964 [ 919ACCC22ABDC1C3CA68326C0E5DEAF9 ] cmdGuard C:\windows\system32\DRIVERS\cmdguard.sys
20:52:49.0607 2964 cmdGuard - ok
20:52:49.0622 2964 [ F8FECE0F1D44C4A58778083B00EEADAC ] cmdHlp C:\windows\system32\DRIVERS\cmdhlp.sys
20:52:49.0638 2964 cmdHlp - ok
20:52:49.0654 2964 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:52:49.0654 2964 cmdide - ok
20:52:49.0716 2964 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:52:49.0763 2964 CNG - ok
20:52:49.0778 2964 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
20:52:49.0778 2964 Compbatt - ok
20:52:49.0794 2964 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
20:52:49.0825 2964 CompositeBus - ok
20:52:49.0825 2964 COMSysApp - ok
20:52:49.0841 2964 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
20:52:49.0841 2964 crcdisk - ok
20:52:49.0872 2964 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
20:52:49.0934 2964 CryptSvc - ok
20:52:49.0966 2964 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:52:50.0028 2964 DcomLaunch - ok
20:52:50.0059 2964 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:52:50.0137 2964 defragsvc - ok
20:52:50.0153 2964 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:52:50.0231 2964 DfsC - ok
20:52:50.0262 2964 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:52:50.0309 2964 Dhcp - ok
20:52:50.0340 2964 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:52:50.0402 2964 discache - ok
20:52:50.0418 2964 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
20:52:50.0434 2964 Disk - ok
20:52:50.0465 2964 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:52:50.0527 2964 Dnscache - ok
20:52:50.0558 2964 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:52:50.0636 2964 dot3svc - ok
20:52:50.0652 2964 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:52:50.0699 2964 DPS - ok
20:52:50.0714 2964 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:52:50.0746 2964 drmkaud - ok
20:52:50.0761 2964 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:52:50.0792 2964 DXGKrnl - ok
20:52:50.0808 2964 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:52:50.0870 2964 EapHost - ok
20:52:50.0980 2964 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
20:52:51.0042 2964 ebdrv - ok
20:52:51.0073 2964 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:52:51.0104 2964 EFS - ok
20:52:51.0151 2964 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:52:51.0229 2964 ehRecvr - ok
20:52:51.0245 2964 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:52:51.0276 2964 ehSched - ok
20:52:51.0307 2964 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
20:52:51.0338 2964 elxstor - ok
20:52:51.0354 2964 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:52:51.0385 2964 ErrDev - ok
20:52:51.0416 2964 [ 0C8324462B9791A1ECE2A329A7378A55 ] ETD C:\windows\system32\DRIVERS\ETD.sys
20:52:51.0432 2964 ETD - ok
20:52:51.0463 2964 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:52:51.0526 2964 EventSystem - ok
20:52:51.0541 2964 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:52:51.0572 2964 exfat - ok
20:52:51.0572 2964 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:52:51.0619 2964 fastfat - ok
20:52:51.0666 2964 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:52:51.0697 2964 Fax - ok
20:52:51.0713 2964 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
20:52:51.0744 2964 fdc - ok
20:52:51.0775 2964 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:52:51.0838 2964 fdPHost - ok
20:52:51.0853 2964 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:52:51.0884 2964 FDResPub - ok
20:52:51.0916 2964 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:52:51.0916 2964 FileInfo - ok
20:52:51.0947 2964 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:52:52.0025 2964 Filetrace - ok
20:52:52.0040 2964 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
20:52:52.0056 2964 flpydisk - ok
20:52:52.0072 2964 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:52:52.0087 2964 FltMgr - ok
20:52:52.0150 2964 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\windows\system32\FntCache.dll
20:52:52.0212 2964 FontCache - ok
20:52:52.0259 2964 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:52:52.0290 2964 FontCache3.0.0.0 - ok
20:52:52.0306 2964 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:52:52.0321 2964 FsDepends - ok
20:52:52.0368 2964 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:52:52.0399 2964 Fs_Rec - ok
20:52:52.0430 2964 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:52:52.0462 2964 fvevol - ok
20:52:52.0493 2964 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
20:52:52.0508 2964 gagp30kx - ok
20:52:52.0555 2964 [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
20:52:52.0586 2964 GameConsoleService - ok
20:52:52.0680 2964 [ 31B5C233933CAF0FB1499F458F04FD9A ] GeekBuddyRSP C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
20:52:52.0711 2964 GeekBuddyRSP - ok
20:52:52.0774 2964 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:52:52.0852 2964 gpsvc - ok
20:52:52.0867 2964 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:52:52.0945 2964 hcw85cir - ok
20:52:52.0961 2964 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:52:53.0008 2964 HdAudAddService - ok
20:52:53.0039 2964 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:52:53.0070 2964 HDAudBus - ok
20:52:53.0086 2964 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
20:52:53.0132 2964 HidBatt - ok
20:52:53.0132 2964 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
20:52:53.0148 2964 HidBth - ok
20:52:53.0164 2964 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
20:52:53.0179 2964 HidIr - ok
20:52:53.0210 2964 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:52:53.0257 2964 hidserv - ok
20:52:53.0273 2964 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
20:52:53.0335 2964 HidUsb - ok
20:52:53.0351 2964 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:52:53.0429 2964 hkmsvc - ok
20:52:53.0460 2964 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:52:53.0491 2964 HomeGroupListener - ok
20:52:53.0507 2964 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:52:53.0538 2964 HomeGroupProvider - ok
20:52:53.0585 2964 [ 53DCA61931847E35C950504BFB7559C6 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
20:52:53.0616 2964 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - warning
20:52:53.0616 2964 HP LaserJet Service - detected UnsignedFile.Multi.Generic (1)
20:52:53.0647 2964 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:52:53.0678 2964 HpSAMD - ok
20:52:53.0710 2964 [ F7BC8C61850E51FADA9087B6D3155023 ] HPSIService C:\windows\system32\HPSIsvc.exe
20:52:53.0741 2964 HPSIService - ok
20:52:53.0756 2964 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:52:53.0803 2964 HTTP - ok
20:52:53.0834 2964 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:52:53.0834 2964 hwpolicy - ok
20:52:53.0850 2964 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
20:52:53.0866 2964 i8042prt - ok
20:52:53.0897 2964 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:52:53.0912 2964 iaStor - ok
20:52:53.0944 2964 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:52:53.0990 2964 iaStorV - ok
20:52:54.0053 2964 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:52:54.0084 2964 idsvc - ok
20:52:54.0365 2964 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:52:54.0552 2964 igfx - ok
20:52:54.0583 2964 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
20:52:54.0599 2964 iirsp - ok
20:52:54.0630 2964 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:52:54.0692 2964 IKEEXT - ok
20:52:54.0724 2964 [ C4E67D3037DC79E39D7136581A947F50 ] inspect C:\windows\system32\DRIVERS\inspect.sys
20:52:54.0739 2964 inspect - ok
20:52:54.0848 2964 [ B54138716EC5945BAE6914AD8DA086C0 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:52:54.0880 2964 IntcAzAudAddService - ok
20:52:54.0926 2964 [ AE594CC17C33AC146739494615E14851 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
20:52:54.0973 2964 IntcDAud - ok
20:52:54.0973 2964 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:52:54.0989 2964 intelide - ok
20:52:55.0020 2964 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:52:55.0051 2964 intelppm - ok
20:52:55.0082 2964 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:52:55.0114 2964 IPBusEnum - ok
20:52:55.0129 2964 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:52:55.0160 2964 IpFilterDriver - ok
20:52:55.0238 2964 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:52:55.0301 2964 iphlpsvc - ok
20:52:55.0316 2964 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:52:55.0348 2964 IPMIDRV - ok
20:52:55.0379 2964 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:52:55.0426 2964 IPNAT - ok
20:52:55.0426 2964 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:52:55.0472 2964 IRENUM - ok
20:52:55.0488 2964 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:52:55.0504 2964 isapnp - ok
20:52:55.0519 2964 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:52:55.0535 2964 iScsiPrt - ok
20:52:55.0550 2964 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
20:52:55.0550 2964 kbdclass - ok
20:52:55.0566 2964 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:52:55.0597 2964 kbdhid - ok
20:52:55.0597 2964 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:52:55.0613 2964 KeyIso - ok
20:52:55.0644 2964 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:52:55.0644 2964 KSecDD - ok
20:52:55.0675 2964 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:52:55.0691 2964 KSecPkg - ok
20:52:55.0691 2964 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:52:55.0722 2964 ksthunk - ok
20:52:55.0769 2964 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:52:55.0816 2964 KtmRm - ok
20:52:55.0847 2964 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:52:55.0894 2964 LanmanServer - ok
20:52:55.0925 2964 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:52:55.0972 2964 LanmanWorkstation - ok
20:52:55.0972 2964 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:52:56.0034 2964 lltdio - ok
20:52:56.0081 2964 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:52:56.0159 2964 lltdsvc - ok
20:52:56.0174 2964 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:52:56.0252 2964 lmhosts - ok
20:52:56.0315 2964 [ 926EBA26A8B49D1597751CED06B50862 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:52:56.0346 2964 LMS - ok
20:52:56.0377 2964 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
20:52:56.0393 2964 LSI_FC - ok
20:52:56.0440 2964 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
20:52:56.0471 2964 LSI_SAS - ok
20:52:56.0486 2964 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
20:52:56.0502 2964 LSI_SAS2 - ok
20:52:56.0518 2964 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
20:52:56.0533 2964 LSI_SCSI - ok
20:52:56.0549 2964 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:52:56.0596 2964 luafv - ok
20:52:56.0720 2964 [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe
20:52:56.0752 2964 M4-Service - ok
20:52:56.0783 2964 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:52:56.0845 2964 Mcx2Svc - ok
20:52:56.0876 2964 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
20:52:56.0892 2964 megasas - ok
20:52:56.0923 2964 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
20:52:56.0954 2964 MegaSR - ok
20:52:56.0970 2964 [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:52:56.0986 2964 MEIx64 - ok
20:52:57.0001 2964 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:52:57.0064 2964 MMCSS - ok
20:52:57.0079 2964 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:52:57.0110 2964 Modem - ok
20:52:57.0126 2964 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:52:57.0157 2964 monitor - ok
20:52:57.0173 2964 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
20:52:57.0188 2964 mouclass - ok
20:52:57.0204 2964 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:52:57.0235 2964 mouhid - ok
20:52:57.0251 2964 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:52:57.0266 2964 mountmgr - ok
20:52:57.0313 2964 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:52:57.0344 2964 MozillaMaintenance - ok
20:52:57.0360 2964 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:52:57.0376 2964 mpio - ok
20:52:57.0376 2964 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:52:57.0407 2964 mpsdrv - ok
20:52:57.0469 2964 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:52:57.0516 2964 MpsSvc - ok
20:52:57.0532 2964 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:52:57.0563 2964 MRxDAV - ok
20:52:57.0594 2964 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:52:57.0656 2964 mrxsmb - ok
20:52:57.0688 2964 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:52:57.0719 2964 mrxsmb10 - ok
20:52:57.0719 2964 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:52:57.0734 2964 mrxsmb20 - ok
20:52:57.0766 2964 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:52:57.0781 2964 msahci - ok
20:52:57.0797 2964 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:52:57.0812 2964 msdsm - ok
20:52:57.0828 2964 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:52:57.0859 2964 MSDTC - ok
20:52:57.0875 2964 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:52:57.0922 2964 Msfs - ok
20:52:57.0937 2964 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:52:57.0984 2964 mshidkmdf - ok
20:52:57.0984 2964 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:52:58.0000 2964 msisadrv - ok
20:52:58.0015 2964 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:52:58.0062 2964 MSiSCSI - ok
20:52:58.0062 2964 msiserver - ok
20:52:58.0078 2964 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:52:58.0124 2964 MSKSSRV - ok
20:52:58.0140 2964 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:52:58.0187 2964 MSPCLOCK - ok
20:52:58.0187 2964 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:52:58.0234 2964 MSPQM - ok
20:52:58.0249 2964 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:52:58.0265 2964 MsRPC - ok
20:52:58.0296 2964 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
20:52:58.0312 2964 mssmbios - ok
20:52:58.0327 2964 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:52:58.0358 2964 MSTEE - ok
20:52:58.0358 2964 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
20:52:58.0390 2964 MTConfig - ok
20:52:58.0421 2964 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:52:58.0421 2964 Mup - ok
20:52:58.0436 2964 [ F1B096BF8C2A7A5A1E42DC5A13E35952 ] mvusbews C:\windows\system32\Drivers\mvusbews.sys
20:52:58.0483 2964 mvusbews - ok
20:52:58.0546 2964 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:52:58.0639 2964 napagent - ok
20:52:58.0686 2964 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:52:58.0717 2964 NativeWifiP - ok
20:52:58.0780 2964 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:52:58.0811 2964 NDIS - ok
20:52:58.0826 2964 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:52:58.0858 2964 NdisCap - ok
