Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Window XP hangs - programs open on start will run but no programs will

Started by Quint2724 , Dec 21 2012 06:06 PM

This topic is locked

#31
Quint2724

Posted 10 January 2013 - 11:25 PM

Member

Topic Starter
Member
44 posts

Yes, the Service Tag number is 4B65BB1 - the "B" looks like an "8"

The MS Fixit program did find a few things, and apparently corrected those issues. I ran Windows Update again, and this time it found like 123 needed updates. The first 115 failed to install, but several of the latter one's did install. I had to run this several times, as the PC continues to freeze up mid-way thru a Windows update process.

I also tried running Speccy again, and got the BSOD with the same error codes.

#32
godawgs

Posted 11 January 2013 - 08:41 AM

Teacher

Retired Staff
8,228 posts

Hi Quint,

I typed in your Express Service Code incorrectly. For your future reference, your Express Service Code is 4065BB1.

Have you ever updated the BIOS in your computer?

Let's see if the following FixIt will help the updating problems:

Go to this Microsoft page
If a FixIt window opens up, Do Not click the Run Now button. You have already run that FixIt.

Instead:
Close that FixIt window and scroll down to Method 2 and click the Fixit button.

After the FixIt completes, close all open browsers and windows and reboot the computer.
Go back to the Windows Update site and see if the updates will download and install.
NOTE: Try downloading and installing them one at a time.

Let me know how that went and also answer the question about updating the BIOS.

#33
Quint2724

Posted 13 January 2013 - 01:03 PM

Member

Topic Starter
Member
44 posts

I ran method #2 for FixIt. No success in updating windows - either all run in a batch or each update individually. There are 117 updates identified that won't load.

I'm not sure about updating the BIOS. It may have been, but I'm not sure.

#34
godawgs

Posted 13 January 2013 - 05:56 PM

Teacher

Retired Staff
8,228 posts

OK, let me ask you this. Do you have any Video Capture Card installed on the computer that you use with Windows Media Encoder?

Let's check the hard disk for errors and check the critical system files.

Step-1.

Check Hard Disk For Errors:

Windows XP:

Click on Start >> Run..., then copy/paste the following command into the box and press OK:

cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
A blank command window will open on your desktop, then close in a few minutes. This is normal.
A file icon named checkhd.txt should appear on your Desktop. Please post the contents of this file.

Step-2.

Run System File Checker

We are going to run System File Checker, to make sure all of your protected files are not corrupt. The scan will automatically replace any corrupt files that it finds.

First, make sure that you can view protected files:

Click My Computer
Click Tools
Click Folder Options
Click View
"Uncheck" Hide protected operating system files. and close the My Computer window.

Next, run the file scanner:

Click Start, click Run
Type the following in the Open box and click OK:
sfc /scannow (Please note that there is a single space between sfc and /scannow).
- Typing this will start the program, and a box should appear telling you how much longer the process should take.
Sometimes the scan will prompt you for your Windows XP disc upon starting the scan. If this happens, put the Windows installation disk in the CD drive.
Let me know if it found any problems

Step-3.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. The checkhd.txt log
2. Let me know what, if anything, SFC found

#35
Quint2724

Posted 17 January 2013 - 07:48 PM

Member

Topic Starter
Member
44 posts

Here is the log:

The type of the file system is NTFS.

WARNING! F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
CHKDSK is verifying indexes (stage 2 of 3)...
CHKDSK is recovering lost files.
Recovering orphaned file tmp.edb (84118) into directory file 3077.
Recovering orphaned file SAFEBR~1 (119842) into directory file 69958.
Recovering orphaned file safebrowsing-to_delete (119842) into directory file 69958.
Recovering orphaned file DNSERR~1 (120230) into directory file 121887.
Recovering orphaned file dnserrordiagoff_webOC[1] (120230) into directory file 121887.
CHKDSK is verifying security descriptors (stage 3 of 3)...
Correcting errors in the master file table's (MFT) BITMAP attribute.
Correcting errors in the Volume Bitmap.
Windows found problems with the file system.
Run CHKDSK with the /F (fix) option to correct these.

91289362 KB total disk space.
70680100 KB in 121794 files.
48980 KB in 15233 indexes.
0 KB in bad sectors.
327102 KB in use by the system.
65536 KB occupied by the log file.
20233180 KB available on disk.

4096 bytes in each allocation unit.
22822340 total allocation units on disk.
5058295 allocation units available on disk.

I ran System File Checker a couple of times. The first run seemed to help, but in days following the first run, the laptop continues to "hang" after running for about 10 to 20 minutes. It is also starting to impact whatever web browser I have open. Previously, the PC would allow me to surf the net and open new tabs without a problem. Only opening new programs were a problem. But now, the both browsers I use - Firefox primarily, and IE every now and then, the internet feed would stop. Accessing data would stop. I do see some occasional activity to the hard drive, but only short access attempts. I typically need to do a hard power-down / reboot to do any function on the PC.

#36
godawgs

Posted 18 January 2013 - 11:40 AM

Teacher

Retired Staff
8,228 posts

Hi Quint,

Chkdsk found some problems with the hard drive. So we will see if it can fix them and then run SFC again.

Step-1.

Hard-Drive Maintenance/Repair:

Note: for the CHKDSK portion you may refer a tutorial by Dakeyras, found here and follow the instructions for Graphical Mode if you so wish.
NOTE: If you decide to use the Graphical Mode, close the Command window after Defrag has finished by typing Exit at the blinking cursor and pressing the Enter key.

Click Start , then click Run... then type in CMD and click on OK.
At the Command Prompt C:\ > type the following:
CD C:\ and press the Enter key.
Now type in DEFRAG C: -F
A Analysis report will be displayed and then Windows will start the Deragmentation run automatically.
This may take some time, when completed the Command Prompt C:\ > will appear.
NOTE: If you chose to use the Graphical Mode, this would be where you close the Command window. If you want to continue in the Command window, complete the remaining steps.
Now type in CHKDSK C: /R and press the Enter key.
When prompted with:

CHKDSK cannot run because the volume is in use by another process
Would you like to schedule this volume to be checked next time the system
restarts (Y/N)
Hit the Y key then at the Command Prompt C:\ >
Type in EXIT and and press the Enter key.
Now Reboot(Restart) your computer.

Note: Upon Reboot(Restart) the CHKDSK(check-disk) will start and carry out the repairs required.

You should see a screen like this just after the Post(power on self test) screen:

Posted Image

Note: Do not touch either the keyboard or Mouse, otherwise the Check-Disk will be canceled and you computer will continue to boot-up as normal.

Step-2.

Run SFC

Close all open applications/windows etc.

Click on Start , then click Run...
Type in SFC /Scannow <--- Make sure to leave a space between SFC and the forward slash.
Click on OK
System File Checker will now scan all protected files to verify their versions.

Note: This will take some time. Also you may be prompted to place your XP installation CD-ROM in the CD-Drive if required.

Step-3.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. Let me know if chkdsk was able to repair the errors it found.
2. Did SFC complete without complaining?

#37
Quint2724

Posted 21 January 2013 - 10:24 AM

Member

Topic Starter
Member
44 posts

I was able to complete the defrag and chkdsc runs - which did find and fix a number of bad .dll files. Ran SFC again without incident. No changes or improvements to the overall performance of the PC as a result. Still having the same issues. I ran update windows, and it again failed to install 118 updates. I also attempted to run Speccy, and it again gave me the BSOD with the same error codes.

The laptop continues to "hang" after running for a bit - like 5 to 15 minutes after starting. This issue is also now impacting my web access, while in an open browser after it hangs no new updates to existing open web pages - like gmail - will occur, or will it access any new web sites in either a new data tab or a change of web sites in the existing data tab. The only way to fix this is to do a hard power down /re-boot. The random muting of the volume control continues. Even while streaming a video, the "Wave" setting will go to the bottom at random intervals. The hard drive is not frozen, and I can see it being accessed for short bits even while the PC hangs. Frustrating.

#38
godawgs

Posted 21 January 2013 - 12:54 PM

Teacher

Retired Staff
8,228 posts

Running down system problems can be a real booger bear

Step-1.

Posted Image

Run ComboFix
***Read through this entire procedure and if you have any questions, please ask them before you begin. Then either print out, or copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.***

If you have a previous version of Combofix.exe, delete it and download a fresh copy.

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications before downloading ComboFix. This is usually done via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

Download ComboFix from one of the following locations:

Link 1
Link 2

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks
Also allow the installation of the recovery console (XP only)
When finished, it shall produce a log for you.
Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" ComboFix. If you have a problem, reply back for further instructions.
3. If you recieve an error "Illegal operation attempted on a registry key that has been marked for deletion". Please restart the computer. That will cure it.

A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix on your own.
This tool is not a toy and not for everyday use. ComboFix Should Not be used unless requested by a forum helper

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

Don't forget to reenable your Anti-Virus

Step-2.

Now see if you can update Windows. IF you still can't:

Step-3.

Run Windows All-In-One

Download Windows Repair (all in one) from this site. Click one of the Download buttons under the Installer (5.17 MB)

Install the program then then right click the file and click Run as Administrator
Click the Start Repairs tab select Advanced Mode and click Start
Select the items surrounded by the red boxes (remove the ticks from the rest) and tick the Restart system when finished box. (It's in the lower right hand corner just above the Start button)
Click the Start button.

Step-4.

See if you can update Windows.

Step-5.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. The ComboFix log
2. Let me know what happened on the Windows updates issue.

#39
Quint2724

Posted 21 January 2013 - 10:38 PM

Member

Topic Starter
Member
44 posts

Still no luck on Windows update. At least now it starts to download a handful of the updates vs. just failing immediately, but again all 118 updates failed to install. I ran Windows update several times, as the PC will often "hang" in the middle of the update. No changes in the performance of the PC after running ComboFix. It still fails to access the internet within the browser (ID or Firefox) and no new programs will open 10 to 15 minutes after a re-boot.

Here is the log file:

ComboFix 13-01-21.04 - Sherman 01/21/2013 14:11:17.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.389 [GMT -6:00]
Running from: c:\documents and settings\Sherman\My Documents\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\tmp1CC.tmp
c:\documents and settings\All Users\Application Data\tmp62.tmp
c:\documents and settings\All Users\Application Data\tmpD5.tmp
c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
c:\documents and settings\Sherman\My Documents\~WRL3562.tmp
c:\documents and settings\Sherman\WINDOWS
c:\windows\dasetup.log
c:\windows\system32\MFC42.1
c:\windows\system32\rnaph.dll
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2012-12-21 to 2013-01-21 )))))))))))))))))))))))))))))))
.
.
2013-01-21 16:00 . 2013-01-21 16:00 29904 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{226D6161-49E7-4716-8D53-715E6232233E}\MpKsledcdc000.sys
2013-01-20 22:58 . 2013-01-08 04:57 6991832 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{226D6161-49E7-4716-8D53-715E6232233E}\mpengine.dll
2013-01-17 04:55 . 2013-01-08 04:57 6991832 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-14 01:06 . 2008-04-14 11:42 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2013-01-14 01:06 . 2001-08-18 04:36 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2013-01-14 01:06 . 2008-04-14 11:42 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2013-01-14 01:06 . 2001-08-18 04:37 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2013-01-14 01:06 . 2001-08-18 04:37 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2013-01-14 01:05 . 2001-08-18 04:37 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2013-01-14 01:05 . 2001-08-17 18:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2013-01-14 01:05 . 2008-04-14 04:04 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2013-01-14 01:05 . 2008-04-14 04:04 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2013-01-14 01:05 . 2008-04-14 11:42 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2013-01-14 01:05 . 2008-04-14 04:05 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2013-01-14 01:05 . 2001-08-17 18:12 34890 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2013-01-14 01:03 . 2001-08-17 19:28 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2013-01-14 01:03 . 2001-08-17 19:28 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2013-01-14 01:03 . 2001-08-17 19:28 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2013-01-14 01:03 . 2001-08-17 18:14 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2013-01-14 01:03 . 2001-08-17 19:49 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2013-01-14 01:03 . 2001-08-17 19:28 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2013-01-14 01:03 . 2001-08-17 19:28 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2013-01-14 01:03 . 2001-08-17 19:28 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2013-01-14 01:03 . 2001-08-17 19:28 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2013-01-14 01:01 . 2001-08-18 04:36 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2013-01-14 01:01 . 2001-08-18 04:36 211968 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2013-01-14 01:01 . 2001-08-18 04:36 216064 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2013-01-14 01:01 . 2001-08-17 19:48 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2013-01-14 01:01 . 2001-08-17 18:51 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2013-01-14 01:01 . 2001-08-18 04:36 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2013-01-14 01:01 . 2001-08-17 18:51 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2013-01-14 01:01 . 2001-08-17 20:56 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2013-01-14 01:01 . 2001-08-17 18:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2013-01-14 01:01 . 2001-08-17 20:56 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2013-01-14 01:01 . 2001-08-17 18:12 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2013-01-14 01:00 . 2001-08-18 04:35 42496 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2013-01-14 01:00 . 2008-04-14 11:42 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2013-01-14 01:00 . 2001-08-18 04:36 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2013-01-14 01:00 . 2001-08-17 20:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2013-01-14 01:00 . 2001-08-17 20:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2013-01-14 01:00 . 2001-08-17 18:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2013-01-14 01:00 . 2001-08-17 18:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2013-01-14 01:00 . 2001-08-17 18:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2013-01-14 01:00 . 2001-08-17 20:56 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2013-01-14 01:00 . 2008-04-14 06:10 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2013-01-14 01:00 . 2001-08-17 18:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2013-01-14 01:00 . 2001-08-17 18:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2013-01-14 00:59 . 2001-08-17 19:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2013-01-14 00:59 . 2001-08-17 19:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2013-01-14 00:59 . 2001-08-17 18:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2013-01-14 00:59 . 2001-08-17 20:56 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2013-01-14 00:59 . 2001-08-18 04:36 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2013-01-14 00:59 . 2001-08-17 19:50 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2013-01-14 00:59 . 2001-08-17 20:02 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2013-01-14 00:59 . 2001-08-18 04:36 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2013-01-14 00:59 . 2001-08-18 04:36 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2013-01-14 00:59 . 2001-08-18 04:36 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2013-01-14 00:59 . 2001-08-18 04:36 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2013-01-14 00:59 . 2001-08-18 04:36 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2013-01-14 00:58 . 2001-08-18 04:36 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2013-01-14 00:58 . 2001-08-17 18:18 285760 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2013-01-14 00:58 . 2001-08-17 19:51 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2013-01-14 00:58 . 2001-08-17 18:11 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2013-01-14 00:58 . 2001-08-18 04:36 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2013-01-14 00:58 . 2001-08-18 04:36 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2013-01-14 00:58 . 2001-08-17 19:51 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2013-01-14 00:58 . 2001-08-18 04:36 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2013-01-14 00:58 . 2001-08-17 19:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2013-01-14 00:58 . 2001-08-17 18:51 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2013-01-14 00:56 . 2001-08-18 04:36 33792 -c--a-w- c:\windows\system32\dllcache\smb0w.dll
2013-01-14 00:55 . 2001-08-17 18:50 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2013-01-14 00:55 . 2001-07-21 20:29 161568 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2013-01-14 00:55 . 2001-07-21 20:29 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2013-01-14 00:55 . 2001-08-17 18:51 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2013-01-14 00:55 . 2001-08-18 04:36 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2013-01-14 00:55 . 2001-08-17 18:19 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2013-01-14 00:55 . 2001-08-17 19:53 6784 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2013-01-14 00:55 . 2001-08-17 19:48 17664 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2013-01-14 00:55 . 2001-08-17 19:53 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2013-01-14 00:55 . 2008-04-14 06:15 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2013-01-14 00:55 . 2001-08-17 19:52 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2013-01-14 00:53 . 2001-08-17 20:56 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2013-01-14 00:52 . 2001-08-17 19:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2013-01-14 00:52 . 2001-08-17 19:28 714762 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2013-01-14 00:52 . 2001-08-17 19:28 899146 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2013-01-14 00:52 . 2001-08-18 04:36 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2013-01-14 00:52 . 2001-08-17 19:53 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2013-01-14 00:52 . 2008-04-14 06:10 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2013-01-14 00:52 . 2001-08-17 19:28 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2013-01-14 00:52 . 2001-08-17 19:28 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2013-01-14 00:52 . 2001-08-17 19:28 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2013-01-14 00:52 . 2008-04-14 11:42 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2013-01-14 00:52 . 2001-08-18 04:36 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
2013-01-14 00:51 . 2001-08-18 04:36 35328 -c--a-w- c:\windows\system32\dllcache\psisload.dll
2013-01-14 00:51 . 2001-08-17 19:51 16128 -c--a-w- c:\windows\system32\dllcache\pscr.sys
2013-01-14 00:51 . 2008-04-14 06:11 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2013-01-14 00:51 . 2008-04-14 06:10 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2013-01-14 00:51 . 2001-08-17 19:53 17792 -c--a-w- c:\windows\system32\dllcache\ppa.sys
2013-01-14 00:51 . 2001-08-17 19:53 7168 -c--a-w- c:\windows\system32\dllcache\pnrmc.sys
2013-01-14 00:51 . 2001-08-18 04:36 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2013-01-14 00:51 . 2001-08-17 20:07 19840 -c--a-w- c:\windows\system32\dllcache\philtune.sys
2013-01-14 00:51 . 2001-08-17 20:04 92416 -c--a-w- c:\windows\system32\dllcache\phildec.sys
2013-01-14 00:51 . 2001-08-17 20:04 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
2013-01-14 00:51 . 2001-08-17 20:04 75776 -c--a-w- c:\windows\system32\dllcache\philcam1.sys
2013-01-14 00:51 . 2001-08-18 04:36 16384 -c--a-w- c:\windows\system32\dllcache\philcam1.dll
2013-01-14 00:49 . 2001-08-17 20:05 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2013-01-14 00:49 . 2001-08-18 04:36 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2013-01-14 00:49 . 2001-08-17 20:05 31872 -c--a-w- c:\windows\system32\dllcache\ovce.sys
2013-01-14 00:49 . 2001-08-17 20:05 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2013-01-14 00:49 . 2001-08-17 20:05 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2013-01-14 00:49 . 2001-08-17 20:05 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2013-01-14 00:49 . 2001-08-17 19:28 54186 -c--a-w- c:\windows\system32\dllcache\otcsercb.sys
2013-01-14 00:49 . 2001-08-17 18:12 43689 -c--a-w- c:\windows\system32\dllcache\otceth5.sys
2013-01-14 00:49 . 2001-08-17 18:12 27209 -c--a-w- c:\windows\system32\dllcache\otc06x5.sys
2013-01-14 00:49 . 2001-08-17 18:20 54528 -c--a-w- c:\windows\system32\dllcache\opl3sax.sys
2013-01-14 00:49 . 2001-08-17 18:50 198144 -c--a-w- c:\windows\system32\dllcache\nv3.sys
2013-01-14 00:49 . 2001-08-18 04:36 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
2013-01-14 00:49 . 2008-04-14 06:01 2065792 -c--a-w- c:\windows\system32\dllcache\ntkrnlpa.exe
2013-01-14 00:48 . 2001-08-17 18:49 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys
2013-01-14 00:48 . 2001-08-17 19:47 9344 -c--a-w- c:\windows\system32\dllcache\ntapm.sys
2013-01-14 00:48 . 2001-08-17 19:53 7552 -c--a-w- c:\windows\system32\dllcache\nsmmc.sys
2013-01-14 00:48 . 2008-04-14 06:24 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
2013-01-14 00:48 . 2001-08-17 18:20 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
2013-01-14 00:48 . 2001-08-17 18:20 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2013-01-14 00:48 . 2001-08-17 18:12 32840 -c--a-w- c:\windows\system32\dllcache\ngrpci.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-13 17:30 . 2012-04-20 01:49 697864 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-01-13 17:30 . 2011-06-17 13:38 74248 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-12-14 22:49 . 2009-07-26 19:44 21104 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-01-20 23:30 . 2013-01-20 23:29 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ModemOnHold"="c:\program files\NetWaiting\netWaiting.exe" [2003-09-10 20480]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
"Spotify Web Helper"="c:\documents and settings\Sherman\Application Data\Spotify\Data\SpotifyWebHelper.exe" [2012-07-09 932528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-08 761947]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\point32.exe" [2005-03-23 217088]
"IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2007-07-25 823296]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe" [2003-07-25 188416]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 94208]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2012-01-27 296056]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-12-13 98304]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-12-13 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-12-13 118784]
"SigmatelSysTrayApp"="stsystra.exe" [2006-03-24 282624]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-10 136600]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 947176]
.
c:\documents and settings\Sherman\Start Menu\Programs\Startup\
Logitech . Product Registration.lnk - c:\program files\Logitech\Ereg\eReg.exe [N/A]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Extender Resource Monitor.lnk - c:\windows\ehome\RMSysTry.exe [2005-10-20 18432]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]
Microtek Scanner Finder.lnk - c:\windows\twain_32\ScanWiz5\SDII.exe [2010-1-14 315392]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\LunaImaging\\jres\\Sun\\1.4.1\\bin\\javaw.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Documents and Settings\\Sherman\\Application Data\\Spotify\\spotify.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
.
S1 MpKsledcdc000;MpKsledcdc000;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{226D6161-49E7-4716-8D53-715E6232233E}\MpKsledcdc000.sys [1/21/2013 10:00 AM 29904]
S3 cpuz135;cpuz135;\??\c:\docume~1\Sherman\LOCALS~1\Temp\cpuz135\cpuz135_x32.sys --> c:\docume~1\Sherman\LOCALS~1\Temp\cpuz135\cpuz135_x32.sys [?]
S3 MatSvc;Microsoft Automated Troubleshooting Service;c:\program files\Microsoft Fix it Center\Matsvc.exe [6/13/2011 10:09 PM 267568]
S3 SBRE;SBRE;\??\c:\windows\system32\drivers\SBREdrv.sys --> c:\windows\system32\drivers\SBREdrv.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
QWAVE REG_MULTI_SZ QWAVE
.
Contents of the 'Scheduled Tasks' folder
.
2013-01-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-20 17:30]
.
2013-01-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-07 05:18]
.
2013-01-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-07 05:18]
.
2013-01-21 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-09-12 23:25]
.
2013-01-21 c:\windows\Tasks\MpIdleTask.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-09-12 23:25]
.
2013-01-21 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-3089392352-1124448085-2515576934-1005.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-11-29 22:02]
.
2013-01-15 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3089392352-1124448085-2515576934-1005.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-11-29 22:02]
.
2013-01-21 c:\windows\Tasks\ReclaimerUpdateFiles_Sherman.job
- c:\documents and settings\Sherman\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-21 19:38]
.
2013-01-05 c:\windows\Tasks\ReclaimerUpdateXML_Sherman.job
- c:\documents and settings\Sherman\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-21 19:38]
.
2013-01-21 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Sherman.job
- c:\documents and settings\Sherman\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe [2012-12-21 19:38]
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uStart Page = hxxp://www.yahoo.com
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
Trusted Zone: intuit.com\ttlc
Trusted Zone: jocogov.org\ims
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
FF - ProfilePath - c:\documents and settings\Sherman\Application Data\Mozilla\Firefox\Profiles\zubcfgwp.default-1358112118875\
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-Logitech Vid - c:\program files\Logitech\Vid HD\Vid.exe
HKCU-Run-Skype - c:\program files\Skype\Phone\Skype.exe
HKLM-Run-DellSupportCenter - c:\program files\Dell Support Center\bin\sprtcmd.exe
HKLM-Run-AppleSyncNotifier - c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-01-21 14:31
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: TOSHIBA_MK1032GSX rev.AS022D -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
.
device: opened successfully
user: MBR read successfully
error: Read A device attached to the system is not functioning.
kernel: MBR read successfully
detected disk devices:
detected hooks:
\Driver\atapi DriverStartIo -> 0x857B52E2
user & kernel MBR OK
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(900)
c:\windows\system32\wpdshext.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\audiodev.dll
c:\windows\system32\WMVCore.DLL
c:\windows\system32\WMASF.DLL
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\windows\ehome\RMSvc.exe
c:\windows\system32\wdfmgr.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\ehome\McrdSvc.exe
c:\windows\stsystra.exe
c:\windows\eHome\ehmsas.exe
c:\windows\system32\igfxsrvc.exe
c:\progra~1\MI3AA1~1\rapimgr.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\Intel\Wireless\Bin\Dot1XCfg.exe
.
**************************************************************************
.
Completion time: 2013-01-21 14:42:02 - machine was rebooted
ComboFix-quarantined-files.txt 2013-01-21 20:41
.
Pre-Run: 17,399,201,792 bytes free
Post-Run: 17,336,524,800 bytes free
.
- - End Of File - - CB7236786156D95BC1D7C9DB7A1B5DA2

#40
godawgs

Posted 22 January 2013 - 09:43 AM

Teacher

Retired Staff
8,228 posts

Hi,

ComboFix may have found a TDSS rootkit.