20:52:58.0889 2964 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:52:58.0920 2964 NdisTapi - ok
20:52:58.0920 2964 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:52:58.0967 2964 Ndisuio - ok
20:52:58.0967 2964 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:52:59.0014 2964 NdisWan - ok
20:52:59.0029 2964 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:52:59.0060 2964 NDProxy - ok
20:52:59.0076 2964 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:52:59.0123 2964 NetBIOS - ok
20:52:59.0154 2964 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:52:59.0201 2964 NetBT - ok
20:52:59.0216 2964 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:52:59.0232 2964 Netlogon - ok
20:52:59.0279 2964 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:52:59.0326 2964 Netman - ok
20:52:59.0341 2964 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:52:59.0388 2964 netprofm - ok
20:52:59.0404 2964 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:52:59.0435 2964 NetTcpPortSharing - ok
20:52:59.0466 2964 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
20:52:59.0482 2964 nfrd960 - ok
20:52:59.0544 2964 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
20:52:59.0606 2964 NlaSvc - ok
20:52:59.0747 2964 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:52:59.0794 2964 NOBU - ok
20:52:59.0809 2964 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:52:59.0840 2964 Npfs - ok
20:52:59.0872 2964 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:52:59.0918 2964 nsi - ok
20:52:59.0950 2964 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:52:59.0981 2964 nsiproxy - ok
20:53:00.0074 2964 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:53:00.0121 2964 Ntfs - ok
20:53:00.0152 2964 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:53:00.0215 2964 Null - ok
20:53:00.0246 2964 [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
20:53:00.0277 2964 nusb3hub - ok
20:53:00.0308 2964 [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
20:53:00.0371 2964 nusb3xhc - ok
20:53:00.0667 2964 [ FBE6AC1C3591CB67543FAD15ABD26BCB ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
20:53:00.0839 2964 nvlddmkm - ok
20:53:00.0854 2964 [ 680C5BAF7D0190B1485068FC4BA75F1C ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
20:53:00.0854 2964 nvpciflt - ok
20:53:00.0886 2964 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:53:00.0901 2964 nvraid - ok
20:53:00.0901 2964 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:53:00.0917 2964 nvstor - ok
20:53:00.0964 2964 [ 147B0D17255FD796F990CC6F745605C5 ] NVSvc C:\windows\system32\nvvsvc.exe
20:53:00.0979 2964 NVSvc - ok
20:53:01.0088 2964 [ 812BF9531C827E1D8029843CDDB2B5D6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:53:01.0120 2964 nvUpdatusService - ok
20:53:01.0151 2964 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:53:01.0166 2964 nv_agp - ok
20:53:01.0182 2964 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:53:01.0229 2964 ohci1394 - ok
20:53:01.0260 2964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:53:01.0322 2964 p2pimsvc - ok
20:53:01.0369 2964 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:53:01.0416 2964 p2psvc - ok
20:53:01.0447 2964 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
20:53:01.0478 2964 Parport - ok
20:53:01.0510 2964 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:53:01.0525 2964 partmgr - ok
20:53:01.0541 2964 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:53:01.0572 2964 PcaSvc - ok
20:53:01.0603 2964 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:53:01.0603 2964 pci - ok
20:53:01.0619 2964 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:53:01.0634 2964 pciide - ok
20:53:01.0650 2964 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
20:53:01.0666 2964 pcmcia - ok
20:53:01.0666 2964 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:53:01.0681 2964 pcw - ok
20:53:01.0697 2964 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:53:01.0744 2964 PEAUTH - ok
20:53:01.0806 2964 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:53:01.0868 2964 PerfHost - ok
20:53:01.0915 2964 [ ACC93675D78D1C07DAD09D7837F2397A ] pgsql-8.3 C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
20:53:01.0931 2964 pgsql-8.3 ( UnsignedFile.Multi.Generic ) - warning
20:53:01.0931 2964 pgsql-8.3 - detected UnsignedFile.Multi.Generic (1)
20:53:02.0009 2964 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:53:02.0071 2964 pla - ok
20:53:02.0102 2964 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:53:02.0134 2964 PlugPlay - ok
20:53:02.0165 2964 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\windows\system32\DRIVERS\pneteth.sys
20:53:02.0227 2964 pneteth - ok
20:53:02.0258 2964 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:53:02.0305 2964 PNRPAutoReg - ok
20:53:02.0336 2964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:53:02.0368 2964 PNRPsvc - ok
20:53:02.0414 2964 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:53:02.0492 2964 PolicyAgent - ok
20:53:02.0508 2964 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
20:53:02.0570 2964 Power - ok
20:53:02.0602 2964 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:53:02.0648 2964 PptpMiniport - ok
20:53:02.0680 2964 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
20:53:02.0695 2964 Processor - ok
20:53:02.0742 2964 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:53:02.0804 2964 ProfSvc - ok
20:53:02.0820 2964 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:53:02.0851 2964 ProtectedStorage - ok
20:53:02.0867 2964 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:53:02.0929 2964 Psched - ok
20:53:03.0007 2964 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
20:53:03.0038 2964 ql2300 - ok
20:53:03.0054 2964 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
20:53:03.0070 2964 ql40xx - ok
20:53:03.0101 2964 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:53:03.0116 2964 QWAVE - ok
20:53:03.0148 2964 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:53:03.0194 2964 QWAVEdrv - ok
20:53:03.0210 2964 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:53:03.0272 2964 RasAcd - ok
20:53:03.0304 2964 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:53:03.0366 2964 RasAgileVpn - ok
20:53:03.0397 2964 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:53:03.0460 2964 RasAuto - ok
20:53:03.0475 2964 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:53:03.0506 2964 Rasl2tp - ok
20:53:03.0538 2964 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:53:03.0616 2964 RasMan - ok
20:53:03.0616 2964 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:53:03.0662 2964 RasPppoe - ok
20:53:03.0678 2964 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:53:03.0756 2964 RasSstp - ok
20:53:03.0787 2964 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:53:03.0818 2964 rdbss - ok
20:53:03.0818 2964 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
20:53:03.0881 2964 rdpbus - ok
20:53:03.0881 2964 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:53:03.0912 2964 RDPCDD - ok
20:53:03.0928 2964 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:53:03.0974 2964 RDPENCDD - ok
20:53:03.0974 2964 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:53:04.0006 2964 RDPREFMP - ok
20:53:04.0037 2964 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:53:04.0084 2964 RDPWD - ok
20:53:04.0099 2964 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:53:04.0115 2964 rdyboost - ok
20:53:04.0130 2964 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:53:04.0162 2964 RemoteAccess - ok
20:53:04.0193 2964 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:53:04.0240 2964 RemoteRegistry - ok
20:53:04.0271 2964 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
20:53:04.0302 2964 RFCOMM - ok
20:53:04.0380 2964 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
20:53:04.0411 2964 RichVideo ( UnsignedFile.Multi.Generic ) - warning
20:53:04.0411 2964 RichVideo - detected UnsignedFile.Multi.Generic (1)
20:53:04.0442 2964 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:53:04.0520 2964 RpcEptMapper - ok
20:53:04.0552 2964 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:53:04.0598 2964 RpcLocator - ok
20:53:04.0630 2964 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:53:04.0676 2964 RpcSs - ok
20:53:04.0723 2964 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:53:04.0786 2964 rspndr - ok
20:53:04.0832 2964 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
20:53:04.0848 2964 RTL8167 - ok
20:53:04.0864 2964 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\windows\system32\Drivers\SABI.sys
20:53:04.0910 2964 SABI - ok
20:53:04.0926 2964 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:53:04.0926 2964 SamSs - ok
20:53:04.0957 2964 [ D641337B75B9A9D5AE10687AA1097755 ] Samsung UPD Service C:\windows\System32\SUPDSvc.exe
20:53:04.0957 2964 Samsung UPD Service - ok
20:53:05.0035 2964 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
20:53:05.0066 2964 SASDIFSV - ok
20:53:05.0066 2964 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
20:53:05.0098 2964 SASKUTIL - ok
20:53:05.0113 2964 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:53:05.0129 2964 sbp2port - ok
20:53:05.0160 2964 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:53:05.0191 2964 SCardSvr - ok
20:53:05.0207 2964 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:53:05.0238 2964 scfilter - ok
20:53:05.0285 2964 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:53:05.0332 2964 Schedule - ok
20:53:05.0363 2964 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:53:05.0378 2964 SCPolicySvc - ok
20:53:05.0410 2964 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:53:05.0472 2964 SDRSVC - ok
20:53:05.0488 2964 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:53:05.0581 2964 secdrv - ok
20:53:05.0597 2964 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:53:05.0644 2964 seclogon - ok
20:53:05.0644 2964 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:53:05.0722 2964 SENS - ok
20:53:05.0737 2964 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:53:05.0800 2964 SensrSvc - ok
20:53:05.0800 2964 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
20:53:05.0831 2964 Serenum - ok
20:53:05.0846 2964 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
20:53:05.0878 2964 Serial - ok
20:53:05.0893 2964 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
20:53:05.0909 2964 sermouse - ok
20:53:05.0940 2964 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:53:05.0987 2964 SessionEnv - ok
20:53:05.0987 2964 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:53:06.0002 2964 sffdisk - ok
20:53:06.0018 2964 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:53:06.0034 2964 sffp_mmc - ok
20:53:06.0034 2964 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:53:06.0049 2964 sffp_sd - ok
20:53:06.0065 2964 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
20:53:06.0080 2964 sfloppy - ok
20:53:06.0112 2964 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:53:06.0158 2964 SharedAccess - ok
20:53:06.0190 2964 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:53:06.0236 2964 ShellHWDetection - ok
20:53:06.0252 2964 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
20:53:06.0268 2964 SiSRaid2 - ok
20:53:06.0283 2964 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
20:53:06.0299 2964 SiSRaid4 - ok
20:53:06.0346 2964 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:53:06.0377 2964 SkypeUpdate - ok
20:53:06.0392 2964 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:53:06.0439 2964 Smb - ok
20:53:06.0455 2964 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:53:06.0470 2964 SNMPTRAP - ok
20:53:06.0486 2964 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:53:06.0502 2964 spldr - ok
20:53:06.0533 2964 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:53:06.0580 2964 Spooler - ok
20:53:06.0704 2964 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:53:06.0782 2964 sppsvc - ok
20:53:06.0798 2964 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:53:06.0845 2964 sppuinotify - ok
20:53:06.0876 2964 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:53:06.0954 2964 srv - ok
20:53:06.0970 2964 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:53:07.0001 2964 srv2 - ok
20:53:07.0016 2964 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:53:07.0032 2964 srvnet - ok
20:53:07.0048 2964 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:53:07.0094 2964 SSDPSRV - ok
20:53:07.0110 2964 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:53:07.0157 2964 SstpSvc - ok
20:53:07.0172 2964 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
20:53:07.0188 2964 stexstor - ok
20:53:07.0204 2964 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
20:53:07.0219 2964 StillCam - ok
20:53:07.0266 2964 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:53:07.0297 2964 stisvc - ok
20:53:07.0328 2964 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
20:53:07.0360 2964 swenum - ok
20:53:07.0391 2964 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:53:07.0453 2964 swprv - ok
20:53:07.0500 2964 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:53:07.0547 2964 SysMain - ok
20:53:07.0562 2964 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:53:07.0594 2964 TabletInputService - ok
20:53:07.0609 2964 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:53:07.0640 2964 TapiSrv - ok
20:53:07.0672 2964 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:53:07.0718 2964 TBS - ok
20:53:07.0781 2964 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:53:07.0812 2964 Tcpip - ok
20:53:07.0828 2964 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:53:07.0859 2964 TCPIP6 - ok
20:53:07.0890 2964 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:53:07.0906 2964 tcpipreg - ok
20:53:07.0937 2964 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:53:07.0984 2964 TDPIPE - ok
20:53:08.0015 2964 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:53:08.0046 2964 TDTCP - ok
20:53:08.0062 2964 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:53:08.0108 2964 tdx - ok
20:53:08.0264 2964 [ 74FC70AE64A7B7DABEC9697CE0A1F4FA ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
20:53:08.0327 2964 TeamViewer7 - ok
20:53:08.0358 2964 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
20:53:08.0389 2964 TermDD - ok
20:53:08.0436 2964 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:53:08.0483 2964 TermService - ok
20:53:08.0498 2964 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:53:08.0514 2964 Themes - ok
20:53:08.0530 2964 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:53:08.0561 2964 THREADORDER - ok
20:53:08.0576 2964 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:53:08.0608 2964 TrkWks - ok
20:53:08.0670 2964 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:53:08.0748 2964 TrustedInstaller - ok
20:53:08.0764 2964 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:53:08.0810 2964 tssecsrv - ok
20:53:08.0826 2964 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:53:08.0873 2964 TsUsbFlt - ok
20:53:08.0904 2964 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
20:53:08.0951 2964 TsUsbGD - ok
20:53:09.0076 2964 [ 8F10CB1E51AF1083CA757DD07116B703 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
20:53:09.0122 2964 TuneUp.UtilitiesSvc - ok
20:53:09.0138 2964 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
20:53:09.0154 2964 TuneUpUtilitiesDrv - ok
20:53:09.0169 2964 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:53:09.0216 2964 tunnel - ok
20:53:09.0247 2964 [ 48743B69EA47C020A792D8649F753F44 ] TurboB C:\windows\system32\DRIVERS\TurboB.sys
20:53:09.0263 2964 TurboB - ok
20:53:09.0294 2964 [ 759F59E3EA3802FF23F93DCDB6FE9171 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:53:09.0325 2964 TurboBoost - ok
20:53:09.0341 2964 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
20:53:09.0356 2964 uagp35 - ok
20:53:09.0372 2964 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:53:09.0434 2964 udfs - ok
20:53:09.0466 2964 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:53:09.0481 2964 UI0Detect - ok
20:53:09.0497 2964 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:53:09.0512 2964 uliagpkx - ok
20:53:09.0512 2964 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:53:09.0544 2964 umbus - ok
20:53:09.0575 2964 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
20:53:09.0606 2964 UmPass - ok
20:53:09.0762 2964 [ FDF92EC84FECEE834FB10A2A0A19BCDA ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:53:09.0809 2964 UNS - ok
20:53:09.0840 2964 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:53:09.0902 2964 upnphost - ok
20:53:09.0934 2964 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:53:09.0980 2964 usbccgp - ok
20:53:09.0996 2964 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:53:10.0027 2964 usbcir - ok
20:53:10.0027 2964 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
20:53:10.0043 2964 usbehci - ok
20:53:10.0058 2964 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:53:10.0090 2964 usbhub - ok
20:53:10.0105 2964 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:53:10.0121 2964 usbohci - ok
20:53:10.0136 2964 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
20:53:10.0136 2964 usbprint - ok
20:53:10.0183 2964 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
20:53:10.0246 2964 usbscan - ok
20:53:10.0277 2964 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:53:10.0339 2964 USBSTOR - ok
20:53:10.0355 2964 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:53:10.0402 2964 usbuhci - ok
20:53:10.0448 2964 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
20:53:10.0480 2964 usbvideo - ok
20:53:10.0511 2964 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:53:10.0573 2964 UxSms - ok
20:53:10.0589 2964 [ 1DF649FA5380AD8558273CCEC44E573F ] UxTuneUp C:\windows\System32\uxtuneup.dll
20:53:10.0604 2964 UxTuneUp - ok
20:53:10.0604 2964 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:53:10.0620 2964 VaultSvc - ok
20:53:10.0651 2964 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:53:10.0651 2964 vdrvroot - ok
20:53:10.0682 2964 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:53:10.0714 2964 vds - ok
20:53:10.0729 2964 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:53:10.0745 2964 vga - ok
20:53:10.0745 2964 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:53:10.0792 2964 VgaSave - ok
20:53:10.0807 2964 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:53:10.0823 2964 vhdmp - ok
20:53:10.0838 2964 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:53:10.0838 2964 viaide - ok
20:53:10.0854 2964 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:53:10.0854 2964 volmgr - ok
20:53:10.0870 2964 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:53:10.0885 2964 volmgrx - ok
20:53:10.0901 2964 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:53:10.0916 2964 volsnap - ok
20:53:10.0932 2964 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
20:53:10.0948 2964 vsmraid - ok
20:53:11.0026 2964 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:53:11.0088 2964 VSS - ok
20:53:11.0104 2964 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:53:11.0150 2964 vwifibus - ok
20:53:11.0166 2964 [ 13A0DECD1794DE60A8427862C8669D27 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:53:11.0197 2964 vwififlt - ok
20:53:11.0228 2964 [ 49003B357D101CDC474937437ECF5ABC ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:53:11.0244 2964 vwifimp - ok
20:53:11.0275 2964 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:53:11.0322 2964 W32Time - ok
20:53:11.0353 2964 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
20:53:11.0353 2964 WacomPen - ok
20:53:11.0369 2964 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:53:11.0400 2964 WANARP - ok
20:53:11.0400 2964 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:53:11.0431 2964 Wanarpv6 - ok
20:53:11.0494 2964 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:53:11.0540 2964 WatAdminSvc - ok
20:53:11.0618 2964 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:53:11.0665 2964 wbengine - ok
20:53:11.0696 2964 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:53:11.0743 2964 WbioSrvc - ok
20:53:11.0774 2964 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:53:11.0806 2964 wcncsvc - ok
20:53:11.0821 2964 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:53:11.0852 2964 WcsPlugInService - ok
20:53:11.0884 2964 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
20:53:11.0899 2964 Wd - ok
20:53:11.0930 2964 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:53:11.0962 2964 Wdf01000 - ok
20:53:11.0962 2964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:53:12.0071 2964 WdiServiceHost - ok
20:53:12.0071 2964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:53:12.0102 2964 WdiSystemHost - ok
20:53:12.0118 2964 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:53:12.0149 2964 WebClient - ok
20:53:12.0196 2964 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:53:12.0258 2964 Wecsvc - ok
20:53:12.0274 2964 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:53:12.0320 2964 wercplsupport - ok
20:53:12.0336 2964 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:53:12.0383 2964 WerSvc - ok
20:53:12.0398 2964 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:53:12.0430 2964 WfpLwf - ok
20:53:12.0461 2964 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:53:12.0476 2964 WIMMount - ok
20:53:12.0492 2964 WinDefend - ok
20:53:12.0508 2964 WinHttpAutoProxySvc - ok
20:53:12.0570 2964 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:53:12.0648 2964 Winmgmt - ok
20:53:12.0742 2964 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:53:12.0820 2964 WinRM - ok
20:53:12.0851 2964 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
20:53:12.0898 2964 WinUsb - ok
20:53:12.0960 2964 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:53:13.0022 2964 Wlansvc - ok
20:53:13.0054 2964 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:53:13.0085 2964 wlcrasvc - ok
20:53:13.0194 2964 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:53:13.0241 2964 wlidsvc - ok
20:53:13.0256 2964 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
20:53:13.0272 2964 WmiAcpi - ok
20:53:13.0303 2964 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:53:13.0319 2964 wmiApSrv - ok
20:53:13.0350 2964 WMPNetworkSvc - ok
20:53:13.0381 2964 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:53:13.0444 2964 WPCSvc - ok
20:53:13.0459 2964 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:53:13.0490 2964 WPDBusEnum - ok
20:53:13.0506 2964 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:53:13.0553 2964 ws2ifsl - ok
20:53:13.0568 2964 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:53:13.0584 2964 wscsvc - ok
20:53:13.0584 2964 WSearch - ok
20:53:13.0693 2964 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:53:13.0724 2964 wuauserv - ok
20:53:13.0756 2964 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:53:13.0802 2964 WudfPf - ok
20:53:13.0834 2964 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:53:13.0865 2964 WUDFRd - ok
20:53:13.0896 2964 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:53:13.0943 2964 wudfsvc - ok
20:53:13.0974 2964 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
20:53:14.0021 2964 WwanSvc - ok
20:53:14.0036 2964 ================ Scan global ===============================
20:53:14.0068 2964 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:53:14.0099 2964 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:53:14.0114 2964 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:53:14.0146 2964 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:53:14.0177 2964 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:53:14.0192 2964 [Global] - ok
20:53:14.0192 2964 ================ Scan MBR ==================================
20:53:14.0208 2964 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
20:53:14.0536 2964 \Device\Harddisk0\DR0 - ok
20:53:14.0551 2964 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
20:53:14.0988 2964 \Device\Harddisk1\DR1 - ok
20:53:14.0988 2964 ================ Scan VBR ==================================
20:53:14.0988 2964 [ BC57708C0B00AF17ADBD39A69AC98CD2 ] \Device\Harddisk0\DR0\Partition1
20:53:14.0988 2964 \Device\Harddisk0\DR0\Partition1 - ok
20:53:15.0004 2964 [ F4757C677653BF07B50ED8C7FC2A185B ] \Device\Harddisk0\DR0\Partition2
20:53:15.0004 2964 \Device\Harddisk0\DR0\Partition2 - ok
20:53:15.0035 2964 [ 61EEAD2FD93EB54BE66D3D6081540277 ] \Device\Harddisk0\DR0\Partition3
20:53:15.0035 2964 \Device\Harddisk0\DR0\Partition3 - ok
20:53:15.0035 2964 [ 27CE155235D5C57985D8437721C5DB5D ] \Device\Harddisk1\DR1\Partition1
20:53:15.0035 2964 \Device\Harddisk1\DR1\Partition1 - ok
20:53:15.0035 2964 ============================================================
20:53:15.0035 2964 Scan finished
20:53:15.0035 2964 ============================================================
20:53:15.0050 1104 Detected object count: 3
20:53:15.0050 1104 Actual detected object count: 3
20:53:23.0350 1104 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:53:23.0350 1104 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:53:23.0350 1104 pgsql-8.3 ( UnsignedFile.Multi.Generic ) - skipped by user
20:53:23.0350 1104 pgsql-8.3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:53:23.0365 1104 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
20:53:23.0365 1104 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:53:48.0435 7328 ============================================================
20:53:48.0435 7328 Scan started
20:53:48.0435 7328 Mode: Manual;
20:53:48.0435 7328 ============================================================
20:53:48.0841 7328 ================ Scan system memory ========================
20:53:48.0841 7328 System memory - ok
20:53:48.0857 7328 ================ Scan services =============================
20:53:48.0935 7328 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
20:53:48.0935 7328 !SASCORE - ok
20:53:49.0075 7328 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:53:49.0075 7328 1394ohci - ok
20:53:49.0106 7328 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:53:49.0122 7328 ACPI - ok
20:53:49.0137 7328 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:53:49.0137 7328 AcpiPmi - ok
20:53:49.0231 7328 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:53:49.0231 7328 AdobeARMservice - ok
20:53:49.0371 7328 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:53:49.0371 7328 AdobeFlashPlayerUpdateSvc - ok
20:53:49.0449 7328 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
20:53:49.0465 7328 adp94xx - ok
20:53:49.0512 7328 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
20:53:49.0512 7328 adpahci - ok
20:53:49.0543 7328 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
20:53:49.0543 7328 adpu320 - ok
20:53:49.0590 7328 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:53:49.0590 7328 AeLookupSvc - ok
20:53:49.0652 7328 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:53:49.0652 7328 AFD - ok
20:53:49.0683 7328 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:53:49.0683 7328 agp440 - ok
20:53:49.0715 7328 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:53:49.0715 7328 ALG - ok
20:53:49.0746 7328 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:53:49.0746 7328 aliide - ok
20:53:49.0777 7328 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:53:49.0777 7328 amdide - ok
20:53:49.0777 7328 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
20:53:49.0777 7328 AmdK8 - ok
20:53:49.0793 7328 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
20:53:49.0793 7328 AmdPPM - ok
20:53:49.0824 7328 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:53:49.0824 7328 amdsata - ok
20:53:49.0871 7328 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
20:53:49.0886 7328 amdsbs - ok
20:53:49.0902 7328 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:53:49.0902 7328 amdxata - ok
20:53:49.0917 7328 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:53:49.0917 7328 AppID - ok
20:53:49.0949 7328 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:53:49.0949 7328 AppIDSvc - ok
20:53:49.0980 7328 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
20:53:49.0980 7328 Appinfo - ok
20:53:50.0011 7328 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
20:53:50.0011 7328 arc - ok
20:53:50.0042 7328 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
20:53:50.0042 7328 arcsas - ok
20:53:50.0073 7328 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\windows\system32\drivers\aswFsBlk.sys
20:53:50.0089 7328 aswFsBlk - ok
20:53:50.0136 7328 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\windows\system32\drivers\aswMonFlt.sys
20:53:50.0136 7328 aswMonFlt - ok
20:53:50.0167 7328 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\windows\System32\Drivers\aswrdr2.sys
20:53:50.0167 7328 aswRdr - ok
20:53:50.0214 7328 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\windows\system32\drivers\aswSnx.sys
20:53:50.0229 7328 aswSnx - ok
20:53:50.0276 7328 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\windows\system32\drivers\aswSP.sys
20:53:50.0292 7328 aswSP - ok
20:53:50.0323 7328 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\windows\system32\drivers\aswTdi.sys
20:53:50.0323 7328 aswTdi - ok
20:53:50.0354 7328 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:53:50.0354 7328 AsyncMac - ok
20:53:50.0370 7328 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:53:50.0370 7328 atapi - ok
20:53:50.0417 7328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:53:50.0432 7328 AudioEndpointBuilder - ok
20:53:50.0448 7328 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:53:50.0448 7328 AudioSrv - ok
20:53:50.0557 7328 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:53:50.0557 7328 avast! Antivirus - ok