Step-1.

TDSSKiller

Please read carefully and follow these steps.
Download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters. (See the image below)
Make sure the boxes under Objects to scan are checked like the image below.
In the Additionak options section, check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system. (See the image below)
Click OK
Click the Start Scan button.
If a suspicious object is detected, the default action will be Skip. DO NOT change the default action, click on Continue. (See the image below)
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Get the report by clicking Report
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

If you didn't get the report above, TDSSKiller should have created one in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents in your next reply.

Step-2.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1. The TDSSKiller log

#41
Quint2724

Posted 22 January 2013 - 10:16 PM

Member

Topic Starter
Member
44 posts

Here you go:

22:11:48.0234 2964 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:11:50.0078 2964 ============================================================
22:11:50.0078 2964 Current date / time: 2013/01/22 22:11:50.0078
22:11:50.0078 2964 SystemInfo:
22:11:50.0078 2964
22:11:50.0078 2964 OS Version: 5.1.2600 ServicePack: 3.0
22:11:50.0078 2964 Product type: Workstation
22:11:50.0078 2964 ComputerName: D4065BB1
22:11:50.0093 2964 UserName: Sherman
22:11:50.0093 2964 Windows directory: C:\WINDOWS
22:11:50.0093 2964 System windows directory: C:\WINDOWS
22:11:50.0093 2964 Processor architecture: Intel x86
22:11:50.0093 2964 Number of processors: 2
22:11:50.0093 2964 Page size: 0x1000
22:11:50.0093 2964 Boot type: Normal boot
22:11:50.0093 2964 ============================================================
22:11:59.0578 2964 BG loaded
22:12:12.0859 2964 Drive \Device\Harddisk0\DR0 - Size: 0x16F0649400 (91.76 Gb), SectorSize: 0x200, Cylinders: 0x2ECA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:12:13.0484 2964 ============================================================
22:12:13.0484 2964 \Device\Harddisk0\DR0:
22:12:17.0296 2964 MBR partitions:
22:12:17.0296 2964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0xAE1EE25
22:12:17.0296 2964 ============================================================
22:12:17.0625 2964 C: <-> \Device\Harddisk0\DR0\Partition1
22:12:17.0718 2964 ============================================================
22:12:17.0718 2964 Initialize success
22:12:17.0718 2964 ============================================================
22:13:13.0515 0836 ============================================================
22:13:13.0515 0836 Scan started
22:13:13.0515 0836 Mode: Manual;
22:13:13.0515 0836 ============================================================
22:13:14.0187 0836 ================ Scan system memory ========================
22:13:18.0578 0836 System memory - ok
22:13:18.0578 0836 ================ Scan services =============================
22:13:18.0796 0836 Abiosdsk - ok
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan global ===============================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan MBR ==================================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan VBR ==================================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ============================================================
22:13:18.0796 0836 Scan finished
22:13:18.0796 0836 ============================================================
22:13:18.0812 0812 Detected object count: 0
22:13:18.0812 0812 Actual detected object count: 0

#42
godawgs

Posted 23 January 2013 - 09:44 AM

Teacher

Retired Staff
8,228 posts

Hi Quint,

The scan was interrupted:

22:13:18.0578 0836 ================ Scan services =============================
22:13:18.0796 0836 Abiosdsk - ok
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan global ===============================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan MBR ==================================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan VBR ==================================
22:13:18.0796 0836 Scan interrupted by user!

If you ran TDSSKiller after you interrupted this scan, the log file should be located at C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt, where version, date, time is the day and time you ran the scan. If you didn't rerun TDSSKiller, please do so now and post the full log.

#43
Quint2724

Posted 23 January 2013 - 10:36 PM

Member

Topic Starter
Member
44 posts

Yea - I saw the same thing yesterday, and ran the program again, but also noticed that the log of the 2nd scan also listed the same "scan interrupted by user" errors. I'm not sure how/why this is so - as I did not touch the PC during the scans. The 1st scan did have a bit of a glitch on the re-boot and the 2nd run performed a bit differently, but I believe TDSSKiller found the same 16 "bad" files.

Here are two different TDSSKiller logs than the one posted yesterday. One I ran right after the first scan yesterday, and the 2nd log is the results of a scan I just ran.

This seems to have made a BIG difference in the performance of the PC - as it now oesn't seem to "hang" while in a web browser, the volume controls now works correctly, and I can open new programs and apps after several minutes of staring the PC. I have not (yet) attempted to perform a Windows Update.

The two TDSSKiller logs:

22:11:48.0234 2964 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:11:50.0078 2964 ============================================================
22:11:50.0078 2964 Current date / time: 2013/01/22 22:11:50.0078
22:11:50.0078 2964 SystemInfo:
22:11:50.0078 2964
22:11:50.0078 2964 OS Version: 5.1.2600 ServicePack: 3.0
22:11:50.0078 2964 Product type: Workstation
22:11:50.0078 2964 ComputerName: D4065BB1
22:11:50.0093 2964 UserName: Sherman
22:11:50.0093 2964 Windows directory: C:\WINDOWS
22:11:50.0093 2964 System windows directory: C:\WINDOWS
22:11:50.0093 2964 Processor architecture: Intel x86
22:11:50.0093 2964 Number of processors: 2
22:11:50.0093 2964 Page size: 0x1000
22:11:50.0093 2964 Boot type: Normal boot
22:11:50.0093 2964 ============================================================
22:11:59.0578 2964 BG loaded
22:12:12.0859 2964 Drive \Device\Harddisk0\DR0 - Size: 0x16F0649400 (91.76 Gb), SectorSize: 0x200, Cylinders: 0x2ECA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:12:13.0484 2964 ============================================================
22:12:13.0484 2964 \Device\Harddisk0\DR0:
22:12:17.0296 2964 MBR partitions:
22:12:17.0296 2964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0xAE1EE25
22:12:17.0296 2964 ============================================================
22:12:17.0625 2964 C: <-> \Device\Harddisk0\DR0\Partition1
22:12:17.0718 2964 ============================================================
22:12:17.0718 2964 Initialize success
22:12:17.0718 2964 ============================================================
22:13:13.0515 0836 ============================================================
22:13:13.0515 0836 Scan started
22:13:13.0515 0836 Mode: Manual;
22:13:13.0515 0836 ============================================================
22:13:14.0187 0836 ================ Scan system memory ========================
22:13:18.0578 0836 System memory - ok
22:13:18.0578 0836 ================ Scan services =============================
22:13:18.0796 0836 Abiosdsk - ok
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan global ===============================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan MBR ==================================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ================ Scan VBR ==================================
22:13:18.0796 0836 Scan interrupted by user!
22:13:18.0796 0836 ============================================================
22:13:18.0796 0836 Scan finished
22:13:18.0796 0836 ============================================================
22:13:18.0812 0812 Detected object count: 0
22:13:18.0812 0812 Actual detected object count: 0
22:16:42.0437 0836 ============================================================
22:16:42.0437 0836 Scan started
22:16:42.0437 0836 Mode: Manual;
22:16:42.0437 0836 ============================================================
22:16:43.0203 0836 ================ Scan system memory ========================
22:16:44.0718 0836 System memory - ok
22:16:44.0718 0836 ================ Scan services =============================
22:16:44.0859 0836 Abiosdsk - ok
22:16:44.0890 0836 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:16:44.0906 0836 abp480n5 - ok
22:16:44.0953 0836 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:16:45.0015 0836 ACPI - ok
22:16:45.0046 0836 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:16:45.0078 0836 ACPIEC - ok
22:16:45.0156 0836 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:16:45.0359 0836 AdobeFlashPlayerUpdateSvc - ok
22:16:45.0390 0836 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:16:45.0468 0836 adpu160m - ok
22:16:45.0500 0836 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:16:45.0609 0836 aec - ok
22:16:45.0656 0836 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
22:16:45.0718 0836 AegisP - ok
22:16:45.0750 0836 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:16:45.0812 0836 AFD - ok
22:16:45.0875 0836 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
22:16:45.0937 0836 agp440 - ok
22:16:45.0968 0836 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:16:46.0062 0836 agpCPQ - ok
22:16:46.0093 0836 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:16:46.0140 0836 Aha154x - ok
22:16:46.0156 0836 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:16:46.0218 0836 aic78u2 - ok
22:16:46.0234 0836 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:16:46.0312 0836 aic78xx - ok
22:16:46.0343 0836 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:16:46.0390 0836 Alerter - ok
22:16:46.0421 0836 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
22:16:46.0484 0836 ALG - ok
22:16:46.0515 0836 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
22:16:46.0546 0836 AliIde - ok
22:16:46.0562 0836 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:16:46.0625 0836 alim1541 - ok
22:16:46.0656 0836 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:16:46.0718 0836 amdagp - ok
22:16:46.0734 0836 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
22:16:46.0765 0836 amsint - ok
22:16:46.0859 0836 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:16:47.0015 0836 Apple Mobile Device - ok
22:16:47.0046 0836 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:16:47.0078 0836 AppMgmt - ok
22:16:47.0125 0836 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:16:47.0156 0836 Arp1394 - ok
22:16:47.0218 0836 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
22:16:47.0234 0836 asc - ok
22:16:47.0250 0836 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:16:47.0281 0836 asc3350p - ok
22:16:47.0296 0836 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:16:47.0312 0836 asc3550 - ok
22:16:47.0359 0836 [ 31ED89BADD47130AD57CCE8C8DFB5B27 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
22:16:47.0390 0836 ASPI32 - ok
22:16:47.0531 0836 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:16:47.0687 0836 aspnet_state - ok
22:16:47.0703 0836 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:16:47.0750 0836 AsyncMac - ok
22:16:47.0796 0836 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:16:47.0796 0836 atapi - ok
22:16:47.0796 0836 Atdisk - ok
22:16:47.0828 0836 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:16:47.0906 0836 Atmarpc - ok
22:16:47.0953 0836 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:16:47.0984 0836 AudioSrv - ok
22:16:48.0031 0836 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:16:48.0062 0836 audstub - ok
22:16:48.0140 0836 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
22:16:48.0187 0836 bcm4sbxp - ok
22:16:48.0234 0836 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:16:48.0281 0836 Beep - ok
22:16:48.0343 0836 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
22:16:48.0468 0836 BITS - ok
22:16:48.0515 0836 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
22:16:48.0546 0836 Browser - ok
22:16:48.0562 0836 catchme - ok
22:16:48.0609 0836 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:16:48.0640 0836 cbidf - ok
22:16:48.0656 0836 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:16:48.0656 0836 cbidf2k - ok
22:16:48.0671 0836 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:16:48.0734 0836 CCDECODE - ok
22:16:48.0765 0836 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:16:48.0796 0836 cd20xrnt - ok
22:16:48.0812 0836 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:16:48.0875 0836 Cdaudio - ok
22:16:48.0890 0836 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:16:48.0968 0836 Cdfs - ok
22:16:48.0984 0836 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:16:49.0078 0836 Cdrom - ok
22:16:49.0109 0836 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
22:16:49.0156 0836 cercsr6 - ok
22:16:49.0171 0836 Changer - ok
22:16:49.0187 0836 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:16:49.0265 0836 CiSvc - ok
22:16:49.0312 0836 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:16:49.0390 0836 ClipSrv - ok
22:16:49.0421 0836 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:16:49.0718 0836 clr_optimization_v2.0.50727_32 - ok
22:16:49.0734 0836 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:16:49.0781 0836 CmBatt - ok
22:16:49.0812 0836 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:16:49.0859 0836 CmdIde - ok
22:16:49.0875 0836 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:16:49.0906 0836 Compbatt - ok
22:16:49.0921 0836 COMSysApp - ok
22:16:49.0968 0836 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:16:50.0000 0836 Cpqarray - ok
22:16:50.0203 0836 cpuz135 - ok
22:16:50.0265 0836 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:16:50.0312 0836 CryptSvc - ok
22:16:50.0343 0836 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:16:50.0421 0836 dac2w2k - ok
22:16:50.0468 0836 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:16:50.0500 0836 dac960nt - ok
22:16:50.0593 0836 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:16:50.0609 0836 DcomLaunch - ok
22:16:50.0640 0836 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:16:50.0640 0836 Dhcp - ok
22:16:50.0656 0836 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:16:50.0656 0836 Disk - ok
22:16:50.0671 0836 dmadmin - ok
22:16:50.0718 0836 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:16:50.0812 0836 dmboot - ok
22:16:50.0843 0836 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
22:16:50.0906 0836 dmio - ok
22:16:50.0921 0836 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:16:50.0953 0836 dmload - ok
22:16:50.0984 0836 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:16:51.0031 0836 dmserver - ok
22:16:51.0062 0836 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:16:51.0125 0836 DMusic - ok
22:16:51.0156 0836 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:16:51.0218 0836 Dnscache - ok
22:16:51.0265 0836 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:16:51.0312 0836 Dot3svc - ok
22:16:51.0328 0836 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:16:51.0343 0836 dpti2o - ok
22:16:51.0375 0836 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:16:51.0390 0836 drmkaud - ok
22:16:51.0421 0836 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:16:51.0484 0836 E100B - ok
22:16:51.0500 0836 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:16:51.0531 0836 EapHost - ok
22:16:51.0625 0836 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
22:16:51.0671 0836 ehRecvr - ok
22:16:51.0734 0836 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
22:16:51.0765 0836 ehSched - ok
22:16:51.0812 0836 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
22:16:51.0859 0836 elagopro - ok
22:16:51.0875 0836 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
22:16:51.0906 0836 elaunidr - ok
22:16:51.0968 0836 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:16:51.0984 0836 ERSvc - ok
22:16:52.0015 0836 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
22:16:52.0062 0836 Eventlog - ok
22:16:52.0125 0836 [ 19A799805B24990867B00C120D300C3A ] EventSystem C:\WINDOWS\system32\es.dll
22:16:52.0187 0836 EventSystem - ok
22:16:52.0281 0836 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
22:16:52.0421 0836 EvtEng - ok
22:16:52.0484 0836 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:16:52.0656 0836 Fastfat - ok
22:16:52.0750 0836 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:16:52.0781 0836 FastUserSwitchingCompatibility - ok
22:16:52.0906 0836 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:16:53.0328 0836 Fax - ok
22:16:53.0343 0836 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
22:16:53.0390 0836 Fdc - ok
22:16:53.0437 0836 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:16:53.0484 0836 Fips - ok
22:16:53.0515 0836 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:16:53.0562 0836 Flpydisk - ok
22:16:53.0593 0836 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:16:53.0656 0836 FltMgr - ok
22:16:53.0765 0836 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:16:53.0796 0836 FontCache3.0.0.0 - ok
22:16:53.0843 0836 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:16:53.0875 0836 Fs_Rec - ok
22:16:53.0890 0836 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:16:53.0937 0836 Ftdisk - ok
22:16:54.0062 0836 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\WildTangent\Apps\Dell Game Console\GameConsoleService.exe
22:16:54.0218 0836 GameConsoleService - ok
22:16:54.0265 0836 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:16:54.0312 0836 GEARAspiWDM - ok
22:16:54.0343 0836 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:16:54.0390 0836 Gpc - ok
22:16:54.0437 0836 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\WINDOWS\system32\drivers\grmnusb.sys
22:16:54.0468 0836 grmnusb - ok
22:16:54.0546 0836 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:16:54.0625 0836 gupdate - ok
22:16:54.0625 0836 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:16:54.0640 0836 gupdatem - ok
22:16:54.0687 0836 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:16:54.0718 0836 HDAudBus - ok
22:16:54.0796 0836 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:16:54.0828 0836 helpsvc - ok
22:16:54.0843 0836 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
22:16:54.0875 0836 HidServ - ok
22:16:54.0921 0836 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:16:54.0937 0836 HidUsb - ok
22:16:54.0984 0836 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:16:55.0046 0836 hkmsvc - ok
22:16:55.0078 0836 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
22:16:55.0125 0836 hpn - ok
22:16:55.0171 0836 [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:16:55.0218 0836 HPZid412 - ok
22:16:55.0234 0836 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:16:55.0265 0836 HPZipr12 - ok
22:16:55.0328 0836 [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:16:55.0375 0836 HPZius12 - ok
22:16:55.0468 0836 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
22:16:55.0546 0836 HSF_DPV - ok
22:16:55.0578 0836 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
22:16:55.0609 0836 HSXHWAZL - ok
22:16:55.0656 0836 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:16:55.0734 0836 HTTP - ok
22:16:55.0765 0836 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:16:55.0796 0836 HTTPFilter - ok
22:16:55.0828 0836 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
22:16:55.0843 0836 i2omgmt - ok
22:16:55.0875 0836 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:16:55.0937 0836 i2omp - ok
22:16:55.0953 0836 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:16:56.0000 0836 i8042prt - ok
22:16:56.0078 0836 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:16:56.0125 0836 ialm - ok
22:16:56.0265 0836 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:16:56.0468 0836 idsvc - ok
22:16:56.0500 0836 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:16:56.0546 0836 Imapi - ok
22:16:56.0593 0836 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
22:16:56.0671 0836 ImapiService - ok
22:16:56.0703 0836 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:16:56.0734 0836 ini910u - ok
22:16:56.0765 0836 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
22:16:56.0796 0836 IntelIde - ok
22:16:56.0828 0836 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:16:56.0875 0836 intelppm - ok
22:16:56.0906 0836 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:16:57.0031 0836 Ip6Fw - ok
22:16:57.0046 0836 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:16:57.0109 0836 IpFilterDriver - ok
22:16:57.0156 0836 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:16:57.0234 0836 IpInIp - ok
22:16:57.0265 0836 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:16:57.0312 0836 IpNat - ok
22:16:57.0390 0836 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:16:57.0406 0836 iPod Service - ok
22:16:57.0421 0836 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:16:57.0531 0836 IPSec - ok
22:16:57.0546 0836 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:16:57.0578 0836 IRENUM - ok
22:16:57.0609 0836 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:16:57.0640 0836 isapnp - ok
22:16:57.0718 0836 [ 32192B4EBE8720ED8D49A455C962CB91 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
22:16:57.0812 0836 JavaQuickStarterService - ok
22:16:57.0812 0836 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:16:57.0843 0836 Kbdclass - ok
22:16:57.0859 0836 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:16:57.0890 0836 kbdhid - ok
22:16:57.0906 0836 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:16:57.0906 0836 kmixer - ok
22:16:57.0921 0836 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:16:57.0984 0836 KSecDD - ok
22:16:58.0015 0836 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:16:58.0062 0836 lanmanserver - ok
22:16:58.0093 0836 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:16:58.0125 0836 lanmanworkstation - ok
22:16:58.0140 0836 lbrtfdc - ok
22:16:58.0171 0836 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:16:58.0203 0836 LmHosts - ok
22:16:58.0203 0836 LVRS - ok
22:16:58.0203 0836 LVUVC - ok
22:16:58.0296 0836 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
22:16:58.0359 0836 MatSvc - ok
22:16:58.0406 0836 [ BEC8D118490817F93FBE620B30EC7264 ] McrdSvc C:\WINDOWS\ehome\McrdSvc.exe
22:16:58.0453 0836 McrdSvc - ok
22:16:58.0468 0836 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:16:58.0515 0836 mdmxsdk - ok
22:16:58.0546 0836 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:16:58.0578 0836 Messenger - ok
22:16:58.0593 0836 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
22:16:58.0671 0836 MHN - ok
22:16:58.0687 0836 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
22:16:58.0718 0836 MHNDRV - ok
22:16:58.0734 0836 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:16:58.0750 0836 mnmdd - ok
22:16:58.0796 0836 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
22:16:58.0890 0836 mnmsrvc - ok
22:16:58.0906 0836 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:16:58.0953 0836 Modem - ok
22:16:58.0968 0836 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:16:59.0000 0836 Mouclass - ok
22:16:59.0062 0836 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:16:59.0093 0836 mouhid - ok
22:16:59.0125 0836 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:16:59.0187 0836 MountMgr - ok
22:16:59.0218 0836 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:16:59.0328 0836 MozillaMaintenance - ok
22:16:59.0359 0836 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
22:16:59.0406 0836 MpFilter - ok
22:16:59.0453 0836 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:16:59.0484 0836 mraid35x - ok
22:16:59.0515 0836 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:16:59.0546 0836 MRxDAV - ok
22:16:59.0593 0836 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:16:59.0656 0836 MRxSmb - ok
22:16:59.0687 0836 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
22:16:59.0718 0836 MSDTC - ok
22:16:59.0734 0836 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:16:59.0843 0836 Msfs - ok
22:16:59.0843 0836 MSIServer - ok
22:16:59.0875 0836 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:16:59.0906 0836 MSKSSRV - ok
22:16:59.0953 0836 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:17:00.0000 0836 MsMpSvc - ok
22:17:00.0031 0836 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:17:00.0046 0836 MSPCLOCK - ok
22:17:00.0093 0836 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:17:00.0125 0836 MSPQM - ok
22:17:00.0156 0836 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:17:00.0187 0836 mssmbios - ok
22:17:00.0218 0836 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
22:17:00.0234 0836 MSTEE - ok
22:17:00.0281 0836 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:17:00.0328 0836 Mup - ok
22:17:00.0343 0836 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:17:00.0390 0836 NABTSFEC - ok
22:17:00.0468 0836 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
22:17:00.0578 0836 napagent - ok
22:17:00.0593 0836 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:17:00.0687 0836 NDIS - ok
22:17:00.0718 0836 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:17:00.0750 0836 NdisIP - ok
22:17:00.0781 0836 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:17:00.0812 0836 NdisTapi - ok
22:17:00.0828 0836 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:17:00.0875 0836 Ndisuio - ok
22:17:00.0875 0836 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:17:01.0015 0836 NdisWan - ok
22:17:01.0015 0836 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:17:01.0078 0836 NDProxy - ok
22:17:01.0093 0836 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:17:01.0171 0836 NetBIOS - ok
22:17:01.0203 0836 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:17:01.0296 0836 NetBT - ok
22:17:01.0328 0836 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
22:17:01.0484 0836 NetDDE - ok
22:17:01.0484 0836 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:17:01.0484 0836 NetDDEdsdm - ok
22:17:01.0515 0836 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:17:01.0562 0836 Netlogon - ok
22:17:01.0593 0836 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
22:17:01.0593 0836 Netman - ok
22:17:01.0625 0836 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:17:01.0656 0836 NetTcpPortSharing - ok
22:17:01.0781 0836 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
22:17:01.0843 0836 NETw3x32 - ok
22:17:02.0000 0836 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
22:17:02.0125 0836 NETw4x32 - ok
22:17:02.0171 0836 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:17:02.0250 0836 NIC1394 - ok
22:17:02.0296 0836 [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla C:\WINDOWS\System32\mswsock.dll
22:17:02.0296 0836 Nla - ok
22:17:02.0328 0836 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:17:02.0390 0836 Npfs - ok
22:17:02.0453 0836 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:17:02.0515 0836 Ntfs - ok
22:17:02.0531 0836 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
22:17:02.0531 0836 NtLmSsp - ok
22:17:02.0593 0836 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:17:02.0640 0836 NtmsSvc - ok
22:17:02.0656 0836 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:17:02.0671 0836 Null - ok
22:17:02.0765 0836 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:17:02.0843 0836 nv - ok
22:17:02.0906 0836 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:17:02.0921 0836 NwlnkFlt - ok
22:17:02.0953 0836 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:17:02.0984 0836 NwlnkFwd - ok
22:17:03.0000 0836 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:17:03.0031 0836 ohci1394 - ok
22:17:03.0109 0836 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:17:03.0203 0836 ose - ok
22:17:03.0500 0836 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:17:03.0890 0836 osppsvc - ok
22:17:03.0906 0836 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:17:03.0968 0836 Parport - ok
22:17:04.0000 0836 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:17:04.0046 0836 PartMgr - ok
22:17:04.0078 0836 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:17:04.0093 0836 ParVdm - ok
22:17:04.0109 0836 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:17:04.0156 0836 PCI - ok
22:17:04.0156 0836 PCIDump - ok
22:17:04.0203 0836 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:17:04.0218 0836 PCIIde - ok
22:17:04.0234 0836 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
22:17:04.0265 0836 Pcmcia - ok
22:17:04.0265 0836 PDCOMP - ok
22:17:04.0281 0836 PDFRAME - ok
22:17:04.0281 0836 PDRELI - ok
22:17:04.0281 0836 PDRFRAME - ok
22:17:04.0312 0836 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
22:17:04.0328 0836 perc2 - ok
22:17:04.0343 0836 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:17:04.0375 0836 perc2hib - ok
22:17:04.0421 0836 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
22:17:04.0421 0836 PlugPlay - ok
22:17:04.0468 0836 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
22:17:04.0703 0836 Pml Driver HPZ12 - ok
22:17:04.0750 0836 [ E4910CE9D882BF825979FCF4636A9BD8 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
22:17:04.0796 0836 Point32 - ok
22:17:04.0812 0836 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
22:17:04.0812 0836 PolicyAgent - ok
22:17:04.0828 0836 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:17:04.0859 0836 PptpMiniport - ok
22:17:04.0875 0836 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:17:04.0875 0836 ProtectedStorage - ok
22:17:04.0875 0836 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:17:04.0921 0836 PSched - ok
22:17:04.0937 0836 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:17:04.0953 0836 Ptilink - ok
22:17:04.0968 0836 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:17:04.0984 0836 PxHelp20 - ok
22:17:05.0031 0836 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:17:05.0046 0836 ql1080 - ok
22:17:05.0062 0836 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:17:05.0078 0836 Ql10wnt - ok
22:17:05.0109 0836 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:17:05.0125 0836 ql12160 - ok
22:17:05.0156 0836 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:17:05.0171 0836 ql1240 - ok
22:17:05.0187 0836 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:17:05.0203 0836 ql1280 - ok
22:17:05.0265 0836 [ D2EA58899FCF66539FAD12897B787216 ] QWAVE C:\WINDOWS\system32\qwave.dll
22:17:05.0312 0836 QWAVE - ok
22:17:05.0343 0836 [ 2BB1D2BAF3493362E5C1949C5F210D5F ] QWAVEDRV C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
22:17:05.0359 0836 QWAVEDRV - ok
22:17:05.0390 0836 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:17:05.0406 0836 RasAcd - ok
22:17:05.0453 0836 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:17:05.0500 0836 RasAuto - ok
22:17:05.0515 0836 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:17:05.0562 0836 Rasl2tp - ok
22:17:05.0593 0836 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:17:05.0625 0836 RasMan - ok
22:17:05.0656 0836 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:17:05.0687 0836 RasPppoe - ok
22:17:05.0703 0836 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:17:05.0718 0836 Raspti - ok
22:17:05.0734 0836 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:17:05.0765 0836 Rdbss - ok
22:17:05.0781 0836 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:17:05.0796 0836 RDPCDD - ok
22:17:05.0828 0836 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:17:05.0843 0836 rdpdr - ok
22:17:05.0906 0836 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:17:05.0984 0836 RDPWD - ok
22:17:06.0015 0836 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:17:06.0109 0836 RDSessMgr - ok
22:17:06.0140 0836 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:17:06.0203 0836 redbook - ok
22:17:06.0250 0836 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
22:17:06.0437 0836 RegSrvc - ok
22:17:06.0500 0836 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:17:06.0562 0836 RemoteAccess - ok
22:17:06.0609 0836 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:17:06.0671 0836 RemoteRegistry - ok
22:17:06.0703 0836 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
22:17:06.0734 0836 rimmptsk - ok
22:17:06.0765 0836 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
22:17:06.0828 0836 rimsptsk - ok
22:17:06.0859 0836 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
22:17:06.0937 0836 rismxdp - ok
22:17:06.0953 0836 [ 868E6C58E9B301A768AE50E2A8E3C5D5 ] RMSvc C:\WINDOWS\ehome\RMSvc.exe
22:17:07.0031 0836 RMSvc - ok
22:17:07.0062 0836 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
22:17:07.0156 0836 RpcLocator - ok
22:17:07.0203 0836 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\System32\rpcss.dll
22:17:07.0203 0836 RpcSs - ok
22:17:07.0250 0836 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
22:17:07.0375 0836 RSVP - ok
22:17:07.0453 0836 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
22:17:07.0625 0836 S24EventMonitor - ok
22:17:07.0656 0836 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
22:17:07.0671 0836 s24trans - ok
22:17:07.0718 0836 SABProcEnum - ok
22:17:07.0750 0836 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
22:17:07.0750 0836 SamSs - ok
22:17:07.0750 0836 SBRE - ok
22:17:07.0796 0836 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:17:07.0843 0836 SCardSvr - ok
22:17:07.0875 0836 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:17:07.0906 0836 Schedule - ok
22:17:07.0921 0836 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:17:07.0953 0836 sdbus - ok
22:17:07.0984 0836 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:17:08.0015 0836 Secdrv - ok
22:17:08.0046 0836 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
22:17:08.0062 0836 seclogon - ok
22:17:08.0109 0836 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
22:17:08.0125 0836 SENS - ok
22:17:08.0140 0836 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
22:17:08.0187 0836 serenum - ok
22:17:08.0218 0836 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
22:17:08.0328 0836 Serial - ok
22:17:08.0359 0836 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
22:17:08.0390 0836 Sfloppy - ok
22:17:08.0437 0836 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:17:08.0515 0836 SharedAccess - ok
22:17:08.0546 0836 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:17:08.0546 0836 ShellHWDetection - ok
22:17:08.0578 0836 Simbad - ok
22:17:08.0593 0836 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:17:08.0640 0836 sisagp - ok
22:17:08.0671 0836 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:17:08.0703 0836 SLIP - ok
22:17:08.0734 0836 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:17:08.0765 0836 Sparrow - ok
22:17:08.0796 0836 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:17:08.0828 0836 splitter - ok
22:17:08.0859 0836 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:17:09.0468 0836 Spooler - ok
22:17:09.0500 0836 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:17:09.0562 0836 sr - ok
22:17:09.0578 0836 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
22:17:09.0625 0836 srservice - ok
22:17:09.0656 0836 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:17:09.0718 0836 Srv - ok
22:17:09.0718 0836 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:17:09.0750 0836 SSDPSRV - ok
22:17:09.0859 0836 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
22:17:09.0921 0836 STHDA - ok
22:17:09.0968 0836 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:17:10.0015 0836 stisvc - ok
22:17:10.0046 0836 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:17:10.0062 0836 streamip - ok
22:17:10.0109 0836 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:17:10.0156 0836 swenum - ok
22:17:10.0187 0836 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:17:10.0250 0836 swmidi - ok
22:17:10.0250 0836 SwPrv - ok
22:17:10.0296 0836 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
22:17:10.0328 0836 symc810 - ok
22:17:10.0343 0836 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:17:10.0375 0836 symc8xx - ok
22:17:10.0406 0836 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:17:10.0437 0836 sym_hi - ok
22:17:10.0468 0836 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:17:10.0500 0836 sym_u3 - ok
22:17:10.0562 0836 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:17:10.0640 0836 SynTP - ok
22:17:10.0671 0836 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:17:10.0765 0836 sysaudio - ok
22:17:10.0812 0836 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:17:10.0906 0836 SysmonLog - ok
22:17:10.0953 0836 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:17:11.0031 0836 TapiSrv - ok
22:17:11.0078 0836 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:17:11.0156 0836 Tcpip - ok
22:17:11.0171 0836 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:17:11.0234 0836 TDPIPE - ok
22:17:11.0250 0836 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:17:11.0312 0836 TDTCP - ok
22:17:11.0328 0836 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:17:11.0390 0836 TermDD - ok
22:17:11.0421 0836 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
22:17:11.0484 0836 TermService - ok
22:17:11.0515 0836 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
22:17:11.0515 0836 Themes - ok
22:17:11.0562 0836 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
22:17:11.0656 0836 TlntSvr - ok
22:17:11.0687 0836 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
22:17:11.0718 0836 TosIde - ok
22:17:11.0765 0836 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:17:11.0828 0836 TrkWks - ok
22:17:11.0859 0836 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:17:11.0921 0836 Udfs - ok
22:17:11.0953 0836 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
22:17:12.0000 0836 ultra - ok
22:17:12.0031 0836 [ 6634C460C56EC7E48D6BE20B745DC03A ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
22:17:12.0093 0836 UMWdf - ok
22:17:12.0171 0836 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:17:12.0250 0836 Update - ok
22:17:12.0281 0836 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:17:12.0359 0836 upnphost - ok
22:17:12.0375 0836 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
22:17:12.0500 0836 UPS - ok
22:17:12.0640 0836 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:17:12.0671 0836 USBAAPL - ok
22:17:12.0796 0836 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:17:12.0906 0836 usbaudio - ok
22:17:13.0015 0836 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:17:13.0046 0836 usbccgp - ok
22:17:13.0062 0836 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:17:13.0125 0836 usbehci - ok
22:17:13.0156 0836 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:17:13.0234 0836 usbhub - ok
22:17:13.0265 0836 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:17:13.0312 0836 usbprint - ok
22:17:13.0328 0836 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:17:13.0359 0836 usbscan - ok
22:17:13.0390 0836 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:17:13.0453 0836 USBSTOR - ok
22:17:13.0468 0836 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:17:13.0515 0836 usbuhci - ok
22:17:13.0546 0836 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
22:17:13.0593 0836 usbvideo - ok
22:17:13.0609 0836 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
22:17:13.0640 0836 usb_rndisx - ok
22:17:13.0656 0836 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:17:13.0687 0836 VgaSave - ok
22:17:13.0703 0836 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:17:13.0765 0836 viaagp - ok
22:17:13.0781 0836 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
22:17:13.0812 0836 ViaIde - ok
22:17:13.0843 0836 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:17:13.0875 0836 VolSnap - ok
22:17:13.0921 0836 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
22:17:13.0984 0836 VSS - ok
22:17:14.0031 0836 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
22:17:14.0062 0836 w32time - ok
22:17:14.0140 0836 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
22:17:14.0203 0836 w39n51 - ok
22:17:14.0250 0836 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:17:14.0281 0836 Wanarp - ok
22:17:14.0296 0836 wanatw - ok
22:17:14.0296 0836 WDICA - ok
22:17:14.0312 0836 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:17:14.0359 0836 wdmaud - ok
22:17:14.0406 0836 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:17:14.0421 0836 WebClient - ok
22:17:14.0484 0836 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
22:17:14.0515 0836 winachsf - ok
22:17:14.0609 0836 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:17:14.0687 0836 winmgmt - ok
22:17:14.0734 0836 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
22:17:14.0843 0836 WLANKEEPER - ok
22:17:14.0890 0836 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
22:17:14.0906 0836 WmdmPmSN - ok
22:17:15.0000 0836 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:17:15.0000 0836 Wmi - ok
22:17:15.0015 0836 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:17:15.0031 0836 WmiAcpi - ok
22:17:15.0078 0836 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:17:15.0171 0836 WmiApSrv - ok
22:17:15.0281 0836 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
22:17:15.0625 0836 WMPNetworkSvc - ok
22:17:15.0671 0836 [ 0770ACCA345B35EF455AC0D96C8B39A0 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:17:15.0703 0836 WpdUsb - ok
22:17:15.0734 0836 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:17:15.0765 0836 WS2IFSL - ok
22:17:15.0796 0836 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:17:15.0859 0836 wscsvc - ok
22:17:15.0921 0836 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:17:15.0968 0836 WSTCODEC - ok
22:17:15.0984 0836 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:17:15.0984 0836 wuauserv - ok
22:17:16.0031 0836 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:17:16.0078 0836 WudfPf - ok
22:17:16.0109 0836 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:17:16.0156 0836 WudfRd - ok
22:17:16.0203 0836 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
22:17:16.0234 0836 WudfSvc - ok
22:17:16.0281 0836 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:17:16.0296 0836 WZCSVC - ok
22:17:16.0312 0836 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:17:16.0375 0836 xmlprov - ok
22:17:16.0390 0836 ================ Scan global ===============================
22:17:16.0437 0836 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
22:17:16.0484 0836 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:17:16.0546 0836 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:17:16.0578 0836 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
22:17:16.0578 0836 [Global] - ok
22:17:16.0578 0836 ================ Scan MBR ==================================
22:17:16.0609 0836 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
22:17:16.0796 0836 \Device\Harddisk0\DR0 - ok
22:17:16.0796 0836 ================ Scan VBR ==================================
22:17:16.0796 0836 [ 906090EE3E0DCC02260B16732F31435B ] \Device\Harddisk0\DR0\Partition1
22:17:16.0796 0836 \Device\Harddisk0\DR0\Partition1 - ok
22:17:16.0796 0836 ============================================================
22:17:16.0796 0836 Scan finished
22:17:16.0796 0836 ============================================================
22:17:16.0812 1416 Detected object count: 0
22:17:16.0812 1416 Actual detected object count: 0
22:17:34.0859 1340 ============================================================
22:17:34.0859 1340 Scan started
22:17:34.0859 1340 Mode: Manual; SigCheck; TDLFS;
22:17:34.0859 1340 ============================================================
22:17:35.0718 1340 ================ Scan system memory ========================
22:17:37.0218 1340 System memory - ok