20:53:50.0588 7328 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:53:50.0588 7328 AxInstSV - ok
20:53:50.0651 7328 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
20:53:50.0651 7328 b06bdrv - ok
20:53:50.0682 7328 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:53:50.0697 7328 b57nd60a - ok
20:53:50.0838 7328 [ 63DD9C990883709053DD2C427DF0DB6F ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
20:53:50.0853 7328 BCM43XX - ok
20:53:50.0885 7328 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:53:50.0885 7328 BDESVC - ok
20:53:50.0931 7328 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:53:50.0931 7328 Beep - ok
20:53:50.0963 7328 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:53:50.0963 7328 BFE - ok
20:53:51.0009 7328 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:53:51.0025 7328 BITS - ok
20:53:51.0056 7328 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:53:51.0056 7328 blbdrive - ok
20:53:51.0087 7328 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:53:51.0087 7328 bowser - ok
20:53:51.0103 7328 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
20:53:51.0103 7328 BrFiltLo - ok
20:53:51.0119 7328 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
20:53:51.0119 7328 BrFiltUp - ok
20:53:51.0119 7328 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:53:51.0119 7328 BridgeMP - ok
20:53:51.0165 7328 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:53:51.0181 7328 Browser - ok
20:53:51.0197 7328 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:53:51.0197 7328 Brserid - ok
20:53:51.0212 7328 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:53:51.0212 7328 BrSerWdm - ok
20:53:51.0228 7328 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:53:51.0228 7328 BrUsbMdm - ok
20:53:51.0228 7328 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:53:51.0228 7328 BrUsbSer - ok
20:53:51.0259 7328 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
20:53:51.0275 7328 BthEnum - ok
20:53:51.0275 7328 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
20:53:51.0275 7328 BTHMODEM - ok
20:53:51.0353 7328 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
20:53:51.0353 7328 BthPan - ok
20:53:51.0415 7328 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
20:53:51.0431 7328 BTHPORT - ok
20:53:51.0462 7328 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:53:51.0462 7328 bthserv - ok
20:53:51.0493 7328 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
20:53:51.0493 7328 BTHUSB - ok
20:53:51.0540 7328 [ 72CC5DCC4E67E7927F94801166CFDCDA ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
20:53:51.0555 7328 BTWAMPFL - ok
20:53:51.0571 7328 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\windows\system32\drivers\btwaudio.sys
20:53:51.0571 7328 btwaudio - ok
20:53:51.0602 7328 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
20:53:51.0602 7328 btwavdt - ok
20:53:51.0665 7328 [ F0AF04A96CA48B869284B5DC4CDB8CBB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:53:51.0680 7328 btwdins - ok
20:53:51.0711 7328 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
20:53:51.0711 7328 btwl2cap - ok
20:53:51.0727 7328 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
20:53:51.0727 7328 btwrchid - ok
20:53:51.0867 7328 catchme - ok
20:53:51.0899 7328 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:53:51.0914 7328 cdfs - ok
20:53:51.0930 7328 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:53:51.0930 7328 cdrom - ok
20:53:51.0961 7328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:53:51.0961 7328 CertPropSvc - ok
20:53:51.0977 7328 CFRMD - ok
20:53:51.0992 7328 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
20:53:52.0008 7328 circlass - ok
20:53:52.0023 7328 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:53:52.0023 7328 CLFS - ok
20:53:52.0148 7328 [ FE1C81A049E5C5D67C4AB7C31C899F6F ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
20:53:52.0148 7328 CLKMSVC10_38F51D56 - ok
20:53:52.0226 7328 [ 5724D9ECBF2A378EBF85FDC3BDA01F98 ] CLPSLauncher C:\Program Files (x86)\Common Files\Comodo\launcher_service.exe
20:53:52.0226 7328 CLPSLauncher - ok
20:53:52.0320 7328 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:53:52.0320 7328 clr_optimization_v2.0.50727_32 - ok
20:53:52.0367 7328 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:53:52.0367 7328 clr_optimization_v2.0.50727_64 - ok
20:53:52.0429 7328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:53:52.0429 7328 clr_optimization_v4.0.30319_32 - ok
20:53:52.0460 7328 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:53:52.0476 7328 clr_optimization_v4.0.30319_64 - ok
20:53:52.0507 7328 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
20:53:52.0507 7328 clwvd - ok
20:53:52.0538 7328 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:53:52.0538 7328 CmBatt - ok
20:53:52.0694 7328 [ 65FB5097D9EE7E3A99E932CFA0E4B344 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
20:53:52.0710 7328 cmdAgent - ok
20:53:52.0757 7328 [ 919ACCC22ABDC1C3CA68326C0E5DEAF9 ] cmdGuard C:\windows\system32\DRIVERS\cmdguard.sys
20:53:52.0772 7328 cmdGuard - ok
20:53:52.0788 7328 [ F8FECE0F1D44C4A58778083B00EEADAC ] cmdHlp C:\windows\system32\DRIVERS\cmdhlp.sys
20:53:52.0788 7328 cmdHlp - ok
20:53:52.0803 7328 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:53:52.0803 7328 cmdide - ok
20:53:52.0866 7328 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:53:52.0866 7328 CNG - ok
20:53:52.0881 7328 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
20:53:52.0881 7328 Compbatt - ok
20:53:52.0897 7328 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
20:53:52.0913 7328 CompositeBus - ok
20:53:52.0913 7328 COMSysApp - ok
20:53:52.0928 7328 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
20:53:52.0928 7328 crcdisk - ok
20:53:52.0959 7328 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
20:53:52.0959 7328 CryptSvc - ok
20:53:52.0991 7328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:53:53.0006 7328 DcomLaunch - ok
20:53:53.0053 7328 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:53:53.0053 7328 defragsvc - ok
20:53:53.0084 7328 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:53:53.0084 7328 DfsC - ok
20:53:53.0100 7328 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:53:53.0100 7328 Dhcp - ok
20:53:53.0131 7328 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:53:53.0131 7328 discache - ok
20:53:53.0147 7328 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
20:53:53.0147 7328 Disk - ok
20:53:53.0178 7328 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:53:53.0178 7328 Dnscache - ok
20:53:53.0209 7328 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:53:53.0209 7328 dot3svc - ok
20:53:53.0240 7328 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:53:53.0240 7328 DPS - ok
20:53:53.0256 7328 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:53:53.0256 7328 drmkaud - ok
20:53:53.0287 7328 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:53:53.0303 7328 DXGKrnl - ok
20:53:53.0334 7328 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:53:53.0334 7328 EapHost - ok
20:53:53.0412 7328 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
20:53:53.0427 7328 ebdrv - ok
20:53:53.0443 7328 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:53:53.0443 7328 EFS - ok
20:53:53.0505 7328 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:53:53.0521 7328 ehRecvr - ok
20:53:53.0537 7328 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:53:53.0537 7328 ehSched - ok
20:53:53.0599 7328 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
20:53:53.0615 7328 elxstor - ok
20:53:53.0630 7328 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:53:53.0630 7328 ErrDev - ok
20:53:53.0677 7328 [ 0C8324462B9791A1ECE2A329A7378A55 ] ETD C:\windows\system32\DRIVERS\ETD.sys
20:53:53.0677 7328 ETD - ok
20:53:53.0708 7328 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:53:53.0724 7328 EventSystem - ok
20:53:53.0740 7328 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:53:53.0740 7328 exfat - ok
20:53:53.0755 7328 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:53:53.0771 7328 fastfat - ok
20:53:53.0802 7328 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:53:53.0818 7328 Fax - ok
20:53:53.0849 7328 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
20:53:53.0849 7328 fdc - ok
20:53:53.0864 7328 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:53:53.0864 7328 fdPHost - ok
20:53:53.0880 7328 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:53:53.0880 7328 FDResPub - ok
20:53:53.0896 7328 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:53:53.0896 7328 FileInfo - ok
20:53:53.0927 7328 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:53:53.0927 7328 Filetrace - ok
20:53:53.0942 7328 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
20:53:53.0942 7328 flpydisk - ok
20:53:53.0974 7328 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:53:53.0974 7328 FltMgr - ok
20:53:54.0036 7328 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\windows\system32\FntCache.dll
20:53:54.0052 7328 FontCache - ok
20:53:54.0098 7328 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:53:54.0098 7328 FontCache3.0.0.0 - ok
20:53:54.0130 7328 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:53:54.0130 7328 FsDepends - ok
20:53:54.0161 7328 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:53:54.0176 7328 Fs_Rec - ok
20:53:54.0208 7328 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:53:54.0208 7328 fvevol - ok
20:53:54.0223 7328 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
20:53:54.0223 7328 gagp30kx - ok
20:53:54.0286 7328 [ 521A469CAF61F00E1DE081CC2099C1D6 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
20:53:54.0286 7328 GameConsoleService - ok
20:53:54.0379 7328 [ 31B5C233933CAF0FB1499F458F04FD9A ] GeekBuddyRSP C:\Program Files (x86)\Common Files\Comodo\GeekBuddyRSP.exe
20:53:54.0410 7328 GeekBuddyRSP - ok
20:53:54.0457 7328 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:53:54.0473 7328 gpsvc - ok
20:53:54.0504 7328 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:53:54.0504 7328 hcw85cir - ok
20:53:54.0535 7328 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:53:54.0535 7328 HdAudAddService - ok
20:53:54.0566 7328 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:53:54.0566 7328 HDAudBus - ok
20:53:54.0582 7328 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
20:53:54.0582 7328 HidBatt - ok
20:53:54.0598 7328 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
20:53:54.0598 7328 HidBth - ok
20:53:54.0613 7328 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
20:53:54.0613 7328 HidIr - ok
20:53:54.0629 7328 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:53:54.0629 7328 hidserv - ok
20:53:54.0660 7328 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
20:53:54.0660 7328 HidUsb - ok
20:53:54.0691 7328 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:53:54.0691 7328 hkmsvc - ok
20:53:54.0707 7328 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:53:54.0707 7328 HomeGroupListener - ok
20:53:54.0738 7328 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:53:54.0738 7328 HomeGroupProvider - ok
20:53:54.0800 7328 [ 53DCA61931847E35C950504BFB7559C6 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
20:53:54.0800 7328 HP LaserJet Service - ok
20:53:54.0816 7328 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:53:54.0832 7328 HpSAMD - ok
20:53:54.0863 7328 [ F7BC8C61850E51FADA9087B6D3155023 ] HPSIService C:\windows\system32\HPSIsvc.exe
20:53:54.0863 7328 HPSIService - ok
20:53:54.0894 7328 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:53:54.0894 7328 HTTP - ok
20:53:54.0910 7328 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:53:54.0910 7328 hwpolicy - ok
20:53:54.0925 7328 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
20:53:54.0941 7328 i8042prt - ok
20:53:54.0972 7328 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:53:54.0988 7328 iaStor - ok
20:53:55.0019 7328 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:53:55.0019 7328 iaStorV - ok
20:53:55.0081 7328 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:53:55.0097 7328 idsvc - ok
20:53:55.0378 7328 [ F4F91789C7C7A159CE8215C1F69F2A85 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:53:55.0440 7328 igfx - ok
20:53:55.0471 7328 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
20:53:55.0471 7328 iirsp - ok
20:53:55.0518 7328 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:53:55.0534 7328 IKEEXT - ok
20:53:55.0580 7328 [ C4E67D3037DC79E39D7136581A947F50 ] inspect C:\windows\system32\DRIVERS\inspect.sys
20:53:55.0580 7328 inspect - ok
20:53:55.0705 7328 [ B54138716EC5945BAE6914AD8DA086C0 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:53:55.0721 7328 IntcAzAudAddService - ok
20:53:55.0768 7328 [ AE594CC17C33AC146739494615E14851 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
20:53:55.0768 7328 IntcDAud - ok
20:53:55.0783 7328 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:53:55.0783 7328 intelide - ok
20:53:55.0814 7328 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:53:55.0830 7328 intelppm - ok
20:53:55.0846 7328 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:53:55.0846 7328 IPBusEnum - ok
20:53:55.0861 7328 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:53:55.0877 7328 IpFilterDriver - ok
20:53:55.0924 7328 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:53:55.0939 7328 iphlpsvc - ok
20:53:55.0955 7328 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:53:55.0955 7328 IPMIDRV - ok
20:53:55.0955 7328 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:53:55.0955 7328 IPNAT - ok
20:53:55.0970 7328 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:53:55.0970 7328 IRENUM - ok
20:53:55.0986 7328 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:53:55.0986 7328 isapnp - ok
20:53:56.0002 7328 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:53:56.0002 7328 iScsiPrt - ok
20:53:56.0017 7328 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
20:53:56.0017 7328 kbdclass - ok
20:53:56.0048 7328 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:53:56.0048 7328 kbdhid - ok
20:53:56.0080 7328 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:53:56.0080 7328 KeyIso - ok
20:53:56.0111 7328 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:53:56.0111 7328 KSecDD - ok
20:53:56.0126 7328 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:53:56.0126 7328 KSecPkg - ok
20:53:56.0158 7328 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:53:56.0158 7328 ksthunk - ok
20:53:56.0204 7328 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:53:56.0204 7328 KtmRm - ok
20:53:56.0267 7328 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:53:56.0267 7328 LanmanServer - ok
20:53:56.0298 7328 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:53:56.0298 7328 LanmanWorkstation - ok
20:53:56.0329 7328 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:53:56.0329 7328 lltdio - ok
20:53:56.0376 7328 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:53:56.0376 7328 lltdsvc - ok
20:53:56.0407 7328 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:53:56.0407 7328 lmhosts - ok
20:53:56.0470 7328 [ 926EBA26A8B49D1597751CED06B50862 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:53:56.0470 7328 LMS - ok
20:53:56.0501 7328 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
20:53:56.0501 7328 LSI_FC - ok
20:53:56.0548 7328 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
20:53:56.0548 7328 LSI_SAS - ok
20:53:56.0579 7328 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
20:53:56.0579 7328 LSI_SAS2 - ok
20:53:56.0610 7328 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
20:53:56.0610 7328 LSI_SCSI - ok
20:53:56.0626 7328 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:53:56.0641 7328 luafv - ok
20:53:56.0750 7328 [ 2D46DC95709F2967D401326CA67D4111 ] M4-Service C:\Users\SAMSUNG\AppData\Roaming\Mikogo 4\M4-Service.exe
20:53:56.0766 7328 M4-Service - ok
20:53:56.0782 7328 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:53:56.0797 7328 Mcx2Svc - ok
20:53:56.0813 7328 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
20:53:56.0813 7328 megasas - ok
20:53:56.0844 7328 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
20:53:56.0844 7328 MegaSR - ok
20:53:56.0875 7328 [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:53:56.0875 7328 MEIx64 - ok
20:53:56.0906 7328 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:53:56.0906 7328 MMCSS - ok
20:53:56.0938 7328 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:53:56.0938 7328 Modem - ok
20:53:56.0953 7328 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:53:56.0953 7328 monitor - ok
20:53:56.0969 7328 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
20:53:56.0969 7328 mouclass - ok
20:53:57.0000 7328 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:53:57.0016 7328 mouhid - ok
20:53:57.0031 7328 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:53:57.0031 7328 mountmgr - ok
20:53:57.0078 7328 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:53:57.0094 7328 MozillaMaintenance - ok
20:53:57.0109 7328 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:53:57.0125 7328 mpio - ok
20:53:57.0140 7328 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:53:57.0140 7328 mpsdrv - ok
20:53:57.0203 7328 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:53:57.0218 7328 MpsSvc - ok
20:53:57.0234 7328 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:53:57.0234 7328 MRxDAV - ok
20:53:57.0265 7328 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:53:57.0265 7328 mrxsmb - ok
20:53:57.0281 7328 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:53:57.0296 7328 mrxsmb10 - ok
20:53:57.0296 7328 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:53:57.0296 7328 mrxsmb20 - ok
20:53:57.0312 7328 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:53:57.0312 7328 msahci - ok
20:53:57.0328 7328 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:53:57.0343 7328 msdsm - ok
20:53:57.0359 7328 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:53:57.0359 7328 MSDTC - ok
20:53:57.0359 7328 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:53:57.0374 7328 Msfs - ok
20:53:57.0390 7328 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:53:57.0390 7328 mshidkmdf - ok
20:53:57.0390 7328 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:53:57.0390 7328 msisadrv - ok
20:53:57.0406 7328 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:53:57.0406 7328 MSiSCSI - ok
20:53:57.0421 7328 msiserver - ok
20:53:57.0421 7328 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:53:57.0421 7328 MSKSSRV - ok
20:53:57.0452 7328 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:53:57.0452 7328 MSPCLOCK - ok
20:53:57.0468 7328 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:53:57.0468 7328 MSPQM - ok
20:53:57.0484 7328 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:53:57.0499 7328 MsRPC - ok
20:53:57.0530 7328 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
20:53:57.0530 7328 mssmbios - ok
20:53:57.0546 7328 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:53:57.0546 7328 MSTEE - ok
20:53:57.0562 7328 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
20:53:57.0562 7328 MTConfig - ok
20:53:57.0577 7328 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:53:57.0577 7328 Mup - ok
20:53:57.0608 7328 [ F1B096BF8C2A7A5A1E42DC5A13E35952 ] mvusbews C:\windows\system32\Drivers\mvusbews.sys
20:53:57.0608 7328 mvusbews - ok
20:53:57.0655 7328 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:53:57.0671 7328 napagent - ok
20:53:57.0686 7328 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:53:57.0702 7328 NativeWifiP - ok
20:53:57.0749 7328 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:53:57.0764 7328 NDIS - ok
20:53:57.0796 7328 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:53:57.0796 7328 NdisCap - ok
20:53:57.0811 7328 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:53:57.0811 7328 NdisTapi - ok
20:53:57.0827 7328 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:53:57.0827 7328 Ndisuio - ok
20:53:57.0842 7328 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:53:57.0842 7328 NdisWan - ok
20:53:57.0858 7328 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:53:57.0858 7328 NDProxy - ok
20:53:57.0874 7328 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:53:57.0874 7328 NetBIOS - ok
20:53:57.0889 7328 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:53:57.0905 7328 NetBT - ok
20:53:57.0905 7328 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:53:57.0905 7328 Netlogon - ok
20:53:57.0952 7328 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:53:57.0967 7328 Netman - ok
20:53:57.0998 7328 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:53:58.0014 7328 netprofm - ok
20:53:58.0030 7328 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:53:58.0030 7328 NetTcpPortSharing - ok
20:53:58.0061 7328 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
20:53:58.0061 7328 nfrd960 - ok
20:53:58.0108 7328 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll
20:53:58.0108 7328 NlaSvc - ok
20:53:58.0248 7328 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:53:58.0264 7328 NOBU - ok
20:53:58.0279 7328 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:53:58.0279 7328 Npfs - ok
20:53:58.0310 7328 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:53:58.0310 7328 nsi - ok
20:53:58.0357 7328 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:53:58.0357 7328 nsiproxy - ok
20:53:58.0435 7328 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:53:58.0451 7328 Ntfs - ok
20:53:58.0482 7328 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:53:58.0482 7328 Null - ok
20:53:58.0513 7328 [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
20:53:58.0513 7328 nusb3hub - ok
20:53:58.0544 7328 [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
20:53:58.0560 7328 nusb3xhc - ok
20:53:58.0825 7328 [ FBE6AC1C3591CB67543FAD15ABD26BCB ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
20:53:58.0888 7328 nvlddmkm - ok
20:53:58.0903 7328 [ 680C5BAF7D0190B1485068FC4BA75F1C ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
20:53:58.0903 7328 nvpciflt - ok
20:53:58.0934 7328 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:53:58.0934 7328 nvraid - ok
20:53:58.0950 7328 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:53:58.0950 7328 nvstor - ok
20:53:59.0012 7328 [ 147B0D17255FD796F990CC6F745605C5 ] NVSvc C:\windows\system32\nvvsvc.exe
20:53:59.0028 7328 NVSvc - ok
20:53:59.0137 7328 [ 812BF9531C827E1D8029843CDDB2B5D6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:53:59.0153 7328 nvUpdatusService - ok
20:53:59.0200 7328 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:53:59.0200 7328 nv_agp - ok
20:53:59.0215 7328 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:53:59.0215 7328 ohci1394 - ok
20:53:59.0246 7328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:53:59.0246 7328 p2pimsvc - ok
20:53:59.0293 7328 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:53:59.0309 7328 p2psvc - ok
20:53:59.0324 7328 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
20:53:59.0324 7328 Parport - ok
20:53:59.0356 7328 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:53:59.0356 7328 partmgr - ok
20:53:59.0387 7328 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:53:59.0387 7328 PcaSvc - ok
20:53:59.0418 7328 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:53:59.0418 7328 pci - ok
20:53:59.0434 7328 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:53:59.0434 7328 pciide - ok
20:53:59.0449 7328 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
20:53:59.0465 7328 pcmcia - ok
20:53:59.0465 7328 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:53:59.0465 7328 pcw - ok
20:53:59.0496 7328 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:53:59.0496 7328 PEAUTH - ok
20:53:59.0574 7328 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:53:59.0574 7328 PerfHost - ok
20:53:59.0621 7328 [ ACC93675D78D1C07DAD09D7837F2397A ] pgsql-8.3 C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
20:53:59.0621 7328 pgsql-8.3 - ok
20:53:59.0714 7328 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:53:59.0730 7328 pla - ok
20:53:59.0761 7328 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:53:59.0777 7328 PlugPlay - ok
20:53:59.0808 7328 [ A010F13D27C1033A8BE09D5FA9BF348B ] pneteth C:\windows\system32\DRIVERS\pneteth.sys
20:53:59.0808 7328 pneteth - ok
20:53:59.0824 7328 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:53:59.0824 7328 PNRPAutoReg - ok
20:53:59.0855 7328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:53:59.0855 7328 PNRPsvc - ok
20:53:59.0917 7328 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:53:59.0933 7328 PolicyAgent - ok
20:53:59.0980 7328 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
20:53:59.0980 7328 Power - ok
20:54:00.0011 7328 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:54:00.0011 7328 PptpMiniport - ok
20:54:00.0026 7328 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
20:54:00.0042 7328 Processor - ok
20:54:00.0089 7328 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:54:00.0089 7328 ProfSvc - ok
20:54:00.0120 7328 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:54:00.0120 7328 ProtectedStorage - ok
20:54:00.0136 7328 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:54:00.0136 7328 Psched - ok
20:54:00.0198 7328 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
20:54:00.0229 7328 ql2300 - ok
20:54:00.0245 7328 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
20:54:00.0245 7328 ql40xx - ok
20:54:00.0276 7328 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:54:00.0276 7328 QWAVE - ok
20:54:00.0292 7328 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:54:00.0292 7328 QWAVEdrv - ok
20:54:00.0307 7328 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:54:00.0307 7328 RasAcd - ok
20:54:00.0354 7328 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:54:00.0354 7328 RasAgileVpn - ok
20:54:00.0401 7328 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:54:00.0401 7328 RasAuto - ok
20:54:00.0416 7328 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:54:00.0416 7328 Rasl2tp - ok
20:54:00.0448 7328 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:54:00.0463 7328 RasMan - ok
20:54:00.0463 7328 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:54:00.0463 7328 RasPppoe - ok
20:54:00.0479 7328 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:54:00.0479 7328 RasSstp - ok
20:54:00.0494 7328 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:54:00.0494 7328 rdbss - ok
20:54:00.0510 7328 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
20:54:00.0526 7328 rdpbus - ok
20:54:00.0541 7328 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:54:00.0541 7328 RDPCDD - ok
20:54:00.0541 7328 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:54:00.0541 7328 RDPENCDD - ok
20:54:00.0541 7328 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:54:00.0541 7328 RDPREFMP - ok
20:54:00.0572 7328 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:54:00.0572 7328 RDPWD - ok
20:54:00.0604 7328 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:54:00.0604 7328 rdyboost - ok
20:54:00.0635 7328 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:54:00.0635 7328 RemoteAccess - ok
20:54:00.0666 7328 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:54:00.0666 7328 RemoteRegistry - ok
20:54:00.0713 7328 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
20:54:00.0713 7328 RFCOMM - ok
20:54:00.0806 7328 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
20:54:00.0806 7328 RichVideo - ok
20:54:00.0822 7328 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:54:00.0838 7328 RpcEptMapper - ok
20:54:00.0838 7328 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:54:00.0853 7328 RpcLocator - ok
20:54:00.0869 7328 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:54:00.0884 7328 RpcSs - ok
20:54:00.0916 7328 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:54:00.0916 7328 rspndr - ok
20:54:00.0962 7328 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
20:54:00.0962 7328 RTL8167 - ok
20:54:00.0994 7328 [ 62DB6CC4B0818F1B5F3441241B098F12 ] SABI C:\windows\system32\Drivers\SABI.sys
20:54:00.0994 7328 SABI - ok
20:54:01.0009 7328 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:54:01.0009 7328 SamSs - ok
20:54:01.0040 7328 [ D641337B75B9A9D5AE10687AA1097755 ] Samsung UPD Service C:\windows\System32\SUPDSvc.exe
20:54:01.0040 7328 Samsung UPD Service - ok
20:54:01.0118 7328 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
20:54:01.0118 7328 SASDIFSV - ok
20:54:01.0134 7328 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
20:54:01.0134 7328 SASKUTIL - ok
20:54:01.0165 7328 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:54:01.0165 7328 sbp2port - ok
20:54:01.0196 7328 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:54:01.0212 7328 SCardSvr - ok
20:54:01.0228 7328 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:54:01.0228 7328 scfilter - ok
20:54:01.0290 7328 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:54:01.0306 7328 Schedule - ok
20:54:01.0321 7328 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:54:01.0337 7328 SCPolicySvc - ok
20:54:01.0368 7328 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:54:01.0368 7328 SDRSVC - ok
20:54:01.0399 7328 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:54:01.0399 7328 secdrv - ok
20:54:01.0430 7328 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:54:01.0430 7328 seclogon - ok
20:54:01.0446 7328 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:54:01.0446 7328 SENS - ok
20:54:01.0462 7328 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:54:01.0477 7328 SensrSvc - ok
20:54:01.0493 7328 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