22:17:37.0218 1340 ================ Scan services =============================
22:17:37.0328 1340 Abiosdsk - ok
22:17:37.0359 1340 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:17:37.0703 1340 abp480n5 - ok
22:17:37.0734 1340 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:17:37.0968 1340 ACPI - ok
22:17:38.0000 1340 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:17:38.0218 1340 ACPIEC - ok
22:17:38.0328 1340 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:17:38.0359 1340 AdobeFlashPlayerUpdateSvc - ok
22:17:38.0390 1340 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:17:38.0609 1340 adpu160m - ok
22:17:38.0625 1340 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:17:38.0843 1340 aec - ok
22:17:38.0875 1340 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
22:17:38.0906 1340 AegisP - ok
22:17:38.0937 1340 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:17:39.0125 1340 AFD - ok
22:17:39.0171 1340 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
22:17:39.0328 1340 agp440 - ok
22:17:39.0343 1340 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:17:39.0515 1340 agpCPQ - ok
22:17:39.0546 1340 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:17:39.0609 1340 Aha154x - ok
22:17:39.0640 1340 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:17:39.0781 1340 aic78u2 - ok
22:17:39.0781 1340 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:17:39.0953 1340 aic78xx - ok
22:17:39.0984 1340 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:17:40.0156 1340 Alerter - ok
22:17:40.0171 1340 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
22:17:40.0234 1340 ALG - ok
22:17:40.0265 1340 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
22:17:40.0437 1340 AliIde - ok
22:17:40.0453 1340 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:17:40.0593 1340 alim1541 - ok
22:17:40.0625 1340 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:17:40.0765 1340 amdagp - ok
22:17:40.0781 1340 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
22:17:40.0843 1340 amsint - ok
22:17:40.0937 1340 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:17:40.0953 1340 Apple Mobile Device - ok
22:17:40.0984 1340 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:17:41.0062 1340 AppMgmt - ok
22:17:41.0093 1340 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:17:41.0234 1340 Arp1394 - ok
22:17:41.0265 1340 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
22:17:41.0453 1340 asc - ok
22:17:41.0468 1340 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:17:41.0578 1340 asc3350p - ok
22:17:41.0609 1340 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:17:41.0812 1340 asc3550 - ok
22:17:41.0859 1340 [ 31ED89BADD47130AD57CCE8C8DFB5B27 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
22:17:41.0890 1340 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
22:17:41.0890 1340 ASPI32 - detected UnsignedFile.Multi.Generic (1)
22:17:42.0031 1340 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:17:42.0046 1340 aspnet_state - ok
22:17:42.0062 1340 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:17:42.0218 1340 AsyncMac - ok
22:17:42.0250 1340 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:17:42.0421 1340 atapi - ok
22:17:42.0437 1340 Atdisk - ok
22:17:42.0468 1340 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:17:42.0875 1340 Atmarpc - ok
22:17:42.0921 1340 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:17:43.0062 1340 AudioSrv - ok
22:17:43.0125 1340 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:17:43.0250 1340 audstub - ok
22:17:43.0296 1340 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
22:17:43.0359 1340 bcm4sbxp - ok
22:17:43.0390 1340 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:17:43.0578 1340 Beep - ok
22:17:43.0640 1340 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
22:17:43.0859 1340 BITS - ok
22:17:43.0890 1340 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
22:17:44.0078 1340 Browser - ok
22:17:44.0078 1340 catchme - ok
22:17:44.0125 1340 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:17:44.0312 1340 cbidf - ok
22:17:44.0312 1340 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:17:44.0484 1340 cbidf2k - ok
22:17:44.0515 1340 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:17:44.0656 1340 CCDECODE - ok
22:17:44.0671 1340 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:17:44.0765 1340 cd20xrnt - ok
22:17:44.0812 1340 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:17:44.0968 1340 Cdaudio - ok
22:17:44.0968 1340 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:17:45.0109 1340 Cdfs - ok
22:17:45.0140 1340 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:17:45.0296 1340 Cdrom - ok
22:17:45.0328 1340 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
22:17:45.0343 1340 cercsr6 ( UnsignedFile.Multi.Generic ) - warning
22:17:45.0343 1340 cercsr6 - detected UnsignedFile.Multi.Generic (1)
22:17:45.0359 1340 Changer - ok
22:17:45.0375 1340 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:17:45.0531 1340 CiSvc - ok
22:17:45.0578 1340 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:17:45.0734 1340 ClipSrv - ok
22:17:45.0781 1340 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:17:45.0796 1340 clr_optimization_v2.0.50727_32 - ok
22:17:45.0828 1340 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:17:45.0968 1340 CmBatt - ok
22:17:46.0000 1340 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:17:46.0156 1340 CmdIde - ok
22:17:46.0171 1340 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:17:46.0328 1340 Compbatt - ok
22:17:46.0328 1340 COMSysApp - ok
22:17:46.0375 1340 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:17:46.0515 1340 Cpqarray - ok
22:17:46.0703 1340 cpuz135 - ok
22:17:46.0750 1340 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:17:46.0906 1340 CryptSvc - ok
22:17:46.0953 1340 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:17:47.0140 1340 dac2w2k - ok
22:17:47.0187 1340 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:17:47.0390 1340 dac960nt - ok
22:17:47.0468 1340 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:17:47.0656 1340 DcomLaunch - ok
22:17:47.0687 1340 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:17:47.0859 1340 Dhcp - ok
22:17:47.0859 1340 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:17:48.0000 1340 Disk - ok
22:17:48.0015 1340 dmadmin - ok
22:17:48.0062 1340 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:17:48.0218 1340 dmboot - ok
22:17:48.0250 1340 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
22:17:48.0406 1340 dmio - ok
22:17:48.0406 1340 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:17:48.0562 1340 dmload - ok
22:17:48.0593 1340 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:17:48.0765 1340 dmserver - ok
22:17:48.0781 1340 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:17:48.0921 1340 DMusic - ok
22:17:48.0953 1340 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:17:49.0093 1340 Dnscache - ok
22:17:49.0140 1340 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:17:49.0296 1340 Dot3svc - ok
22:17:49.0328 1340 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:17:49.0468 1340 dpti2o - ok
22:17:49.0500 1340 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:17:49.0640 1340 drmkaud - ok
22:17:49.0671 1340 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:17:49.0812 1340 E100B - ok
22:17:49.0828 1340 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:17:49.0968 1340 EapHost - ok
22:17:50.0046 1340 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
22:17:50.0218 1340 ehRecvr - ok
22:17:50.0265 1340 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
22:17:50.0312 1340 ehSched - ok
22:17:50.0343 1340 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
22:17:50.0421 1340 elagopro - ok
22:17:50.0468 1340 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
22:17:50.0484 1340 elaunidr - ok
22:17:50.0546 1340 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:17:50.0703 1340 ERSvc - ok
22:17:50.0750 1340 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
22:17:50.0890 1340 Eventlog - ok
22:17:50.0921 1340 [ 19A799805B24990867B00C120D300C3A ] EventSystem C:\WINDOWS\system32\es.dll
22:17:51.0062 1340 EventSystem - ok
22:17:51.0140 1340 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
22:17:51.0203 1340 EvtEng ( UnsignedFile.Multi.Generic ) - warning
22:17:51.0203 1340 EvtEng - detected UnsignedFile.Multi.Generic (1)
22:17:51.0250 1340 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:17:51.0390 1340 Fastfat - ok
22:17:51.0437 1340 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:17:51.0609 1340 FastUserSwitchingCompatibility - ok
22:17:51.0656 1340 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:17:51.0859 1340 Fax - ok
22:17:51.0890 1340 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
22:17:52.0046 1340 Fdc - ok
22:17:52.0093 1340 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:17:52.0250 1340 Fips - ok
22:17:52.0281 1340 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:17:52.0437 1340 Flpydisk - ok
22:17:52.0484 1340 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:17:52.0875 1340 FltMgr - ok
22:17:52.0984 1340 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:17:53.0000 1340 FontCache3.0.0.0 - ok
22:17:53.0046 1340 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:17:53.0187 1340 Fs_Rec - ok
22:17:53.0203 1340 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:17:53.0343 1340 Ftdisk - ok
22:17:53.0468 1340 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\WildTangent\Apps\Dell Game Console\GameConsoleService.exe
22:17:53.0531 1340 GameConsoleService - ok
22:17:53.0546 1340 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:17:53.0562 1340 GEARAspiWDM - ok
22:17:53.0593 1340 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:17:53.0734 1340 Gpc - ok
22:17:53.0765 1340 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\WINDOWS\system32\drivers\grmnusb.sys
22:17:53.0843 1340 grmnusb - ok
22:17:53.0906 1340 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:17:53.0937 1340 gupdate - ok
22:17:53.0937 1340 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:17:53.0968 1340 gupdatem - ok
22:17:54.0015 1340 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:17:54.0250 1340 HDAudBus - ok
22:17:54.0312 1340 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:17:54.0453 1340 helpsvc - ok
22:17:54.0468 1340 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
22:17:54.0609 1340 HidServ - ok
22:17:54.0625 1340 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:17:54.0734 1340 HidUsb - ok
22:17:54.0781 1340 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:17:54.0921 1340 hkmsvc - ok
22:17:54.0953 1340 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
22:17:55.0078 1340 hpn - ok
22:17:55.0140 1340 [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:17:55.0171 1340 HPZid412 - ok
22:17:55.0187 1340 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:17:55.0250 1340 HPZipr12 - ok
22:17:55.0281 1340 [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:17:55.0328 1340 HPZius12 - ok
22:17:55.0421 1340 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
22:17:55.0578 1340 HSF_DPV - ok
22:17:55.0625 1340 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
22:17:55.0671 1340 HSXHWAZL - ok
22:17:55.0718 1340 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:17:55.0953 1340 HTTP - ok
22:17:56.0000 1340 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:17:56.0140 1340 HTTPFilter - ok
22:17:56.0171 1340 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
22:17:56.0296 1340 i2omgmt - ok
22:17:56.0343 1340 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:17:56.0453 1340 i2omp - ok
22:17:56.0484 1340 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:17:56.0625 1340 i8042prt - ok
22:17:56.0718 1340 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:17:56.0859 1340 ialm - ok
22:17:56.0984 1340 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:17:57.0031 1340 idsvc - ok
22:17:57.0062 1340 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:17:57.0203 1340 Imapi - ok
22:17:57.0250 1340 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
22:17:57.0468 1340 ImapiService - ok
22:17:57.0500 1340 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:17:57.0640 1340 ini910u - ok
22:17:57.0671 1340 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
22:17:57.0812 1340 IntelIde - ok
22:17:57.0828 1340 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:17:57.0953 1340 intelppm - ok
22:17:57.0968 1340 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:17:58.0109 1340 Ip6Fw - ok
22:17:58.0156 1340 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:17:58.0281 1340 IpFilterDriver - ok
22:17:58.0312 1340 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:17:58.0437 1340 IpInIp - ok
22:17:58.0484 1340 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:17:58.0625 1340 IpNat - ok
22:17:58.0703 1340 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:17:58.0734 1340 iPod Service - ok
22:17:58.0765 1340 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:17:58.0890 1340 IPSec - ok
22:17:58.0921 1340 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:17:58.0984 1340 IRENUM - ok
22:17:59.0031 1340 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:17:59.0187 1340 isapnp - ok
22:17:59.0265 1340 [ 32192B4EBE8720ED8D49A455C962CB91 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
22:17:59.0281 1340 JavaQuickStarterService - ok
22:17:59.0281 1340 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:17:59.0421 1340 Kbdclass - ok
22:17:59.0468 1340 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:17:59.0609 1340 kbdhid - ok
22:17:59.0640 1340 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:17:59.0781 1340 kmixer - ok
22:17:59.0796 1340 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:17:59.0953 1340 KSecDD - ok
22:17:59.0968 1340 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:18:00.0140 1340 lanmanserver - ok
22:18:00.0171 1340 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:18:00.0375 1340 lanmanworkstation - ok
22:18:00.0375 1340 lbrtfdc - ok
22:18:00.0406 1340 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:18:00.0546 1340 LmHosts - ok
22:18:00.0562 1340 LVRS - ok
22:18:00.0562 1340 LVUVC - ok
22:18:00.0640 1340 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
22:18:00.0671 1340 MatSvc - ok
22:18:00.0703 1340 [ BEC8D118490817F93FBE620B30EC7264 ] McrdSvc C:\WINDOWS\ehome\McrdSvc.exe
22:18:00.0703 1340 McrdSvc ( UnsignedFile.Multi.Generic ) - warning
22:18:00.0703 1340 McrdSvc - detected UnsignedFile.Multi.Generic (1)
22:18:00.0734 1340 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:18:00.0765 1340 mdmxsdk - ok
22:18:00.0796 1340 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:18:00.0937 1340 Messenger - ok
22:18:00.0968 1340 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
22:18:01.0000 1340 MHN ( UnsignedFile.Multi.Generic ) - warning
22:18:01.0000 1340 MHN - detected UnsignedFile.Multi.Generic (1)
22:18:01.0015 1340 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
22:18:01.0031 1340 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
22:18:01.0031 1340 MHNDRV - detected UnsignedFile.Multi.Generic (1)
22:18:01.0062 1340 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:18:01.0218 1340 mnmdd - ok
22:18:01.0281 1340 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
22:18:01.0468 1340 mnmsrvc - ok
22:18:01.0484 1340 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:18:01.0609 1340 Modem - ok
22:18:01.0640 1340 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:18:01.0765 1340 Mouclass - ok
22:18:01.0828 1340 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:18:01.0953 1340 mouhid - ok
22:18:01.0968 1340 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:18:02.0109 1340 MountMgr - ok
22:18:02.0140 1340 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:18:02.0156 1340 MozillaMaintenance - ok
22:18:02.0203 1340 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
22:18:02.0250 1340 MpFilter - ok
22:18:02.0281 1340 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:18:02.0406 1340 mraid35x - ok
22:18:02.0421 1340 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:18:02.0578 1340 MRxDAV - ok
22:18:02.0640 1340 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:18:02.0828 1340 MRxSmb - ok
22:18:02.0859 1340 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
22:18:02.0968 1340 MSDTC - ok
22:18:02.0984 1340 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:18:03.0093 1340 Msfs - ok
22:18:03.0109 1340 MSIServer - ok
22:18:03.0125 1340 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:18:03.0265 1340 MSKSSRV - ok
22:18:03.0312 1340 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:18:03.0343 1340 MsMpSvc - ok
22:18:03.0359 1340 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:18:03.0500 1340 MSPCLOCK - ok
22:18:03.0531 1340 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:18:03.0687 1340 MSPQM - ok
22:18:03.0718 1340 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:18:03.0859 1340 mssmbios - ok
22:18:03.0890 1340 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
22:18:04.0031 1340 MSTEE - ok
22:18:04.0062 1340 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:18:04.0171 1340 Mup - ok
22:18:04.0203 1340 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:18:04.0343 1340 NABTSFEC - ok
22:18:04.0390 1340 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
22:18:04.0515 1340 napagent - ok
22:18:04.0578 1340 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:18:04.0718 1340 NDIS - ok
22:18:04.0750 1340 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:18:04.0859 1340 NdisIP - ok
22:18:04.0890 1340 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:18:05.0000 1340 NdisTapi - ok
22:18:05.0015 1340 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:18:05.0140 1340 Ndisuio - ok
22:18:05.0156 1340 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:18:05.0312 1340 NdisWan - ok
22:18:05.0312 1340 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:18:05.0437 1340 NDProxy - ok
22:18:05.0437 1340 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:18:05.0578 1340 NetBIOS - ok
22:18:05.0609 1340 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:18:05.0765 1340 NetBT - ok
22:18:05.0812 1340 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
22:18:05.0953 1340 NetDDE - ok
22:18:05.0968 1340 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:18:06.0078 1340 NetDDEdsdm - ok
22:18:06.0109 1340 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:18:06.0265 1340 Netlogon - ok
22:18:06.0296 1340 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
22:18:06.0421 1340 Netman - ok
22:18:06.0484 1340 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:18:06.0500 1340 NetTcpPortSharing - ok
22:18:06.0625 1340 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
22:18:06.0781 1340 NETw3x32 - ok
22:18:06.0921 1340 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
22:18:07.0187 1340 NETw4x32 - ok
22:18:07.0250 1340 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:18:07.0375 1340 NIC1394 - ok
22:18:07.0421 1340 [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla C:\WINDOWS\System32\mswsock.dll
22:18:07.0593 1340 Nla - ok
22:18:07.0609 1340 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:18:07.0750 1340 Npfs - ok
22:18:07.0796 1340 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:18:07.0953 1340 Ntfs - ok
22:18:07.0984 1340 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
22:18:08.0093 1340 NtLmSsp - ok
22:18:08.0156 1340 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:18:08.0281 1340 NtmsSvc - ok
22:18:08.0312 1340 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:18:08.0421 1340 Null - ok
22:18:08.0515 1340 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:18:08.0687 1340 nv - ok
22:18:08.0734 1340 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:18:08.0875 1340 NwlnkFlt - ok
22:18:08.0906 1340 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:18:09.0078 1340 NwlnkFwd - ok
22:18:09.0078 1340 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:18:09.0265 1340 ohci1394 - ok
22:18:09.0328 1340 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:18:09.0359 1340 ose - ok
22:18:09.0671 1340 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:18:09.0968 1340 osppsvc - ok
22:18:10.0000 1340 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:18:10.0140 1340 Parport - ok
22:18:10.0156 1340 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:18:10.0296 1340 PartMgr - ok
22:18:10.0328 1340 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:18:10.0468 1340 ParVdm - ok
22:18:10.0468 1340 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:18:10.0609 1340 PCI - ok
22:18:10.0609 1340 PCIDump - ok
22:18:10.0640 1340 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:18:10.0750 1340 PCIIde - ok
22:18:10.0781 1340 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
22:18:10.0921 1340 Pcmcia - ok
22:18:10.0921 1340 PDCOMP - ok
22:18:10.0937 1340 PDFRAME - ok
22:18:10.0937 1340 PDRELI - ok
22:18:10.0937 1340 PDRFRAME - ok
22:18:10.0984 1340 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
22:18:11.0109 1340 perc2 - ok
22:18:11.0140 1340 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:18:11.0265 1340 perc2hib - ok
22:18:11.0312 1340 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
22:18:11.0437 1340 PlugPlay - ok
22:18:11.0500 1340 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
22:18:11.0531 1340 Pml Driver HPZ12 - ok
22:18:11.0578 1340 [ E4910CE9D882BF825979FCF4636A9BD8 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
22:18:11.0640 1340 Point32 - ok
22:18:11.0656 1340 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
22:18:11.0765 1340 PolicyAgent - ok
22:18:11.0796 1340 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:18:11.0921 1340 PptpMiniport - ok
22:18:11.0921 1340 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:18:12.0046 1340 ProtectedStorage - ok
22:18:12.0046 1340 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:18:12.0171 1340 PSched - ok
22:18:12.0171 1340 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:18:12.0312 1340 Ptilink - ok
22:18:12.0328 1340 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:18:12.0343 1340 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
22:18:12.0343 1340 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
22:18:12.0375 1340 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:18:12.0515 1340 ql1080 - ok
22:18:12.0531 1340 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:18:12.0640 1340 Ql10wnt - ok
22:18:12.0671 1340 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:18:12.0781 1340 ql12160 - ok
22:18:12.0796 1340 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:18:12.0921 1340 ql1240 - ok
22:18:12.0937 1340 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:18:13.0078 1340 ql1280 - ok
22:18:13.0125 1340 [ D2EA58899FCF66539FAD12897B787216 ] QWAVE C:\WINDOWS\system32\qwave.dll
22:18:13.0140 1340 QWAVE ( UnsignedFile.Multi.Generic ) - warning
22:18:13.0140 1340 QWAVE - detected UnsignedFile.Multi.Generic (1)
22:18:13.0156 1340 [ 2BB1D2BAF3493362E5C1949C5F210D5F ] QWAVEDRV C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
22:18:13.0156 1340 QWAVEDRV ( UnsignedFile.Multi.Generic ) - warning
22:18:13.0156 1340 QWAVEDRV - detected UnsignedFile.Multi.Generic (1)
22:18:13.0187 1340 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:18:13.0296 1340 RasAcd - ok
22:18:13.0359 1340 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:18:13.0500 1340 RasAuto - ok
22:18:13.0531 1340 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:18:13.0671 1340 Rasl2tp - ok
22:18:13.0703 1340 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:18:13.0843 1340 RasMan - ok
22:18:13.0875 1340 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:18:14.0015 1340 RasPppoe - ok
22:18:14.0046 1340 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:18:14.0218 1340 Raspti - ok
22:18:14.0250 1340 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:18:14.0437 1340 Rdbss - ok
22:18:14.0453 1340 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:18:14.0593 1340 RDPCDD - ok
22:18:14.0640 1340 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:18:14.0796 1340 rdpdr - ok
22:18:14.0843 1340 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:18:14.0984 1340 RDPWD - ok
22:18:15.0000 1340 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:18:15.0125 1340 RDSessMgr - ok
22:18:15.0156 1340 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:18:15.0281 1340 redbook - ok
22:18:15.0312 1340 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
22:18:15.0343 1340 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
22:18:15.0343 1340 RegSrvc - detected UnsignedFile.Multi.Generic (1)
22:18:15.0421 1340 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:18:15.0562 1340 RemoteAccess - ok
22:18:15.0609 1340 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:18:15.0750 1340 RemoteRegistry - ok
22:18:15.0765 1340 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
22:18:15.0812 1340 rimmptsk - ok
22:18:15.0828 1340 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
22:18:15.0859 1340 rimsptsk - ok
22:18:15.0906 1340 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
22:18:15.0984 1340 rismxdp - ok
22:18:16.0015 1340 [ 868E6C58E9B301A768AE50E2A8E3C5D5 ] RMSvc C:\WINDOWS\ehome\RMSvc.exe
22:18:16.0015 1340 RMSvc ( UnsignedFile.Multi.Generic ) - warning
22:18:16.0015 1340 RMSvc - detected UnsignedFile.Multi.Generic (1)
22:18:16.0046 1340 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
22:18:16.0187 1340 RpcLocator - ok
22:18:16.0234 1340 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\System32\rpcss.dll
22:18:16.0390 1340 RpcSs - ok
22:18:16.0421 1340 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
22:18:16.0625 1340 RSVP - ok
22:18:16.0703 1340 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
22:18:16.0796 1340 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
22:18:16.0796 1340 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
22:18:16.0812 1340 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
22:18:16.0828 1340 s24trans ( UnsignedFile.Multi.Generic ) - warning
22:18:16.0828 1340 s24trans - detected UnsignedFile.Multi.Generic (1)
22:18:16.0859 1340 SABProcEnum - ok
22:18:16.0890 1340 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
22:18:17.0062 1340 SamSs - ok
22:18:17.0062 1340 SBRE - ok
22:18:17.0109 1340 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:18:17.0343 1340 SCardSvr - ok
22:18:17.0390 1340 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:18:17.0828 1340 Schedule - ok
22:18:17.0859 1340 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:18:17.0984 1340 sdbus - ok
22:18:18.0031 1340 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:18:18.0156 1340 Secdrv - ok
22:18:18.0203 1340 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
22:18:18.0453 1340 seclogon - ok
22:18:18.0484 1340 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
22:18:18.0609 1340 SENS - ok
22:18:18.0640 1340 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
22:18:18.0781 1340 serenum - ok
22:18:18.0796 1340 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
22:18:18.0921 1340 Serial - ok
22:18:18.0937 1340 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
22:18:19.0062 1340 Sfloppy - ok
22:18:19.0109 1340 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:18:19.0250 1340 SharedAccess - ok
22:18:19.0281 1340 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:18:19.0421 1340 ShellHWDetection - ok
22:18:19.0453 1340 Simbad - ok
22:18:19.0484 1340 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:18:19.0609 1340 sisagp - ok
22:18:19.0625 1340 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:18:19.0750 1340 SLIP - ok
22:18:19.0796 1340 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:18:19.0875 1340 Sparrow - ok
22:18:19.0890 1340 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:18:20.0015 1340 splitter - ok
22:18:20.0031 1340 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:18:20.0171 1340 Spooler - ok
22:18:20.0203 1340 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:18:20.0265 1340 sr - ok
22:18:20.0296 1340 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
22:18:20.0359 1340 srservice - ok
22:18:20.0375 1340 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:18:20.0531 1340 Srv - ok
22:18:20.0562 1340 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:18:20.0640 1340 SSDPSRV - ok
22:18:20.0750 1340 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
22:18:20.0875 1340 STHDA - ok
22:18:20.0921 1340 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:18:21.0109 1340 stisvc - ok
22:18:21.0140 1340 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:18:21.0265 1340 streamip - ok
22:18:21.0312 1340 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:18:21.0437 1340 swenum - ok
22:18:21.0468 1340 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:18:21.0593 1340 swmidi - ok
22:18:21.0593 1340 SwPrv - ok
22:18:21.0640 1340 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
22:18:21.0750 1340 symc810 - ok
22:18:21.0781 1340 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:18:21.0890 1340 symc8xx - ok
22:18:21.0921 1340 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:18:22.0062 1340 sym_hi - ok
22:18:22.0093 1340 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:18:22.0203 1340 sym_u3 - ok
22:18:22.0265 1340 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:18:22.0390 1340 SynTP - ok
22:18:22.0421 1340 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:18:22.0562 1340 sysaudio - ok
22:18:22.0609 1340 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:18:22.0734 1340 SysmonLog - ok
22:18:22.0765 1340 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:18:22.0890 1340 TapiSrv - ok
22:18:22.0921 1340 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:18:23.0062 1340 Tcpip - ok
22:18:23.0078 1340 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:18:23.0203 1340 TDPIPE - ok
22:18:23.0218 1340 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:18:23.0359 1340 TDTCP - ok
22:18:23.0375 1340 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:18:23.0515 1340 TermDD - ok
22:18:23.0562 1340 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
22:18:23.0687 1340 TermService - ok
22:18:23.0718 1340 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
22:18:23.0843 1340 Themes - ok
22:18:23.0890 1340 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
22:18:23.0968 1340 TlntSvr - ok
22:18:24.0000 1340 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
22:18:24.0125 1340 TosIde - ok
22:18:24.0156 1340 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:18:24.0296 1340 TrkWks - ok
22:18:24.0328 1340 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:18:24.0453 1340 Udfs - ok
22:18:24.0468 1340 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
22:18:24.0531 1340 ultra - ok
22:18:24.0562 1340 [ 6634C460C56EC7E48D6BE20B745DC03A ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
22:18:24.0625 1340 UMWdf - ok
22:18:24.0671 1340 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:18:24.0859 1340 Update - ok
22:18:24.0906 1340 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:18:24.0968 1340 upnphost - ok
22:18:25.0015 1340 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
22:18:25.0140 1340 UPS - ok
22:18:25.0203 1340 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:18:25.0234 1340 USBAAPL - ok
22:18:25.0281 1340 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:18:25.0406 1340 usbaudio - ok
22:18:25.0421 1340 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:18:25.0562 1340 usbccgp - ok
22:18:25.0593 1340 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:18:25.0703 1340 usbehci - ok
22:18:25.0718 1340 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:18:25.0843 1340 usbhub - ok
22:18:25.0875 1340 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:18:26.0015 1340 usbprint - ok
22:18:26.0031 1340 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:18:26.0171 1340 usbscan - ok
22:18:26.0187 1340 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:18:26.0312 1340 USBSTOR - ok
22:18:26.0343 1340 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:18:26.0468 1340 usbuhci - ok
22:18:26.0500 1340 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
22:18:26.0656 1340 usbvideo - ok
22:18:26.0687 1340 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
22:18:26.0796 1340 usb_rndisx - ok
22:18:26.0812 1340 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:18:26.0921 1340 VgaSave - ok
22:18:26.0953 1340 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:18:27.0093 1340 viaagp - ok
22:18:27.0109 1340 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
22:18:27.0250 1340 ViaIde - ok
22:18:27.0265 1340 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:18:27.0406 1340 VolSnap - ok
22:18:27.0468 1340 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
22:18:27.0625 1340 VSS - ok
22:18:27.0656 1340 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
22:18:27.0796 1340 w32time - ok
22:18:27.0875 1340 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
22:18:28.0046 1340 w39n51 - ok
22:18:28.0093 1340 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:18:28.0265 1340 Wanarp - ok
22:18:28.0265 1340 wanatw - ok
22:18:28.0281 1340 WDICA - ok
22:18:28.0296 1340 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:18:28.0500 1340 wdmaud - ok
22:18:28.0515 1340 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:18:28.0640 1340 WebClient - ok
22:18:28.0687 1340 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
22:18:28.0718 1340 winachsf - ok
22:18:28.0796 1340 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:18:28.0937 1340 winmgmt - ok
22:18:29.0000 1340 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
22:18:29.0031 1340 WLANKEEPER ( UnsignedFile.Multi.Generic ) - warning
22:18:29.0031 1340 WLANKEEPER - detected UnsignedFile.Multi.Generic (1)
22:18:29.0078 1340 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
22:18:29.0140 1340 WmdmPmSN - ok
22:18:29.0234 1340 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:18:29.0468 1340 Wmi - ok
22:18:29.0500 1340 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:18:29.0609 1340 WmiAcpi - ok
22:18:29.0656 1340 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:18:29.0796 1340 WmiApSrv - ok
22:18:29.0921 1340 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
22:18:30.0000 1340 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
22:18:30.0000 1340 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
22:18:30.0078 1340 [ 0770ACCA345B35EF455AC0D96C8B39A0 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:18:30.0109 1340 WpdUsb - ok
22:18:30.0156 1340 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:18:30.0328 1340 WS2IFSL - ok
22:18:30.0359 1340 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:18:30.0562 1340 wscsvc - ok
22:18:30.0609 1340 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:18:30.0781 1340 WSTCODEC - ok
22:18:30.0812 1340 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:18:30.0984 1340 wuauserv - ok
22:18:31.0015 1340 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:18:31.0078 1340 WudfPf - ok
22:18:31.0109 1340 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:18:31.0140 1340 WudfRd - ok
22:18:31.0171 1340 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
22:18:31.0203 1340 WudfSvc - ok
22:18:31.0250 1340 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:18:31.0421 1340 WZCSVC - ok
22:18:31.0453 1340 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:18:31.0625 1340 xmlprov - ok
22:18:31.0640 1340 ================ Scan global ===============================
22:18:31.0687 1340 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
22:18:31.0734 1340 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:18:31.0765 1340 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:18:31.0781 1340 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
22:18:31.0796 1340 [Global] - ok
22:18:31.0796 1340 ================ Scan MBR ==================================
22:18:31.0812 1340 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
22:18:32.0078 1340 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:18:32.0078 1340 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:18:32.0078 1340 ================ Scan VBR ==================================
22:18:32.0078 1340 [ 906090EE3E0DCC02260B16732F31435B ] \Device\Harddisk0\DR0\Partition1
22:18:32.0093 1340 \Device\Harddisk0\DR0\Partition1 - ok
22:18:32.0093 1340 ============================================================
22:18:32.0093 1340 Scan finished
22:18:32.0093 1340 ============================================================
22:18:32.0203 3516 Detected object count: 16
22:18:32.0203 3516 Actual detected object count: 16
22:19:28.0421 3516 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0421 3516 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0421 3516 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0421 3516 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0421 3516 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0421 3516 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 McrdSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 McrdSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 QWAVE ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 QWAVE ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0437 3516 QWAVEDRV ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0437 3516 QWAVEDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0453 3516 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0453 3516 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0453 3516 RMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0453 3516 RMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0453 3516 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0453 3516 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0453 3516 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0453 3516 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0453 3516 WLANKEEPER ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0453 3516 WLANKEEPER ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0468 3516 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:19:28.0468 3516 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:19:28.0468 3516 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:19:28.0468 3516 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
22:20:18.0234 2828 Deinitialize success

******************************************************************
The log from the 2nd scan:
******************************************************************

22:19:25.0890 4068 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:19:26.0359 4068 ============================================================
22:19:26.0359 4068 Current date / time: 2013/01/23 22:19:26.0359
22:19:26.0359 4068 SystemInfo:
22:19:26.0359 4068
22:19:26.0359 4068 OS Version: 5.1.2600 ServicePack: 3.0
22:19:26.0359 4068 Product type: Workstation
22:19:26.0359 4068 ComputerName: D4065BB1
22:19:26.0359 4068 UserName: Sherman
22:19:26.0359 4068 Windows directory: C:\WINDOWS
22:19:26.0359 4068 System windows directory: C:\WINDOWS
22:19:26.0359 4068 Processor architecture: Intel x86
22:19:26.0359 4068 Number of processors: 2
22:19:26.0359 4068 Page size: 0x1000
22:19:26.0359 4068 Boot type: Normal boot
22:19:26.0359 4068 ============================================================
22:19:32.0281 4068 Drive \Device\Harddisk0\DR0 - Size: 0x16F0649400 (91.76 Gb), SectorSize: 0x200, Cylinders: 0x2ECA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:19:32.0281 4068 ============================================================
22:19:32.0281 4068 \Device\Harddisk0\DR0:
22:19:32.0281 4068 MBR partitions:
22:19:32.0281 4068 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0xAE1EE25
22:19:32.0281 4068 ============================================================
22:19:32.0359 4068 C: <-> \Device\Harddisk0\DR0\Partition1
22:19:32.0359 4068 ============================================================
22:19:32.0359 4068 Initialize success
22:19:32.0359 4068 ============================================================
22:19:44.0078 1196 ============================================================
22:19:44.0078 1196 Scan started
22:19:44.0078 1196 Mode: Manual; SigCheck; TDLFS;
22:19:44.0078 1196 ============================================================
22:19:49.0312 1196 ================ Scan system memory ========================
22:19:57.0203 1196 System memory - ok
22:19:57.0203 1196 ================ Scan services =============================
22:19:57.0562 1196 Abiosdsk - ok
22:19:57.0593 1196 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:19:58.0000 1196 abp480n5 - ok
22:19:58.0140 1196 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:19:58.0421 1196 ACPI - ok
22:19:58.0515 1196 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
22:19:58.0718 1196 ACPIEC - ok
22:19:58.0828 1196 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:19:59.0093 1196 AdobeFlashPlayerUpdateSvc - ok
22:19:59.0140 1196 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:19:59.0375 1196 adpu160m - ok
22:19:59.0421 1196 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
22:19:59.0656 1196 aec - ok
22:19:59.0750 1196 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
22:19:59.0953 1196 AegisP - ok
22:20:00.0000 1196 [ 322D0E36693D6E24A2398BEE62A268CD ] AFD C:\WINDOWS\System32\drivers\afd.sys
22:20:00.0140 1196 AFD - ok
22:20:00.0234 1196 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
22:20:00.0484 1196 agp440 - ok
22:20:00.0515 1196 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:20:00.0703 1196 agpCPQ - ok
22:20:00.0781 1196 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:20:00.0906 1196 Aha154x - ok
22:20:00.0984 1196 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:20:01.0187 1196 aic78u2 - ok
22:20:01.0234 1196 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:20:01.0500 1196 aic78xx - ok
22:20:01.0531 1196 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
22:20:01.0718 1196 Alerter - ok
22:20:01.0750 1196 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
22:20:01.0875 1196 ALG - ok
22:20:01.0890 1196 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
22:20:02.0046 1196 AliIde - ok
22:20:02.0078 1196 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:20:02.0250 1196 alim1541 - ok
22:20:02.0265 1196 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:20:02.0453 1196 amdagp - ok
22:20:02.0515 1196 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
22:20:02.0718 1196 amsint - ok
22:20:02.0812 1196 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:20:02.0921 1196 Apple Mobile Device - ok
22:20:02.0968 1196 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:20:03.0156 1196 AppMgmt - ok
22:20:03.0187 1196 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
22:20:03.0375 1196 Arp1394 - ok
22:20:03.0421 1196 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
22:20:03.0625 1196 asc - ok
22:20:03.0703 1196 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:20:03.0968 1196 asc3350p - ok
22:20:04.0078 1196 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:20:04.0218 1196 asc3550 - ok
22:20:04.0265 1196 [ 31ED89BADD47130AD57CCE8C8DFB5B27 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
22:20:04.0343 1196 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
22:20:04.0343 1196 ASPI32 - detected UnsignedFile.Multi.Generic (1)
22:20:04.0812 1196 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:20:05.0078 1196 aspnet_state - ok
22:20:05.0109 1196 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:20:05.0343 1196 AsyncMac - ok
22:20:05.0453 1196 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
22:20:05.0593 1196 atapi - ok
22:20:05.0625 1196 Atdisk - ok
22:20:05.0656 1196 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:20:05.0890 1196 Atmarpc - ok
22:20:05.0968 1196 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
22:20:06.0187 1196 AudioSrv - ok
22:20:06.0250 1196 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
22:20:06.0437 1196 audstub - ok
22:20:06.0500 1196 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
22:20:06.0718 1196 bcm4sbxp - ok
22:20:06.0750 1196 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:20:06.0937 1196 Beep - ok
22:20:07.0062 1196 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
22:20:07.0562 1196 BITS - ok
22:20:07.0609 1196 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
22:20:07.0765 1196 Browser - ok
22:20:07.0765 1196 catchme - ok
22:20:07.0812 1196 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:20:08.0031 1196 cbidf - ok
22:20:08.0031 1196 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
22:20:08.0187 1196 cbidf2k - ok
22:20:08.0203 1196 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:20:08.0421 1196 CCDECODE - ok
22:20:08.0562 1196 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:20:08.0687 1196 cd20xrnt - ok
22:20:08.0734 1196 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
22:20:08.0953 1196 Cdaudio - ok
22:20:09.0031 1196 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
22:20:09.0250 1196 Cdfs - ok
22:20:09.0281 1196 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:20:09.0515 1196 Cdrom - ok
22:20:09.0687 1196 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
22:20:09.0734 1196 cercsr6 ( UnsignedFile.Multi.Generic ) - warning
22:20:09.0734 1196 cercsr6 - detected UnsignedFile.Multi.Generic (1)
22:20:09.0734 1196 Changer - ok
22:20:09.0781 1196 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
22:20:10.0015 1196 CiSvc - ok
22:20:10.0140 1196 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
22:20:10.0406 1196 ClipSrv - ok
22:20:10.0468 1196 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:20:10.0921 1196 clr_optimization_v2.0.50727_32 - ok
22:20:10.0968 1196 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
22:20:11.0140 1196 CmBatt - ok
22:20:11.0187 1196 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:20:11.0359 1196 CmdIde - ok
22:20:11.0390 1196 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:20:11.0593 1196 Compbatt - ok
22:20:11.0593 1196 COMSysApp - ok
22:20:11.0656 1196 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:20:11.0843 1196 Cpqarray - ok
22:20:12.0171 1196 cpuz135 - ok
22:20:12.0234 1196 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
22:20:12.0453 1196 CryptSvc - ok
22:20:12.0500 1196 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:20:12.0703 1196 dac2w2k - ok
22:20:12.0765 1196 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:20:12.0937 1196 dac960nt - ok
22:20:13.0031 1196 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:20:13.0187 1196 DcomLaunch - ok
22:20:13.0234 1196 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
22:20:13.0406 1196 Dhcp - ok
22:20:13.0437 1196 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
22:20:13.0593 1196 Disk - ok
22:20:13.0609 1196 dmadmin - ok
22:20:13.0671 1196 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
22:20:13.0875 1196 dmboot - ok
22:20:13.0906 1196 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
22:20:14.0109 1196 dmio - ok
22:20:14.0140 1196 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
22:20:14.0312 1196 dmload - ok
22:20:14.0390 1196 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
22:20:14.0562 1196 dmserver - ok
22:20:14.0718 1196 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
22:20:14.0937 1196 DMusic - ok
22:20:14.0968 1196 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:20:15.0140 1196 Dnscache - ok
22:20:15.0281 1196 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
22:20:15.0593 1196 Dot3svc - ok
22:20:15.0640 1196 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:20:15.0828 1196 dpti2o - ok
22:20:15.0859 1196 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
22:20:16.0046 1196 drmkaud - ok
22:20:16.0062 1196 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:20:16.0312 1196 E100B - ok
22:20:16.0390 1196 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:20:16.0671 1196 EapHost - ok
22:20:16.0765 1196 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
22:20:16.0937 1196 ehRecvr - ok
22:20:17.0015 1196 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
22:20:17.0171 1196 ehSched - ok
22:20:17.0218 1196 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
22:20:17.0312 1196 elagopro - ok
22:20:17.0375 1196 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
22:20:17.0406 1196 elaunidr - ok
22:20:17.0453 1196 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
22:20:17.0625 1196 ERSvc - ok
22:20:17.0734 1196 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
22:20:17.0953 1196 Eventlog - ok
22:20:18.0015 1196 [ 19A799805B24990867B00C120D300C3A ] EventSystem C:\WINDOWS\system32\es.dll
22:20:18.0171 1196 EventSystem - ok
22:20:18.0296 1196 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
22:20:18.0546 1196 EvtEng ( UnsignedFile.Multi.Generic ) - warning
22:20:18.0546 1196 EvtEng - detected UnsignedFile.Multi.Generic (1)
22:20:18.0593 1196 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
22:20:18.0781 1196 Fastfat - ok
22:20:18.0968 1196 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:20:19.0234 1196 FastUserSwitchingCompatibility - ok
22:20:19.0343 1196 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:20:19.0640 1196 Fax - ok
22:20:19.0671 1196 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
22:20:19.0921 1196 Fdc - ok
22:20:19.0953 1196 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
22:20:20.0109 1196 Fips - ok
22:20:20.0140 1196 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:20:20.0328 1196 Flpydisk - ok
22:20:20.0375 1196 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:20:20.0687 1196 FltMgr - ok
22:20:20.0859 1196 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:20:20.0937 1196 FontCache3.0.0.0 - ok
22:20:21.0000 1196 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:20:21.0218 1196 Fs_Rec - ok
22:20:21.0234 1196 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:20:21.0437 1196 Ftdisk - ok
22:20:21.0593 1196 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\WildTangent\Apps\Dell Game Console\GameConsoleService.exe
22:20:21.0750 1196 GameConsoleService - ok
22:20:21.0765 1196 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
22:20:21.0859 1196 GEARAspiWDM - ok
22:20:21.0890 1196 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:20:22.0078 1196 Gpc - ok
22:20:22.0187 1196 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\WINDOWS\system32\drivers\grmnusb.sys
22:20:22.0437 1196 grmnusb - ok
22:20:22.0578 1196 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:20:22.0687 1196 gupdate - ok
22:20:22.0703 1196 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:20:22.0718 1196 gupdatem - ok
22:20:22.0750 1196 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:20:23.0015 1196 HDAudBus - ok
22:20:23.0093 1196 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:20:23.0296 1196 helpsvc - ok
22:20:23.0500 1196 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
22:20:23.0687 1196 HidServ - ok
22:20:23.0875 1196 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:20:24.0093 1196 HidUsb - ok
22:20:24.0140 1196 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
22:20:24.0390 1196 hkmsvc - ok
22:20:24.0468 1196 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
22:20:24.0640 1196 hpn - ok
22:20:24.0703 1196 [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:20:24.0796 1196 HPZid412 - ok
22:20:24.0812 1196 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:20:24.0937 1196 HPZipr12 - ok
22:20:24.0984 1196 [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:20:25.0078 1196 HPZius12 - ok
22:20:25.0281 1196 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
22:20:25.0531 1196 HSF_DPV - ok
22:20:25.0593 1196 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
22:20:25.0796 1196 HSXHWAZL - ok
22:20:25.0906 1196 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
22:20:26.0187 1196 HTTP - ok
22:20:26.0234 1196 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
22:20:26.0500 1196 HTTPFilter - ok
22:20:26.0546 1196 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
22:20:26.0703 1196 i2omgmt - ok
22:20:26.0812 1196 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:20:27.0031 1196 i2omp - ok
22:20:27.0078 1196 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:20:27.0312 1196 i8042prt - ok
22:20:27.0406 1196 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:20:27.0546 1196 ialm - ok
22:20:27.0671 1196 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:20:27.0875 1196 idsvc - ok
22:20:27.0906 1196 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
22:20:28.0125 1196 Imapi - ok
22:20:28.0171 1196 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
22:20:28.0437 1196 ImapiService - ok
22:20:28.0718 1196 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:20:28.0921 1196 ini910u - ok
22:20:28.0968 1196 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
22:20:29.0140 1196 IntelIde - ok
22:20:29.0171 1196 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:20:29.0359 1196 intelppm - ok
22:20:29.0375 1196 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
22:20:29.0593 1196 Ip6Fw - ok
22:20:29.0640 1196 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:20:29.0859 1196 IpFilterDriver - ok
22:20:29.0968 1196 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:20:30.0187 1196 IpInIp - ok
22:20:30.0218 1196 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:20:30.0406 1196 IpNat - ok
22:20:30.0578 1196 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:20:30.0937 1196 iPod Service - ok
22:20:31.0015 1196 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:20:31.0265 1196 IPSec - ok
22:20:31.0312 1196 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
22:20:31.0437 1196 IRENUM - ok
22:20:31.0500 1196 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:20:31.0703 1196 isapnp - ok
22:20:31.0843 1196 [ 32192B4EBE8720ED8D49A455C962CB91 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
22:20:32.0000 1196 JavaQuickStarterService - ok
22:20:32.0046 1196 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:20:32.0218 1196 Kbdclass - ok
22:20:32.0281 1196 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:20:32.0484 1196 kbdhid - ok
22:20:32.0562 1196 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
22:20:32.0718 1196 kmixer - ok
22:20:32.0765 1196 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
22:20:32.0968 1196 KSecDD - ok
22:20:33.0031 1196 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
22:20:33.0234 1196 lanmanserver - ok
22:20:34.0203 1196 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:20:34.0375 1196 lanmanworkstation - ok
22:20:34.0375 1196 lbrtfdc - ok
22:20:34.0421 1196 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
22:20:34.0625 1196 LmHosts - ok
22:20:34.0640 1196 LVRS - ok
22:20:34.0640 1196 LVUVC - ok
22:20:34.0750 1196 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
22:20:34.0906 1196 MatSvc - ok
22:20:35.0031 1196 [ BEC8D118490817F93FBE620B30EC7264 ] McrdSvc C:\WINDOWS\ehome\McrdSvc.exe
22:20:35.0125 1196 McrdSvc ( UnsignedFile.Multi.Generic ) - warning
22:20:35.0125 1196 McrdSvc - detected UnsignedFile.Multi.Generic (1)
22:20:35.0171 1196 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
22:20:35.0343 1196 mdmxsdk - ok
22:20:35.0375 1196 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
22:20:35.0671 1196 Messenger - ok
22:20:35.0703 1196 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
22:20:35.0828 1196 MHN ( UnsignedFile.Multi.Generic ) - warning
22:20:35.0828 1196 MHN - detected UnsignedFile.Multi.Generic (1)
22:20:35.0859 1196 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
22:20:35.0953 1196 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
22:20:35.0953 1196 MHNDRV - detected UnsignedFile.Multi.Generic (1)
22:20:36.0015 1196 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
22:20:36.0234 1196 mnmdd - ok
22:20:36.0296 1196 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
22:20:36.0531 1196 mnmsrvc - ok
22:20:36.0562 1196 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
22:20:36.0734 1196 Modem - ok
22:20:36.0765 1196 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:20:36.0968 1196 Mouclass - ok
22:20:37.0031 1196 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:20:37.0250 1196 mouhid - ok
22:20:37.0281 1196 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
22:20:37.0468 1196 MountMgr - ok
22:20:37.0593 1196 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:20:37.0703 1196 MozillaMaintenance - ok
22:20:37.0750 1196 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
22:20:37.0843 1196 MpFilter - ok
22:20:37.0906 1196 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:20:38.0062 1196 mraid35x - ok
22:20:38.0109 1196 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:20:38.0265 1196 MRxDAV - ok
22:20:38.0312 1196 [ 68755F0FF16070178B54674FE5B847B0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:20:38.0468 1196 MRxSmb - ok
22:20:38.0515 1196 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
22:20:38.0718 1196 MSDTC - ok
22:20:38.0734 1196 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:20:39.0031 1196 Msfs - ok
22:20:39.0046 1196 MSIServer - ok
22:20:39.0062 1196 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:20:39.0250 1196 MSKSSRV - ok
22:20:39.0390 1196 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:20:39.0453 1196 MsMpSvc - ok
22:20:39.0468 1196 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:20:39.0640 1196 MSPCLOCK - ok
22:20:39.0687 1196 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
22:20:39.0890 1196 MSPQM - ok
22:20:39.0953 1196 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:20:40.0171 1196 mssmbios - ok
22:20:40.0203 1196 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
22:20:40.0343 1196 MSTEE - ok
22:20:40.0375 1196 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
22:20:40.0500 1196 Mup - ok
22:20:40.0515 1196 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:20:40.0703 1196 NABTSFEC - ok
22:20:40.0796 1196 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
22:20:41.0312 1196 napagent - ok
22:20:41.0375 1196 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
22:20:41.0640 1196 NDIS - ok
22:20:41.0656 1196 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:20:41.0812 1196 NdisIP - ok
22:20:41.0843 1196 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:20:41.0984 1196 NdisTapi - ok
22:20:42.0015 1196 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:20:42.0203 1196 Ndisuio - ok
22:20:42.0234 1196 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:20:42.0468 1196 NdisWan - ok
22:20:42.0515 1196 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
22:20:42.0656 1196 NDProxy - ok
22:20:42.0703 1196 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
22:20:42.0937 1196 NetBIOS - ok
22:20:43.0187 1196 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:20:43.0453 1196 NetBT - ok
22:20:43.0515 1196 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
22:20:43.0796 1196 NetDDE - ok
22:20:43.0812 1196 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
22:20:43.0937 1196 NetDDEdsdm - ok
22:20:44.0000 1196 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:20:44.0156 1196 Netlogon - ok
22:20:44.0203 1196 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
22:20:44.0421 1196 Netman - ok
22:20:44.0484 1196 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:20:44.0656 1196 NetTcpPortSharing - ok
22:20:44.0765 1196 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
22:20:45.0515 1196 NETw3x32 - ok
22:20:46.0062 1196 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
22:20:46.0437 1196 NETw4x32 - ok
22:20:46.0562 1196 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
22:20:46.0843 1196 NIC1394 - ok
22:20:46.0906 1196 [ B4138E99236F0F57D4CF49BAE98A0746 ] Nla C:\WINDOWS\System32\mswsock.dll
22:20:47.0078 1196 Nla - ok
22:20:47.0109 1196 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:20:47.0281 1196 Npfs - ok
22:20:47.0328 1196 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
22:20:47.0515 1196 Ntfs - ok
22:20:47.0546 1196 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
22:20:47.0687 1196 NtLmSsp - ok
22:20:47.0781 1196 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
22:20:47.0968 1196 NtmsSvc - ok
22:20:48.0500 1196 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
22:20:48.0640 1196 Null - ok
22:20:48.0828 1196 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:20:49.0281 1196 nv - ok
22:20:49.0343 1196 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:20:49.0515 1196 NwlnkFlt - ok
22:20:49.0562 1196 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:20:49.0734 1196 NwlnkFwd - ok
22:20:49.0781 1196 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
22:20:49.0968 1196 ohci1394 - ok
22:20:50.0031 1196 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:20:50.0171 1196 ose - ok
22:20:50.0812 1196 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:20:51.0984 1196 osppsvc - ok
22:20:52.0078 1196 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
22:20:52.0281 1196 Parport - ok
22:20:52.0468 1196 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
22:20:52.0687 1196 PartMgr - ok
22:20:52.0734 1196 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
22:20:52.0953 1196 ParVdm - ok
22:20:52.0968 1196 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
22:20:53.0187 1196 PCI - ok
22:20:53.0203 1196 PCIDump - ok
22:20:53.0250 1196 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
22:20:53.0406 1196 PCIIde - ok
22:20:53.0453 1196 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
22:20:53.0656 1196 Pcmcia - ok
22:20:53.0671 1196 PDCOMP - ok
22:20:53.0671 1196 PDFRAME - ok
22:20:53.0687 1196 PDRELI - ok
22:20:53.0703 1196 PDRFRAME - ok
22:20:53.0734 1196 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
22:20:53.0906 1196 perc2 - ok
22:20:53.0937 1196 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:20:54.0078 1196 perc2hib - ok
22:20:55.0203 1196 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
22:20:55.0328 1196 PlugPlay - ok
22:20:55.0406 1196 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
22:20:55.0765 1196 Pml Driver HPZ12 - ok
22:20:55.0812 1196 [ E4910CE9D882BF825979FCF4636A9BD8 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
22:20:56.0062 1196 Point32 - ok
22:20:56.0078 1196 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
22:20:56.0203 1196 PolicyAgent - ok
22:20:56.0250 1196 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:20:56.0468 1196 PptpMiniport - ok
22:20:56.0484 1196 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:20:56.0640 1196 ProtectedStorage - ok
22:20:56.0656 1196 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
22:20:56.0875 1196 PSched - ok
22:20:56.0875 1196 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:20:57.0046 1196 Ptilink - ok
22:20:57.0093 1196 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:20:57.0156 1196 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
22:20:57.0156 1196 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
22:20:57.0187 1196 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:20:57.0359 1196 ql1080 - ok
22:20:57.0390 1196 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:20:57.0671 1196 Ql10wnt - ok
22:20:57.0718 1196 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:20:57.0953 1196 ql12160 - ok
22:20:57.0984 1196 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:20:58.0187 1196 ql1240 - ok
22:20:58.0234 1196 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:20:58.0390 1196 ql1280 - ok
22:20:58.0453 1196 [ D2EA58899FCF66539FAD12897B787216 ] QWAVE C:\WINDOWS\system32\qwave.dll
22:20:58.0562 1196 QWAVE ( UnsignedFile.Multi.Generic ) - warning
22:20:58.0562 1196 QWAVE - detected UnsignedFile.Multi.Generic (1)
22:20:58.0593 1196 [ 2BB1D2BAF3493362E5C1949C5F210D5F ] QWAVEDRV C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
22:20:58.0687 1196 QWAVEDRV ( UnsignedFile.Multi.Generic ) - warning
22:20:58.0687 1196 QWAVEDRV - detected UnsignedFile.Multi.Generic (1)
22:20:58.0718 1196 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:20:58.0906 1196 RasAcd - ok
22:20:58.0953 1196 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:20:59.0156 1196 RasAuto - ok
22:20:59.0265 1196 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:20:59.0453 1196 Rasl2tp - ok
22:20:59.0500 1196 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
22:20:59.0671 1196 RasMan - ok
22:20:59.0703 1196 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:20:59.0906 1196 RasPppoe - ok
22:20:59.0921 1196 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
22:21:00.0140 1196 Raspti - ok
22:21:00.0171 1196 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:21:00.0343 1196 Rdbss - ok
22:21:00.0343 1196 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:21:00.0515 1196 RDPCDD - ok
22:21:00.0578 1196 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:21:00.0734 1196 rdpdr - ok
22:21:00.0796 1196 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
22:21:00.0953 1196 RDPWD - ok
22:21:00.0984 1196 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
22:21:01.0203 1196 RDSessMgr - ok
22:21:01.0234 1196 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
22:21:01.0421 1196 redbook - ok
22:21:01.0484 1196 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
22:21:01.0656 1196 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
22:21:01.0656 1196 RegSrvc - detected UnsignedFile.Multi.Generic (1)
22:21:01.0734 1196 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:21:01.0937 1196 RemoteAccess - ok
22:21:02.0000 1196 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:21:02.0234 1196 RemoteRegistry - ok
22:21:02.0281 1196 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
22:21:02.0359 1196 rimmptsk - ok
22:21:02.0390 1196 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
22:21:02.0500 1196 rimsptsk - ok
22:21:02.0531 1196 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
22:21:02.0640 1196 rismxdp - ok
22:21:02.0671 1196 [ 868E6C58E9B301A768AE50E2A8E3C5D5 ] RMSvc C:\WINDOWS\ehome\RMSvc.exe
22:21:02.0750 1196 RMSvc ( UnsignedFile.Multi.Generic ) - warning
22:21:02.0750 1196 RMSvc - detected UnsignedFile.Multi.Generic (1)
22:21:02.0781 1196 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
22:21:02.0968 1196 RpcLocator - ok
22:21:03.0234 1196 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\System32\rpcss.dll
22:21:03.0390 1196 RpcSs - ok
22:21:03.0906 1196 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
22:21:04.0109 1196 RSVP - ok
22:21:04.0328 1196 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
22:21:04.0734 1196 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
22:21:04.0734 1196 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
22:21:04.0781 1196 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
22:21:04.0828 1196 s24trans ( UnsignedFile.Multi.Generic ) - warning
22:21:04.0828 1196 s24trans - detected UnsignedFile.Multi.Generic (1)
22:21:04.0906 1196 SABProcEnum - ok
22:21:04.0921 1196 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
22:21:05.0078 1196 SamSs - ok
22:21:05.0078 1196 SBRE - ok
22:21:05.0140 1196 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
22:21:05.0437 1196 SCardSvr - ok
22:21:05.0515 1196 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:21:05.0734 1196 Schedule - ok
22:21:05.0781 1196 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
22:21:05.0953 1196 sdbus - ok
22:21:06.0000 1196 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:21:06.0109 1196 Secdrv - ok
22:21:06.0125 1196 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
22:21:06.0312 1196 seclogon - ok
22:21:06.0343 1196 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
22:21:06.0468 1196 SENS - ok
22:21:06.0500 1196 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
22:21:06.0671 1196 serenum - ok
22:21:06.0718 1196 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
22:21:06.0937 1196 Serial - ok
22:21:07.0187 1196 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
22:21:07.0359 1196 Sfloppy - ok
22:21:07.0453 1196 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:21:07.0687 1196 SharedAccess - ok
22:21:07.0734 1196 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:21:07.0906 1196 ShellHWDetection - ok
22:21:08.0015 1196 Simbad - ok
22:21:08.0078 1196 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:21:08.0265 1196 sisagp - ok
22:21:08.0312 1196 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:21:08.0484 1196 SLIP - ok
22:21:08.0546 1196 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:21:08.0656 1196 Sparrow - ok
22:21:08.0687 1196 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
22:21:08.0843 1196 splitter - ok
22:21:08.0906 1196 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
22:21:09.0078 1196 Spooler - ok
22:21:09.0125 1196 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
22:21:09.0281 1196 sr - ok
22:21:09.0343 1196 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
22:21:09.0453 1196 srservice - ok
22:21:09.0625 1196 [ 5252605079810904E31C332E241CD59B ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:21:09.0796 1196 Srv - ok
22:21:09.0843 1196 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:21:10.0203 1196 SSDPSRV - ok
22:21:10.0343 1196 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
22:21:10.0546 1196 STHDA - ok
22:21:10.0640 1196 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
22:21:10.0859 1196 stisvc - ok
22:21:10.0890 1196 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:21:11.0046 1196 streamip - ok
22:21:11.0109 1196 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
22:21:11.0265 1196 swenum - ok
22:21:11.0296 1196 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
22:21:11.0453 1196 swmidi - ok
22:21:11.0468 1196 SwPrv - ok
22:21:11.0515 1196 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
22:21:11.0781 1196 symc810 - ok
22:21:11.0812 1196 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:21:12.0015 1196 symc8xx - ok
22:21:12.0062 1196 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:21:12.0296 1196 sym_hi - ok
22:21:12.0343 1196 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:21:12.0531 1196 sym_u3 - ok
22:21:12.0656 1196 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:21:12.0781 1196 SynTP - ok
22:21:12.0812 1196 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
22:21:13.0031 1196 sysaudio - ok
22:21:13.0093 1196 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
22:21:13.0359 1196 SysmonLog - ok
22:21:13.0406 1196 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:21:13.0578 1196 TapiSrv - ok
22:21:13.0718 1196 [ 93EA8D04EC73A85DB02EB8805988F733 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:21:13.0984 1196 Tcpip - ok
22:21:14.0015 1196 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
22:21:14.0171 1196 TDPIPE - ok
22:21:14.0203 1196 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
22:21:14.0375 1196 TDTCP - ok
22:21:14.0406 1196 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
22:21:14.0609 1196 TermDD - ok
22:21:14.0656 1196 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
22:21:14.0859 1196 TermService - ok
22:21:14.0906 1196 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
22:21:15.0031 1196 Themes - ok
22:21:15.0078 1196 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
22:21:15.0218 1196 TlntSvr - ok
22:21:15.0250 1196 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
22:21:15.0390 1196 TosIde - ok
22:21:15.0437 1196 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
22:21:15.0625 1196 TrkWks - ok
22:21:15.0656 1196 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
22:21:15.0859 1196 Udfs - ok
22:21:15.0890 1196 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
22:21:16.0000 1196 ultra - ok
22:21:16.0046 1196 [ 6634C460C56EC7E48D6BE20B745DC03A ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
22:21:16.0250 1196 UMWdf - ok
22:21:16.0312 1196 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
22:21:16.0703 1196 Update - ok
22:21:16.0734 1196 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:21:16.0984 1196 upnphost - ok
22:21:17.0015 1196 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
22:21:17.0281 1196 UPS - ok
22:21:17.0343 1196 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
22:21:17.0453 1196 USBAAPL - ok
22:21:17.0515 1196 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:21:17.0703 1196 usbaudio - ok
22:21:17.0734 1196 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:21:18.0156 1196 usbccgp - ok
22:21:18.0250 1196 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:21:18.0468 1196 usbehci - ok
22:21:18.0500 1196 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:21:18.0671 1196 usbhub - ok
22:21:18.0703 1196 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:21:18.0906 1196 usbprint - ok
22:21:18.0937 1196 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:21:19.0109 1196 usbscan - ok
22:21:19.0125 1196 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:21:19.0281 1196 USBSTOR - ok
22:21:19.0312 1196 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:21:19.0484 1196 usbuhci - ok
22:21:19.0515 1196 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
22:21:19.0671 1196 usbvideo - ok
22:21:19.0703 1196 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
22:21:19.0921 1196 usb_rndisx - ok
22:21:19.0953 1196 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
22:21:20.0093 1196 VgaSave - ok
22:21:20.0125 1196 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:21:20.0328 1196 viaagp - ok
22:21:20.0750 1196 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
22:21:21.0062 1196 ViaIde - ok
22:21:21.0109 1196 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
22:21:21.0343 1196 VolSnap - ok
22:21:21.0406 1196 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
22:21:21.0609 1196 VSS - ok
22:21:21.0656 1196 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
22:21:21.0906 1196 w32time - ok
22:21:22.0171 1196 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
22:21:22.0484 1196 w39n51 - ok
22:21:22.0531 1196 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:21:22.0812 1196 Wanarp - ok
22:21:22.0812 1196 wanatw - ok
22:21:22.0828 1196 WDICA - ok
22:21:22.0859 1196 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
22:21:23.0062 1196 wdmaud - ok
22:21:23.0062 1196 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:21:23.0234 1196 WebClient - ok
22:21:23.0484 1196 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
22:21:23.0609 1196 winachsf - ok
22:21:23.0718 1196 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:21:23.0937 1196 winmgmt - ok
22:21:24.0046 1196 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
22:21:24.0218 1196 WLANKEEPER ( UnsignedFile.Multi.Generic ) - warning
22:21:24.0218 1196 WLANKEEPER - detected UnsignedFile.Multi.Generic (1)
22:21:24.0296 1196 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
22:21:24.0421 1196 WmdmPmSN - ok
22:21:24.0546 1196 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
22:21:24.0781 1196 Wmi - ok
22:21:24.0828 1196 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:21:24.0984 1196 WmiAcpi - ok
22:21:25.0031 1196 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:21:25.0328 1196 WmiApSrv - ok
22:21:25.0484 1196 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
22:21:26.0078 1196 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
22:21:26.0078 1196 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
22:21:26.0140 1196 [ 0770ACCA345B35EF455AC0D96C8B39A0 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:21:26.0203 1196 WpdUsb - ok
22:21:26.0250 1196 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:21:26.0406 1196 WS2IFSL - ok
22:21:26.0468 1196 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
22:21:26.0671 1196 wscsvc - ok
22:21:26.0718 1196 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:21:26.0859 1196 WSTCODEC - ok
22:21:26.0906 1196 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
22:21:27.0187 1196 wuauserv - ok
22:21:27.0234 1196 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:21:27.0406 1196 WudfPf - ok
22:21:27.0437 1196 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:21:27.0546 1196 WudfRd - ok
22:21:27.0578 1196 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
22:21:27.0625 1196 WudfSvc - ok
22:21:27.0687 1196 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
22:21:27.0921 1196 WZCSVC - ok
22:21:28.0171 1196 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
22:21:28.0359 1196 xmlprov - ok
22:21:28.0375 1196 ================ Scan global ===============================
22:21:28.0437 1196 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
22:21:28.0500 1196 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:21:28.0593 1196 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
22:21:28.0625 1196 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
22:21:28.0625 1196 [Global] - ok
22:21:28.0625 1196 ================ Scan MBR ==================================
22:21:28.0671 1196 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
22:21:29.0062 1196 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:21:29.0062 1196 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:21:29.0062 1196 ================ Scan VBR ==================================
22:21:29.0062 1196 [ 906090EE3E0DCC02260B16732F31435B ] \Device\Harddisk0\DR0\Partition1
22:21:29.0062 1196 \Device\Harddisk0\DR0\Partition1 - ok
22:21:29.0078 1196 ============================================================
22:21:29.0078 1196 Scan finished
22:21:29.0078 1196 ============================================================
22:21:29.0187 4024 Detected object count: 16
22:21:29.0187 4024 Actual detected object count: 16
22:21:42.0312 4024 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0312 4024 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0312 4024 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0312 4024 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0312 4024 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0312 4024 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0312 4024 McrdSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0312 4024 McrdSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0343 4024 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0343 4024 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0343 4024 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0343 4024 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0343 4024 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0343 4024 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0343 4024 QWAVE ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0343 4024 QWAVE ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 QWAVEDRV ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 QWAVEDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 RMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 RMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 WLANKEEPER ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 WLANKEEPER ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:21:42.0359 4024 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:21:42.0359 4024 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:21:42.0359 4024 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#44
godawgs

Posted 24 January 2013 - 08:36 AM

Teacher

Retired Staff
8,228 posts

Hi,

OK. The good new is that TDSSKiller found the little bugger. Your AV or MalwareBytes must have killed part of the virus but it didn't get it all. The part of the virus that got killed was the part that would normally show up in the first few scans that we ran, but since that part was gone this has been more like a game of Where's Waldo.

I need to inform you of the rest of the news then we will kill the remaining part of the virus.

Warning: One or more of the identified infections on your computer is known to use a backdoor!
These are information stealing trojans installed on your computer.
Backdoor Trojans, IRCBots, keyloggers and Infostealers are very dangerous because they provide a way of accessing a computer system that bypasses security mechanisms and can steal sensitive information like passwords, personal and financial data which they send back to the hacker. Remote attackers use backdoor Trojans as part of an exploit to to gain unauthorized access to a computer and take control of it without your knowledge.

If your computer was used for online banking, has credit card information or other sensitive data on it, I suggest you do the following:

All passwords should be changed to include those used for banking, email, eBay, Facebook ect; and forums. You should consider them to be compromised. They should be changed using a different computer and not the infected one. If you use the infected computer, an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified of the possible security breach.

Though the infection has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS.
Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

Now let's kill the rest of the rest of the thing.

Step-1.

Delete the TDSS File System

Re-run TDSSKiller please with the same settings
On the Threats Detected screen, look for the following entry:
TDSS File System
Change the action from Skip to Delete. You must leave all of the other items as Skip and then click Continue to remove the TDSS File System.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

Step-2.

Run Farbar Service Scanner

Please download Farbar Service Scanner to the desktop.
Doubleclick the FSS.exe file to run it. (Vista and 7 users may need to right click the file and click Run as Administrator)

Make sure the following options are checked:
- Internet Services
- Windows Firewall
- System Restore
- Security Center
- Windows Update
- Windows Defender
- Other Services
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

Step-3.

Things For Your Next Post:
Please post the logs in the order requested. Do Not attach the logs unless I request it.
1.The new TDSSKiller log
2. The FSS.txt log
3. Tell me how the computer is running now.

#45
Quint2724

Posted 24 January 2013 - 08:55 PM

Member

Topic Starter
Member
44 posts

I did not delete anything on this last run of the TDSSKiller.

I'm not sure that your directions on what to look for and delete are correct and complete.

The following was listed:
ASPI32
cercsr6
EvtEng
McrdSvc
MHN
MHNDRV
PxHelp20
QWAVE
QWAVEDRV
RegSrvc
RMSvc
S24EventMoniter
s24trans
WLANKEEPER

Here are the two txt logs results:

20:38:14.0531 2796 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:38:14.0906 2796 ============================================================
20:38:14.0906 2796 Current date / time: 2013/01/24 20:38:14.0906
20:38:14.0906 2796 SystemInfo:
20:38:14.0906 2796
20:38:14.0906 2796 OS Version: 5.1.2600 ServicePack: 3.0
20:38:14.0906 2796 Product type: Workstation
20:38:14.0906 2796 ComputerName: D4065BB1
20:38:14.0906 2796 UserName: Sherman
20:38:14.0906 2796 Windows directory: C:\WINDOWS
20:38:14.0906 2796 System windows directory: C:\WINDOWS
20:38:14.0906 2796 Processor architecture: Intel x86
20:38:14.0906 2796 Number of processors: 2
20:38:14.0906 2796 Page size: 0x1000
20:38:14.0906 2796 Boot type: Normal boot
20:38:14.0906 2796 ============================================================
20:38:18.0984 2796 Drive \Device\Harddisk0\DR0 - Size: 0x16F0649400 (91.76 Gb), SectorSize: 0x200, Cylinders: 0x2ECA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:38:19.0000 2796 ============================================================
20:38:19.0000 2796 \Device\Harddisk0\DR0:
20:38:19.0000 2796 MBR partitions:
20:38:19.0000 2796 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0xAE1EE25
20:38:19.0000 2796 ============================================================
20:38:19.0046 2796 C: <-> \Device\Harddisk0\DR0\Partition1
20:38:19.0046 2796 ============================================================
20:38:19.0046 2796 Initialize success
20:38:19.0046 2796 ============================================================
20:38:27.0562 3604 ============================================================
20:38:27.0562 3604 Scan started
20:38:27.0562 3604 Mode: Manual; SigCheck; TDLFS;
20:38:27.0562 3604 ============================================================
20:38:28.0875 3604 ================ Scan system memory ========================
20:38:32.0687 3604 System memory - ok
20:38:32.0687 3604 ================ Scan services =============================
20:38:32.0781 3604 Abiosdsk - ok
20:38:32.0828 3604 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
20:38:33.0218 3604 abp480n5 - ok
20:38:33.0250 3604 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:38:33.0500 3604 ACPI - ok
20:38:33.0546 3604 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:38:33.0718 3604 ACPIEC - ok
20:38:33.0828 3604 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:38:34.0000 3604 AdobeFlashPlayerUpdateSvc - ok
20:38:34.0031 3604 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
20:38:34.0281 3604 adpu160m - ok
20:38:34.0296 3604 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
20:38:34.0484 3604 aec - ok
20:38:34.0531 3604 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
20:38:34.0578 3604 AegisP - ok
20:38:34.0640 3604 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:38:34.0656 3604 AFD - ok
20:38:34.0718 3604 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
20:38:34.0937 3604 agp440 - ok
20:38:34.0984 3604 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
20:38:35.0218 3604 agpCPQ - ok
20:38:35.0250 3604 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
20:38:35.0328 3604 Aha154x - ok
20:38:35.0359 3604 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
20:38:35.0546 3604 aic78u2 - ok
20:38:35.0562 3604 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
20:38:35.0734 3604 aic78xx - ok
20:38:35.0781 3604 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:38:35.0937 3604 Alerter - ok
20:38:36.0000 3604 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
20:38:36.0109 3604 ALG - ok
20:38:36.0140 3604 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
20:38:36.0265 3604 AliIde - ok
20:38:36.0281 3604 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
20:38:36.0453 3604 alim1541 - ok
20:38:36.0468 3604 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
20:38:36.0656 3604 amdagp - ok
20:38:36.0687 3604 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
20:38:36.0765 3604 amsint - ok
20:38:36.0843 3604 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:38:36.0937 3604 Apple Mobile Device - ok
20:38:36.0984 3604 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:38:37.0078 3604 AppMgmt - ok
20:38:37.0109 3604 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:38:37.0296 3604 Arp1394 - ok
20:38:37.0343 3604 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
20:38:37.0531 3604 asc - ok
20:38:37.0562 3604 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
20:38:37.0671 3604 asc3350p - ok
20:38:37.0703 3604 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
20:38:37.0875 3604 asc3550 - ok
20:38:37.0937 3604 [ 31ED89BADD47130AD57CCE8C8DFB5B27 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
20:38:38.0031 3604 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
20:38:38.0031 3604 ASPI32 - detected UnsignedFile.Multi.Generic (1)
20:38:38.0187 3604 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:38:38.0296 3604 aspnet_state - ok
20:38:38.0312 3604 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:38:38.0515 3604 AsyncMac - ok
20:38:38.0531 3604 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:38:38.0687 3604 atapi - ok
20:38:38.0687 3604 Atdisk - ok
20:38:38.0750 3604 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:38:38.0953 3604 Atmarpc - ok
20:38:39.0000 3604 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:38:39.0156 3604 AudioSrv - ok
20:38:39.0203 3604 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:38:39.0343 3604 audstub - ok
20:38:39.0406 3604 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
20:38:39.0453 3604 bcm4sbxp - ok
20:38:39.0500 3604 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:38:39.0671 3604 Beep - ok
20:38:39.0734 3604 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
20:38:39.0953 3604 BITS - ok
20:38:40.0000 3604 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
20:38:40.0046 3604 Browser - ok
20:38:40.0046 3604 catchme - ok
20:38:40.0093 3604 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
20:38:40.0312 3604 cbidf - ok
20:38:40.0312 3604 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:38:40.0468 3604 cbidf2k - ok
20:38:40.0500 3604 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
20:38:40.0687 3604 CCDECODE - ok
20:38:40.0703 3604 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
20:38:40.0781 3604 cd20xrnt - ok
20:38:40.0812 3604 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:38:40.0984 3604 Cdaudio - ok
20:38:40.0984 3604 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:38:41.0171 3604 Cdfs - ok
20:38:41.0203 3604 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:38:41.0375 3604 Cdrom - ok
20:38:41.0421 3604 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
20:38:41.0468 3604 cercsr6 ( UnsignedFile.Multi.Generic ) - warning
20:38:41.0468 3604 cercsr6 - detected UnsignedFile.Multi.Generic (1)
20:38:41.0468 3604 Changer - ok
20:38:41.0515 3604 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:38:41.0734 3604 CiSvc - ok
20:38:41.0765 3604 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:38:41.0953 3604 ClipSrv - ok
20:38:41.0984 3604 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:38:42.0203 3604 clr_optimization_v2.0.50727_32 - ok
20:38:42.0218 3604 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:38:42.0421 3604 CmBatt - ok
20:38:42.0468 3604 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
20:38:42.0687 3604 CmdIde - ok
20:38:42.0703 3604 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:38:42.0937 3604 Compbatt - ok
20:38:42.0937 3604 COMSysApp - ok
20:38:42.0968 3604 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
20:38:43.0187 3604 Cpqarray - ok
20:38:43.0406 3604 cpuz135 - ok
20:38:43.0437 3604 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:38:43.0625 3604 CryptSvc - ok
20:38:43.0687 3604 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
20:38:43.0968 3604 dac2w2k - ok
20:38:44.0000 3604 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
20:38:44.0156 3604 dac960nt - ok
20:38:44.0203 3604 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:38:44.0265 3604 DcomLaunch - ok
20:38:44.0312 3604 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:38:44.0468 3604 Dhcp - ok
20:38:44.0468 3604 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:38:45.0906 3604 Disk - ok
20:38:45.0906 3604 dmadmin - ok
20:38:45.0953 3604 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:38:46.0218 3604 dmboot - ok
20:38:46.0234 3604 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
20:38:46.0421 3604 dmio - ok
20:38:46.0421 3604 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:38:46.0578 3604 dmload - ok
20:38:46.0625 3604 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
20:38:46.0796 3604 dmserver - ok
20:38:46.0828 3604 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:38:46.0984 3604 DMusic - ok
20:38:47.0031 3604 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:38:47.0078 3604 Dnscache - ok
20:38:47.0109 3604 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
20:38:47.0343 3604 Dot3svc - ok
20:38:47.0375 3604 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20:38:47.0546 3604 dpti2o - ok
20:38:47.0578 3604 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:38:47.0734 3604 drmkaud - ok
20:38:47.0781 3604 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
20:38:47.0984 3604 E100B - ok
20:38:48.0000 3604 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
20:38:48.0171 3604 EapHost - ok
20:38:48.0250 3604 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
20:38:48.0359 3604 ehRecvr - ok
20:38:48.0421 3604 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
20:38:48.0468 3604 ehSched - ok
20:38:48.0500 3604 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
20:38:48.0578 3604 elagopro - ok
20:38:48.0609 3604 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
20:38:48.0671 3604 elaunidr - ok
20:38:48.0703 3604 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:38:48.0937 3604 ERSvc - ok
20:38:48.0984 3604 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
20:38:49.0031 3604 Eventlog - ok
20:38:49.0093 3604 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
20:38:49.0109 3604 EventSystem - ok
20:38:49.0187 3604 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
20:38:49.0359 3604 EvtEng ( UnsignedFile.Multi.Generic ) - warning
20:38:49.0359 3604 EvtEng - detected UnsignedFile.Multi.Generic (1)
20:38:49.0437 3604 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:38:49.0609 3604 Fastfat - ok
20:38:49.0671 3604 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:38:49.0734 3604 FastUserSwitchingCompatibility - ok
20:38:49.0796 3604 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:38:50.0015 3604 Fax - ok
20:38:50.0046 3604 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
20:38:50.0234 3604 Fdc - ok
20:38:50.0265 3604 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:38:50.0468 3604 Fips - ok
20:38:50.0500 3604 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:38:50.0687 3604 Flpydisk - ok
20:38:50.0718 3604 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:38:50.0906 3604 FltMgr - ok
20:38:51.0015 3604 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:38:51.0062 3604 FontCache3.0.0.0 - ok
20:38:51.0125 3604 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:38:51.0265 3604 Fs_Rec - ok
20:38:51.0265 3604 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:38:51.0437 3604 Ftdisk - ok
20:38:51.0562 3604 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\WildTangent\Apps\Dell Game Console\GameConsoleService.exe
20:38:51.0703 3604 GameConsoleService - ok
20:38:51.0734 3604 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:38:51.0796 3604 GEARAspiWDM - ok
20:38:51.0828 3604 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:38:52.0015 3604 Gpc - ok
20:38:52.0062 3604 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\WINDOWS\system32\drivers\grmnusb.sys
20:38:52.0156 3604 grmnusb - ok
20:38:52.0218 3604 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:38:52.0265 3604 gupdate - ok
20:38:52.0265 3604 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:38:52.0296 3604 gupdatem - ok
20:38:52.0328 3604 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:38:52.0546 3604 HDAudBus - ok
20:38:52.0609 3604 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:38:52.0859 3604 helpsvc - ok
20:38:52.0875 3604 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:38:53.0109 3604 HidServ - ok
20:38:53.0140 3604 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:38:53.0312 3604 HidUsb - ok
20:38:53.0359 3604 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:38:53.0562 3604 hkmsvc - ok
20:38:53.0593 3604 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
20:38:53.0765 3604 hpn - ok
20:38:53.0812 3604 [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:38:53.0875 3604 HPZid412 - ok
20:38:53.0890 3604 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:38:53.0921 3604 HPZipr12 - ok
20:38:53.0968 3604 [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:38:54.0046 3604 HPZius12 - ok
20:38:54.0171 3604 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:38:54.0281 3604 HSF_DPV - ok
20:38:54.0312 3604 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:38:54.0421 3604 HSXHWAZL - ok
20:38:54.0453 3604 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:38:54.0609 3604 HTTP - ok
20:38:54.0656 3604 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:38:54.0843 3604 HTTPFilter - ok
20:38:54.0875 3604 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
20:38:55.0031 3604 i2omgmt - ok
20:38:55.0093 3604 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:38:55.0281 3604 i2omp - ok
20:38:55.0312 3604 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:38:55.0500 3604 i8042prt - ok
20:38:55.0593 3604 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:38:55.0750 3604 ialm - ok
20:38:55.0875 3604 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:38:56.0125 3604 idsvc - ok
20:38:56.0140 3604 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:38:56.0453 3604 Imapi - ok
20:38:56.0500 3604 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:38:56.0687 3604 ImapiService - ok
20:38:56.0718 3604 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:38:56.0906 3604 ini910u - ok
20:38:56.0937 3604 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:38:57.0140 3604 IntelIde - ok
20:38:57.0187 3604 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:38:57.0390 3604 intelppm - ok
20:38:57.0406 3604 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:38:57.0625 3604 Ip6Fw - ok
20:38:57.0656 3604 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:38:57.0843 3604 IpFilterDriver - ok
20:38:57.0890 3604 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:38:58.0078 3604 IpInIp - ok
20:38:58.0109 3604 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:38:58.0296 3604 IpNat - ok
20:38:58.0375 3604 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:38:58.0437 3604 iPod Service - ok
20:38:58.0468 3604 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:38:58.0687 3604 IPSec - ok
20:38:58.0718 3604 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:38:58.0828 3604 IRENUM - ok
20:38:58.0859 3604 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:38:59.0031 3604 isapnp - ok
20:38:59.0125 3604 [ 32192B4EBE8720ED8D49A455C962CB91 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
20:38:59.0265 3604 JavaQuickStarterService - ok
20:38:59.0281 3604 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:38:59.0468 3604 Kbdclass - ok
20:38:59.0484 3604 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:38:59.0640 3604 kbdhid - ok
20:38:59.0687 3604 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:38:59.0828 3604 kmixer - ok
20:38:59.0859 3604 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:38:59.0890 3604 KSecDD - ok
20:38:59.0953 3604 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:39:00.0078 3604 lanmanserver - ok
20:39:00.0125 3604 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:39:00.0171 3604 lanmanworkstation - ok
20:39:00.0187 3604 lbrtfdc - ok
20:39:00.0203 3604 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:39:00.0375 3604 LmHosts - ok
20:39:00.0390 3604 LVRS - ok
20:39:00.0390 3604 LVUVC - ok
20:39:00.0468 3604 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
20:39:00.0578 3604 MatSvc - ok
20:39:00.0609 3604 [ BEC8D118490817F93FBE620B30EC7264 ] McrdSvc C:\WINDOWS\ehome\McrdSvc.exe
20:39:00.0671 3604 McrdSvc ( UnsignedFile.Multi.Generic ) - warning
20:39:00.0671 3604 McrdSvc - detected UnsignedFile.Multi.Generic (1)
20:39:00.0703 3604 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:39:00.0765 3604 mdmxsdk - ok
20:39:00.0796 3604 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:39:01.0031 3604 Messenger - ok
20:39:01.0078 3604 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
20:39:01.0250 3604 MHN ( UnsignedFile.Multi.Generic ) - warning
20:39:01.0250 3604 MHN - detected UnsignedFile.Multi.Generic (1)
20:39:01.0281 3604 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
20:39:01.0359 3604 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
20:39:01.0359 3604 MHNDRV - detected UnsignedFile.Multi.Generic (1)
20:39:01.0406 3604 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:39:01.0640 3604 mnmdd - ok
20:39:01.0671 3604 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:39:01.0984 3604 mnmsrvc - ok
20:39:02.0015 3604 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:39:02.0171 3604 Modem - ok
20:39:02.0187 3604 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:39:02.0359 3604 Mouclass - ok
20:39:02.0421 3604 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:39:02.0578 3604 mouhid - ok
20:39:02.0609 3604 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:39:02.0796 3604 MountMgr - ok
20:39:02.0828 3604 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:39:02.0937 3604 MozillaMaintenance - ok
20:39:02.0984 3604 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
20:39:03.0062 3604 MpFilter - ok
20:39:03.0109 3604 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:39:03.0312 3604 mraid35x - ok
20:39:03.0343 3604 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:39:03.0531 3604 MRxDAV - ok
20:39:03.0578 3604 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:39:03.0640 3604 MRxSmb - ok
20:39:03.0671 3604 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
20:39:03.0859 3604 MSDTC - ok
20:39:03.0875 3604 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:39:04.0125 3604 Msfs - ok
20:39:04.0140 3604 MSIServer - ok
20:39:04.0156 3604 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:39:04.0328 3604 MSKSSRV - ok
20:39:04.0375 3604 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:39:04.0437 3604 MsMpSvc - ok
20:39:04.0468 3604 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:39:04.0656 3604 MSPCLOCK - ok
20:39:04.0703 3604 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:39:04.0875 3604 MSPQM - ok
20:39:04.0906 3604 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:39:05.0062 3604 mssmbios - ok
20:39:05.0093 3604 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
20:39:05.0250 3604 MSTEE - ok
20:39:05.0296 3604 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:39:05.0312 3604 Mup - ok
20:39:05.0328 3604 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
20:39:05.0593 3604 NABTSFEC - ok
20:39:05.0640 3604 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:39:05.0890 3604 napagent - ok
20:39:05.0921 3604 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:39:06.0187 3604 NDIS - ok
20:39:06.0203 3604 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
20:39:06.0375 3604 NdisIP - ok
20:39:06.0437 3604 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:39:06.0468 3604 NdisTapi - ok
20:39:06.0484 3604 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:39:06.0640 3604 Ndisuio - ok
20:39:06.0671 3604 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:39:06.0890 3604 NdisWan - ok
20:39:06.0937 3604 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:39:06.0953 3604 NDProxy - ok
20:39:06.0968 3604 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:39:07.0187 3604 NetBIOS - ok
20:39:07.0218 3604 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:39:07.0468 3604 NetBT - ok
20:39:07.0531 3604 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
20:39:07.0781 3604 NetDDE - ok
20:39:07.0796 3604 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:39:07.0937 3604 NetDDEdsdm - ok
20:39:07.0968 3604 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:39:08.0109 3604 Netlogon - ok
20:39:08.0140 3604 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
20:39:08.0296 3604 Netman - ok
20:39:08.0343 3604 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:39:08.0390 3604 NetTcpPortSharing - ok
20:39:08.0531 3604 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:39:08.0671 3604 NETw3x32 - ok
20:39:08.0828 3604 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
20:39:09.0156 3604 NETw4x32 - ok
20:39:09.0218 3604 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:39:10.0343 3604 NIC1394 - ok
20:39:10.0390 3604 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
20:39:10.0453 3604 Nla - ok
20:39:10.0468 3604 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:39:10.0765 3604 Npfs - ok
20:39:10.0796 3604 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:39:11.0015 3604 Ntfs - ok
20:39:11.0046 3604 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:39:11.0187 3604 NtLmSsp - ok
20:39:11.0234 3604 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:39:11.0437 3604 NtmsSvc - ok
20:39:11.0468 3604 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:39:11.0609 3604 Null - ok
20:39:11.0718 3604 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:39:12.0015 3604 nv - ok
20:39:12.0062 3604 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:39:12.0234 3604 NwlnkFlt - ok
20:39:12.0281 3604 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:39:12.0484 3604 NwlnkFwd - ok
20:39:12.0500 3604 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:39:12.0718 3604 ohci1394 - ok
20:39:12.0781 3604 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:39:12.0906 3604 ose - ok
20:39:13.0203 3604 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:39:13.0750 3604 osppsvc - ok
20:39:13.0812 3604 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:39:14.0000 3604 Parport - ok
20:39:14.0031 3604 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:39:14.0218 3604 PartMgr - ok
20:39:14.0265 3604 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:39:14.0437 3604 ParVdm - ok
20:39:14.0453 3604 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:39:14.0656 3604 PCI - ok
20:39:14.0656 3604 PCIDump - ok
20:39:14.0671 3604 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:39:14.0812 3604 PCIIde - ok
20:39:14.0843 3604 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:39:15.0015 3604 Pcmcia - ok
20:39:15.0031 3604 PDCOMP - ok
20:39:15.0031 3604 PDFRAME - ok
20:39:15.0046 3604 PDRELI - ok
20:39:15.0046 3604 PDRFRAME - ok
20:39:15.0078 3604 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
20:39:15.0265 3604 perc2 - ok
20:39:15.0296 3604 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:39:15.0468 3604 perc2hib - ok
20:39:15.0515 3604 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
20:39:15.0531 3604 PlugPlay - ok
20:39:15.0593 3604 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
20:39:15.0859 3604 Pml Driver HPZ12 - ok
20:39:15.0906 3604 [ E4910CE9D882BF825979FCF4636A9BD8 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
20:39:15.0953 3604 Point32 - ok
20:39:15.0968 3604 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:39:16.0109 3604 PolicyAgent - ok
20:39:16.0140 3604 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:39:16.0343 3604 PptpMiniport - ok
20:39:16.0359 3604 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:39:16.0500 3604 ProtectedStorage - ok
20:39:16.0515 3604 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:39:16.0687 3604 PSched - ok
20:39:16.0687 3604 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:39:16.0843 3604 Ptilink - ok
20:39:16.0859 3604 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:39:16.0906 3604 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
20:39:16.0906 3604 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
20:39:16.0937 3604 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:39:17.0109 3604 ql1080 - ok
20:39:17.0125 3604 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:39:17.0265 3604 Ql10wnt - ok
20:39:17.0296 3604 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:39:17.0437 3604 ql12160 - ok
20:39:17.0468 3604 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:39:17.0625 3604 ql1240 - ok
20:39:17.0656 3604 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:39:17.0812 3604 ql1280 - ok
20:39:17.0875 3604 [ D2EA58899FCF66539FAD12897B787216 ] QWAVE C:\WINDOWS\system32\qwave.dll
20:39:18.0031 3604 QWAVE ( UnsignedFile.Multi.Generic ) - warning
20:39:18.0031 3604 QWAVE - detected UnsignedFile.Multi.Generic (1)
20:39:18.0062 3604 [ 2BB1D2BAF3493362E5C1949C5F210D5F ] QWAVEDRV C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
20:39:18.0109 3604 QWAVEDRV ( UnsignedFile.Multi.Generic ) - warning
20:39:18.0109 3604 QWAVEDRV - detected UnsignedFile.Multi.Generic (1)
20:39:18.0156 3604 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:39:18.0328 3604 RasAcd - ok
20:39:18.0375 3604 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:39:18.0562 3604 RasAuto - ok
20:39:18.0578 3604 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:39:18.0765 3604 Rasl2tp - ok
20:39:18.0796 3604 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:39:18.0968 3604 RasMan - ok
20:39:18.0968 3604 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:39:19.0156 3604 RasPppoe - ok
20:39:19.0187 3604 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:39:19.0359 3604 Raspti - ok
20:39:19.0390 3604 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:39:19.0906 3604 Rdbss - ok
20:39:19.0906 3604 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:39:20.0062 3604 RDPCDD - ok
20:39:20.0078 3604 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:39:20.0359 3604 rdpdr - ok
20:39:20.0421 3604 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:39:20.0437 3604 RDPWD - ok
20:39:20.0500 3604 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:39:20.0750 3604 RDSessMgr - ok
20:39:20.0796 3604 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:39:20.0984 3604 redbook - ok
20:39:21.0031 3604 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
20:39:21.0203 3604 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
20:39:21.0203 3604 RegSrvc - detected UnsignedFile.Multi.Generic (1)
20:39:21.0265 3604 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:39:21.0484 3604 RemoteAccess - ok
20:39:21.0531 3604 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:39:21.0765 3604 RemoteRegistry - ok
20:39:21.0781 3604 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:39:21.0843 3604 rimmptsk - ok
20:39:21.0875 3604 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:39:21.0968 3604 rimsptsk - ok
20:39:21.0984 3604 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:39:22.0156 3604 rismxdp - ok
20:39:22.0187 3604 [ 868E6C58E9B301A768AE50E2A8E3C5D5 ] RMSvc C:\WINDOWS\ehome\RMSvc.exe
20:39:22.0250 3604 RMSvc ( UnsignedFile.Multi.Generic ) - warning
20:39:22.0250 3604 RMSvc - detected UnsignedFile.Multi.Generic (1)
20:39:22.0281 3604 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
20:39:22.0515 3604 RpcLocator - ok
20:39:22.0546 3604 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
20:39:22.0609 3604 RpcSs - ok
20:39:22.0656 3604 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:39:22.0890 3604 RSVP - ok
20:39:22.0953 3604 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
20:39:23.0281 3604 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
20:39:23.0281 3604 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
20:39:23.0296 3604 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
20:39:23.0328 3604 s24trans ( UnsignedFile.Multi.Generic ) - warning
20:39:23.0328 3604 s24trans - detected UnsignedFile.Multi.Generic (1)
20:39:23.0375 3604 SABProcEnum - ok
20:39:23.0390 3604 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
20:39:23.0531 3604 SamSs - ok
20:39:23.0531 3604 SBRE - ok
20:39:23.0578 3604 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:39:23.0781 3604 SCardSvr - ok
20:39:23.0828 3604 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:39:24.0015 3604 Schedule - ok
20:39:24.0046 3604 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
20:39:24.0218 3604 sdbus - ok
20:39:24.0265 3604 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:39:24.0359 3604 Secdrv - ok
20:39:24.0390 3604 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
20:39:24.0578 3604 seclogon - ok
20:39:24.0609 3604 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
20:39:24.0734 3604 SENS - ok
20:39:24.0750 3604 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:39:24.0921 3604 serenum - ok
20:39:24.0953 3604 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:39:25.0171 3604 Serial - ok
20:39:25.0234 3604 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:39:25.0390 3604 Sfloppy - ok
20:39:25.0453 3604 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:39:25.0656 3604 SharedAccess - ok
20:39:25.0671 3604 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:39:25.0718 3604 ShellHWDetection - ok
20:39:25.0734 3604 Simbad - ok
20:39:25.0765 3604 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:39:25.0921 3604 sisagp - ok
20:39:25.0968 3604 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
20:39:26.0109 3604 SLIP - ok
20:39:26.0140 3604 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:39:26.0218 3604 Sparrow - ok
20:39:26.0234 3604 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:39:26.0390 3604 splitter - ok
20:39:26.0437 3604 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:39:26.0453 3604 Spooler - ok
20:39:26.0484 3604 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:39:26.0593 3604 sr - ok
20:39:26.0625 3604 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
20:39:26.0718 3604 srservice - ok
20:39:26.0781 3604 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:39:26.0812 3604 Srv - ok
20:39:26.0843 3604 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:39:26.0968 3604 SSDPSRV - ok
20:39:27.0062 3604 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
20:39:27.0171 3604 STHDA - ok
20:39:27.0218 3604 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:39:27.0468 3604 stisvc - ok
20:39:27.0500 3604 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
20:39:27.0734 3604 streamip - ok
20:39:27.0765 3604 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:39:28.0000 3604 swenum - ok
20:39:28.0015 3604 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:39:28.0156 3604 swmidi - ok
20:39:28.0156 3604 SwPrv - ok
20:39:28.0203 3604 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
20:39:28.0375 3604 symc810 - ok
20:39:28.0390 3604 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:39:28.0562 3604 symc8xx - ok
20:39:28.0593 3604 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:39:28.0750 3604 sym_hi - ok
20:39:28.0781 3604 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:39:28.0921 3604 sym_u3 - ok
20:39:28.0984 3604 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:39:29.0078 3604 SynTP - ok
20:39:29.0093 3604 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:39:29.0218 3604 sysaudio - ok
20:39:29.0265 3604 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:39:29.0875 3604 SysmonLog - ok
20:39:29.0921 3604 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:39:30.0125 3604 TapiSrv - ok
20:39:30.0171 3604 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:39:30.0234 3604 Tcpip - ok
20:39:30.0250 3604 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:39:30.0531 3604 TDPIPE - ok
20:39:30.0562 3604 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:39:30.0734 3604 TDTCP - ok
20:39:30.0734 3604 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:39:30.0921 3604 TermDD - ok
20:39:30.0968 3604 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
20:39:31.0140 3604 TermService - ok
20:39:31.0171 3604 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
20:39:31.0203 3604 Themes - ok
20:39:31.0250 3604 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:39:31.0390 3604 TlntSvr - ok
20:39:31.0421 3604 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
20:39:31.0640 3604 TosIde - ok
20:39:31.0656 3604 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:39:31.0859 3604 TrkWks - ok
20:39:31.0890 3604 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:39:32.0093 3604 Udfs - ok
20:39:32.0125 3604 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
20:39:32.0218 3604 ultra - ok
20:39:32.0234 3604 [ 6634C460C56EC7E48D6BE20B745DC03A ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
20:39:32.0296 3604 UMWdf - ok
20:39:32.0343 3604 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:39:32.0515 3604 Update - ok
20:39:32.0562 3604 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:39:32.0718 3604 upnphost - ok
20:39:32.0734 3604 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
20:39:32.0937 3604 UPS - ok
20:39:33.0015 3604 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:39:33.0078 3604 USBAAPL - ok
20:39:33.0125 3604 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
20:39:33.0296 3604 usbaudio - ok
20:39:33.0312 3604 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:39:33.0500 3604 usbccgp - ok
20:39:33.0515 3604 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:39:33.0703 3604 usbehci - ok
20:39:33.0734 3604 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:39:33.0906 3604 usbhub - ok
20:39:33.0921 3604 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:39:34.0093 3604 usbprint - ok
20:39:34.0125 3604 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:39:34.0296 3604 usbscan - ok
20:39:34.0328 3604 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:39:34.0500 3604 USBSTOR - ok
20:39:34.0531 3604 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:39:34.0703 3604 usbuhci - ok
20:39:34.0718 3604 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
20:39:34.0890 3604 usbvideo - ok
20:39:34.0921 3604 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
20:39:35.0093 3604 usb_rndisx - ok
20:39:35.0109 3604 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:39:35.0250 3604 VgaSave - ok
20:39:35.0281 3604 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:39:35.0453 3604 viaagp - ok
20:39:35.0484 3604 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:39:35.0640 3604 ViaIde - ok
20:39:35.0671 3604 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:39:35.0859 3604 VolSnap - ok
20:39:35.0906 3604 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
20:39:36.0031 3604 VSS - ok
20:39:36.0046 3604 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
20:39:36.0234 3604 w32time - ok
20:39:36.0296 3604 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
20:39:36.0406 3604 w39n51 - ok
20:39:36.0468 3604 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:39:36.0625 3604 Wanarp - ok
20:39:36.0625 3604 wanatw - ok
20:39:36.0640 3604 WDICA - ok
20:39:36.0687 3604 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:39:36.0843 3604 wdmaud - ok
20:39:36.0875 3604 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:39:37.0078 3604 WebClient - ok
20:39:37.0140 3604 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:39:37.0265 3604 winachsf - ok
20:39:37.0359 3604 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:39:37.0593 3604 winmgmt - ok
20:39:37.0656 3604 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
20:39:37.0859 3604 WLANKEEPER ( UnsignedFile.Multi.Generic ) - warning
20:39:37.0859 3604 WLANKEEPER - detected UnsignedFile.Multi.Generic (1)
20:39:37.0921 3604 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
20:39:38.0000 3604 WmdmPmSN - ok
20:39:38.0046 3604 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:39:38.0125 3604 Wmi - ok
20:39:38.0156 3604 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
20:39:38.0296 3604 WmiAcpi - ok
20:39:38.0343 3604 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:39:38.0656 3604 WmiApSrv - ok
20:39:38.0781 3604 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:39:39.0281 3604 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
20:39:39.0281 3604 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
20:39:39.0343 3604 [ 0770ACCA345B35EF455AC0D96C8B39A0 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:39:39.0437 3604 WpdUsb - ok
20:39:39.0500 3604 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:39:39.0921 3604 WS2IFSL - ok
20:39:39.0984 3604 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:39:40.0234 3604 wscsvc - ok
20:39:40.0281 3604 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
20:39:40.0531 3604 WSTCODEC - ok
20:39:40.0546 3604 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:39:40.0687 3604 wuauserv - ok
20:39:40.0718 3604 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:39:40.0812 3604 WudfPf - ok
20:39:40.0843 3604 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:39:40.0937 3604 WudfRd - ok
20:39:40.0984 3604 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:39:41.0046 3604 WudfSvc - ok
20:39:41.0093 3604 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:39:41.0265 3604 WZCSVC - ok
20:39:41.0312 3604 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:39:41.0500 3604 xmlprov - ok
20:39:41.0515 3604 ================ Scan global ===============================
20:39:41.0562 3604 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
20:39:41.0656 3604 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:39:41.0671 3604 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:39:41.0703 3604 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
20:39:41.0703 3604 [Global] - ok
20:39:41.0703 3604 ================ Scan MBR ==================================
20:39:41.0718 3604 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
20:39:41.0937 3604 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:39:41.0937 3604 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:39:41.0937 3604 ================ Scan VBR ==================================
20:39:41.0953 3604 [ 906090EE3E0DCC02260B16732F31435B ] \Device\Harddisk0\DR0\Partition1
20:39:41.0953 3604 \Device\Harddisk0\DR0\Partition1 - ok
20:39:41.0953 3604 ============================================================
20:39:41.0953 3604 Scan finished
20:39:41.0953 3604 ============================================================
20:39:42.0078 3536 Detected object count: 16
20:39:42.0078 3536 Actual detected object count: 16
20:46:55.0093 3536 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0093 3536 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0093 3536 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0093 3536 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0093 3536 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0093 3536 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0093 3536 McrdSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0093 3536 McrdSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0093 3536 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0093 3536 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 QWAVE ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 QWAVE ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 QWAVEDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 QWAVEDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 RMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 RMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0109 3536 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0109 3536 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0125 3536 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0125 3536 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0125 3536 WLANKEEPER ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0125 3536 WLANKEEPER ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0125 3536 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:46:55.0125 3536 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:46:55.0125 3536 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:46:55.0125 3536 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:47:00.0187 3464 ============================================================
20:47:00.0187 3464 Scan started
20:47:00.0187 3464 Mode: Manual; SigCheck; TDLFS;
20:47:00.0187 3464 ============================================================
20:47:00.0859 3464 ================ Scan system memory ========================
20:47:02.0281 3464 System memory - ok
20:47:02.0281 3464 ================ Scan services =============================
20:47:02.0421 3464 Abiosdsk - ok
20:47:02.0468 3464 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
20:47:02.0671 3464 abp480n5 - ok
20:47:02.0718 3464 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:47:02.0953 3464 ACPI - ok
20:47:02.0984 3464 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:47:03.0234 3464 ACPIEC - ok
20:47:03.0328 3464 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:47:03.0343 3464 AdobeFlashPlayerUpdateSvc - ok
20:47:03.0375 3464 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
20:47:03.0531 3464 adpu160m - ok
20:47:03.0546 3464 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
20:47:03.0703 3464 aec - ok
20:47:03.0734 3464 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
20:47:03.0750 3464 AegisP - ok
20:47:03.0796 3464 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:47:03.0812 3464 AFD - ok
20:47:03.0875 3464 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
20:47:04.0046 3464 agp440 - ok
20:47:04.0078 3464 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
20:47:04.0234 3464 agpCPQ - ok
20:47:04.0250 3464 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
20:47:04.0312 3464 Aha154x - ok
20:47:04.0343 3464 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
20:47:04.0531 3464 aic78u2 - ok
20:47:04.0546 3464 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
20:47:04.0687 3464 aic78xx - ok
20:47:04.0734 3464 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:47:04.0890 3464 Alerter - ok
20:47:04.0921 3464 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
20:47:05.0000 3464 ALG - ok
20:47:05.0031 3464 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
20:47:05.0156 3464 AliIde - ok
20:47:05.0156 3464 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
20:47:05.0296 3464 alim1541 - ok
20:47:05.0328 3464 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
20:47:05.0468 3464 amdagp - ok
20:47:05.0484 3464 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
20:47:05.0546 3464 amsint - ok
20:47:05.0625 3464 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:47:05.0656 3464 Apple Mobile Device - ok
20:47:05.0687 3464 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:47:05.0765 3464 AppMgmt - ok
20:47:05.0812 3464 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:47:05.0937 3464 Arp1394 - ok
20:47:05.0984 3464 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
20:47:06.0140 3464 asc - ok
20:47:06.0156 3464 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
20:47:06.0250 3464 asc3350p - ok
20:47:06.0281 3464 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
20:47:06.0453 3464 asc3550 - ok
20:47:06.0500 3464 [ 31ED89BADD47130AD57CCE8C8DFB5B27 ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
20:47:06.0515 3464 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
20:47:06.0515 3464 ASPI32 - detected UnsignedFile.Multi.Generic (1)
20:47:06.0656 3464 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:47:06.0671 3464 aspnet_state - ok
20:47:06.0687 3464 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:47:06.0859 3464 AsyncMac - ok
20:47:06.0890 3464 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:47:07.0031 3464 atapi - ok
20:47:07.0031 3464 Atdisk - ok
20:47:07.0062 3464 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:47:07.0234 3464 Atmarpc - ok
20:47:07.0281 3464 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:47:07.0406 3464 AudioSrv - ok
20:47:07.0453 3464 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:47:07.0578 3464 audstub - ok
20:47:07.0625 3464 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
20:47:07.0640 3464 bcm4sbxp - ok
20:47:07.0687 3464 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:47:07.0828 3464 Beep - ok
20:47:07.0875 3464 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
20:47:08.0046 3464 BITS - ok
20:47:08.0093 3464 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
20:47:08.0125 3464 Browser - ok
20:47:08.0125 3464 catchme - ok
20:47:08.0187 3464 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
20:47:08.0406 3464 cbidf - ok
20:47:08.0406 3464 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:47:08.0531 3464 cbidf2k - ok
20:47:08.0562 3464 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
20:47:08.0687 3464 CCDECODE - ok
20:47:08.0718 3464 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
20:47:08.0781 3464 cd20xrnt - ok
20:47:08.0812 3464 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:47:08.0968 3464 Cdaudio - ok
20:47:08.0968 3464 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:47:09.0093 3464 Cdfs - ok
20:47:09.0140 3464 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:47:09.0281 3464 Cdrom - ok
20:47:09.0328 3464 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
20:47:09.0359 3464 cercsr6 ( UnsignedFile.Multi.Generic ) - warning
20:47:09.0359 3464 cercsr6 - detected UnsignedFile.Multi.Generic (1)
20:47:09.0359 3464 Changer - ok
20:47:09.0406 3464 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:47:09.0968 3464 CiSvc - ok
20:47:10.0015 3464 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:47:10.0171 3464 ClipSrv - ok
20:47:10.0203 3464 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:47:10.0234 3464 clr_optimization_v2.0.50727_32 - ok
20:47:10.0265 3464 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:47:10.0406 3464 CmBatt - ok
20:47:10.0453 3464 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
20:47:10.0640 3464 CmdIde - ok
20:47:10.0671 3464 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:47:10.0875 3464 Compbatt - ok
20:47:10.0875 3464 COMSysApp - ok
20:47:10.0921 3464 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
20:47:11.0062 3464 Cpqarray - ok
20:47:11.0265 3464 cpuz135 - ok
20:47:11.0296 3464 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:47:11.0453 3464 CryptSvc - ok
20:47:11.0484 3464 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
20:47:11.0640 3464 dac2w2k - ok
20:47:11.0671 3464 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
20:47:11.0843 3464 dac960nt - ok
20:47:11.0906 3464 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:47:11.0968 3464 DcomLaunch - ok
20:47:12.0015 3464 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:47:12.0156 3464 Dhcp - ok
20:47:12.0171 3464 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:47:12.0296 3464 Disk - ok
20:47:12.0312 3464 dmadmin - ok
20:47:12.0359 3464 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:47:12.0593 3464 dmboot - ok
20:47:12.0625 3464 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\DRIVERS\dmio.sys
20:47:12.0765 3464 dmio - ok
20:47:12.0765 3464 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:47:12.0906 3464 dmload - ok
20:47:12.0937 3464 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
20:47:13.0093 3464 dmserver - ok
20:47:13.0140 3464 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:47:13.0265 3464 DMusic - ok
20:47:13.0312 3464 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:47:13.0359 3464 Dnscache - ok
20:47:13.0406 3464 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
20:47:13.0593 3464 Dot3svc - ok
20:47:13.0625 3464 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20:47:13.0750 3464 dpti2o - ok
20:47:13.0765 3464 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:47:13.0890 3464 drmkaud - ok
20:47:13.0921 3464 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
20:47:14.0046 3464 E100B - ok
20:47:14.0078 3464 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
20:47:14.0203 3464 EapHost - ok
20:47:14.0281 3464 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
20:47:14.0312 3464 ehRecvr - ok
20:47:14.0375 3464 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
20:47:14.0421 3464 ehSched - ok
20:47:14.0453 3464 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
20:47:14.0515 3464 elagopro - ok
20:47:14.0546 3464 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
20:47:14.0593 3464 elaunidr - ok
20:47:14.0625 3464 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:47:14.0781 3464 ERSvc - ok
20:47:14.0828 3464 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
20:47:14.0875 3464 Eventlog - ok
20:47:14.0937 3464 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
20:47:14.0968 3464 EventSystem - ok
20:47:15.0062 3464 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
20:47:15.0093 3464 EvtEng ( UnsignedFile.Multi.Generic ) - warning
20:47:15.0093 3464 EvtEng - detected UnsignedFile.Multi.Generic (1)
20:47:15.0156 3464 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:47:15.0343 3464 Fastfat - ok
20:47:15.0406 3464 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:47:15.0453 3464 FastUserSwitchingCompatibility - ok
20:47:15.0500 3464 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:47:15.0734 3464 Fax - ok
20:47:15.0765 3464 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
20:47:15.0890 3464 Fdc - ok
20:47:15.0906 3464 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:47:16.0046 3464 Fips - ok
20:47:16.0078 3464 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:47:16.0218 3464 Flpydisk - ok
20:47:16.0265 3464 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:47:16.0390 3464 FltMgr - ok
20:47:16.0484 3464 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:47:16.0500 3464 FontCache3.0.0.0 - ok
20:47:16.0546 3464 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:47:16.0703 3464 Fs_Rec - ok
20:47:16.0703 3464 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:47:16.0859 3464 Ftdisk - ok
20:47:17.0000 3464 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\WildTangent\Apps\Dell Game Console\GameConsoleService.exe
20:47:17.0015 3464 GameConsoleService - ok
20:47:17.0046 3464 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:47:17.0078 3464 GEARAspiWDM - ok
20:47:17.0093 3464 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:47:17.0250 3464 Gpc - ok
20:47:17.0296 3464 [ 6003BC70F1A8307262BD3C941BDA0B7E ] grmnusb C:\WINDOWS\system32\drivers\grmnusb.sys
20:47:17.0328 3464 grmnusb - ok
20:47:17.0390 3464 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:47:17.0421 3464 gupdate - ok
20:47:17.0437 3464 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:47:17.0468 3464 gupdatem - ok
20:47:17.0500 3464 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:47:17.0687 3464 HDAudBus - ok
20:47:17.0765 3464 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:47:17.0906 3464 helpsvc - ok
20:47:17.0921 3464 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:47:18.0062 3464 HidServ - ok
20:47:18.0078 3464 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:47:18.0203 3464 HidUsb - ok
20:47:18.0250 3464 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:47:18.0406 3464 hkmsvc - ok
20:47:18.0437 3464 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
20:47:18.0562 3464 hpn - ok
20:47:18.0625 3464 [ 287A63BD8509BD78E7978823B38AFA81 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:47:18.0640 3464 HPZid412 - ok
20:47:18.0656 3464 [ 0B4FDA2657C3E0315EAA57F9C6D4FD1F ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:47:18.0671 3464 HPZipr12 - ok
20:47:18.0734 3464 [ 29559DB25258B60510A60C4E470FCE32 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:47:18.0781 3464 HPZius12 - ok
20:47:18.0875 3464 [ E8EC1767EA315A39A0DD8989952CA0E9 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:47:18.0953 3464 HSF_DPV - ok
20:47:18.0968 3464 [ 61478FA42EE04562E7F11F4DCA87E9C8 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:47:19.0000 3464 HSXHWAZL - ok
20:47:19.0046 3464 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:47:19.0234 3464 HTTP - ok
20:47:19.0281 3464 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:47:19.0421 3464 HTTPFilter - ok
20:47:19.0437 3464 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
20:47:19.0578 3464 i2omgmt - ok
20:47:19.0609 3464 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:47:19.0734 3464 i2omp - ok
20:47:19.0765 3464 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:47:19.0906 3464 i8042prt - ok
20:47:20.0000 3464 [ CC449157474D5E43DAEA7E20F52C635A ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
20:47:20.0093 3464 ialm - ok
20:47:20.0234 3464 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:47:20.0281 3464 idsvc - ok
20:47:20.0312 3464 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:47:20.0437 3464 Imapi - ok
20:47:20.0484 3464 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:47:20.0687 3464 ImapiService - ok
20:47:20.0718 3464 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:47:20.0859 3464 ini910u - ok
20:47:20.0875 3464 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:47:21.0015 3464 IntelIde - ok
20:47:21.0046 3464 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:47:21.0171 3464 intelppm - ok
20:47:21.0187 3464 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:47:21.0328 3464 Ip6Fw - ok
20:47:21.0359 3464 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:47:21.0500 3464 IpFilterDriver - ok
20:47:21.0546 3464 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:47:21.0656 3464 IpInIp - ok
20:47:21.0703 3464 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:47:21.0859 3464 IpNat - ok
20:47:21.0937 3464 [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:47:21.0984 3464 iPod Service - ok
20:47:22.0015 3464 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:47:22.0156 3464 IPSec - ok
20:47:22.0171 3464 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:47:22.0265 3464 IRENUM - ok
20:47:22.0296 3464 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:47:22.0453 3464 isapnp - ok
20:47:22.0531 3464 [ 32192B4EBE8720ED8D49A455C962CB91 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
20:47:22.0562 3464 JavaQuickStarterService - ok
20:47:22.0578 3464 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:47:22.0718 3464 Kbdclass - ok
20:47:22.0734 3464 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:47:22.0875 3464 kbdhid - ok
20:47:22.0906 3464 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:47:23.0015 3464 kmixer - ok
20:47:23.0078 3464 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:47:23.0109 3464 KSecDD - ok
20:47:23.0156 3464 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:47:23.0296 3464 lanmanserver - ok
20:47:23.0343 3464 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:47:23.0390 3464 lanmanworkstation - ok
20:47:23.0406 3464 lbrtfdc - ok
20:47:23.0421 3464 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:47:23.0562 3464 LmHosts - ok
20:47:23.0578 3464 LVRS - ok
20:47:23.0578 3464 LVUVC - ok
20:47:23.0656 3464 [ DDF15A42E27E8EFE27B18FD403151A86 ] MatSvc C:\Program Files\Microsoft Fix it Center\Matsvc.exe
20:47:23.0687 3464 MatSvc - ok
20:47:23.0734 3464 [ BEC8D118490817F93FBE620B30EC7264 ] McrdSvc C:\WINDOWS\ehome\McrdSvc.exe
20:47:23.0734 3464 McrdSvc ( UnsignedFile.Multi.Generic ) - warning
20:47:23.0734 3464 McrdSvc - detected UnsignedFile.Multi.Generic (1)
20:47:23.0765 3464 [ E246A32C445056996074A397DA56E815 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:47:23.0796 3464 mdmxsdk - ok
20:47:23.0828 3464 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:47:24.0000 3464 Messenger - ok
20:47:24.0031 3464 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
20:47:24.0062 3464 MHN ( UnsignedFile.Multi.Generic ) - warning
20:47:24.0062 3464 MHN - detected UnsignedFile.Multi.Generic (1)
20:47:24.0078 3464 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
20:47:24.0109 3464 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
20:47:24.0109 3464 MHNDRV - detected UnsignedFile.Multi.Generic (1)
20:47:24.0156 3464 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:47:24.0390 3464 mnmdd - ok
20:47:24.0421 3464 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:47:24.0578 3464 mnmsrvc - ok
20:47:24.0703 3464 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:47:24.0984 3464 Modem - ok
20:47:25.0031 3464 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:47:25.0218 3464 Mouclass - ok
20:47:25.0265 3464 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:47:25.0437 3464 mouhid - ok
20:47:25.0453 3464 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:47:25.0640 3464 MountMgr - ok
20:47:25.0687 3464 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:47:25.0718 3464 MozillaMaintenance - ok
20:47:25.0750 3464 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
20:47:25.0796 3464 MpFilter - ok
20:47:25.0843 3464 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:47:26.0031 3464 mraid35x - ok
20:47:26.0046 3464 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:47:26.0234 3464 MRxDAV - ok
20:47:26.0328 3464 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:47:26.0359 3464 MRxSmb - ok
20:47:26.0406 3464 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
20:47:26.0531 3464 MSDTC - ok
20:47:26.0562 3464 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:47:26.0687 3464 Msfs - ok
20:47:26.0703 3464 MSIServer - ok
20:47:26.0734 3464 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:47:26.0859 3464 MSKSSRV - ok
20:47:26.0921 3464 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:47:26.0937 3464 MsMpSvc - ok
20:47:26.0968 3464 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:47:27.0140 3464 MSPCLOCK - ok
20:47:27.0171 3464 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:47:27.0328 3464 MSPQM - ok
20:47:27.0359 3464 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:47:27.0531 3464 mssmbios - ok
20:47:27.0562 3464 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
20:47:27.0671 3464 MSTEE - ok
20:47:27.0734 3464 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:47:27.0750 3464 Mup - ok
20:47:27.0765 3464 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
20:47:27.0906 3464 NABTSFEC - ok
20:47:27.0953 3464 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:47:28.0078 3464 napagent - ok
20:47:28.0140 3464 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:47:28.0281 3464 NDIS - ok
20:47:28.0296 3464 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
20:47:28.0437 3464 NdisIP - ok
20:47:28.0484 3464 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:47:28.0515 3464 NdisTapi - ok
20:47:28.0531 3464 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:47:28.0703 3464 Ndisuio - ok
20:47:28.0734 3464 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:47:28.0875 3464 NdisWan - ok
20:47:28.0921 3464 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:47:28.0937 3464 NDProxy - ok
20:47:28.0984 3464 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:47:29.0171 3464 NetBIOS - ok
20:47:29.0218 3464 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:47:29.0406 3464 NetBT - ok
20:47:29.0453 3464 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
20:47:29.0687 3464 NetDDE - ok
20:47:29.0687 3464 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:47:29.0828 3464 NetDDEdsdm - ok
20:47:29.0859 3464 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:47:30.0000 3464 Netlogon - ok
20:47:30.0031 3464 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
20:47:30.0171 3464 Netman - ok
20:47:30.0218 3464 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:47:30.0234 3464 NetTcpPortSharing - ok
20:47:30.0359 3464 [ 71371ED9086A3D65F43967C89634E9A9 ] NETw3x32 C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
20:47:30.0437 3464 NETw3x32 - ok
20:47:30.0609 3464 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
20:47:30.0750 3464 NETw4x32 - ok
20:47:30.0781 3464 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:47:30.0921 3464 NIC1394 - ok
20:47:30.0953 3464 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
20:47:31.0000 3464 Nla - ok
20:47:31.0031 3464 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:47:31.0218 3464 Npfs - ok
20:47:31.0281 3464 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:47:31.0484 3464 Ntfs - ok
20:47:31.0500 3464 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:47:31.0625 3464 NtLmSsp - ok
20:47:31.0687 3464 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:47:31.0828 3464 NtmsSvc - ok
20:47:31.0859 3464 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:47:31.0984 3464 Null - ok
20:47:32.0078 3464 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:47:32.0281 3464 nv - ok
20:47:32.0328 3464 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:47:32.0484 3464 NwlnkFlt - ok
20:47:32.0515 3464 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:47:32.0718 3464 NwlnkFwd - ok
20:47:32.0734 3464 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:47:32.0875 3464 ohci1394 - ok
20:47:32.0953 3464 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:47:32.0968 3464 ose - ok
20:47:33.0265 3464 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:47:33.0484 3464 osppsvc - ok
20:47:33.0593 3464 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:47:33.0812 3464 Parport - ok
20:47:33.0828 3464 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:47:33.0968 3464 PartMgr - ok
20:47:34.0000 3464 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:47:34.0140 3464 ParVdm - ok
20:47:34.0140 3464 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:47:34.0265 3464 PCI - ok
20:47:34.0281 3464 PCIDump - ok
20:47:34.0281 3464 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:47:34.0421 3464 PCIIde - ok
20:47:34.0453 3464 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:47:34.0593 3464 Pcmcia - ok
20:47:34.0593 3464 PDCOMP - ok
20:47:34.0609 3464 PDFRAME - ok
20:47:34.0609 3464 PDRELI - ok
20:47:34.0609 3464 PDRFRAME - ok
20:47:34.0640 3464 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
20:47:34.0781 3464 perc2 - ok
20:47:34.0812 3464 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:47:34.0937 3464 perc2hib - ok
20:47:34.0968 3464 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
20:47:34.0984 3464 PlugPlay - ok
20:47:35.0046 3464 [ 5C1CADD1CB67C0B9D8A84EC6E4D6B5CC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
20:47:35.0078 3464 Pml Driver HPZ12 - ok
20:47:35.0140 3464 [ E4910CE9D882BF825979FCF4636A9BD8 ] Point32 C:\WINDOWS\system32\DRIVERS\point32.sys
20:47:35.0156 3464 Point32 - ok
20:47:35.0171 3464 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:47:35.0359 3464 PolicyAgent - ok
20:47:35.0390 3464 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:47:35.0531 3464 PptpMiniport - ok
20:47:35.0546 3464 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:47:35.0656 3464 ProtectedStorage - ok
20:47:35.0671 3464 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:47:35.0796 3464 PSched - ok
20:47:35.0796 3464 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:47:35.0921 3464 Ptilink - ok
20:47:35.0953 3464 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:47:35.0953 3464 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
20:47:35.0953 3464 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
20:47:35.0984 3464 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:47:36.0125 3464 ql1080 - ok
20:47:36.0140 3464 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:47:36.0265 3464 Ql10wnt - ok
20:47:36.0281 3464 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:47:36.0406 3464 ql12160 - ok
20:47:36.0421 3464 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:47:36.0562 3464 ql1240 - ok
20:47:36.0593 3464 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:47:36.0734 3464 ql1280 - ok
20:47:36.0796 3464 [ D2EA58899FCF66539FAD12897B787216 ] QWAVE C:\WINDOWS\system32\qwave.dll
20:47:36.0796 3464 QWAVE ( UnsignedFile.Multi.Generic ) - warning
20:47:36.0796 3464 QWAVE - detected UnsignedFile.Multi.Generic (1)
20:47:36.0812 3464 [ 2BB1D2BAF3493362E5C1949C5F210D5F ] QWAVEDRV C:\WINDOWS\system32\DRIVERS\qwavedrv.sys
20:47:36.0812 3464 QWAVEDRV ( UnsignedFile.Multi.Generic ) - warning
20:47:36.0812 3464 QWAVEDRV - detected UnsignedFile.Multi.Generic (1)
20:47:36.0843 3464 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:47:36.0968 3464 RasAcd - ok
20:47:37.0015 3464 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:47:37.0187 3464 RasAuto - ok
20:47:37.0203 3464 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:47:37.0375 3464 Rasl2tp - ok
20:47:37.0406 3464 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:47:37.0546 3464 RasMan - ok
20:47:37.0562 3464 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:47:37.0718 3464 RasPppoe - ok
20:47:37.0750 3464 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:47:37.0890 3464 Raspti - ok
20:47:37.0906 3464 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:47:38.0046 3464 Rdbss - ok
20:47:38.0046 3464 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:47:38.0171 3464 RDPCDD - ok
20:47:38.0203 3464 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:47:38.0343 3464 rdpdr - ok
20:47:38.0406 3464 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:47:38.0421 3464 RDPWD - ok
20:47:38.0437 3464 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:47:38.0562 3464 RDSessMgr - ok
20:47:38.0593 3464 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:47:38.0718 3464 redbook - ok
20:47:38.0765 3464 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
20:47:38.0796 3464 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
20:47:38.0796 3464 RegSrvc - detected UnsignedFile.Multi.Generic (1)
20:47:38.0859 3464 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:47:39.0015 3464 RemoteAccess - ok
20:47:39.0062 3464 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:47:39.0250 3464 RemoteRegistry - ok
20:47:39.0281 3464 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:47:39.0312 3464 rimmptsk - ok
20:47:39.0312 3464 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:47:39.0343 3464 rimsptsk - ok
20:47:39.0359 3464 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:47:39.0406 3464 rismxdp - ok
20:47:39.0421 3464 [ 868E6C58E9B301A768AE50E2A8E3C5D5 ] RMSvc C:\WINDOWS\ehome\RMSvc.exe
20:47:39.0437 3464 RMSvc ( UnsignedFile.Multi.Generic ) - warning
20:47:39.0437 3464 RMSvc - detected UnsignedFile.Multi.Generic (1)
20:47:39.0468 3464 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
20:47:40.0000 3464 RpcLocator - ok
20:47:40.0031 3464 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
20:47:40.0078 3464 RpcSs - ok
20:47:40.0109 3464 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:47:40.0343 3464 RSVP - ok
20:47:40.0406 3464 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
20:47:40.0453 3464 S24EventMonitor ( UnsignedFile.Multi.Generic ) - warning
20:47:40.0453 3464 S24EventMonitor - detected UnsignedFile.Multi.Generic (1)
20:47:40.0484 3464 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
20:47:40.0484 3464 s24trans ( UnsignedFile.Multi.Generic ) - warning
20:47:40.0484 3464 s24trans - detected UnsignedFile.Multi.Generic (1)
20:47:40.0531 3464 SABProcEnum - ok
20:47:40.0546 3464 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
20:47:40.0671 3464 SamSs - ok
20:47:40.0671 3464 SBRE - ok
20:47:40.0718 3464 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:47:40.0875 3464 SCardSvr - ok
20:47:40.0906 3464 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:47:41.0109 3464 Schedule - ok
20:47:41.0125 3464 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
20:47:41.0359 3464 sdbus - ok
20:47:41.0406 3464 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:47:41.0515 3464 Secdrv - ok
20:47:41.0546 3464 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
20:47:41.0765 3464 seclogon - ok
20:47:41.0796 3464 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
20:47:41.0968 3464 SENS - ok
20:47:41.0984 3464 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:47:42.0125 3464 serenum - ok
20:47:42.0156 3464 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:47:42.0281 3464 Serial - ok
20:47:42.0296 3464 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:47:42.0421 3464 Sfloppy - ok
20:47:42.0468 3464 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:47:42.0609 3464 SharedAccess - ok
20:47:42.0625 3464 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:47:42.0640 3464 ShellHWDetection - ok
20:47:42.0656 3464 Simbad - ok
20:47:42.0671 3464 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:47:42.0796 3464 sisagp - ok
20:47:42.0812 3464 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
20:47:42.0937 3464 SLIP - ok
20:47:42.0953 3464 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:47:43.0046 3464 Sparrow - ok
20:47:43.0046 3464 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:47:43.0187 3464 splitter - ok
20:47:43.0250 3464 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:47:43.0265 3464 Spooler - ok
20:47:43.0296 3464 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:47:43.0359 3464 sr - ok
20:47:43.0390 3464 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
20:47:43.0453 3464 srservice - ok
20:47:43.0500 3464 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:47:43.0531 3464 Srv - ok
20:47:43.0578 3464 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:47:43.0640 3464 SSDPSRV - ok
20:47:43.0750 3464 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
20:47:43.0843 3464 STHDA - ok
20:47:43.0890 3464 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:47:44.0062 3464 stisvc - ok
20:47:44.0093 3464 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
20:47:44.0234 3464 streamip - ok
20:47:44.0281 3464 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:47:44.0406 3464 swenum - ok
20:47:44.0437 3464 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:47:44.0578 3464 swmidi - ok
20:47:44.0593 3464 SwPrv - ok
20:47:44.0625 3464 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
20:47:44.0750 3464 symc810 - ok
20:47:44.0781 3464 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:47:44.0921 3464 symc8xx - ok
20:47:44.0968 3464 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:47:45.0093 3464 sym_hi - ok
20:47:45.0093 3464 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:47:45.0218 3464 sym_u3 - ok
20:47:45.0281 3464 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:47:45.0312 3464 SynTP - ok
20:47:45.0328 3464 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:47:45.0453 3464 sysaudio - ok
20:47:45.0515 3464 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:47:45.0625 3464 SysmonLog - ok
20:47:45.0671 3464 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:47:45.0812 3464 TapiSrv - ok
20:47:45.0843 3464 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:47:45.0875 3464 Tcpip - ok
20:47:45.0890 3464 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:47:46.0062 3464 TDPIPE - ok
20:47:46.0093 3464 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:47:46.0250 3464 TDTCP - ok
20:47:46.0265 3464 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:47:46.0421 3464 TermDD - ok
20:47:46.0484 3464 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
20:47:46.0656 3464 TermService - ok
20:47:46.0671 3464 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
20:47:46.0703 3464 Themes - ok
20:47:46.0750 3464 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:47:46.0843 3464 TlntSvr - ok
20:47:46.0875 3464 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
20:47:47.0015 3464 TosIde - ok
20:47:47.0046 3464 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:47:47.0218 3464 TrkWks - ok
20:47:47.0234 3464 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:47:47.0390 3464 Udfs - ok
20:47:47.0390 3464 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
20:47:47.0484 3464 ultra - ok
20:47:47.0515 3464 [ 6634C460C56EC7E48D6BE20B745DC03A ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
20:47:47.0546 3464 UMWdf - ok
20:47:47.0609 3464 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:47:47.0765 3464 Update - ok
20:47:47.0781 3464 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:47:47.0875 3464 upnphost - ok
20:47:47.0921 3464 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
20:47:48.0062 3464 UPS - ok
20:47:48.0109 3464 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:47:48.0125 3464 USBAAPL - ok
20:47:48.0187 3464 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
20:47:48.0296 3464 usbaudio - ok
20:47:48.0328 3464 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:47:48.0468 3464 usbccgp - ok
20:47:48.0484 3464 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:47:48.0640 3464 usbehci - ok
20:47:48.0671 3464 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:47:48.0843 3464 usbhub - ok
20:47:48.0875 3464 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:47:49.0046 3464 usbprint - ok
20:47:49.0078 3464 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:47:49.0218 3464 usbscan - ok
20:47:49.0234 3464 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:47:49.0359 3464 USBSTOR - ok
20:47:49.0390 3464 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:47:49.0531 3464 usbuhci - ok
20:47:49.0562 3464 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
20:47:49.0984 3464 usbvideo - ok
20:47:50.0000 3464 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
20:47:50.0140 3464 usb_rndisx - ok
20:47:50.0156 3464 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:47:50.0296 3464 VgaSave - ok
20:47:50.0312 3464 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:47:50.0546 3464 viaagp - ok
20:47:50.0578 3464 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:47:50.0703 3464 ViaIde - ok
20:47:50.0734 3464 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:47:50.0859 3464 VolSnap - ok
20:47:50.0906 3464 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
20:47:50.0984 3464 VSS - ok
20:47:51.0015 3464 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
20:47:51.0140 3464 w32time - ok
20:47:51.0234 3464 [ B1F126E7E28877106D60E6FF3998D033 ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
20:47:51.0281 3464 w39n51 - ok
20:47:51.0359 3464 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:47:51.0468 3464 Wanarp - ok
20:47:51.0484 3464 wanatw - ok
20:47:51.0484 3464 WDICA - ok
20:47:51.0515 3464 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:47:51.0671 3464 wdmaud - ok
20:47:51.0718 3464 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:47:51.0859 3464 WebClient - ok
20:47:51.0906 3464 [ BA6B6FB242A6BA4068C8B763063BEB63 ] winachsf C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:47:52.0000 3464 winachsf - ok
20:47:52.0078 3464 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:47:52.0203 3464 winmgmt - ok
20:47:52.0250 3464 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
20:47:52.0250 3464 WLANKEEPER ( UnsignedFile.Multi.Generic ) - warning
20:47:52.0250 3464 WLANKEEPER - detected UnsignedFile.Multi.Generic (1)
20:47:52.0296 3464 [ B9715B9C18BC6C8F4B66733D208CC9F7 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
20:47:52.0312 3464 WmdmPmSN - ok
20:47:52.0343 3464 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:47:52.0421 3464 Wmi - ok
20:47:52.0437 3464 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
20:47:52.0593 3464 WmiAcpi - ok
20:47:52.0625 3464 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:47:52.0781 3464 WmiApSrv - ok
20:47:52.0890 3464 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:47:52.0968 3464 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
20:47:52.0968 3464 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
20:47:53.0031 3464 [ 0770ACCA345B35EF455AC0D96C8B39A0 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:47:53.0062 3464 WpdUsb - ok
20:47:53.0109 3464 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:47:53.0328 3464 WS2IFSL - ok
20:47:53.0375 3464 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:47:53.0515 3464 wscsvc - ok
20:47:53.0562 3464 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
20:47:53.0687 3464 WSTCODEC - ok
20:47:53.0718 3464 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:47:53.0859 3464 wuauserv - ok
20:47:53.0890 3464 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:47:53.0921 3464 WudfPf - ok
20:47:53.0953 3464 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:47:53.0984 3464 WudfRd - ok
20:47:54.0015 3464 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:47:54.0046 3464 WudfSvc - ok
20:47:54.0093 3464 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:47:54.0281 3464 WZCSVC - ok
20:47:54.0312 3464 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:47:54.0468 3464 xmlprov - ok
20:47:54.0484 3464 ================ Scan global ===============================
20:47:54.0531 3464 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
20:47:54.0578 3464 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:47:54.0593 3464 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:47:54.0625 3464 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
20:47:54.0640 3464 [Global] - ok
20:47:54.0640 3464 ================ Scan MBR ==================================
20:47:54.0656 3464 [ DEA9E81F0228B68C9ADAF84C9B0CF931 ] \Device\Harddisk0\DR0
20:47:54.0890 3464 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:47:54.0890 3464 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:47:54.0890 3464 ================ Scan VBR ==================================
20:47:54.0906 3464 [ 906090EE3E0DCC02260B16732F31435B ] \Device\Harddisk0\DR0\Partition1
20:47:54.0906 3464 \Device\Harddisk0\DR0\Partition1 - ok
20:47:54.0906 3464 ============================================================
20:47:54.0906 3464 Scan finished
20:47:54.0906 3464 ============================================================
20:47:54.0921 3804 Detected object count: 16
20:47:54.0921 3804 Actual detected object count: 16
20:48:05.0937 3804 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0937 3804 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0937 3804 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0937 3804 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0937 3804 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0937 3804 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0937 3804 McrdSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0937 3804 McrdSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0953 3804 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0953 3804 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0953 3804 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0953 3804 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0953 3804 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0953 3804 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0953 3804 QWAVE ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0953 3804 QWAVE ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0953 3804 QWAVEDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0953 3804 QWAVEDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0968 3804 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0968 3804 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0968 3804 RMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0968 3804 RMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0968 3804 S24EventMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0968 3804 S24EventMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0968 3804 s24trans ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0968 3804 s24trans ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0968 3804 WLANKEEPER ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0968 3804 WLANKEEPER ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0984 3804 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:48:05.0984 3804 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:48:05.0984 3804 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:48:05.0984 3804 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:48:14.0078 3008 Deinitialize success

And the FSS.txt log:

Farbar Service Scanner Version: 16-01-2013
Ran by Sherman (administrator) on 24-01-2013 at 20:50:01
Running from "C:\Documents and Settings\Sherman\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(11) Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x0B0000000400000001000000020000000300000005000000060000000700000008000000090000000A0000000B000000
IpSec Tag value is correct.

**** End of log ****