20:54:01.0493 7328 Serenum - ok
20:54:01.0508 7328 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
20:54:01.0508 7328 Serial - ok
20:54:01.0524 7328 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
20:54:01.0524 7328 sermouse - ok
20:54:01.0571 7328 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:54:01.0571 7328 SessionEnv - ok
20:54:01.0571 7328 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:54:01.0571 7328 sffdisk - ok
20:54:01.0586 7328 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:54:01.0586 7328 sffp_mmc - ok
20:54:01.0586 7328 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:54:01.0586 7328 sffp_sd - ok
20:54:01.0602 7328 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
20:54:01.0602 7328 sfloppy - ok
20:54:01.0633 7328 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:54:01.0649 7328 SharedAccess - ok
20:54:01.0680 7328 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:54:01.0680 7328 ShellHWDetection - ok
20:54:01.0711 7328 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
20:54:01.0711 7328 SiSRaid2 - ok
20:54:01.0727 7328 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
20:54:01.0727 7328 SiSRaid4 - ok
20:54:01.0774 7328 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:54:01.0789 7328 SkypeUpdate - ok
20:54:01.0805 7328 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:54:01.0805 7328 Smb - ok
20:54:01.0820 7328 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:54:01.0836 7328 SNMPTRAP - ok
20:54:01.0852 7328 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:54:01.0852 7328 spldr - ok
20:54:01.0883 7328 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:54:01.0898 7328 Spooler - ok
20:54:02.0039 7328 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:54:02.0054 7328 sppsvc - ok
20:54:02.0070 7328 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:54:02.0070 7328 sppuinotify - ok
20:54:02.0117 7328 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:54:02.0117 7328 srv - ok
20:54:02.0132 7328 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:54:02.0148 7328 srv2 - ok
20:54:02.0148 7328 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:54:02.0148 7328 srvnet - ok
20:54:02.0179 7328 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:54:02.0179 7328 SSDPSRV - ok
20:54:02.0210 7328 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:54:02.0210 7328 SstpSvc - ok
20:54:02.0242 7328 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
20:54:02.0242 7328 stexstor - ok
20:54:02.0257 7328 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\windows\system32\DRIVERS\serscan.sys
20:54:02.0257 7328 StillCam - ok
20:54:02.0320 7328 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:54:02.0320 7328 stisvc - ok
20:54:02.0335 7328 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
20:54:02.0335 7328 swenum - ok
20:54:02.0366 7328 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:54:02.0382 7328 swprv - ok
20:54:02.0444 7328 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:54:02.0460 7328 SysMain - ok
20:54:02.0491 7328 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:54:02.0491 7328 TabletInputService - ok
20:54:02.0522 7328 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:54:02.0538 7328 TapiSrv - ok
20:54:02.0554 7328 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:54:02.0554 7328 TBS - ok
20:54:02.0647 7328 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:54:02.0663 7328 Tcpip - ok
20:54:02.0678 7328 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:54:02.0694 7328 TCPIP6 - ok
20:54:02.0710 7328 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:54:02.0710 7328 tcpipreg - ok
20:54:02.0741 7328 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:54:02.0741 7328 TDPIPE - ok
20:54:02.0772 7328 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:54:02.0772 7328 TDTCP - ok
20:54:02.0803 7328 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:54:02.0803 7328 tdx - ok
20:54:02.0928 7328 [ 74FC70AE64A7B7DABEC9697CE0A1F4FA ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
20:54:02.0944 7328 TeamViewer7 - ok
20:54:02.0975 7328 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
20:54:02.0975 7328 TermDD - ok
20:54:03.0022 7328 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:54:03.0022 7328 TermService - ok
20:54:03.0037 7328 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:54:03.0037 7328 Themes - ok
20:54:03.0068 7328 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:54:03.0068 7328 THREADORDER - ok
20:54:03.0084 7328 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:54:03.0084 7328 TrkWks - ok
20:54:03.0146 7328 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:54:03.0146 7328 TrustedInstaller - ok
20:54:03.0162 7328 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:54:03.0162 7328 tssecsrv - ok
20:54:03.0178 7328 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:54:03.0178 7328 TsUsbFlt - ok
20:54:03.0209 7328 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
20:54:03.0209 7328 TsUsbGD - ok
20:54:03.0349 7328 [ 8F10CB1E51AF1083CA757DD07116B703 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
20:54:03.0365 7328 TuneUp.UtilitiesSvc - ok
20:54:03.0380 7328 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
20:54:03.0380 7328 TuneUpUtilitiesDrv - ok
20:54:03.0396 7328 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:54:03.0396 7328 tunnel - ok
20:54:03.0427 7328 [ 48743B69EA47C020A792D8649F753F44 ] TurboB C:\windows\system32\DRIVERS\TurboB.sys
20:54:03.0427 7328 TurboB - ok
20:54:03.0474 7328 [ 759F59E3EA3802FF23F93DCDB6FE9171 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:54:03.0474 7328 TurboBoost - ok
20:54:03.0505 7328 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
20:54:03.0505 7328 uagp35 - ok
20:54:03.0521 7328 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:54:03.0536 7328 udfs - ok
20:54:03.0568 7328 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:54:03.0583 7328 UI0Detect - ok
20:54:03.0599 7328 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:54:03.0599 7328 uliagpkx - ok
20:54:03.0614 7328 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:54:03.0614 7328 umbus - ok
20:54:03.0630 7328 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
20:54:03.0630 7328 UmPass - ok
20:54:03.0770 7328 [ FDF92EC84FECEE834FB10A2A0A19BCDA ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:54:03.0786 7328 UNS - ok
20:54:03.0817 7328 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:54:03.0817 7328 upnphost - ok
20:54:03.0848 7328 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:54:03.0864 7328 usbccgp - ok
20:54:03.0880 7328 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:54:03.0880 7328 usbcir - ok
20:54:03.0911 7328 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
20:54:03.0911 7328 usbehci - ok
20:54:03.0942 7328 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:54:03.0942 7328 usbhub - ok
20:54:03.0958 7328 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:54:03.0958 7328 usbohci - ok
20:54:03.0973 7328 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
20:54:03.0973 7328 usbprint - ok
20:54:04.0004 7328 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
20:54:04.0004 7328 usbscan - ok
20:54:04.0051 7328 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:54:04.0051 7328 USBSTOR - ok
20:54:04.0082 7328 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:54:04.0082 7328 usbuhci - ok
20:54:04.0114 7328 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
20:54:04.0129 7328 usbvideo - ok
20:54:04.0160 7328 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:54:04.0160 7328 UxSms - ok
20:54:04.0207 7328 [ 1DF649FA5380AD8558273CCEC44E573F ] UxTuneUp C:\windows\System32\uxtuneup.dll
20:54:04.0207 7328 UxTuneUp - ok
20:54:04.0223 7328 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:54:04.0223 7328 VaultSvc - ok
20:54:04.0254 7328 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:54:04.0254 7328 vdrvroot - ok
20:54:04.0285 7328 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:54:04.0285 7328 vds - ok
20:54:04.0301 7328 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:54:04.0301 7328 vga - ok
20:54:04.0316 7328 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:54:04.0316 7328 VgaSave - ok
20:54:04.0332 7328 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:54:04.0348 7328 vhdmp - ok
20:54:04.0348 7328 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:54:04.0363 7328 viaide - ok
20:54:04.0363 7328 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:54:04.0363 7328 volmgr - ok
20:54:04.0379 7328 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:54:04.0379 7328 volmgrx - ok
20:54:04.0394 7328 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:54:04.0394 7328 volsnap - ok
20:54:04.0410 7328 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
20:54:04.0426 7328 vsmraid - ok
20:54:04.0504 7328 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:54:04.0519 7328 VSS - ok
20:54:04.0535 7328 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:54:04.0535 7328 vwifibus - ok
20:54:04.0566 7328 [ 13A0DECD1794DE60A8427862C8669D27 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:54:04.0566 7328 vwififlt - ok
20:54:04.0597 7328 [ 49003B357D101CDC474937437ECF5ABC ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:54:04.0597 7328 vwifimp - ok
20:54:04.0628 7328 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:54:04.0644 7328 W32Time - ok
20:54:04.0660 7328 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
20:54:04.0675 7328 WacomPen - ok
20:54:04.0691 7328 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:54:04.0691 7328 WANARP - ok
20:54:04.0691 7328 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:54:04.0691 7328 Wanarpv6 - ok
20:54:04.0753 7328 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:54:04.0753 7328 WatAdminSvc - ok
20:54:04.0847 7328 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:54:04.0847 7328 wbengine - ok
20:54:04.0894 7328 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:54:04.0894 7328 WbioSrvc - ok
20:54:04.0909 7328 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:54:04.0925 7328 wcncsvc - ok
20:54:04.0925 7328 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:54:04.0925 7328 WcsPlugInService - ok
20:54:04.0956 7328 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
20:54:04.0956 7328 Wd - ok
20:54:05.0018 7328 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:54:05.0034 7328 Wdf01000 - ok
20:54:05.0050 7328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:54:05.0050 7328 WdiServiceHost - ok
20:54:05.0065 7328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:54:05.0065 7328 WdiSystemHost - ok
20:54:05.0096 7328 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:54:05.0096 7328 WebClient - ok
20:54:05.0143 7328 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:54:05.0143 7328 Wecsvc - ok
20:54:05.0174 7328 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:54:05.0174 7328 wercplsupport - ok
20:54:05.0190 7328 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:54:05.0190 7328 WerSvc - ok
20:54:05.0206 7328 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:54:05.0206 7328 WfpLwf - ok
20:54:05.0221 7328 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:54:05.0221 7328 WIMMount - ok
20:54:05.0237 7328 WinDefend - ok
20:54:05.0252 7328 WinHttpAutoProxySvc - ok
20:54:05.0315 7328 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:54:05.0315 7328 Winmgmt - ok
20:54:05.0408 7328 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:54:05.0424 7328 WinRM - ok
20:54:05.0455 7328 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
20:54:05.0455 7328 WinUsb - ok
20:54:05.0518 7328 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:54:05.0533 7328 Wlansvc - ok
20:54:05.0564 7328 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:54:05.0564 7328 wlcrasvc - ok
20:54:05.0674 7328 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:54:05.0689 7328 wlidsvc - ok
20:54:05.0720 7328 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
20:54:05.0720 7328 WmiAcpi - ok
20:54:05.0736 7328 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:54:05.0736 7328 wmiApSrv - ok
20:54:05.0767 7328 WMPNetworkSvc - ok
20:54:05.0798 7328 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:54:05.0798 7328 WPCSvc - ok
20:54:05.0814 7328 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:54:05.0814 7328 WPDBusEnum - ok
20:54:05.0845 7328 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:54:05.0845 7328 ws2ifsl - ok
20:54:05.0861 7328 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:54:05.0861 7328 wscsvc - ok
20:54:05.0861 7328 WSearch - ok
20:54:05.0970 7328 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:54:06.0001 7328 wuauserv - ok
20:54:06.0032 7328 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:54:06.0032 7328 WudfPf - ok
20:54:06.0079 7328 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:54:06.0079 7328 WUDFRd - ok
20:54:06.0110 7328 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:54:06.0110 7328 wudfsvc - ok
20:54:06.0142 7328 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
20:54:06.0157 7328 WwanSvc - ok
20:54:06.0173 7328 ================ Scan global ===============================
20:54:06.0204 7328 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:54:06.0235 7328 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:54:06.0251 7328 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:54:06.0298 7328 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:54:06.0329 7328 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:54:06.0329 7328 [Global] - ok
20:54:06.0329 7328 ================ Scan MBR ==================================
20:54:06.0344 7328 [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
20:54:06.0578 7328 \Device\Harddisk0\DR0 - ok
20:54:06.0578 7328 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
20:54:06.0594 7328 \Device\Harddisk1\DR1 - ok
20:54:06.0594 7328 ================ Scan VBR ==================================
20:54:06.0594 7328 [ BC57708C0B00AF17ADBD39A69AC98CD2 ] \Device\Harddisk0\DR0\Partition1
20:54:06.0594 7328 \Device\Harddisk0\DR0\Partition1 - ok
20:54:06.0610 7328 [ F4757C677653BF07B50ED8C7FC2A185B ] \Device\Harddisk0\DR0\Partition2
20:54:06.0610 7328 \Device\Harddisk0\DR0\Partition2 - ok
20:54:06.0625 7328 [ 61EEAD2FD93EB54BE66D3D6081540277 ] \Device\Harddisk0\DR0\Partition3
20:54:06.0625 7328 \Device\Harddisk0\DR0\Partition3 - ok
20:54:06.0625 7328 [ 27CE155235D5C57985D8437721C5DB5D ] \Device\Harddisk1\DR1\Partition1
20:54:06.0625 7328 \Device\Harddisk1\DR1\Partition1 - ok
20:54:06.0625 7328 ============================================================
20:54:06.0625 7328 Scan finished
20:54:06.0625 7328 ============================================================
20:54:06.0641 0452 Detected object count: 0
20:54:06.0641 0452 Actual detected object count: 0
  • 0

#12
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-10 20:58:02
-----------------------------
20:58:02.557 OS Version: Windows x64 6.1.7601 Service Pack 1
20:58:02.573 Number of processors: 8 586 0x2A07
20:58:02.573 ComputerName: SAMSUNG-PC UserName: SAMSUNG
20:58:17.908 Initialize success
20:58:18.984 AVAST engine defs: 12121000
20:58:35.364 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:58:35.364 Disk 0 Vendor: SAMSUNG_ 2AR1 Size: 476940MB BusType: 3
20:58:35.380 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
20:58:35.380 Disk 1 Vendor: SAMSUNG_ 2AR1 Size: 476940MB BusType: 3
20:58:35.395 Disk 0 MBR read successfully
20:58:35.395 Disk 0 MBR scan
20:58:35.411 Disk 0 unknown MBR code
20:58:35.427 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:58:35.442 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 182272 MB offset 206848
20:58:35.442 Disk 0 Partition - 00 0F Extended LBA 271576 MB offset 373499904
20:58:35.473 Disk 0 Partition 3 00 27 Hidden NTFS WinRE NTFS 22989 MB offset 929687552
20:58:35.567 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 271575 MB offset 373501952
20:58:35.614 Disk 0 scanning C:\windows\system32\drivers
20:58:46.487 Service scanning
20:59:07.578 Modules scanning
20:59:07.578 Disk 0 trace - called modules:
20:59:07.625 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:59:07.625 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007e07790]
20:59:07.641 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800600a050]
20:59:08.046 AVAST engine scan C:\windows
20:59:09.279 File: C:\windows\PEV.exe **INFECTED** Win32:Rootkit-gen [Rtk]
20:59:11.057 AVAST engine scan C:\windows\system32
21:01:46.387 AVAST engine scan C:\windows\system32\drivers
21:01:57.572 AVAST engine scan C:\Users\SAMSUNG
21:02:52.811 Disk 0 MBR has been saved successfully to "C:\Users\SAMSUNG\Desktop\MBR.dat"
21:02:52.811 The log file has been saved successfully to "C:\Users\SAMSUNG\Desktop\aswMBR.txt"
  • 0

#13
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

Run this custom script and when it is complete I need to know how the computer is doing

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word Code
    :OTL
    FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_5_502_110.dll File not found
    FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
    O4 - HKLM..\Run: [] File not found
    O18:64bit: - Protocol\Handler\livecall - No CLSID value found
    O18:64bit: - Protocol\Handler\msnim - No CLSID value found
    O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
    O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
    O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
    O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    [2012/07/18 12:32:28 | 000,004,915 | ---- | C] () -- C:\ProgramData\flwjycbm.bab  
    [2012/03/28 11:21:49 | 000,004,142 | ---- | C] () -- C:\ProgramData\kmytnfun.aqy
    [2012/03/13 13:52:43 | 000,005,098 | ---- | C] () -- C:\ProgramData\oinwddee.jeg  
    
    :Files
    ipconfig /flushdns /c
    :Commands
    [PURITY]
    [emptyjava]
    [EMPTYFLASH]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Let me know How things are doing

Gringo
  • 0

#14
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@microsoft.com/GENUINE\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\IntelTBRunOnce not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\ProgramData\flwjycbm.bab moved successfully.
C:\ProgramData\kmytnfun.aqy moved successfully.
C:\ProgramData\oinwddee.jeg moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Konfiguracja IP systemu Windows
Pomy˜lnie opr˘ľniono pami©† podr©cznĄ programu rozpoznawania nazw DNS.
C:\Users\SAMSUNG\Downloads\cmd.bat deleted successfully.
C:\Users\SAMSUNG\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: postgres

User: Public

User: SAMSUNG
->Java cache emptied: 15740296 bytes

User: UpdatusUser

Total Java Files Cleaned = 15.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: postgres

User: Public

User: SAMSUNG
->Flash cache emptied: 739 bytes

User: UpdatusUser

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 12102012_220614
  • 0

#15
ny1

ny1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 20 posts
It didn't require a reboot. I haven't noticed any changes since running OTL.

Btw idk how important that is but today I've been using Internet Explorer only and that redirect thing hasn't attacked there.

Edited by ny1, 10 December 2012 - 03:12 PM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP