Hi
I had to change the file name to fixlist.txt to run FRST, deleted all Java, here are the logs
FIX log Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 03-10-2013
Ran by Joan at 2013-10-09 18:03:35 Run:1
Running from C:\Users\Joan\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\httpfilter.dll -- (zpnodecollector)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s125obex.dll -- (z800mgmt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pml.dll -- (WscNetDr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\elnkservice.dll -- (websenselogserver)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ql1080.dll -- (wanatw)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ctaud2k.dll -- (vusbbus)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\netrcacm.dll -- (vmm)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\CTSBLFX.DLL.dll -- (UWProSys)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MA8032M.dll -- (USIUDF)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pdlnemap.dll -- (USBDongle)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iPassPeriodicUpdateApp.dll -- (uiusys)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\emAudio.dll -- (tdrpman174)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\nvmpu401.dll -- (tcpipBM)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\NetTcpPortSharing.dll -- (steamdvr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\USBAAPL.dll -- (stcagent)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\BUFADPT.dll -- (smcirda)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\GBDevice.dll -- (smartscaps)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\msfs.dll -- (smapint)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TClass2k.dll -- (sisperf)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tversitymediaserver.dll -- (SGHIDI)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TdmService.dll -- (serialkeys)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\tfsnpool.dll -- (s116unic)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\acpiec.dll -- (rtl8029)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\atikmdag.dll -- (PSDFilter)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cpqnicmgmt.dll -- (pfmodnt)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sscdbhk5.dll -- (perc2)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\HidBth.dll -- (pav_security)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\schedule.dll -- (oracle_load_balancer_60_client-forms6ip9)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\w300bus.dll -- (ofcpfwsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\actser.dll -- (OEM02Dev)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SndTDriverV32.dll -- (NWSAP)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\steamdvr.dll -- (nv4)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\DivisCTP.dll -- (NIPALK)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Epfwndis.dll -- (netrcacm)
SRV - File not found [Auto | Stopped] -- C:\Windows\system32\NEUSBw32.dll -- (NecUsb3)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\wmccdsls.dll -- (naveng)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\TMKEmu.dll -- (mstdc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\sfrem01.dll -- (mrobeservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\iaimtv1.dll -- (MRESP50)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\s117nd5.dll -- (mldserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\smcservice.dll -- (merakpop3)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\XTrapD12.dll -- (lxcr_device)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\WinDriver6.dll -- (KMW_USB)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mssql$pinnaclesys.dll -- (KLOGNT)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\avp.dll -- (hotspotshieldservice)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\b57w2k.dll -- (hnmsvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ni_nic.dll -- (ftdisk)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\klif.dll -- (EACSvrMngr)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ZDPSp50.dll -- (de_serv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\palmusbd.dll -- (DCamUSBSQTECH)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\imonitor.dll -- (cwafreportscheduler)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\MTsensor.dll -- (cnxtdiag)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\ccflic0.dll -- (cisvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\intelide.dll -- (cdudf_xp)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\emclisrv.dll -- (bufserv)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\SE2Dmgmt.dll -- (BcmSqlStartupSvc)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\pcmcia.dll -- (BCMModem)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\HssDrv.dll -- (awlegacy)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cobbmservice.dll -- (As6frin)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\Cardex.dll -- (akshhl)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\cisvc.dll -- (aha154x)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\mvserver.dll -- (aec)
SRV - File not found [Auto | Stopped] -- %systemroot%\system32\freesshdservice.dll -- (abp480n5)
DRV - File not found [Kernel | System | Stopped] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C4BDB197-B921-4A61-B553-8BD7F5F75F11}\MpKslab5ff8e8.sys -- (MpKslab5ff8e8)
S1 MpKslab5ff8e8; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C4BDB197-B921-4A61-B553-8BD7F5F75F11}\MpKslab5ff8e8.sys [x]
C:\Users\Joan\AppData\Local\temp\htmlayout.dll
C:\Users\Joan\AppData\Local\temp\Quarantine.exe
C:\Users\Joan\AppData\Local\temp\setup.exe
C:\Users\Joan\AppData\Local\temp\tmp252D.exe
C:\Users\Joan\AppData\Local\temp\tmp430F.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmp4BD8.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmp4C46.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmp5BBD.exe
C:\Users\Joan\AppData\Local\temp\tmp5C9.exe
C:\Users\Joan\AppData\Local\temp\tmp6C6A.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmp78CD.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmpA2BD.exe
C:\Users\Joan\AppData\Local\temp\tmpAAEA.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmpB5E1.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmpC481.exe
C:\Users\Joan\AppData\Local\temp\tmpDE9C.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmpE6D2.exe
C:\Users\Joan\AppData\Local\temp\tmpF1B6.tmp.exe
C:\Users\Joan\AppData\Local\temp\tmpF797.tmp.exe
C:\Users\Joan\AppData\Local\GC\Clicker.exe
C:\Users\Joan\AppData\Local\GC\runner.exe
C:\Users\Joan\AppData\Local\GC\updater.exe
C:\Users\Joan\AppData\Local\ws_updater.exe
C:\Users\Joan\Desktop\dwet1u6t.exe
C:\Users\Joan\AppData\Roaming\iPumper\Updater.exe
Task: {88348787-4AB0-47C6-BC21-19EE864002B6} - System32\Tasks\GC_Scheduler => %LOCALAPPDATA%\GC\Runner.exe
Task: {E3704CBD-957C-4C46-85C9-B3C7DBF685C0} - System32\Tasks\Escolade => C:\Users\Joan\AppData\Roaming\iPumper\Updater.exe [2013-10-03] ()
Task: {FD0DEEDD-130E-4D7E-9B12-08A8F67A5EAB} - System32\Tasks\UP_Scheduler => %LOCALAPPDATA%\GC\updater.exe
Winsock: Catalog5 01 %SystemRoot%\System32\mswsock.dll [223232] (Microsoft Corporation) ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
CMD: netsh winsock reset
*****************
MpKslab5ff8e8 => Service deleted successfully.
C:\Users\Joan\AppData\Local\temp\htmlayout.dll => Moved successfully.
C:\Users\Joan\AppData\Local\temp\Quarantine.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\setup.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp252D.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp430F.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp4BD8.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp4C46.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp5BBD.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp5C9.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp6C6A.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmp78CD.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpA2BD.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpAAEA.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpB5E1.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpC481.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpDE9C.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpE6D2.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpF1B6.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\temp\tmpF797.tmp.exe => Moved successfully.
C:\Users\Joan\AppData\Local\GC\Clicker.exe => Moved successfully.
C:\Users\Joan\AppData\Local\GC\runner.exe => Moved successfully.
Could not move "C:\Users\Joan\AppData\Local\GC\updater.exe" => Scheduled to move on reboot.
C:\Users\Joan\AppData\Local\ws_updater.exe => Moved successfully.
C:\Users\Joan\Desktop\dwet1u6t.exe => Moved successfully.
C:\Users\Joan\AppData\Roaming\iPumper\Updater.exe => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88348787-4AB0-47C6-BC21-19EE864002B6} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88348787-4AB0-47C6-BC21-19EE864002B6} => Key deleted successfully.
C:\Windows\System32\Tasks\GC_Scheduler => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GC_Scheduler => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E3704CBD-957C-4C46-85C9-B3C7DBF685C0} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E3704CBD-957C-4C46-85C9-B3C7DBF685C0} => Key deleted successfully.
C:\Windows\System32\Tasks\Escolade => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Escolade => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FD0DEEDD-130E-4D7E-9B12-08A8F67A5EAB} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD0DEEDD-130E-4D7E-9B12-08A8F67A5EAB} => Key deleted successfully.
C:\Windows\System32\Tasks\UP_Scheduler => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UP_Scheduler => Key deleted successfully.
Winsock: Catalog5 entry 000000000001\\LibraryPath was set successfully to %SystemRoot%\system32\NLAapi.dll
========= netsh winsock reset =========
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
========= End of CMD: =========
=========== Result of Scheduled Files to move ===========
C:\Users\Joan\AppData\Local\GC\updater.exe => Moved successfully.
==== End of Fixlog ====
FRST logScan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013
Ran by Joan (administrator) on JOAN-PC on 09-10-2013 18:10:58
Running from C:\Users\Joan\Desktop
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Juniper Networks) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Sony Corporation) C:\Program Files\Sony\Network Utility\NSUService.exe
() C:\Windows\system32\PSIService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSpt.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\concentr.exe
(Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\wfcrun32.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\tv_w32.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmi32.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4669440 2007-09-01] (Realtek Semiconductor)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-09] (Kaspersky Lab ZAO)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [ConnectionCenter] - C:\Program Files\Citrix\ICA Client\concentr.exe [304568 2010-10-12] (Citrix Systems, Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation)
HKCU\...\Run: [Messenger (Yahoo!)] - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [6591800 2012-02-22] (Yahoo! Inc.)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19603048 2013-06-03] (Skype Technologies S.A.)
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default\...\Run: [NSUFloatingUI] - C:\Program Files\Sony\Network Utility\LANUtil.exe [ 2008-11-05] (Sony Corporation)
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\Default User\...\Run: [NSUFloatingUI] - C:\Program Files\Sony\Network Utility\LANUtil.exe [ 2008-11-05] (Sony Corporation)
AppInit_DLLs: [ ] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
https://www.google.com/HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
http://rover.ebay.co...52013-16445-0/4http://www.learningc...fers/index.htmlSearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0536541C-BFBB-4A68-A4F8-5D39EDB7D65D} URL =
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409}
https://mrmcweb.org/...svrloader32.cabDPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset...lineScanner.cabDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
http://java.sun.com/...indows-i586.cabDPF: {B8E73359-3422-4384-8D27-4EA1B4C01232}
https://mrmcweb.org/+CSCOL+/cscopf.cabDPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cabDPF: {CAFEEFAC-0017-0000-0025-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cabDPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F}
https://juniper.net/...SetupClient.cabHandler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Program Files\PS\itss.dll (Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Program Files\PS\itss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 216.195.0.131 216.195.0.226 216.195.0.227
FireFox:
========
FF ProfilePath: C:\Users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\5dwvji7k.default
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/
FF Keyword.URL: hxxp://www.arccosine.com/search.php?q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Joan\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Extension: No Name - C:\Users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\5dwvji7k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\5dwvji7k.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [
[email protected]] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\
[email protected]FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Conduit) -
http://www.google.comCHR DefaultSuggestURL: (Conduit) - "suggest_url": ""
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\plugin/npUrlAdvisor.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0\plugin/online_banking_npapi.dll (Kaspersky Lab ZAO)
CHR Plugin: (Wajam) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins/PriamNPAPI.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0\plugin/npABPlugin.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\plugin/content_blocker_npapi.dll (Kaspersky Lab ZAO)
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.2) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.129\npGoogleUpdate3.dll No File
CHR Plugin: (Java Platform SE 7 U5) - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (Vuaudix) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1
CHR Extension: (AdBlock) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (Safe Money) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Content Blocker) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0
CHR Extension: (Virtual Keyboard) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (DivX Plus Web Player HTML5 \u003Cvideo\u003E) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0
CHR Extension: (Gmail) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR Extension: (Anti-Banner) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx
CHR HKLM\...\Chrome\Extension: [noebaifjopccondbkcieccphcpijhdne] - C:\Users\Joan\AppData\Local\CRE\noebaifjopccondbkcieccphcpijhdne.crx
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx
========================== Services (Whitelisted) =================
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-09] (Kaspersky Lab ZAO)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [5105000 2010-05-12] (DisplayLink Corp.)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [628080 2010-11-17] (Juniper Networks)
R2 NSUService; C:\Program Files\Sony\Network Utility\NSUService.exe [299008 2008-11-03] (Sony Corporation)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] ()
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [1514304 2011-12-14] (TuneUp Software)
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2007-06-28] (Sony Corporation)
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182392 2007-08-15] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2818048 2007-09-23] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-08-09] (Sony Corporation)
S3 VAIOMediaPlatform-UCLS-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [745472 2007-01-10] (Sony Corporation)
S3 VAIOMediaPlatform-UCLS-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-08-09] (Sony Corporation)
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [292128 2007-09-29] (Sony Corporation)
R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [274432 2007-06-28] (Sony Corporation)
S3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [957056 2012-10-26] (Sony Corporation)
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512 2007-08-28] (Sony Corporation)
R2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [131072 2007-08-28] (Sony Corporation)
S2 abp480n5; %systemroot%\system32\freesshdservice.dll [x]
S2 aec; %systemroot%\system32\mvserver.dll [x]
S2 aha154x; %systemroot%\system32\cisvc.dll [x]
S2 akshhl; %systemroot%\system32\Cardex.dll [x]
S2 As6frin; %systemroot%\system32\cobbmservice.dll [x]
S2 awlegacy; %systemroot%\system32\HssDrv.dll [x]
S2 BCMModem; %systemroot%\system32\pcmcia.dll [x]
S2 BcmSqlStartupSvc; %systemroot%\system32\SE2Dmgmt.dll [x]
S2 bufserv; %systemroot%\system32\emclisrv.dll [x]
S2 cdudf_xp; %systemroot%\system32\intelide.dll [x]
S2 cisvc; %systemroot%\system32\ccflic0.dll [x]
S2 cnxtdiag; %systemroot%\system32\MTsensor.dll [x]
S2 cwafreportscheduler; %systemroot%\system32\imonitor.dll [x]
S2 DCamUSBSQTECH; %systemroot%\system32\palmusbd.dll [x]
S2 de_serv; %systemroot%\system32\ZDPSp50.dll [x]
S2 EACSvrMngr; %systemroot%\system32\klif.dll [x]
S2 ftdisk; %systemroot%\system32\ni_nic.dll [x]
S2 hnmsvc; %systemroot%\system32\b57w2k.dll [x]
S2 hotspotshieldservice; %systemroot%\system32\avp.dll [x]
S2 KLOGNT; %systemroot%\system32\mssql$pinnaclesys.dll [x]
S2 KMW_USB; %systemroot%\system32\WinDriver6.dll [x]
S2 lxcr_device; %systemroot%\system32\XTrapD12.dll [x]
S2 merakpop3; %systemroot%\system32\smcservice.dll [x]
S2 mldserv; %systemroot%\system32\s117nd5.dll [x]
S2 MRESP50; %systemroot%\system32\iaimtv1.dll [x]
S2 mrobeservice; %systemroot%\system32\sfrem01.dll [x]
S2 mstdc; %systemroot%\system32\TMKEmu.dll [x]
S2 naveng; %systemroot%\system32\wmccdsls.dll [x]
S2 NecUsb3; C:\Windows\system32\NEUSBw32.dll [x]
S2 netrcacm; %systemroot%\system32\Epfwndis.dll [x]
S2 NIPALK; %systemroot%\system32\DivisCTP.dll [x]
S2 nv4; %systemroot%\system32\steamdvr.dll [x]
S2 NWSAP; %systemroot%\system32\SndTDriverV32.dll [x]
S2 OEM02Dev; %systemroot%\system32\actser.dll [x]
S2 ofcpfwsvc; %systemroot%\system32\w300bus.dll [x]
S2 oracle_load_balancer_60_client-forms6ip9; %systemroot%\system32\schedule.dll [x]
S2 pav_security; %systemroot%\system32\HidBth.dll [x]
S2 perc2; %systemroot%\system32\sscdbhk5.dll [x]
S2 pfmodnt; %systemroot%\system32\cpqnicmgmt.dll [x]
S2 PSDFilter; %systemroot%\system32\atikmdag.dll [x]
S2 rtl8029; %systemroot%\system32\acpiec.dll [x]
S2 s116unic; %systemroot%\system32\tfsnpool.dll [x]
S2 serialkeys; %systemroot%\system32\TdmService.dll [x]
S2 SGHIDI; %systemroot%\system32\tversitymediaserver.dll [x]
S2 sisperf; %systemroot%\system32\TClass2k.dll [x]
S2 smapint; %systemroot%\system32\msfs.dll [x]
S2 smartscaps; %systemroot%\system32\GBDevice.dll [x]
S2 smcirda; %systemroot%\system32\BUFADPT.dll [x]
S2 stcagent; %systemroot%\system32\USBAAPL.dll [x]
S2 steamdvr; %systemroot%\system32\NetTcpPortSharing.dll [x]
S2 tcpipBM; %systemroot%\system32\nvmpu401.dll [x]
S2 tdrpman174; %systemroot%\system32\emAudio.dll [x]
S2 uiusys; %systemroot%\system32\iPassPeriodicUpdateApp.dll [x]
S2 USBDongle; %systemroot%\system32\pdlnemap.dll [x]
S2 USIUDF; %systemroot%\system32\MA8032M.dll [x]
S2 UWProSys; %systemroot%\system32\CTSBLFX.DLL.dll [x]
S3 VAIOMediaPlatform-IntegratedServer-HTTP; "C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP" [x]
S3 VAIOMediaPlatform-Mobile-Gateway; "C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server" [x]
S3 VAIOMediaPlatform-UCLS-HTTP; "C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\UCLS\HTTP" [x]
S2 vmm; %systemroot%\system32\netrcacm.dll [x]
S2 vusbbus; %systemroot%\system32\ctaud2k.dll [x]
S2 wanatw; %systemroot%\system32\ql1080.dll [x]
S2 websenselogserver; %systemroot%\system32\elnkservice.dll [x]
S2 WscNetDr; %systemroot%\system32\pml.dll [x]
S2 z800mgmt; %systemroot%\system32\s125obex.dll [x]
S2 zpnodecollector; %systemroot%\system32\httpfilter.dll [x]
==================== Drivers (Whitelisted) ====================
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
S3 DisplayLinkUsbPort; C:\Windows\System32\DRIVERS\DisplayLinkUsbPort_5.3.24903.0.sys [21888 2012-08-04] (
http://libusb-win32.sourceforge.net)
R3 dsNcAdpt; C:\Windows\System32\DRIVERS\dsNcAdpt.sys [26624 2010-11-17] (Juniper Networks)
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-10-09] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-09] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [24408 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-09] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-09] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
S3 KMWDFILTER; C:\Windows\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows ® Codename Longhorn DDK provider)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-22] (Kaspersky Lab ZAO)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-03-07] (Duplex Secure Ltd.)
R3 ti21sony; C:\Windows\System32\drivers\ti21sony.sys [812544 2007-06-05] (Texas Instruments)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [10064 2011-10-20] (TuneUp Software)
S3 vvftav303; C:\Windows\System32\drivers\vvftav303.sys [480128 2007-06-23] (Vimicro Corporation)
S3 ZSMC0303; C:\Windows\System32\Drivers\usbVM303.sys [1472768 2007-05-15] (Vimicro Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-20] (Microsoft Corporation)
S3 dlkmd; \SystemRoot\system32\drivers\dlkmd.sys [x]
S0 dlkmdldr; system32\drivers\dlkmdldr.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-22] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 ProcObsrv; \??\C:\Program Files\Glary Utilities 3\ProcObsrv.sys [x]
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [x]
==================== NetSvcs (Whitelisted) ===================
NETSVC: uiusys -> C:\Windows\system32\iPassPeriodicUpdateApp.dll ==> No File.
NETSVC: vmm -> C:\Windows\system32\netrcacm.dll ==> No File.
NETSVC: BcmSqlStartupSvc -> C:\Windows\system32\SE2Dmgmt.dll ==> No File.
NETSVC: DCamUSBSQTECH -> C:\Windows\system32\palmusbd.dll ==> No File.
NETSVC: KLOGNT -> C:\Windows\system32\mssql$pinnaclesys.dll ==> No File.
NETSVC: aha154x -> C:\Windows\system32\cisvc.dll ==> No File.
NETSVC: netrcacm -> C:\Windows\system32\Epfwndis.dll ==> No File.
NETSVC: smartscaps -> C:\Windows\system32\GBDevice.dll ==> No File.
NETSVC: de_serv -> C:\Windows\system32\ZDPSp50.dll ==> No File.
NETSVC: abp480n5 -> C:\Windows\system32\freesshdservice.dll ==> No File.
NETSVC: bufserv -> C:\Windows\system32\emclisrv.dll ==> No File.
NETSVC: ofcpfwsvc -> C:\Windows\system32\w300bus.dll ==> No File.
NETSVC: nv4 -> C:\Windows\system32\steamdvr.dll ==> No File.
NETSVC: zpnodecollector -> C:\Windows\system32\httpfilter.dll ==> No File.
NETSVC: lxcr_device -> C:\Windows\system32\XTrapD12.dll ==> No File.
NETSVC: tdrpman174 -> C:\Windows\system32\emAudio.dll ==> No File.
NETSVC: OEM02Dev -> C:\Windows\system32\actser.dll ==> No File.
NETSVC: BCMModem -> C:\Windows\system32\pcmcia.dll ==> No File.
NETSVC: hotspotshieldservice -> C:\Windows\system32\avp.dll ==> No File.
NETSVC: serialkeys -> C:\Windows\system32\TdmService.dll ==> No File.
NETSVC: cisvc -> C:\Windows\system32\ccflic0.dll ==> No File.
NETSVC: vusbbus -> C:\Windows\system32\ctaud2k.dll ==> No File.
NETSVC: perc2 -> C:\Windows\system32\sscdbhk5.dll ==> No File.
NETSVC: awlegacy -> C:\Windows\system32\HssDrv.dll ==> No File.
NETSVC: aec -> C:\Windows\system32\mvserver.dll ==> No File.
NETSVC: cdudf_xp -> C:\Windows\system32\intelide.dll ==> No File.
NETSVC: tcpipBM -> C:\Windows\system32\nvmpu401.dll ==> No File.
NETSVC: pav_security -> C:\Windows\system32\HidBth.dll ==> No File.
NETSVC: WscNetDr -> C:\Windows\system32\pml.dll ==> No File.
NETSVC: stcagent -> C:\Windows\system32\USBAAPL.dll ==> No File.
NETSVC: lbtserv -> No Registry Path.
NETSVC: SE2Cmgmt -> No Registry Path.
NETSVC: procmon10 -> No Registry Path.
NETSVC: akshhl -> C:\Windows\system32\Cardex.dll ==> No File.
NETSVC: s116unic -> C:\Windows\system32\tfsnpool.dll ==> No File.
NETSVC: smapint -> C:\Windows\system32\msfs.dll ==> No File.
NETSVC: sisperf -> C:\Windows\system32\TClass2k.dll ==> No File.
NETSVC: SGHIDI -> C:\Windows\system32\tversitymediaserver.dll ==> No File.
NETSVC: mstdc -> C:\Windows\system32\TMKEmu.dll ==> No File.
NETSVC: USIUDF -> C:\Windows\system32\MA8032M.dll ==> No File.
NETSVC: EACSvrMngr -> C:\Windows\system32\klif.dll ==> No File.
NETSVC: pfmodnt -> C:\Windows\system32\cpqnicmgmt.dll ==> No File.
NETSVC: PSDFilter -> C:\Windows\system32\atikmdag.dll ==> No File.
NETSVC: naveng -> C:\Windows\system32\wmccdsls.dll ==> No File.
NETSVC: z800mgmt -> C:\Windows\system32\s125obex.dll ==> No File.
NETSVC: cnxtdiag -> C:\Windows\system32\MTsensor.dll ==> No File.
NETSVC: As6frin -> C:\Windows\system32\cobbmservice.dll ==> No File.
NETSVC: hnmsvc -> C:\Windows\system32\b57w2k.dll ==> No File.
NETSVC: UWProSys -> C:\Windows\system32\CTSBLFX.DLL.dll ==> No File.
NETSVC: smcirda -> C:\Windows\system32\BUFADPT.dll ==> No File.
NETSVC: rtl8029 -> C:\Windows\system32\acpiec.dll ==> No File.
NETSVC: mldserv -> C:\Windows\system32\s117nd5.dll ==> No File.
NETSVC: NWSAP -> C:\Windows\system32\SndTDriverV32.dll ==> No File.
NETSVC: merakpop3 -> C:\Windows\system32\smcservice.dll ==> No File.
NETSVC: ftdisk -> C:\Windows\system32\ni_nic.dll ==> No File.
NETSVC: oracle_load_balancer_60_client-forms6ip9 -> C:\Windows\system32\schedule.dll ==> No File.
NETSVC: steamdvr -> C:\Windows\system32\NetTcpPortSharing.dll ==> No File.
NETSVC: websenselogserver -> C:\Windows\system32\elnkservice.dll ==> No File.
NETSVC: cwafreportscheduler -> C:\Windows\system32\imonitor.dll ==> No File.
NETSVC: wanatw -> C:\Windows\system32\ql1080.dll ==> No File.
NETSVC: NIPALK -> C:\Windows\system32\DivisCTP.dll ==> No File.
NETSVC: USBDongle -> C:\Windows\system32\pdlnemap.dll ==> No File.
NETSVC: mrobeservice -> C:\Windows\system32\sfrem01.dll ==> No File.
NETSVC: MRESP50 -> C:\Windows\system32\iaimtv1.dll ==> No File.
NETSVC: KMW_USB -> C:\Windows\system32\WinDriver6.dll ==> No File.
==================== One Month Created Files and Folders ========
2013-10-09 18:13 - 2013-10-09 18:13 - 05131844 _____ (Swearware) C:\Users\Joan\Desktop\ComboFix.exe
2013-10-09 18:01 - 2013-10-09 18:01 - 01087213 _____ (Farbar) C:\Users\Joan\Desktop\FRST.exe
2013-10-09 11:49 - 2013-10-09 17:57 - 00000000 ____D C:\Users\Joan\Desktop\New Folder
2013-10-09 11:43 - 2013-10-09 11:43 - 00000000 _____ C:\Windows\system32\REN558E.tmp
2013-10-09 11:43 - 2013-10-09 11:43 - 00000000 _____ C:\Windows\system32\REN558D.tmp
2013-10-08 22:27 - 2013-10-08 22:27 - 00891167 _____ C:\Users\Joan\Desktop\SecurityCheck.exe
2013-10-08 22:19 - 2013-10-08 22:22 - 00022940 _____ C:\Users\Joan\Desktop\Addition.txt
2013-10-08 22:17 - 2013-10-08 22:52 - 00243175 _____ C:\Users\Joan\Desktop\post.txt
2013-10-08 22:16 - 2013-10-09 18:08 - 00000000 ____D C:\FRST
2013-10-08 22:16 - 2013-10-08 22:16 - 00002470 _____ C:\Users\Joan\Desktop\aswMBR.txt
2013-10-08 22:16 - 2013-10-08 22:16 - 00000512 _____ C:\Users\Joan\Desktop\MBR.dat
2013-10-08 21:15 - 2013-10-08 21:15 - 04745728 _____ (AVAST Software) C:\Users\Joan\Desktop\aswmbr.exe
2013-10-08 21:14 - 2013-10-08 21:14 - 00012318 _____ C:\Users\Joan\Desktop\JRT.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000000 ____D C:\Windows\ERUNT
2013-10-08 21:09 - 2013-10-08 21:09 - 01032220 _____ (Thisisu) C:\Users\Joan\Desktop\JRT.exe
2013-10-08 21:06 - 2013-10-08 21:06 - 00006846 _____ C:\Users\Joan\Desktop\AdwCleaner[S0].txt
2013-10-08 20:58 - 2013-10-08 20:58 - 01045226 _____ C:\Users\Joan\Desktop\AdwCleaner(1).exe
2013-10-08 18:44 - 2013-10-08 22:49 - 00061756 _____ C:\Users\Joan\Desktop\Extras.Txt
2013-10-08 18:42 - 2013-10-08 22:49 - 00227356 _____ C:\Users\Joan\Desktop\OTL.Txt
2013-10-08 18:29 - 2013-10-08 18:29 - 00602112 _____ (OldTimer Tools) C:\Users\Joan\Desktop\OTL.exe
2013-10-08 07:04 - 2013-10-08 07:04 - 00000447 _____ C:\Users\Joan\Desktop\eset.txt
2013-10-07 22:38 - 2013-10-07 22:38 - 00159304 _____ C:\Windows\Minidump\Mini100713-02.dmp
2013-10-07 22:33 - 2013-10-07 22:33 - 00010387 _____ C:\Users\Joan\Desktop\attach.txt
2013-10-07 22:33 - 2013-10-07 22:32 - 00020139 _____ C:\Users\Joan\Desktop\dds.txt
2013-10-07 22:28 - 2013-10-07 22:28 - 00688992 ____R (Swearware) C:\Users\Joan\Desktop\dds.scr
2013-10-07 22:28 - 2013-10-07 22:28 - 00014699 _____ C:\Users\Joan\Desktop\hijackthis.log
2013-10-07 22:27 - 2013-10-07 22:27 - 00388608 _____ (Trend Micro Inc.) C:\Users\Joan\Desktop\HijackThis.exe
2013-10-07 22:10 - 2013-10-07 22:10 - 02347384 _____ (ESET) C:\Users\Joan\Desktop\esetsmartinstaller_enu.exe
2013-10-07 21:58 - 2013-10-07 21:58 - 00159304 _____ C:\Windows\Minidump\Mini100713-01.dmp
2013-10-07 21:56 - 2013-10-08 21:01 - 00000000 ____D C:\AdwCleaner
2013-10-07 21:55 - 2013-10-07 21:55 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Joan\Desktop\mbam-setup.exe
2013-10-07 21:28 - 2013-10-09 18:08 - 00000000 ____D C:\Users\Joan\AppData\Local\GC
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\ProgramData\WindowsSearch
2013-10-06 07:24 - 2013-10-06 07:25 - 00159304 _____ C:\Windows\Minidump\Mini100613-01.dmp
2013-10-04 20:22 - 2013-10-08 18:26 - 00000000 ____D C:\Program Files\RAR Password Unlocker
2013-10-03 21:25 - 2013-10-09 18:03 - 00000000 ____D C:\Users\Joan\AppData\Roaming\iPumper
2013-09-30 22:08 - 2013-10-09 11:39 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-28 12:31 - 2013-09-28 14:35 - 00000000 ____D C:\Users\Joan\Desktop\intro to health care
2013-09-20 00:10 - 2013-10-07 22:33 - 00000000 ____D C:\Users\Joan\Desktop\PubHlth 540
2013-09-18 18:42 - 2013-09-18 18:42 - 00001664 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-18 18:40 - 2013-09-18 18:42 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-18 18:40 - 2013-09-18 18:40 - 00000000 ____D C:\Program Files\iPod
2013-09-13 17:52 - 2013-09-13 17:52 - 00000000 ____D C:\Program Files\R
2013-09-11 22:01 - 2013-07-31 06:30 - 12335104 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 22:01 - 2013-07-31 06:05 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 22:01 - 2013-07-31 06:00 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 22:01 - 2013-07-31 05:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 22:01 - 2013-07-31 05:52 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-11 22:01 - 2013-07-31 05:52 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 22:01 - 2013-07-31 05:51 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-11 22:01 - 2013-07-31 05:49 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 22:01 - 2013-07-31 05:48 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 22:01 - 2013-07-31 05:48 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-11 22:01 - 2013-07-31 05:48 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-11 22:01 - 2013-07-31 05:47 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 22:01 - 2013-07-31 05:46 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 22:01 - 2013-07-31 05:45 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 22:01 - 2013-07-31 05:45 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-11 22:01 - 2013-07-31 05:42 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 05:54 - 2013-08-07 21:45 - 02049536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 05:54 - 2013-07-16 00:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-09 22:41 - 2013-09-09 22:41 - 00000000 ____D C:\Program Files\PDFBinder
2013-09-09 22:15 - 2013-10-08 18:19 - 00000075 _____ C:\DiskDefrag.log
2013-09-09 14:05 - 2013-09-20 00:13 - 00000107 _____ C:\Users\Joan\Desktop\hospital bill.txt
==================== One Month Modified Files and Folders =======
2013-10-09 18:13 - 2013-10-09 18:13 - 05131844 _____ (Swearware) C:\Users\Joan\Desktop\ComboFix.exe
2013-10-09 18:09 - 2012-06-04 21:57 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-09 18:08 - 2013-10-08 22:16 - 00000000 ____D C:\FRST
2013-10-09 18:08 - 2013-10-07 21:28 - 00000000 ____D C:\Users\Joan\AppData\Local\GC
2013-10-09 18:06 - 2012-05-27 00:32 - 00000878 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-09 18:06 - 2012-03-17 18:00 - 00061934 _____ C:\Windows\PFRO.log
2013-10-09 18:06 - 2011-11-27 14:27 - 00000000 ____D C:\Program Files\Yahoo!
2013-10-09 18:06 - 2006-11-02 09:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-09 18:06 - 2006-11-02 08:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-09 18:06 - 2006-11-02 08:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-09 18:05 - 2006-11-02 09:01 - 00032634 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-09 18:04 - 2011-11-27 03:03 - 01913588 _____ C:\Windows\WindowsUpdate.log
2013-10-09 18:03 - 2013-10-03 21:25 - 00000000 ____D C:\Users\Joan\AppData\Roaming\iPumper
2013-10-09 18:01 - 2013-10-09 18:01 - 01087213 _____ (Farbar) C:\Users\Joan\Desktop\FRST.exe
2013-10-09 17:57 - 2013-10-09 11:49 - 00000000 ____D C:\Users\Joan\Desktop\New Folder
2013-10-09 17:44 - 2012-04-08 12:00 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-09 17:22 - 2012-05-27 00:32 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-09 17:21 - 2013-06-18 18:26 - 00000360 _____ C:\Windows\Tasks\WpsUpdateTask_Joan.job
2013-10-09 11:45 - 2011-11-27 14:29 - 00000000 ____D C:\ProgramData\Yahoo!
2013-10-09 11:44 - 2008-02-16 17:11 - 00000000 ____D C:\Program Files\Common Files\Java
2013-10-09 11:43 - 2013-10-09 11:43 - 00000000 _____ C:\Windows\system32\REN558E.tmp
2013-10-09 11:43 - 2013-10-09 11:43 - 00000000 _____ C:\Windows\system32\REN558D.tmp
2013-10-09 11:39 - 2013-09-30 22:08 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-10-09 04:44 - 2012-10-25 18:23 - 00595552 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-10-09 04:44 - 2012-10-25 18:23 - 00025696 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys
2013-10-09 04:44 - 2012-10-25 18:23 - 00025696 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2013-10-09 04:44 - 2012-06-19 18:28 - 00135776 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-10-09 03:44 - 2012-04-08 12:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-10-09 03:44 - 2011-11-27 04:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-10-09 00:26 - 2006-11-02 07:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-10-08 22:52 - 2013-10-08 22:17 - 00243175 _____ C:\Users\Joan\Desktop\post.txt
2013-10-08 22:49 - 2013-10-08 18:44 - 00061756 _____ C:\Users\Joan\Desktop\Extras.Txt
2013-10-08 22:49 - 2013-10-08 18:42 - 00227356 _____ C:\Users\Joan\Desktop\OTL.Txt
2013-10-08 22:27 - 2013-10-08 22:27 - 00891167 _____ C:\Users\Joan\Desktop\SecurityCheck.exe
2013-10-08 22:22 - 2013-10-08 22:19 - 00022940 _____ C:\Users\Joan\Desktop\Addition.txt
2013-10-08 22:21 - 2012-09-15 22:50 - 00000000 ____D C:\Users\Joan\Desktop\Rasstam
2013-10-08 22:16 - 2013-10-08 22:16 - 00002470 _____ C:\Users\Joan\Desktop\aswMBR.txt
2013-10-08 22:16 - 2013-10-08 22:16 - 00000512 _____ C:\Users\Joan\Desktop\MBR.dat
2013-10-08 21:15 - 2013-10-08 21:15 - 04745728 _____ (AVAST Software) C:\Users\Joan\Desktop\aswmbr.exe
2013-10-08 21:14 - 2013-10-08 21:14 - 00012318 _____ C:\Users\Joan\Desktop\JRT.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000000 ____D C:\Windows\ERUNT
2013-10-08 21:09 - 2013-10-08 21:09 - 01032220 _____ (Thisisu) C:\Users\Joan\Desktop\JRT.exe
2013-10-08 21:06 - 2013-10-08 21:06 - 00006846 _____ C:\Users\Joan\Desktop\AdwCleaner[S0].txt
2013-10-08 21:06 - 2012-02-04 20:39 - 00000000 ____D C:\Users\Joan\AppData\Roaming\Skype
2013-10-08 21:01 - 2013-10-07 21:56 - 00000000 ____D C:\AdwCleaner
2013-10-08 20:58 - 2013-10-08 20:58 - 01045226 _____ C:\Users\Joan\Desktop\AdwCleaner(1).exe
2013-10-08 18:29 - 2013-10-08 18:29 - 00602112 _____ (OldTimer Tools) C:\Users\Joan\Desktop\OTL.exe
2013-10-08 18:26 - 2013-10-04 20:22 - 00000000 ____D C:\Program Files\RAR Password Unlocker
2013-10-08 18:19 - 2013-09-09 22:15 - 00000075 _____ C:\DiskDefrag.log
2013-10-08 18:19 - 2013-03-21 17:44 - 00000000 ____D C:\Users\Joan\AppData\Roaming\GlarySoft
2013-10-08 07:04 - 2013-10-08 07:04 - 00000447 _____ C:\Users\Joan\Desktop\eset.txt
2013-10-07 22:38 - 2013-10-07 22:38 - 00159304 _____ C:\Windows\Minidump\Mini100713-02.dmp
2013-10-07 22:38 - 2012-04-13 11:48 - 280635584 _____ C:\Windows\MEMORY.DMP
2013-10-07 22:38 - 2011-11-30 08:31 - 00000000 ____D C:\Windows\Minidump
2013-10-07 22:33 - 2013-10-07 22:33 - 00010387 _____ C:\Users\Joan\Desktop\attach.txt
2013-10-07 22:33 - 2013-09-20 00:10 - 00000000 ____D C:\Users\Joan\Desktop\PubHlth 540
2013-10-07 22:32 - 2013-10-07 22:33 - 00020139 _____ C:\Users\Joan\Desktop\dds.txt
2013-10-07 22:28 - 2013-10-07 22:28 - 00688992 ____R (Swearware) C:\Users\Joan\Desktop\dds.scr
2013-10-07 22:28 - 2013-10-07 22:28 - 00014699 _____ C:\Users\Joan\Desktop\hijackthis.log
2013-10-07 22:27 - 2013-10-07 22:27 - 00388608 _____ (Trend Micro Inc.) C:\Users\Joan\Desktop\HijackThis.exe
2013-10-07 22:10 - 2013-10-07 22:10 - 02347384 _____ (ESET) C:\Users\Joan\Desktop\esetsmartinstaller_enu.exe
2013-10-07 21:58 - 2013-10-07 21:58 - 00159304 _____ C:\Windows\Minidump\Mini100713-01.dmp
2013-10-07 21:55 - 2013-10-07 21:55 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Joan\Desktop\mbam-setup.exe
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\ProgramData\WindowsSearch
2013-10-07 16:16 - 2011-11-27 03:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-07 16:15 - 2006-11-02 06:23 - 00000219 _____ C:\Windows\win.ini
2013-10-06 14:58 - 2013-09-01 19:11 - 00000000 ____D C:\Users\Joan\Desktop\APA 2013
2013-10-06 07:25 - 2013-10-06 07:24 - 00159304 _____ C:\Windows\Minidump\Mini100613-01.dmp
2013-10-05 03:32 - 2013-03-14 12:03 - 00000955 _____ C:\Users\Public\Desktop\TeamViewer 8.lnk
2013-10-02 17:10 - 2013-06-15 14:41 - 00000000 ____D C:\Users\Joan\Desktop\Family TPS
2013-10-01 18:32 - 2012-10-11 18:32 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-09-30 23:37 - 2013-03-31 14:19 - 00115905 _____ C:\test.xml
2013-09-28 14:35 - 2013-09-28 12:31 - 00000000 ____D C:\Users\Joan\Desktop\intro to health care
2013-09-28 14:16 - 2013-04-26 18:39 - 00000000 ____D C:\Users\Joan\Desktop\bills
2013-09-20 00:13 - 2013-09-09 14:05 - 00000107 _____ C:\Users\Joan\Desktop\hospital bill.txt
2013-09-20 00:07 - 2013-05-05 17:53 - 00000000 ____D C:\Users\Joan\Desktop\MPH laptop copy
2013-09-19 22:34 - 2006-11-02 06:33 - 00703516 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-18 18:42 - 2013-09-18 18:42 - 00001664 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-18 18:42 - 2013-09-18 18:40 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-18 18:42 - 2013-09-06 14:40 - 00000000 ____D C:\Program Files\iTunes
2013-09-18 18:40 - 2013-09-18 18:40 - 00000000 ____D C:\Program Files\iPod
2013-09-18 18:40 - 2011-11-27 16:27 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-09-18 18:33 - 2011-11-27 00:48 - 00000000 ____D C:\Users\Joan
2013-09-16 16:18 - 2008-02-16 17:10 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-13 17:52 - 2013-09-13 17:52 - 00000000 ____D C:\Program Files\R
2013-09-11 22:08 - 2006-11-02 08:47 - 00373080 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-11 21:50 - 2013-08-15 03:10 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 21:42 - 2006-11-02 06:24 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-09-09 22:41 - 2013-09-09 22:41 - 00000000 ____D C:\Program Files\PDFBinder
2013-09-09 22:10 - 2012-05-17 19:17 - 00000000 ____D C:\ProgramData\A-PDF
Some content of TEMP:
====================
C:\Users\Joan\AppData\Local\temp\advapi32.dll
C:\Users\Joan\AppData\Local\temp\dnsapi.dll
C:\Users\Joan\AppData\Local\temp\gdi32.dll
C:\Users\Joan\AppData\Local\temp\ieframe.dll
C:\Users\Joan\AppData\Local\temp\imm32.dll
C:\Users\Joan\AppData\Local\temp\kernel32.dll
C:\Users\Joan\AppData\Local\temp\lpk.dll
C:\Users\Joan\AppData\Local\temp\msctf.dll
C:\Users\Joan\AppData\Local\temp\msvcrt.dll
C:\Users\Joan\AppData\Local\temp\nsi.dll
C:\Users\Joan\AppData\Local\temp\ntdll.dll
C:\Users\Joan\AppData\Local\temp\ole32.dll
C:\Users\Joan\AppData\Local\temp\rpcrt4.dll
C:\Users\Joan\AppData\Local\temp\rsaenh.dll
C:\Users\Joan\AppData\Local\temp\secur32.dll
C:\Users\Joan\AppData\Local\temp\shell32.dll
C:\Users\Joan\AppData\Local\temp\shlwapi.dll
C:\Users\Joan\AppData\Local\temp\SLC.dll
C:\Users\Joan\AppData\Local\temp\user32.dll
C:\Users\Joan\AppData\Local\temp\userenv.dll
C:\Users\Joan\AppData\Local\temp\usp10.dll
C:\Users\Joan\AppData\Local\temp\ws2_32.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-09 18:13
==================== End Of Log ============================
Combofix logComboFix 13-10-09.01 - Joan 10/09/2013 18:27:36.3.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1256.963.1033.18.2038.953 [GMT -4:00]
Running from: c:\users\Joan\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\519ffdd9ec61e9.89170750.js
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\background.html
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\content.js
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\lsdb.js
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\manifest.json
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpmdkebcojjgflhkkkblajpkpeihmoko\1\sqlite.js
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dpmdkebcojjgflhkkkblajpkpeihmoko_0.localstorage-journal
c:\users\Joan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dpmdkebcojjgflhkkkblajpkpeihmoko_0.localstorage
c:\windows\$NtUninstallKB58393$
.
.
((((((((((((((((((((((((( Files Created from 2013-09-09 to 2013-10-09 )))))))))))))))))))))))))))))))
.
.
2013-10-09 22:41 . 2013-10-09 22:44 -------- d-----w- c:\users\Joan\AppData\Local\temp
2013-10-09 22:41 . 2013-10-09 22:41 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-10-09 22:41 . 2013-10-09 22:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-09 22:41 . 2013-10-09 22:41 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2013-10-09 15:43 . 2013-10-09 15:43 0 ----a-w- c:\windows\system32\REN558E.tmp
2013-10-09 15:43 . 2013-10-09 15:43 0 ----a-w- c:\windows\system32\REN558D.tmp
2013-10-09 02:16 . 2013-10-09 22:08 -------- d-----w- C:\FRST
2013-10-09 01:10 . 2013-10-09 01:10 -------- d-----w- c:\windows\ERUNT
2013-10-08 11:39 . 2013-09-05 05:02 7328304 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D582D07A-E3DB-40F1-87DA-10FCF9FD7CF6}\mpengine.dll
2013-10-08 01:56 . 2013-10-09 01:01 -------- d-----w- C:\AdwCleaner
2013-10-08 01:28 . 2013-10-09 22:08 -------- d-----w- c:\users\Joan\AppData\Local\GC
2013-10-07 20:21 . 2013-10-07 20:21 -------- d-----w- c:\programdata\WindowsSearch
2013-10-04 01:25 . 2013-10-09 22:03 -------- d-----w- c:\users\Joan\AppData\Roaming\iPumper
2013-09-18 22:40 . 2013-09-18 22:40 -------- d-----w- c:\program files\iPod
2013-09-18 22:40 . 2013-09-18 22:42 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-13 21:52 . 2013-09-13 21:52 -------- d-----w- c:\program files\R
2013-09-11 09:54 . 2013-08-08 01:45 2049536 ----a-w- c:\windows\system32\win32k.sys
2013-09-11 09:54 . 2013-07-16 04:35 615936 ----a-w- c:\windows\system32\themeui.dll
2013-09-10 02:45 . 2013-09-10 02:45 -------- d-----w- c:\users\Joan\AppData\Roaming\Absolute Uninstaller
2013-09-10 02:41 . 2013-09-10 02:41 -------- d-----w- c:\program files\PDFBinder
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-09 08:44 . 2012-10-25 22:23 25696 ----a-w- c:\windows\system32\drivers\klmouflt.sys
2013-10-09 08:44 . 2012-10-25 22:23 25696 ----a-w- c:\windows\system32\drivers\klkbdflt.sys
2013-10-09 08:44 . 2012-06-19 22:28 135776 ----a-w- c:\windows\system32\drivers\kl1.sys
2013-10-09 07:44 . 2012-04-08 16:00 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-10-09 07:44 . 2011-11-27 08:36 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-07 08:22 . 2012-03-17 23:42 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-08-02 02:48 . 2013-08-27 17:16 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-07-17 19:41 . 2013-08-14 08:12 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-12 21:33 . 2013-10-01 02:08 124344 ----a-w- c:\program files\mozilla firefox\plugins\CCMSDK.dll
2010-10-12 23:15 . 2013-10-01 02:08 13240 ----a-w- c:\program files\mozilla firefox\plugins\cgpcfg.dll
2010-10-12 21:37 . 2013-10-01 02:08 70592 ----a-w- c:\program files\mozilla firefox\plugins\CgpCore.dll
2010-10-12 21:35 . 2013-10-01 02:08 91576 ----a-w- c:\program files\mozilla firefox\plugins\confmgr.dll
2010-10-12 21:34 . 2013-10-01 02:08 22464 ----a-w- c:\program files\mozilla firefox\plugins\ctxlogging.dll
2010-10-12 21:32 . 2013-10-01 02:08 255416 ----a-w- c:\program files\mozilla firefox\plugins\ctxmui.dll
2010-10-12 21:35 . 2013-10-01 02:08 31672 ----a-w- c:\program files\mozilla firefox\plugins\icafile.dll
2010-10-12 21:34 . 2013-10-01 02:08 40384 ----a-w- c:\program files\mozilla firefox\plugins\icalogon.dll
2010-07-14 17:42 . 2013-10-01 02:08 898480 ----a-w- c:\program files\mozilla firefox\plugins\sslsdk_b.dll
2010-10-12 21:37 . 2013-10-01 02:08 24000 ----a-w- c:\program files\mozilla firefox\plugins\TcpPServ.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AOLOverlayIcon]
@="{AB0C8BE3-041C-47d6-8195-E089D32B38DD}"
[HKEY_CLASSES_ROOT\CLSID\{AB0C8BE3-041C-47d6-8195-E089D32B38DD}]
2007-10-05 17:54 303104 ----a-w- c:\ddi\OverIcon.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2012-02-23 6591800]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-06-03 19603048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2007-09-01 4669440]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-12 141848]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2013-10-09 356128]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" [2010-10-12 304568]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2007-08-15 04:05 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
2007-06-08 12:35 118784 ----a-w- c:\program files\Apoint\Apoint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Domino]
2006-07-04 19:16 49152 ----a-w- c:\windows\Domino.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\googletalk]
2007-01-01 21:22 3739648 ----a-w- c:\users\Joan\AppData\Roaming\Google\Google Talk\googletalk.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VMSnap3]
2006-07-18 21:15 49152 ----a-w- c:\windows\vmsnap3.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ApplePhotoStreams"=c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
"iCloudServices"=c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe
"Amazon Cloud Drive"=c:\users\Joan\AppData\Local\Amazon\Cloud Drive\AmazonCloudDrive.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"VWLASU"="c:\program files\Sony\VAIO PC Wireless LAN Wizard\AutoLaunchWLASU.exe"
"Persistence"=c:\windows\system32\igfxpers.exe
"VAIO Center Access Bar"="c:\program files\sony\VAIO Center Access Bar\VCAB.exe" 1
"VAIORegistration"="c:\program files\Sony\First Experience\WelcomeLauncher.exe"
"ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" /startup
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"DivXMediaServer"=c:\program files\DivX\DivX Media Server\DivXMediaServer.exe
"VAIO Help and Support Demo"="c:\program files\Sony\VAIO Help and Support Demo\LaunchVHSD.exe"
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"VAIOSurvey"="c:\program files\Sony\VAIO Survey\Vista VAIO Survey.exe"
"Athan"="c:\program files\Athan\Athan.exe"
"DivXMediaServer"="c:\program files\DivX\DivX Media Server\DivXMediaServer.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
NecUsb3Sevic REG_MULTI_SZ NecUsb3
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
NETSVCS REQUIRES REPAIRS - current entries shownAeLookupSvc
UxTuneUp
wercplsupport
Themes
CertPropSvc
SCPolicySvc
lanmanserver
gpsvc
IKEEXT
AudioSrv
FastUserSwitchingCompatibility
Ias
Irmon
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
Rasman
Remoteaccess
SENS
Sharedaccess
SRService
uiusys
vmm
BcmSqlStartupSvc
DCamUSBSQTECH
KLOGNT
aha154x
netrcacm
smartscaps
de_serv
abp480n5
bufserv
ofcpfwsvc
nv4
zpnodecollector
lxcr_device
tdrpman174
OEM02Dev
BCMModem
hotspotshieldservice
serialkeys
cisvc
vusbbus
perc2
awlegacy
aec
cdudf_xp
tcpipBM
pav_security
WscNetDr
stcagent
lbtserv
SE2Cmgmt
procmon10
akshhl
s116unic
smapint
sisperf
SGHIDI
mstdc
USIUDF
EACSvrMngr
pfmodnt
PSDFilter
naveng
z800mgmt
cnxtdiag
As6frin
hnmsvc
UWProSys
smcirda
rtl8029
mldserv
NWSAP
merakpop3
ftdisk
oracle_load_balancer_60_client-forms6ip9
steamdvr
websenselogserver
cwafreportscheduler
wanatw
NIPALK
USBDongle
mrobeservice
MRESP50
KMW_USB
Tapisrv
Wmi
WmdmPmSp
TermService
wuauserv
BITS
ShellHWDetection
LogonHours
PCAudit
helpsvc
uploadmgr
iphlpsvc
seclogon
AppInfo
msiscsi
MMCSS
ProfSvc
EapHost
winmgmt
schedule
SessionEnv
browser
hkmsvc
.
Rebuilding ... You need to reboot your machine for this to take effect.
.
AppMgmt
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-05 05:14 1185744 ----a-w- c:\program files\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-10-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-08 07:44]
.
2013-10-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-27 04:32]
.
2013-10-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-05-27 04:32]
.
2013-10-09 c:\windows\Tasks\WpsUpdateTask_Joan.job
- c:\program files\Kingsoft\Kingsoft Office\wtoolex\wpsupdate.exe [2013-06-03 16:00]
.
.
------- Supplementary Scan -------
.
uStart Page =
https://www.google.com/uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com
Trusted Zone: umassmemorial.org\umassvdi
TCP: DhcpNameServer = 216.195.0.131 216.195.0.226 216.195.0.227
DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} - hxxps://mrmcweb.org/+CSCOL+/csvrloader32.cab
DPF: {B8E73359-3422-4384-8D27-4EA1B4C01232} - hxxps://mrmcweb.org/+CSCOL+/cscopf.cab
FF - ProfilePath - c:\users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\5dwvji7k.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - prefs.js: keyword.URL - hxxp://www.arccosine.com/search.php?q=
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-msnmsgr - c:\program files\Windows Live\Messenger\msnmsgr.exe
MSConfigStartUp-Zune Launcher - c:\program files\Zune\ZuneLauncher.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2013-10-09 18:43
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\internet explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{326E768D-4182-46FD-9C16-1449A49795F4}"=hex:51,66,7a,6c,4c,1d,38,12,e3,75,7d,
36,b0,0f,93,03,e3,00,57,09,a1,c9,d1,e0
"{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}"=hex:51,66,7a,6c,4c,1d,38,12,7c,f0,b1,
38,5c,21,3d,0e,d9,78,0d,25,e1,c9,8c,d4
"{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96,
76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47,
2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85
.
[HKEY_USERS\.Default\Software\Microsoft\internet explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:dd,f8,11,27,d8,ff,cc,01
.
[HKEY_USERS\.Default\Software\Microsoft\internet explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,2c,a4,2f,96,0e,83,59,4b,80,f7,3c,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,2c,a4,2f,96,0e,83,59,4b,80,f7,3c,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(6828)
c:\ddi\overicon.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\DisplayLink Core Software\DisplayLinkManager.exe
c:\program files\DisplayLink Core Software\DisplayLinkUserAgent.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Juniper Networks\Common Files\dsNcService.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files\Sony\Network Utility\NSUService.exe
c:\windows\system32\PSIService.exe
c:\program files\Sony\VAIO Care\VCSpt.exe
c:\program files\TeamViewer\Version8\TeamViewer_Service.exe
c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
c:\program files\Sony\VAIO Event Service\VESMgr.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\System32\WUDFHost.exe
c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
c:\program files\Sony\VAIO Event Service\VESMgrSub.exe
c:\windows\system32\igfxext.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\system32\conime.exe
c:\program files\TeamViewer\Version8\TeamViewer.exe
c:\program files\TeamViewer\Version8\tv_w32.exe
c:\program files\Sony\VAIO Power Management\SPMgr.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Completion time: 2013-10-09 18:51:52 - machine was rebooted
ComboFix-quarantined-files.txt 2013-10-09 22:51
.
Pre-Run: 56,135,983,104 bytes free
Post-Run: 56,514,582,528 bytes free
.
- - End Of File - - 61B1B1DE004ABFB0FD20FEA1651EFAFA
5C616939100B85E558DA92B899A0FC36
TDSSkiller log 18:54:37.0720 6360 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:54:38.0211 6360 ============================================================
18:54:38.0211 6360 Current date / time: 2013/10/09 18:54:38.0211
18:54:38.0211 6360 SystemInfo:
18:54:38.0211 6360
18:54:38.0211 6360 OS Version: 6.0.6002 ServicePack: 2.0
18:54:38.0211 6360 Product type: Workstation
18:54:38.0211 6360 ComputerName: JOAN-PC
18:54:38.0211 6360 UserName: Joan
18:54:38.0211 6360 Windows directory: C:\Windows
18:54:38.0211 6360 System windows directory: C:\Windows
18:54:38.0211 6360 Processor architecture: Intel x86
18:54:38.0211 6360 Number of processors: 2
18:54:38.0211 6360 Page size: 0x1000
18:54:38.0211 6360 Boot type: Normal boot
18:54:38.0211 6360 ============================================================
18:54:39.0404 6360 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:54:39.0431 6360 ============================================================
18:54:39.0431 6360 \Device\Harddisk0\DR0:
18:54:39.0432 6360 MBR partitions:
18:54:39.0432 6360 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xFD7800, BlocksNum 0x1031EFF8
18:54:39.0432 6360 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x112F6800, BlocksNum 0x61A7800
18:54:39.0432 6360 ============================================================
18:54:39.0578 6360 C: <-> \Device\Harddisk0\DR0\Partition1
18:54:39.0659 6360 F: <-> \Device\Harddisk0\DR0\Partition2
18:54:39.0659 6360 ============================================================
18:54:39.0659 6360 Initialize success
18:54:39.0659 6360 ============================================================
18:54:57.0236 6924 ============================================================
18:54:57.0236 6924 Scan started
18:54:57.0236 6924 Mode: Manual;
18:54:57.0236 6924 ============================================================
18:55:02.0475 6924 ================ Scan system memory ========================
18:55:02.0475 6924 System memory - ok
18:55:02.0476 6924 ================ Scan services =============================
18:55:02.0703 6924 abp480n5 - ok
18:55:02.0791 6924 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
18:55:02.0795 6924 ACPI - ok
18:55:02.0919 6924 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:55:02.0921 6924 AdobeARMservice - ok
18:55:03.0159 6924 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:55:03.0163 6924 AdobeFlashPlayerUpdateSvc - ok
18:55:03.0336 6924 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:55:03.0344 6924 adp94xx - ok
18:55:03.0467 6924 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:55:03.0473 6924 adpahci - ok
18:55:03.0527 6924 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
18:55:03.0530 6924 adpu160m - ok
18:55:03.0563 6924 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:55:03.0567 6924 adpu320 - ok
18:55:03.0642 6924 aec - ok
18:55:03.0701 6924 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:55:03.0702 6924 AeLookupSvc - ok
18:55:03.0893 6924 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
18:55:03.0893 6924 AFD - ok
18:55:03.0956 6924 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:55:03.0956 6924 agp440 - ok
18:55:04.0018 6924 aha154x - ok
18:55:04.0080 6924 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
18:55:04.0096 6924 aic78xx - ok
18:55:04.0096 6924 akshhl - ok
18:55:04.0143 6924 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
18:55:04.0143 6924 ALG - ok
18:55:04.0190 6924 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
18:55:04.0190 6924 aliide - ok
18:55:04.0252 6924 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:55:04.0252 6924 amdagp - ok
18:55:04.0283 6924 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
18:55:04.0283 6924 amdide - ok
18:55:04.0377 6924 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
18:55:04.0377 6924 AmdK7 - ok
18:55:04.0486 6924 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:55:04.0486 6924 AmdK8 - ok
18:55:04.0580 6924 [ 18BFF317BDB10C64A35E1CA85F1EC051 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
18:55:04.0580 6924 ApfiltrService - ok
18:55:04.0736 6924 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
18:55:04.0736 6924 Appinfo - ok
18:55:04.0923 6924 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:55:04.0923 6924 Apple Mobile Device - ok
18:55:04.0985 6924 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
18:55:05.0001 6924 arc - ok
18:55:05.0126 6924 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:55:05.0126 6924 arcsas - ok
18:55:05.0157 6924 As6frin - ok
18:55:05.0219 6924 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:55:05.0235 6924 AsyncMac - ok
18:55:05.0282 6924 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
18:55:05.0282 6924 atapi - ok
18:55:05.0406 6924 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:55:05.0422 6924 AudioEndpointBuilder - ok
18:55:05.0422 6924 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:55:05.0422 6924 Audiosrv - ok
18:55:05.0531 6924 AVP - ok
18:55:05.0547 6924 awlegacy - ok
18:55:05.0578 6924 BCMModem - ok
18:55:05.0625 6924 BcmSqlStartupSvc - ok
18:55:05.0672 6924 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
18:55:05.0687 6924 Beep - ok
18:55:05.0890 6924 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
18:55:05.0906 6924 BFE - ok
18:55:06.0077 6924 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
18:55:06.0108 6924 BITS - ok
18:55:06.0171 6924 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
18:55:06.0171 6924 blbdrive - ok
18:55:06.0280 6924 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:55:06.0296 6924 Bonjour Service - ok
18:55:06.0358 6924 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:55:06.0358 6924 bowser - ok
18:55:06.0452 6924 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
18:55:06.0452 6924 BrFiltLo - ok
18:55:06.0498 6924 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
18:55:06.0498 6924 BrFiltUp - ok
18:55:06.0576 6924 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
18:55:06.0576 6924 Browser - ok
18:55:06.0670 6924 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
18:55:06.0670 6924 Brserid - ok
18:55:06.0732 6924 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
18:55:06.0732 6924 BrSerWdm - ok
18:55:06.0779 6924 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
18:55:06.0779 6924 BrUsbMdm - ok
18:55:06.0904 6924 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
18:55:06.0966 6924 BrUsbSer - ok
18:55:07.0107 6924 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:55:07.0107 6924 BTHMODEM - ok
18:55:07.0185 6924 bufserv - ok
18:55:07.0216 6924 catchme - ok
18:55:07.0263 6924 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:55:07.0263 6924 cdfs - ok
18:55:07.0341 6924 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:55:07.0341 6924 cdrom - ok
18:55:07.0356 6924 cdudf_xp - ok
18:55:07.0512 6924 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
18:55:07.0512 6924 CertPropSvc - ok
18:55:07.0544 6924 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
18:55:07.0544 6924 circlass - ok
18:55:07.0559 6924 cisvc - ok
18:55:07.0606 6924 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
18:55:07.0606 6924 CLFS - ok
18:55:07.0731 6924 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:55:07.0731 6924 clr_optimization_v2.0.50727_32 - ok
18:55:07.0824 6924 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:55:07.0871 6924 clr_optimization_v4.0.30319_32 - ok
18:55:07.0949 6924 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:55:07.0949 6924 CmBatt - ok
18:55:07.0980 6924 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:55:07.0980 6924 cmdide - ok
18:55:07.0996 6924 cnxtdiag - ok
18:55:08.0027 6924 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:55:08.0027 6924 Compbatt - ok
18:55:08.0027 6924 COMSysApp - ok
18:55:08.0043 6924 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:55:08.0043 6924 crcdisk - ok
18:55:08.0058 6924 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
18:55:08.0058 6924 Crusoe - ok
18:55:08.0214 6924 [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:55:08.0214 6924 CryptSvc - ok
18:55:08.0339 6924 [ CB6FF7012BB5D59D7C12350DB795CE1F ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
18:55:08.0355 6924 ctxusbm - ok
18:55:08.0433 6924 cwafreportscheduler - ok
18:55:08.0448 6924 DCamUSBSQTECH - ok
18:55:08.0604 6924 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:55:08.0620 6924 DcomLaunch - ok
18:55:08.0636 6924 de_serv - ok
18:55:08.0667 6924 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:55:08.0667 6924 DfsC - ok
18:55:08.0932 6924 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
18:55:09.0166 6924 DFSR - ok
18:55:09.0291 6924 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
18:55:09.0291 6924 Dhcp - ok
18:55:09.0462 6924 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
18:55:09.0478 6924 disk - ok
18:55:09.0774 6924 [ 9F07FFACD9BC7620369118410126FCEF ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
18:55:10.0008 6924 DisplayLinkService - ok
18:55:10.0040 6924 [ A978A92393A57D99817ACAF5718FB3E0 ] DisplayLinkUsbPort C:\Windows\system32\DRIVERS\DisplayLinkUsbPort_5.3.24903.0.sys
18:55:10.0040 6924 DisplayLinkUsbPort - ok
18:55:10.0086 6924 dlkmd - ok
18:55:10.0118 6924 dlkmdldr - ok
18:55:10.0149 6924 [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys
18:55:10.0149 6924 DMICall - ok
18:55:10.0180 6924 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:55:10.0196 6924 Dnscache - ok
18:55:10.0258 6924 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:55:10.0258 6924 dot3svc - ok
18:55:10.0289 6924 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
18:55:10.0305 6924 DPS - ok
18:55:10.0352 6924 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:55:10.0352 6924 drmkaud - ok
18:55:10.0398 6924 [ B2C3F71B86E25C3DF78339DDB40A7562 ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
18:55:10.0398 6924 dsNcAdpt - ok
18:55:10.0476 6924 [ 824C188936FDC1B20FB32192B57CDEBA ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
18:55:10.0476 6924 dsNcService - ok
18:55:10.0570 6924 [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:55:10.0570 6924 DXGKrnl - ok
18:55:10.0648 6924 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
18:55:10.0648 6924 E1G60 - ok
18:55:10.0648 6924 EACSvrMngr - ok
18:55:10.0710 6924 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
18:55:10.0726 6924 EapHost - ok
18:55:10.0788 6924 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
18:55:10.0788 6924 Ecache - ok
18:55:10.0866 6924 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:55:10.0866 6924 ehRecvr - ok
18:55:10.0898 6924 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
18:55:10.0898 6924 ehSched - ok
18:55:10.0929 6924 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
18:55:10.0929 6924 ehstart - ok
18:55:11.0007 6924 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:55:11.0007 6924 elxstor - ok
18:55:11.0116 6924 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
18:55:11.0116 6924 EMDMgmt - ok
18:55:11.0178 6924 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:55:11.0210 6924 ErrDev - ok
18:55:11.0303 6924 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
18:55:11.0303 6924 EventSystem - ok
18:55:11.0366 6924 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
18:55:11.0366 6924 exfat - ok
18:55:11.0412 6924 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:55:11.0428 6924 fastfat - ok
18:55:11.0475 6924 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:55:11.0475 6924 fdc - ok
18:55:11.0568 6924 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
18:55:11.0568 6924 fdPHost - ok
18:55:11.0600 6924 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
18:55:11.0600 6924 FDResPub - ok
18:55:11.0631 6924 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:55:11.0646 6924 FileInfo - ok
18:55:11.0662 6924 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:55:11.0662 6924 Filetrace - ok
18:55:11.0693 6924 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:55:11.0693 6924 flpydisk - ok
18:55:11.0756 6924 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:55:11.0756 6924 FltMgr - ok
18:55:11.0927 6924 [ 119ACA7CADCA75BEA6B38E999443BAA6 ] FontCache C:\Windows\system32\FntCache.dll
18:55:11.0927 6924 FontCache - ok
18:55:12.0036 6924 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:55:12.0036 6924 FontCache3.0.0.0 - ok
18:55:12.0114 6924 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:55:12.0114 6924 Fs_Rec - ok
18:55:12.0114 6924 ftdisk - ok
18:55:12.0161 6924 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:55:12.0161 6924 gagp30kx - ok
18:55:12.0192 6924 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:55:12.0192 6924 GEARAspiWDM - ok
18:55:12.0270 6924 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
18:55:12.0270 6924 gpsvc - ok
18:55:12.0348 6924 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:55:12.0348 6924 gupdate - ok
18:55:12.0364 6924 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:55:12.0380 6924 gupdatem - ok
18:55:12.0489 6924 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:55:12.0504 6924 HdAudAddService - ok
18:55:12.0551 6924 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:55:12.0567 6924 HDAudBus - ok
18:55:12.0582 6924 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:55:12.0598 6924 HidBth - ok
18:55:12.0629 6924 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
18:55:12.0629 6924 HidIr - ok
18:55:12.0676 6924 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
18:55:12.0676 6924 hidserv - ok
18:55:12.0723 6924 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:55:12.0723 6924 HidUsb - ok
18:55:12.0770 6924 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:55:12.0770 6924 hkmsvc - ok
18:55:12.0801 6924 hnmsvc - ok
18:55:12.0816 6924 hotspotshieldservice - ok
18:55:12.0863 6924 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
18:55:12.0863 6924 HpCISSs - ok
18:55:12.0941 6924 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:55:12.0941 6924 HSFHWAZL - ok
18:55:13.0035 6924 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:55:13.0050 6924 HSF_DPV - ok
18:55:13.0113 6924 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:55:13.0128 6924 HSXHWAZL - ok
18:55:13.0175 6924 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:55:13.0175 6924 HTTP - ok
18:55:13.0222 6924 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
18:55:13.0222 6924 i2omp - ok
18:55:13.0300 6924 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:55:13.0300 6924 i8042prt - ok
18:55:13.0472 6924 [ 3E42C4691AAD4B1E8D0466F9CBF05CBE ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:55:13.0487 6924 IAANTMON - ok
18:55:13.0596 6924 [ 707C1692214B1C290271067197F075F6 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:55:13.0596 6924 iaStor - ok
18:55:13.0628 6924 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
18:55:13.0628 6924 iaStorV - ok
18:55:13.0690 6924 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
18:55:13.0690 6924 IDriverT - ok
18:55:13.0862 6924 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:55:13.0877 6924 idsvc - ok
18:55:14.0064 6924 [ 9378D57E2B96C0A185D844770AD49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
18:55:14.0158 6924 igfx - ok
18:55:14.0205 6924 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:55:14.0205 6924 iirsp - ok
18:55:14.0267 6924 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:55:14.0283 6924 IKEEXT - ok
18:55:14.0376 6924 [ 6F62BAFE6150F3952F877051C65786FE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:55:14.0408 6924 IntcAzAudAddService - ok
18:55:14.0439 6924 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
18:55:14.0439 6924 intelide - ok
18:55:14.0486 6924 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:55:14.0486 6924 intelppm - ok
18:55:14.0532 6924 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:55:14.0532 6924 IPBusEnum - ok
18:55:14.0548 6924 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:55:14.0564 6924 IpFilterDriver - ok
18:55:14.0626 6924 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:55:14.0626 6924 iphlpsvc - ok
18:55:14.0642 6924 IpInIp - ok
18:55:14.0688 6924 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
18:55:14.0688 6924 IPMIDRV - ok
18:55:14.0704 6924 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
18:55:14.0720 6924 IPNAT - ok
18:55:14.0766 6924 [ C00149A7027081539A66DC5A46695EAD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:55:14.0782 6924 iPod Service - ok
18:55:14.0798 6924 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:55:14.0798 6924 IRENUM - ok
18:55:14.0829 6924 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:55:14.0829 6924 isapnp - ok
18:55:14.0876 6924 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:55:14.0891 6924 iScsiPrt - ok
18:55:14.0907 6924 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
18:55:14.0907 6924 iteatapi - ok
18:55:14.0938 6924 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
18:55:14.0938 6924 iteraid - ok
18:55:14.0969 6924 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
18:55:14.0969 6924 IviRegMgr - ok
18:55:15.0000 6924 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:55:15.0000 6924 kbdclass - ok
18:55:15.0032 6924 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:55:15.0032 6924 kbdhid - ok
18:55:15.0047 6924 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
18:55:15.0047 6924 KeyIso - ok
18:55:15.0110 6924 [ 2AD446E7A867C48099227415DD66FB34 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
18:55:15.0110 6924 KL1 - ok
18:55:15.0172 6924 [ 8C547EB6709BF41E0625EFCDF13C63CE ] KLIF C:\Windows\system32\DRIVERS\klif.sys
18:55:15.0188 6924 KLIF - ok
18:55:15.0219 6924 [ AF127FE7DD5ED2BBC9049FD8A00DEFC2 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
18:55:15.0219 6924 KLIM6 - ok
18:55:15.0266 6924 [ 249A266AF74ADE44AE8424E78D145E09 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
18:55:15.0266 6924 klkbdflt - ok
18:55:15.0297 6924 [ 035724BA6D5676B76FD3AFB66AB4F1E3 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
18:55:15.0297 6924 klmouflt - ok
18:55:15.0312 6924 KLOGNT - ok
18:55:15.0375 6924 [ 8FD802F86D4AB3FB329B8E51517BFF2A ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
18:55:15.0375 6924 kltdi - ok
18:55:15.0437 6924 [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A ] KMWDFILTER C:\Windows\system32\DRIVERS\KMWDFILTER.sys
18:55:15.0437 6924 KMWDFILTER - ok
18:55:15.0437 6924 KMW_USB - ok
18:55:15.0484 6924 [ 8F932DF10408BCABA2FCF6163C843F8E ] kneps C:\Windows\system32\DRIVERS\kneps.sys
18:55:15.0484 6924 kneps - ok
18:55:15.0593 6924 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:55:15.0609 6924 KSecDD - ok
18:55:15.0796 6924 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
18:55:15.0796 6924 KtmRm - ok
18:55:15.0843 6924 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
18:55:15.0843 6924 LanmanServer - ok
18:55:16.0014 6924 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:55:16.0030 6924 LanmanWorkstation - ok
18:55:16.0061 6924 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:55:16.0077 6924 lltdio - ok
18:55:16.0108 6924 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:55:16.0108 6924 lltdsvc - ok
18:55:16.0139 6924 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:55:16.0139 6924 lmhosts - ok
18:55:16.0170 6924 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:55:16.0170 6924 LSI_FC - ok
18:55:16.0202 6924 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:55:16.0202 6924 LSI_SAS - ok
18:55:16.0295 6924 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:55:16.0295 6924 LSI_SCSI - ok
18:55:16.0311 6924 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
18:55:16.0311 6924 luafv - ok
18:55:16.0373 6924 lxcr_device - ok
18:55:16.0404 6924 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2svc.dll
18:55:16.0404 6924 Mcx2Svc - ok
18:55:16.0451 6924 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:55:16.0451 6924 mdmxsdk - ok
18:55:16.0498 6924 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
18:55:16.0498 6924 megasas - ok
18:55:16.0560 6924 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
18:55:16.0576 6924 MegaSR - ok
18:55:16.0607 6924 merakpop3 - ok
18:55:16.0701 6924 Microsoft SharePoint Workspace Audit Service - ok
18:55:16.0701 6924 mldserv - ok
18:55:16.0763 6924 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
18:55:16.0763 6924 MMCSS - ok
18:55:16.0794 6924 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
18:55:16.0794 6924 Modem - ok
18:55:16.0857 6924 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:55:16.0857 6924 monitor - ok
18:55:16.0888 6924 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:55:16.0888 6924 mouclass - ok
18:55:16.0904 6924 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:55:16.0904 6924 mouhid - ok
18:55:16.0919 6924 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
18:55:16.0919 6924 MountMgr - ok
18:55:17.0028 6924 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:55:17.0028 6924 MozillaMaintenance - ok
18:55:17.0138 6924 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
18:55:17.0138 6924 mpio - ok
18:55:17.0169 6924 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:55:17.0169 6924 mpsdrv - ok
18:55:17.0294 6924 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
18:55:17.0309 6924 MpsSvc - ok
18:55:17.0372 6924 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
18:55:17.0372 6924 Mraid35x - ok
18:55:17.0372 6924 MRESP50 - ok
18:55:17.0387 6924 mrobeservice - ok
18:55:17.0418 6924 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:55:17.0418 6924 MRxDAV - ok
18:55:17.0496 6924 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:55:17.0496 6924 mrxsmb - ok
18:55:17.0621 6924 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:55:17.0621 6924 mrxsmb10 - ok
18:55:17.0637 6924 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:55:17.0637 6924 mrxsmb20 - ok
18:55:17.0684 6924 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
18:55:17.0684 6924 msahci - ok
18:55:17.0840 6924 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
18:55:17.0840 6924 MSCSPTISRV - ok
18:55:17.0855 6924 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:55:17.0871 6924 msdsm - ok
18:55:17.0902 6924 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
18:55:17.0918 6924 MSDTC - ok
18:55:17.0949 6924 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:55:17.0949 6924 Msfs - ok
18:55:17.0980 6924 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:55:17.0996 6924 msisadrv - ok
18:55:18.0027 6924 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:55:18.0042 6924 MSiSCSI - ok
18:55:18.0042 6924 msiserver - ok
18:55:18.0058 6924 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:55:18.0058 6924 MSKSSRV - ok
18:55:18.0089 6924 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:55:18.0089 6924 MSPCLOCK - ok
18:55:18.0105 6924 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:55:18.0105 6924 MSPQM - ok
18:55:18.0152 6924 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:55:18.0152 6924 MsRPC - ok
18:55:18.0198 6924 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:55:18.0198 6924 mssmbios - ok
18:55:18.0198 6924 mstdc - ok
18:55:18.0261 6924 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:55:18.0261 6924 MSTEE - ok
18:55:18.0292 6924 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
18:55:18.0292 6924 Mup - ok
18:55:18.0339 6924 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
18:55:18.0339 6924 napagent - ok
18:55:18.0401 6924 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:55:18.0401 6924 NativeWifiP - ok
18:55:18.0401 6924 naveng - ok
18:55:18.0464 6924 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:55:18.0464 6924 NDIS - ok
18:55:18.0510 6924 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:55:18.0510 6924 NdisTapi - ok
18:55:18.0526 6924 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:55:18.0526 6924 Ndisuio - ok
18:55:18.0526 6924 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:55:18.0526 6924 NdisWan - ok
18:55:18.0557 6924 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:55:18.0557 6924 NDProxy - ok
18:55:18.0557 6924 NecUsb3 - ok
18:55:18.0573 6924 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:55:18.0573 6924 NetBIOS - ok
18:55:18.0588 6924 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
18:55:18.0604 6924 netbt - ok
18:55:18.0620 6924 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
18:55:18.0620 6924 Netlogon - ok
18:55:18.0651 6924 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
18:55:18.0666 6924 Netman - ok
18:55:18.0698 6924 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
18:55:18.0698 6924 netprofm - ok
18:55:18.0698 6924 netrcacm - ok
18:55:18.0744 6924 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:55:18.0744 6924 NetTcpPortSharing - ok
18:55:18.0854 6924 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
18:55:18.0900 6924 NETw3v32 - ok
18:55:19.0056 6924 [ 25ACCCFC33DD448B9D3037C5E439E830 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
18:55:19.0088 6924 NETw4v32 - ok
18:55:19.0119 6924 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:55:19.0119 6924 nfrd960 - ok
18:55:19.0119 6924 NIPALK - ok
18:55:19.0166 6924 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:55:19.0166 6924 NlaSvc - ok
18:55:19.0197 6924 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:55:19.0197 6924 Npfs - ok
18:55:19.0212 6924 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
18:55:19.0212 6924 nsi - ok
18:55:19.0244 6924 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:55:19.0244 6924 nsiproxy - ok
18:55:19.0290 6924 [ 42CE5E77721E60F39858FF2A35450342 ] NSUService C:\Program Files\Sony\Network Utility\NSUService.exe
18:55:19.0290 6924 NSUService - ok
18:55:19.0446 6924 [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:55:19.0478 6924 Ntfs - ok
18:55:19.0540 6924 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
18:55:19.0540 6924 ntrigdigi - ok
18:55:19.0571 6924 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
18:55:19.0571 6924 Null - ok
18:55:19.0587 6924 nv4 - ok
18:55:19.0618 6924 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:55:19.0618 6924 nvraid - ok
18:55:19.0649 6924 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:55:19.0649 6924 nvstor - ok
18:55:19.0680 6924 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:55:19.0680 6924 nv_agp - ok
18:55:19.0696 6924 NwlnkFlt - ok
18:55:19.0712 6924 NwlnkFwd - ok
18:55:19.0727 6924 NWSAP - ok
18:55:19.0743 6924 OEM02Dev - ok
18:55:19.0758 6924 ofcpfwsvc - ok
18:55:19.0805 6924 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:55:19.0805 6924 ohci1394 - ok
18:55:19.0805 6924 oracle_load_balancer_60_client-forms6ip9 - ok
18:55:19.0883 6924 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:55:19.0883 6924 ose - ok
18:55:20.0086 6924 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:55:20.0226 6924 osppsvc - ok
18:55:20.0523 6924 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
18:55:20.0523 6924 p2pimsvc - ok
18:55:20.0538 6924 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
18:55:20.0554 6924 p2psvc - ok
18:55:20.0570 6924 [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
18:55:20.0585 6924 PACSPTISVR - ok
18:55:20.0616 6924 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
18:55:20.0616 6924 Parport - ok
18:55:20.0648 6924 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:55:20.0648 6924 partmgr - ok
18:55:20.0679 6924 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
18:55:20.0679 6924 Parvdm - ok
18:55:20.0679 6924 pav_security - ok
18:55:20.0710 6924 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
18:55:20.0710 6924 PcaSvc - ok
18:55:20.0726 6924 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
18:55:20.0726 6924 pci - ok
18:55:20.0741 6924 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\DRIVERS\pciide.sys
18:55:20.0741 6924 pciide - ok
18:55:20.0772 6924 [ 3BB2244F343B610C29C98035504C9B75 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:55:20.0772 6924 pcmcia - ok
18:55:20.0835 6924 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:55:20.0850 6924 PEAUTH - ok
18:55:20.0850 6924 perc2 - ok
18:55:20.0882 6924 pfmodnt - ok
18:55:21.0084 6924 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
18:55:21.0147 6924 pla - ok
18:55:21.0162 6924 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:55:21.0178 6924 PlugPlay - ok
18:55:21.0225 6924 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
18:55:21.0240 6924 PNRPAutoReg - ok
18:55:21.0240 6924 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
18:55:21.0256 6924 PNRPsvc - ok
18:55:21.0396 6924 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:55:21.0396 6924 PolicyAgent - ok
18:55:21.0428 6924 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:55:21.0428 6924 PptpMiniport - ok
18:55:21.0459 6924 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
18:55:21.0459 6924 Processor - ok
18:55:21.0490 6924 ProcObsrv - ok
18:55:21.0521 6924 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
18:55:21.0521 6924 ProfSvc - ok
18:55:21.0552 6924 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:55:21.0552 6924 ProtectedStorage - ok
18:55:21.0599 6924 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
18:55:21.0599 6924 ProtexisLicensing - ok
18:55:21.0646 6924 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
18:55:21.0646 6924 PSched - ok
18:55:21.0646 6924 PSDFilter - ok
18:55:21.0662 6924 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
18:55:21.0677 6924 PxHelp20 - ok
18:55:21.0771 6924 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:55:21.0802 6924 ql2300 - ok
18:55:21.0818 6924 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:55:21.0818 6924 ql40xx - ok
18:55:21.0864 6924 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
18:55:21.0864 6924 QWAVE - ok
18:55:21.0880 6924 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:55:21.0880 6924 QWAVEdrv - ok
18:55:21.0911 6924 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:55:21.0911 6924 RasAcd - ok
18:55:21.0927 6924 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
18:55:21.0927 6924 RasAuto - ok
18:55:21.0958 6924 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:55:21.0958 6924 Rasl2tp - ok
18:55:21.0989 6924 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
18:55:22.0005 6924 RasMan - ok
18:55:22.0036 6924 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:55:22.0036 6924 RasPppoe - ok
18:55:22.0036 6924 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:55:22.0036 6924 RasSstp - ok
18:55:22.0083 6924 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:55:22.0098 6924 rdbss - ok
18:55:22.0145 6924 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:55:22.0145 6924 RDPCDD - ok
18:55:22.0161 6924 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
18:55:22.0176 6924 rdpdr - ok
18:55:22.0176 6924 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:55:22.0176 6924 RDPENCDD - ok
18:55:22.0208 6924 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:55:22.0208 6924 RDPWD - ok
18:55:22.0239 6924 [ 001B4278407F4303EFC902A2B16F2453 ] regi C:\Windows\system32\drivers\regi.sys
18:55:22.0239 6924 regi - ok
18:55:22.0286 6924 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:55:22.0286 6924 RemoteAccess - ok
18:55:22.0332 6924 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:55:22.0332 6924 RemoteRegistry - ok
18:55:22.0364 6924 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
18:55:22.0364 6924 RpcLocator - ok
18:55:22.0395 6924 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\System32\rpcss.dll
18:55:22.0410 6924 RpcSs - ok
18:55:22.0457 6924 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:55:22.0457 6924 rspndr - ok
18:55:22.0473 6924 rtl8029 - ok
18:55:22.0488 6924 RTL8192su - ok
18:55:22.0488 6924 s116unic - ok
18:55:22.0520 6924 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
18:55:22.0520 6924 SamSs - ok
18:55:22.0535 6924 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:55:22.0551 6924 sbp2port - ok
18:55:22.0582 6924 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:55:22.0582 6924 SCardSvr - ok
18:55:22.0644 6924 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
18:55:22.0644 6924 Schedule - ok
18:55:22.0691 6924 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:55:22.0691 6924 SCPolicySvc - ok
18:55:22.0707 6924 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:55:22.0707 6924 SDRSVC - ok
18:55:22.0738 6924 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:55:22.0754 6924 secdrv - ok
18:55:22.0800 6924 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
18:55:22.0816 6924 seclogon - ok
18:55:22.0847 6924 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
18:55:22.0847 6924 SENS - ok
18:55:22.0941 6924 [ AC1F2A09B76B57356F906EEDA43CCC2A ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl.sys
18:55:22.0941 6924 Ser2pl - ok
18:55:22.0972 6924 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:55:22.0988 6924 Serenum - ok
18:55:23.0034 6924 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
18:55:23.0050 6924 Serial - ok
18:55:23.0050 6924 serialkeys - ok
18:55:23.0067 6924 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:55:23.0082 6924 sermouse - ok
18:55:23.0113 6924 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
18:55:23.0129 6924 SessionEnv - ok
18:55:23.0145 6924 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
18:55:23.0145 6924 SFEP - ok
18:55:23.0160 6924 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:55:23.0176 6924 sffdisk - ok
18:55:23.0191 6924 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:55:23.0191 6924 sffp_mmc - ok
18:55:23.0223 6924 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:55:23.0223 6924 sffp_sd - ok
18:55:23.0238 6924 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:55:23.0238 6924 sfloppy - ok
18:55:23.0254 6924 SGHIDI - ok
18:55:23.0316 6924 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:55:23.0316 6924 SharedAccess - ok
18:55:23.0347 6924 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:55:23.0347 6924 ShellHWDetection - ok
18:55:23.0394 6924 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:55:23.0394 6924 sisagp - ok
18:55:23.0394 6924 sisperf - ok
18:55:23.0425 6924 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
18:55:23.0425 6924 SiSRaid2 - ok
18:55:23.0441 6924 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:55:23.0441 6924 SiSRaid4 - ok
18:55:23.0535 6924 [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
18:55:23.0535 6924 SkypeUpdate - ok
18:55:24.0112 6924 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
18:55:24.0252 6924 slsvc - ok
18:55:24.0283 6924 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
18:55:24.0299 6924 SLUINotify - ok
18:55:24.0299 6924 smapint - ok
18:55:24.0315 6924 smartscaps - ok
18:55:24.0346 6924 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:55:24.0361 6924 Smb - ok
18:55:24.0361 6924 smcirda - ok
18:55:24.0408 6924 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:55:24.0408 6924 SNMPTRAP - ok
18:55:24.0439 6924 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
18:55:24.0439 6924 spldr - ok
18:55:24.0455 6924 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
18:55:24.0471 6924 Spooler - ok
18:55:24.0502 6924 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys
18:55:24.0517 6924 sptd - ok
18:55:24.0549 6924 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
18:55:24.0549 6924 SPTISRV - ok
18:55:24.0564 6924 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:55:24.0564 6924 srv - ok
18:55:24.0595 6924 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:55:24.0611 6924 srv2 - ok
18:55:24.0658 6924 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:55:24.0658 6924 srvnet - ok
18:55:24.0689 6924 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:55:24.0689 6924 SSDPSRV - ok
18:55:24.0736 6924 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:55:24.0736 6924 SstpSvc - ok
18:55:24.0751 6924 stcagent - ok
18:55:24.0751 6924 steamdvr - ok
18:55:24.0814 6924 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
18:55:24.0829 6924 stisvc - ok
18:55:24.0861 6924 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:55:24.0861 6924 swenum - ok
18:55:24.0892 6924 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
18:55:24.0907 6924 swprv - ok
18:55:24.0939 6924 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
18:55:24.0939 6924 Symc8xx - ok
18:55:24.0970 6924 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
18:55:24.0970 6924 Sym_hi - ok
18:55:24.0985 6924 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
18:55:24.0985 6924 Sym_u3 - ok
18:55:25.0032 6924 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
18:55:25.0048 6924 SysMain - ok
18:55:25.0079 6924 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:55:25.0079 6924 TabletInputService - ok
18:55:25.0110 6924 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:55:25.0126 6924 TapiSrv - ok
18:55:25.0157 6924 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
18:55:25.0157 6924 TBS - ok
18:55:25.0266 6924 [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:55:25.0282 6924 Tcpip - ok
18:55:25.0297 6924 [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
18:55:25.0313 6924 Tcpip6 - ok
18:55:25.0313 6924 tcpipBM - ok
18:55:25.0344 6924 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:55:25.0344 6924 tcpipreg - ok
18:55:25.0375 6924 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:55:25.0375 6924 TDPIPE - ok
18:55:25.0391 6924 tdrpman174 - ok
18:55:25.0407 6924 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:55:25.0407 6924 TDTCP - ok
18:55:25.0453 6924 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:55:25.0453 6924 tdx - ok
18:55:26.0889 6924 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
18:55:27.0606 6924 TeamViewer8 - ok
18:55:27.0637 6924 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:55:27.0637 6924 TermDD - ok
18:55:27.0684 6924 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
18:55:27.0700 6924 TermService - ok
18:55:27.0715 6924 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
18:55:27.0715 6924 Themes - ok
18:55:27.0762 6924 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
18:55:27.0762 6924 THREADORDER - ok
18:55:27.0856 6924 [ 909CD987B54A8179C9AEE874D754721A ] ti21sony C:\Windows\system32\drivers\ti21sony.sys
18:55:27.0871 6924 ti21sony - ok
18:55:27.0903 6924 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
18:55:27.0918 6924 TrkWks - ok
18:55:27.0996 6924 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:55:27.0996 6924 TrustedInstaller - ok
18:55:28.0043 6924 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:55:28.0043 6924 tssecsrv - ok
18:55:28.0152 6924 [ 86CD728FB5F6A409112662E1596D987B ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
18:55:28.0183 6924 TuneUp.UtilitiesSvc - ok
18:55:28.0215 6924 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys
18:55:28.0215 6924 TuneUpUtilitiesDrv - ok
18:55:28.0230 6924 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
18:55:28.0230 6924 tunmp - ok
18:55:28.0261 6924 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:55:28.0261 6924 tunnel - ok
18:55:28.0293 6924 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:55:28.0293 6924 uagp35 - ok
18:55:28.0339 6924 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:55:28.0339 6924 udfs - ok
18:55:28.0386 6924 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:55:28.0386 6924 UI0Detect - ok
18:55:28.0402 6924 uiusys - ok
18:55:28.0417 6924 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:55:28.0417 6924 uliagpkx - ok
18:55:28.0449 6924 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
18:55:28.0449 6924 uliahci - ok
18:55:28.0480 6924 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
18:55:28.0495 6924 UlSata - ok
18:55:28.0511 6924 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
18:55:28.0511 6924 ulsata2 - ok
18:55:28.0542 6924 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:55:28.0542 6924 umbus - ok
18:55:28.0573 6924 [ 88BD96A1BAEED33EE8BDF9499C07A841 ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
18:55:28.0573 6924 UMPass - ok
18:55:28.0605 6924 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
18:55:28.0605 6924 upnphost - ok
18:55:28.0651 6924 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
18:55:28.0651 6924 USBAAPL - ok
18:55:28.0714 6924 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:55:28.0714 6924 usbaudio - ok
18:55:28.0761 6924 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:55:28.0761 6924 usbccgp - ok
18:55:28.0854 6924 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:55:28.0854 6924 usbcir - ok
18:55:28.0870 6924 USBDongle - ok
18:55:28.0917 6924 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:55:28.0917 6924 usbehci - ok
18:55:28.0948 6924 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:55:28.0948 6924 usbhub - ok
18:55:28.0979 6924 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:55:28.0979 6924 usbohci - ok
18:55:29.0010 6924 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:55:29.0010 6924 usbprint - ok
18:55:29.0057 6924 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:55:29.0073 6924 usbscan - ok
18:55:29.0088 6924 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:55:29.0088 6924 USBSTOR - ok
18:55:29.0119 6924 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:55:29.0119 6924 usbuhci - ok
18:55:29.0119 6924 USIUDF - ok
18:55:29.0135 6924 UWProSys - ok
18:55:29.0166 6924 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
18:55:29.0166 6924 UxSms - ok
18:55:29.0213 6924 [ DE2C51E244E543ED4C649052BA66DC0D ] UxTuneUp C:\Windows\System32\uxtuneup.dll
18:55:29.0213 6924 UxTuneUp - ok
18:55:29.0291 6924 [ AFBCD738DF9DE3B6D71AFC704E7F27FB ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
18:55:29.0291 6924 VAIO Entertainment TV Device Arbitration Service - ok
18:55:29.0369 6924 [ 8A9F18ADAD471402236CA931553BF79B ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
18:55:29.0369 6924 VAIO Event Service - ok
18:55:30.0071 6924 [ 4B8F85BFC82B849D52FD4F3F32259DBC ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
18:55:30.0165 6924 VAIOMediaPlatform-IntegratedServer-AppServer - ok
18:55:30.0227 6924 [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:55:30.0227 6924 VAIOMediaPlatform-IntegratedServer-HTTP - ok
18:55:30.0430 6924 [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:55:30.0539 6924 VAIOMediaPlatform-IntegratedServer-UPnP - ok
18:55:30.0586 6924 [ 52D4F568FE7D05AE5026B8717EEB59EB ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
18:55:30.0586 6924 VAIOMediaPlatform-UCLS-AppServer - ok
18:55:30.0617 6924 [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:55:30.0617 6924 VAIOMediaPlatform-UCLS-HTTP - ok
18:55:30.0648 6924 [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:55:30.0648 6924 VAIOMediaPlatform-UCLS-UPnP - ok
18:55:30.0742 6924 [ 6EF45DF2FCC4AE35C715A6C9B5C68B17 ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
18:55:30.0742 6924 VcmIAlzMgr - ok
18:55:30.0835 6924 [ B56CD01F36EEF2967EF18D8DF0E5C285 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
18:55:30.0851 6924 VcmXmlIfHelper - ok
18:55:30.0851 6924 Vcsw - ok
18:55:30.0929 6924 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
18:55:30.0929 6924 vds - ok
18:55:30.0960 6924 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:55:30.0976 6924 vga - ok
18:55:31.0007 6924 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
18:55:31.0007 6924 VgaSave - ok
18:55:31.0023 6924 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:55:31.0038 6924 viaagp - ok
18:55:31.0054 6924 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
18:55:31.0054 6924 ViaC7 - ok
18:55:31.0069 6924 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
18:55:31.0069 6924 viaide - ok
18:55:31.0069 6924 vmm - ok
18:55:31.0101 6924 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:55:31.0101 6924 volmgr - ok
18:55:31.0194 6924 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:55:31.0194 6924 volmgrx - ok
18:55:31.0225 6924 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:55:31.0225 6924 volsnap - ok
18:55:31.0288 6924 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:55:31.0288 6924 vsmraid - ok
18:55:31.0350 6924 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
18:55:31.0366 6924 VSS - ok
18:55:31.0881 6924 [ 416F115DC1003BB624D03E019C3D563D ] VUAgent C:\Program Files\Sony\VAIO Update\VUAgent.exe
18:55:31.0959 6924 VUAgent - ok
18:55:31.0959 6924 vusbbus - ok
18:55:32.0005 6924 [ 212F0BE9ECA72CB56F9C30E4FE1858E2 ] vvftav303 C:\Windows\system32\drivers\vvftav303.sys
18:55:32.0021 6924 vvftav303 - ok
18:55:32.0068 6924 [ 2E785F4F92C4C67CEBB61DD55ED1F6A1 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
18:55:32.0068 6924 VzCdbSvc - ok
18:55:32.0099 6924 [ 2D876CAD8C7FFB08179DFF361FF851E6 ] VzFw C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
18:55:32.0099 6924 VzFw - ok
18:55:32.0130 6924 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
18:55:32.0146 6924 W32Time - ok
18:55:32.0161 6924 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:55:32.0177 6924 WacomPen - ok
18:55:32.0193 6924 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
18:55:32.0193 6924 Wanarp - ok
18:55:32.0193 6924 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:55:32.0193 6924 Wanarpv6 - ok
18:55:32.0208 6924 wanatw - ok
18:55:32.0333 6924 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:55:32.0333 6924 wcncsvc - ok
18:55:32.0411 6924 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:55:32.0427 6924 WcsPlugInService - ok
18:55:32.0458 6924 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
18:55:32.0458 6924 Wd - ok
18:55:32.0505 6924 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:55:32.0520 6924 Wdf01000 - ok
18:55:32.0536 6924 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:55:32.0536 6924 WdiServiceHost - ok
18:55:32.0536 6924 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:55:32.0551 6924 WdiSystemHost - ok
18:55:32.0583 6924 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
18:55:32.0583 6924 WebClient - ok
18:55:32.0598 6924 websenselogserver - ok
18:55:32.0629 6924 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:55:32.0645 6924 Wecsvc - ok
18:55:32.0707 6924 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:55:32.0707 6924 wercplsupport - ok
18:55:32.0739 6924 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
18:55:32.0739 6924 WerSvc - ok
18:55:32.0770 6924 [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
18:55:32.0785 6924 WimFltr - ok
18:55:32.0832 6924 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:55:32.0848 6924 winachsf - ok
18:55:32.0895 6924 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:55:32.0910 6924 WinDefend - ok
18:55:32.0910 6924 WinHttpAutoProxySvc - ok
18:55:33.0004 6924 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:55:33.0004 6924 Winmgmt - ok
18:55:33.0082 6924 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
18:55:33.0113 6924 WinRM - ok
18:55:33.0144 6924 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\winusb.sys
18:55:33.0144 6924 winusb - ok
18:55:33.0191 6924 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:55:33.0191 6924 Wlansvc - ok
18:55:33.0628 6924 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:55:33.0675 6924 wlidsvc - ok
18:55:33.0721 6924 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:55:33.0721 6924 WmiAcpi - ok
18:55:33.0768 6924 [ 43BE3875207DCB62A85C8C49970B66CC ] WmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:55:33.0768 6924 WmiApSrv - ok
18:55:34.0065 6924 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:55:34.0111 6924 WMPNetworkSvc - ok
18:55:34.0143 6924 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:55:34.0143 6924 WPCSvc - ok
18:55:34.0158 6924 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:55:34.0174 6924 WPDBusEnum - ok
18:55:34.0205 6924 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
18:55:34.0205 6924 WpdUsb - ok
18:55:34.0517 6924 [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:55:34.0595 6924 WPFFontCache_v0400 - ok
18:55:34.0626 6924 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:55:34.0626 6924 ws2ifsl - ok
18:55:34.0642 6924 WscNetDr - ok
18:55:34.0673 6924 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
18:55:34.0689 6924 wscsvc - ok
18:55:34.0689 6924 WSearch - ok
18:55:34.0845 6924 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:55:34.0891 6924 wuauserv - ok
18:55:34.0923 6924 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:55:34.0923 6924 WudfPf - ok
18:55:34.0969 6924 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:55:34.0969 6924 WUDFRd - ok
18:55:35.0001 6924 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:55:35.0001 6924 wudfsvc - ok
18:55:35.0047 6924 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
18:55:35.0047 6924 XAudio - ok
18:55:35.0063 6924 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
18:55:35.0079 6924 XAudioService - ok
18:55:35.0094 6924 [ 2D07E65ED0023BB10B13A912B27DFB1A ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
18:55:35.0094 6924 yukonwlh - ok
18:55:35.0110 6924 z800mgmt - ok
18:55:35.0110 6924 zpnodecollector - ok
18:55:35.0297 6924 [ 51DF76D8F9DDF0E0012639448652956D ] ZSMC0303 C:\Windows\system32\Drivers\usbVM303.sys
18:55:35.0375 6924 ZSMC0303 - ok
18:55:35.0406 6924 ================ Scan global ===============================
18:55:35.0437 6924 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:55:35.0469 6924 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:55:35.0484 6924 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:55:35.0531 6924 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:55:35.0531 6924 [Global] - ok
18:55:35.0531 6924 ================ Scan MBR ==================================
18:55:35.0562 6924 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
18:55:35.0921 6924 \Device\Harddisk0\DR0 - ok
18:55:35.0921 6924 ================ Scan VBR ==================================
18:55:35.0968 6924 [ E0DD9EDC4AD5F1E7F8523439DDC4CBC2 ] \Device\Harddisk0\DR0\Partition1
18:55:35.0968 6924 \Device\Harddisk0\DR0\Partition1 - ok
18:55:35.0983 6924 [ 8A56A6FCD73201DFF9D4197898DFF041 ] \Device\Harddisk0\DR0\Partition2
18:55:35.0983 6924 \Device\Harddisk0\DR0\Partition2 - ok
18:55:35.0983 6924 ============================================================
18:55:35.0983 6924 Scan finished
18:55:35.0983 6924 ============================================================
18:55:36.0015 8136 Detected object count: 0
18:55:36.0015 8136 Actual detected object count: 0
18:56:10.0023 5412 ============================================================
18:56:10.0023 5412 Scan started
18:56:10.0023 5412 Mode: Manual; SigCheck; TDLFS;
18:56:10.0023 5412 ============================================================
18:56:10.0179 5412 ================ Scan system memory ========================
18:56:10.0179 5412 System memory - ok
18:56:10.0179 5412 ================ Scan services =============================
18:56:10.0444 5412 abp480n5 - ok
18:56:10.0600 5412 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
18:56:10.0725 5412 ACPI - ok
18:56:10.0865 5412 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:56:10.0881 5412 AdobeARMservice - ok
18:56:11.0115 5412 [ A283108E14F3970432C21AF4C0CB1BCE ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:56:11.0130 5412 AdobeFlashPlayerUpdateSvc - ok
18:56:11.0239 5412 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:56:11.0271 5412 adp94xx - ok
18:56:11.0302 5412 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:56:11.0317 5412 adpahci - ok
18:56:11.0364 5412 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
18:56:11.0380 5412 adpu160m - ok
18:56:11.0411 5412 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:56:11.0427 5412 adpu320 - ok
18:56:11.0442 5412 aec - ok
18:56:11.0473 5412 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:56:11.0505 5412 AeLookupSvc - ok
18:56:11.0645 5412 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
18:56:11.0661 5412 AFD - ok
18:56:11.0739 5412 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:56:11.0754 5412 agp440 - ok
18:56:11.0770 5412 aha154x - ok
18:56:11.0832 5412 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
18:56:11.0848 5412 aic78xx - ok
18:56:11.0863 5412 akshhl - ok
18:56:11.0895 5412 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
18:56:11.0973 5412 ALG - ok
18:56:12.0004 5412 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
18:56:12.0004 5412 aliide - ok
18:56:12.0019 5412 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:56:12.0035 5412 amdagp - ok
18:56:12.0066 5412 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
18:56:12.0082 5412 amdide - ok
18:56:12.0113 5412 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
18:56:12.0191 5412 AmdK7 - ok
18:56:12.0191 5412 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:56:12.0238 5412 AmdK8 - ok
18:56:12.0316 5412 [ 18BFF317BDB10C64A35E1CA85F1EC051 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
18:56:12.0331 5412 ApfiltrService - ok
18:56:12.0363 5412 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
18:56:12.0394 5412 Appinfo - ok
18:56:12.0550 5412 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:56:12.0550 5412 Apple Mobile Device - ok
18:56:12.0721 5412 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
18:56:12.0737 5412 arc - ok
18:56:12.0768 5412 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:56:12.0784 5412 arcsas - ok
18:56:12.0784 5412 As6frin - ok
18:56:12.0846 5412 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:56:12.0924 5412 AsyncMac - ok
18:56:12.0955 5412 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
18:56:12.0971 5412 atapi - ok
18:56:13.0065 5412 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:56:13.0096 5412 AudioEndpointBuilder - ok
18:56:13.0111 5412 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:56:13.0143 5412 Audiosrv - ok
18:56:13.0174 5412 AVP - ok
18:56:13.0174 5412 awlegacy - ok
18:56:13.0189 5412 BCMModem - ok
18:56:13.0205 5412 BcmSqlStartupSvc - ok
18:56:13.0267 5412 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
18:56:13.0345 5412 Beep - ok
18:56:13.0392 5412 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
18:56:13.0439 5412 BFE - ok
18:56:13.0564 5412 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
18:56:13.0673 5412 BITS - ok
18:56:13.0704 5412 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
18:56:13.0767 5412 blbdrive - ok
18:56:13.0891 5412 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:56:13.0938 5412 Bonjour Service - ok
18:56:13.0985 5412 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:56:14.0032 5412 bowser - ok
18:56:14.0063 5412 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
18:56:14.0094 5412 BrFiltLo - ok
18:56:14.0110 5412 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
18:56:14.0141 5412 BrFiltUp - ok
18:56:14.0172 5412 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
18:56:14.0219 5412 Browser - ok
18:56:14.0235 5412 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
18:56:14.0344 5412 Brserid - ok
18:56:14.0391 5412 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
18:56:14.0469 5412 BrSerWdm - ok
18:56:14.0484 5412 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
18:56:14.0547 5412 BrUsbMdm - ok
18:56:14.0562 5412 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
18:56:14.0656 5412 BrUsbSer - ok
18:56:14.0687 5412 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:56:14.0749 5412 BTHMODEM - ok
18:56:14.0765 5412 bufserv - ok
18:56:14.0765 5412 catchme - ok
18:56:14.0796 5412 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:56:14.0827 5412 cdfs - ok
18:56:14.0859 5412 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:56:14.0921 5412 cdrom - ok
18:56:14.0921 5412 cdudf_xp - ok
18:56:15.0015 5412 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
18:56:15.0077 5412 CertPropSvc - ok
18:56:15.0108 5412 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
18:56:15.0155 5412 circlass - ok
18:56:15.0155 5412 cisvc - ok
18:56:15.0233 5412 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
18:56:15.0249 5412 CLFS - ok
18:56:15.0467 5412 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:56:15.0483 5412 clr_optimization_v2.0.50727_32 - ok
18:56:15.0607 5412 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:56:15.0623 5412 clr_optimization_v4.0.30319_32 - ok
18:56:15.0670 5412 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:56:15.0732 5412 CmBatt - ok
18:56:15.0763 5412 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:56:15.0779 5412 cmdide - ok
18:56:15.0779 5412 cnxtdiag - ok
18:56:15.0841 5412 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:56:15.0857 5412 Compbatt - ok
18:56:15.0873 5412 COMSysApp - ok
18:56:15.0888 5412 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:56:15.0904 5412 crcdisk - ok
18:56:15.0935 5412 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
18:56:15.0982 5412 Crusoe - ok
18:56:16.0013 5412 [ 684C130BBC6DB681BAD4920A4C944AA5 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:56:16.0060 5412 CryptSvc - ok
18:56:16.0107 5412 [ CB6FF7012BB5D59D7C12350DB795CE1F ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
18:56:16.0122 5412 ctxusbm - ok
18:56:16.0122 5412 cwafreportscheduler - ok
18:56:16.0138 5412 DCamUSBSQTECH - ok
18:56:16.0247 5412 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:56:16.0309 5412 DcomLaunch - ok
18:56:16.0309 5412 de_serv - ok
18:56:16.0356 5412 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:56:16.0403 5412 DfsC - ok
18:56:16.0481 5412 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
18:56:16.0606 5412 DFSR - ok
18:56:16.0653 5412 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
18:56:16.0699 5412 Dhcp - ok
18:56:16.0731 5412 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
18:56:16.0746 5412 disk - ok
18:56:17.0136 5412 [ 9F07FFACD9BC7620369118410126FCEF ] DisplayLinkService C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
18:56:17.0323 5412 DisplayLinkService - ok
18:56:17.0386 5412 [ A978A92393A57D99817ACAF5718FB3E0 ] DisplayLinkUsbPort C:\Windows\system32\DRIVERS\DisplayLinkUsbPort_5.3.24903.0.sys
18:56:17.0464 5412 DisplayLinkUsbPort - ok
18:56:17.0464 5412 dlkmd - ok
18:56:17.0479 5412 dlkmdldr - ok
18:56:17.0495 5412 [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys
18:56:17.0511 5412 DMICall - ok
18:56:17.0620 5412 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:56:17.0713 5412 Dnscache - ok
18:56:17.0760 5412 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:56:17.0807 5412 dot3svc - ok
18:56:17.0823 5412 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
18:56:17.0885 5412 DPS - ok
18:56:17.0916 5412 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:56:17.0994 5412 drmkaud - ok
18:56:18.0010 5412 [ B2C3F71B86E25C3DF78339DDB40A7562 ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
18:56:18.0025 5412 dsNcAdpt - ok
18:56:18.0057 5412 [ 824C188936FDC1B20FB32192B57CDEBA ] dsNcService C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
18:56:18.0150 5412 dsNcService - ok
18:56:18.0213 5412 [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:56:18.0244 5412 DXGKrnl - ok
18:56:18.0291 5412 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
18:56:18.0353 5412 E1G60 - ok
18:56:18.0353 5412 EACSvrMngr - ok
18:56:18.0415 5412 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
18:56:18.0462 5412 EapHost - ok
18:56:18.0493 5412 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
18:56:18.0509 5412 Ecache - ok
18:56:18.0634 5412 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:56:18.0696 5412 ehRecvr - ok
18:56:18.0712 5412 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
18:56:18.0790 5412 ehSched - ok
18:56:18.0805 5412 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
18:56:18.0821 5412 ehstart - ok
18:56:18.0852 5412 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:56:18.0868 5412 elxstor - ok
18:56:19.0008 5412 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
18:56:19.0071 5412 EMDMgmt - ok
18:56:19.0102 5412 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:56:19.0149 5412 ErrDev - ok
18:56:19.0195 5412 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
18:56:19.0258 5412 EventSystem - ok
18:56:19.0289 5412 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
18:56:19.0320 5412 exfat - ok
18:56:19.0336 5412 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:56:19.0383 5412 fastfat - ok
18:56:19.0414 5412 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:56:19.0445 5412 fdc - ok
18:56:19.0476 5412 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
18:56:19.0507 5412 fdPHost - ok
18:56:19.0648 5412 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
18:56:19.0757 5412 FDResPub - ok
18:56:19.0897 5412 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:56:19.0913 5412 FileInfo - ok
18:56:20.0069 5412 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:56:20.0147 5412 Filetrace - ok
18:56:20.0163 5412 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:56:20.0209 5412 flpydisk - ok
18:56:20.0319 5412 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:56:20.0334 5412 FltMgr - ok
18:56:20.0662 5412 [ 119ACA7CADCA75BEA6B38E999443BAA6 ] FontCache C:\Windows\system32\FntCache.dll
18:56:20.0740 5412 FontCache - ok
18:56:20.0818 5412 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:56:20.0833 5412 FontCache3.0.0.0 - ok
18:56:20.0911 5412 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:56:20.0958 5412 Fs_Rec - ok
18:56:20.0974 5412 ftdisk - ok
18:56:21.0005 5412 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:56:21.0021 5412 gagp30kx - ok
18:56:21.0145 5412 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:56:21.0161 5412 GEARAspiWDM - ok
18:56:21.0208 5412 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
18:56:21.0286 5412 gpsvc - ok
18:56:21.0411 5412 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:56:21.0426 5412 gupdate - ok
18:56:21.0426 5412 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:56:21.0442 5412 gupdatem - ok
18:56:21.0504 5412 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:56:21.0598 5412 HdAudAddService - ok
18:56:21.0676 5412 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:56:21.0738 5412 HDAudBus - ok
18:56:21.0801 5412 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:56:21.0910 5412 HidBth - ok
18:56:21.0941 5412 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
18:56:22.0035 5412 HidIr - ok
18:56:22.0113 5412 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
18:56:22.0253 5412 hidserv - ok
18:56:22.0315 5412 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:56:22.0362 5412 HidUsb - ok
18:56:22.0393 5412 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:56:22.0471 5412 hkmsvc - ok
18:56:22.0487 5412 hnmsvc - ok
18:56:22.0503 5412 hotspotshieldservice - ok
18:56:22.0565 5412 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
18:56:22.0581 5412 HpCISSs - ok
18:56:22.0627 5412 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:56:22.0690 5412 HSFHWAZL - ok
18:56:22.0815 5412 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:56:22.0893 5412 HSF_DPV - ok
18:56:22.0924 5412 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:56:22.0955 5412 HSXHWAZL - ok
18:56:22.0986 5412 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:56:23.0080 5412 HTTP - ok
18:56:23.0189 5412 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
18:56:23.0205 5412 i2omp - ok
18:56:23.0236 5412 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:56:23.0267 5412 i8042prt - ok
18:56:23.0454 5412 [ 3E42C4691AAD4B1E8D0466F9CBF05CBE ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:56:23.0470 5412 IAANTMON - ok
18:56:23.0532 5412 [ 707C1692214B1C290271067197F075F6 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:56:23.0548 5412 iaStor - ok
18:56:23.0579 5412 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
18:56:23.0610 5412 iaStorV - ok
18:56:23.0673 5412 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
18:56:23.0704 5412 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:56:23.0704 5412 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:56:24.0000 5412 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:56:24.0031 5412 idsvc - ok
18:56:24.0219 5412 [ 9378D57E2B96C0A185D844770AD49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
18:56:24.0281 5412 igfx - ok
18:56:24.0437 5412 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:56:24.0453 5412 iirsp - ok
18:56:24.0531 5412 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:56:24.0593 5412 IKEEXT - ok
18:56:24.0749 5412 [ 6F62BAFE6150F3952F877051C65786FE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:56:24.0796 5412 IntcAzAudAddService - ok
18:56:24.0921 5412 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
18:56:24.0936 5412 intelide - ok
18:56:25.0123 5412 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:56:25.0170 5412 intelppm - ok
18:56:25.0201 5412 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:56:25.0264 5412 IPBusEnum - ok
18:56:25.0279 5412 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:56:25.0326 5412 IpFilterDriver - ok
18:56:25.0357 5412 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:56:25.0404 5412 iphlpsvc - ok
18:56:25.0420 5412 IpInIp - ok
18:56:25.0451 5412 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
18:56:25.0513 5412 IPMIDRV - ok
18:56:25.0545 5412 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
18:56:25.0576 5412 IPNAT - ok
18:56:25.0779 5412 [ C00149A7027081539A66DC5A46695EAD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:56:25.0794 5412 iPod Service - ok
18:56:25.0825 5412 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:56:25.0857 5412 IRENUM - ok
18:56:25.0888 5412 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:56:25.0903 5412 isapnp - ok
18:56:26.0013 5412 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:56:26.0044 5412 iScsiPrt - ok
18:56:26.0075 5412 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
18:56:26.0091 5412 iteatapi - ok
18:56:26.0200 5412 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
18:56:26.0215 5412 iteraid - ok
18:56:26.0293 5412 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
18:56:26.0309 5412 IviRegMgr - ok
18:56:26.0356 5412 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:56:26.0371 5412 kbdclass - ok
18:56:26.0543 5412 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:56:26.0605 5412 kbdhid - ok
18:56:26.0637 5412 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
18:56:26.0683 5412 KeyIso - ok
18:56:26.0730 5412 [ 2AD446E7A867C48099227415DD66FB34 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
18:56:26.0746 5412 KL1 - ok
18:56:26.0902 5412 [ 8C547EB6709BF41E0625EFCDF13C63CE ] KLIF C:\Windows\system32\DRIVERS\klif.sys
18:56:27.0011 5412 KLIF - ok
18:56:27.0058 5412 [ AF127FE7DD5ED2BBC9049FD8A00DEFC2 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
18:56:27.0058 5412 KLIM6 - ok
18:56:27.0105 5412 [ 249A266AF74ADE44AE8424E78D145E09 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
18:56:27.0120 5412 klkbdflt - ok
18:56:27.0167 5412 [ 035724BA6D5676B76FD3AFB66AB4F1E3 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
18:56:27.0167 5412 klmouflt - ok
18:56:27.0183 5412 KLOGNT - ok
18:56:27.0229 5412 [ 8FD802F86D4AB3FB329B8E51517BFF2A ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
18:56:27.0245 5412 kltdi - ok
18:56:27.0323 5412 [ 566C5FD480FDBCE3BA5CF9FBCFFAEA9A ] KMWDFILTER C:\Windows\system32\DRIVERS\KMWDFILTER.sys
18:56:27.0401 5412 KMWDFILTER - ok
18:56:27.0401 5412 KMW_USB - ok
18:56:27.0463 5412 [ 8F932DF10408BCABA2FCF6163C843F8E ] kneps C:\Windows\system32\DRIVERS\kneps.sys
18:56:27.0479 5412 kneps - ok
18:56:27.0916 5412 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:56:27.0978 5412 KSecDD - ok
18:56:28.0041 5412 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
18:56:28.0119 5412 KtmRm - ok
18:56:28.0165 5412 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
18:56:28.0243 5412 LanmanServer - ok
18:56:28.0306 5412 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:56:28.0353 5412 LanmanWorkstation - ok
18:56:28.0384 5412 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:56:28.0415 5412 lltdio - ok
18:56:28.0462 5412 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:56:28.0493 5412 lltdsvc - ok
18:56:28.0555 5412 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:56:28.0602 5412 lmhosts - ok
18:56:28.0649 5412 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:56:28.0665 5412 LSI_FC - ok
18:56:28.0821 5412 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:56:28.0836 5412 LSI_SAS - ok
18:56:29.0023 5412 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:56:29.0039 5412 LSI_SCSI - ok
18:56:29.0101 5412 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
18:56:29.0195 5412 luafv - ok
18:56:29.0195 5412 lxcr_device - ok
18:56:29.0226 5412 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2svc.dll
18:56:29.0257 5412 Mcx2Svc - ok
18:56:29.0289 5412 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:56:29.0304 5412 mdmxsdk - ok
18:56:29.0335 5412 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
18:56:29.0351 5412 megasas - ok
18:56:29.0382 5412 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
18:56:29.0413 5412 MegaSR - ok
18:56:29.0413 5412 merakpop3 - ok
18:56:29.0507 5412 Microsoft SharePoint Workspace Audit Service - ok
18:56:29.0523 5412 mldserv - ok
18:56:29.0538 5412 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
18:56:29.0569 5412 MMCSS - ok
18:56:29.0663 5412 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
18:56:29.0725 5412 Modem - ok
18:56:29.0757 5412 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:56:29.0819 5412 monitor - ok
18:56:29.0850 5412 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:56:29.0850 5412 mouclass - ok
18:56:29.0897 5412 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:56:29.0944 5412 mouhid - ok
18:56:29.0959 5412 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
18:56:29.0975 5412 MountMgr - ok
18:56:30.0178 5412 [ 0329A45C849C9D77901094B8FFE8BBB9 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:56:30.0193 5412 MozillaMaintenance - ok
18:56:30.0334 5412 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
18:56:30.0349 5412 mpio - ok
18:56:30.0381 5412 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:56:30.0396 5412 mpsdrv - ok
18:56:30.0505 5412 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
18:56:30.0599 5412 MpsSvc - ok
18:56:30.0646 5412 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
18:56:30.0646 5412 Mraid35x - ok
18:56:30.0661 5412 MRESP50 - ok
18:56:30.0661 5412 mrobeservice - ok
18:56:31.0005 5412 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:56:31.0067 5412 MRxDAV - ok
18:56:31.0114 5412 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:56:31.0161 5412 mrxsmb - ok
18:56:31.0192 5412 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:56:31.0207 5412 mrxsmb10 - ok
18:56:31.0207 5412 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:56:31.0254 5412 mrxsmb20 - ok
18:56:31.0285 5412 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
18:56:31.0317 5412 msahci - ok
18:56:31.0395 5412 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
18:56:31.0426 5412 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
18:56:31.0426 5412 MSCSPTISRV - detected UnsignedFile.Multi.Generic (1)
18:56:31.0457 5412 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:56:31.0488 5412 msdsm - ok
18:56:31.0551 5412 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
18:56:31.0613 5412 MSDTC - ok
18:56:31.0644 5412 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:56:31.0691 5412 Msfs - ok
18:56:31.0707 5412 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:56:31.0722 5412 msisadrv - ok
18:56:31.0878 5412 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:56:31.0956 5412 MSiSCSI - ok
18:56:31.0956 5412 msiserver - ok
18:56:31.0987 5412 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:56:32.0019 5412 MSKSSRV - ok
18:56:32.0034 5412 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:56:32.0081 5412 MSPCLOCK - ok
18:56:32.0097 5412 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:56:32.0143 5412 MSPQM - ok
18:56:32.0175 5412 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:56:32.0190 5412 MsRPC - ok
18:56:32.0221 5412 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:56:32.0237 5412 mssmbios - ok
18:56:32.0237 5412 mstdc - ok
18:56:32.0284 5412 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:56:32.0315 5412 MSTEE - ok
18:56:32.0580 5412 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
18:56:32.0596 5412 Mup - ok
18:56:32.0705 5412 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
18:56:32.0799 5412 napagent - ok
18:56:32.0830 5412 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:56:32.0892 5412 NativeWifiP - ok
18:56:32.0892 5412 naveng - ok
18:56:32.0939 5412 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:56:32.0970 5412 NDIS - ok
18:56:33.0033 5412 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:56:33.0095 5412 NdisTapi - ok
18:56:33.0111 5412 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:56:33.0142 5412 Ndisuio - ok
18:56:33.0298 5412 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:56:33.0329 5412 NdisWan - ok
18:56:33.0360 5412 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:56:33.0376 5412 NDProxy - ok
18:56:33.0391 5412 NecUsb3 - ok
18:56:33.0516 5412 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:56:33.0563 5412 NetBIOS - ok
18:56:33.0594 5412 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
18:56:33.0657 5412 netbt - ok
18:56:33.0672 5412 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
18:56:33.0688 5412 Netlogon - ok
18:56:33.0797 5412 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
18:56:33.0906 5412 Netman - ok
18:56:33.0922 5412 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
18:56:33.0969 5412 netprofm - ok
18:56:33.0969 5412 netrcacm - ok
18:56:34.0015 5412 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:56:34.0015 5412 NetTcpPortSharing - ok
18:56:34.0421 5412 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
18:56:34.0515 5412 NETw3v32 - ok
18:56:35.0217 5412 [ 25ACCCFC33DD448B9D3037C5E439E830 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
18:56:35.0341 5412 NETw4v32 - ok
18:56:35.0388 5412 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:56:35.0404 5412 nfrd960 - ok
18:56:35.0419 5412 NIPALK - ok
18:56:35.0482 5412 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:56:35.0560 5412 NlaSvc - ok
18:56:35.0622 5412 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:56:35.0685 5412 Npfs - ok
18:56:35.0700 5412 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
18:56:35.0763 5412 nsi - ok
18:56:35.0794 5412 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:56:35.0841 5412 nsiproxy - ok
18:56:35.0887 5412 [ 42CE5E77721E60F39858FF2A35450342 ] NSUService C:\Program Files\Sony\Network Utility\NSUService.exe
18:56:35.0903 5412 NSUService ( UnsignedFile.Multi.Generic ) - warning
18:56:35.0903 5412 NSUService - detected UnsignedFile.Multi.Generic (1)
18:56:36.0589 5412 [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:56:36.0714 5412 Ntfs - ok
18:56:36.0761 5412 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
18:56:36.0808 5412 ntrigdigi - ok
18:56:36.0870 5412 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
18:56:36.0948 5412 Null - ok
18:56:36.0964 5412 nv4 - ok
18:56:36.0995 5412 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:56:37.0011 5412 nvraid - ok
18:56:37.0057 5412 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:56:37.0073 5412 nvstor - ok
18:56:37.0151 5412 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:56:37.0167 5412 nv_agp - ok
18:56:37.0182 5412 NwlnkFlt - ok
18:56:37.0182 5412 NwlnkFwd - ok
18:56:37.0198 5412 NWSAP - ok
18:56:37.0198 5412 OEM02Dev - ok
18:56:37.0213 5412 ofcpfwsvc - ok
18:56:37.0276 5412 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:56:37.0338 5412 ohci1394 - ok
18:56:37.0338 5412 oracle_load_balancer_60_client-forms6ip9 - ok
18:56:37.0401 5412 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:56:37.0416 5412 ose - ok
18:56:39.0335 5412 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:56:39.0491 5412 osppsvc - ok
18:56:39.0819 5412 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
18:56:39.0959 5412 p2pimsvc - ok
18:56:40.0614 5412 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
18:56:40.0755 5412 p2psvc - ok
18:56:40.0786 5412 [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
18:56:40.0817 5412 PACSPTISVR ( UnsignedFile.Multi.Generic ) - warning
18:56:40.0817 5412 PACSPTISVR - detected UnsignedFile.Multi.Generic (1)
18:56:41.0082 5412 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
18:56:41.0129 5412 Parport - ok
18:56:41.0191 5412 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:56:41.0207 5412 partmgr - ok
18:56:41.0316 5412 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
18:56:41.0379 5412 Parvdm - ok
18:56:41.0394 5412 pav_security - ok
18:56:41.0425 5412 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
18:56:41.0503 5412 PcaSvc - ok
18:56:41.0550 5412 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
18:56:41.0566 5412 pci - ok
18:56:41.0566 5412 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\DRIVERS\pciide.sys
18:56:41.0597 5412 pciide - ok
18:56:41.0691 5412 [ 3BB2244F343B610C29C98035504C9B75 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:56:41.0706 5412 pcmcia - ok
18:56:42.0049 5412 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:56:42.0205 5412 PEAUTH - ok
18:56:42.0205 5412 perc2 - ok
18:56:42.0237 5412 pfmodnt - ok
18:56:42.0595 5412 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
18:56:42.0705 5412 pla - ok
18:56:42.0736 5412 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:56:42.0767 5412 PlugPlay - ok
18:56:42.0814 5412 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
18:56:42.0861 5412 PNRPAutoReg - ok
18:56:42.0876 5412 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
18:56:42.0939 5412 PNRPsvc - ok
18:56:43.0063 5412 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:56:43.0126 5412 PolicyAgent - ok
18:56:43.0204 5412 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:56:43.0266 5412 PptpMiniport - ok
18:56:43.0297 5412 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
18:56:43.0329 5412 Processor - ok
18:56:43.0329 5412 ProcObsrv - ok
18:56:43.0578 5412 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
18:56:43.0609 5412 ProfSvc - ok
18:56:43.0656 5412 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:56:43.0672 5412 ProtectedStorage - ok
18:56:43.0765 5412 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
18:56:43.0781 5412 ProtexisLicensing - ok
18:56:43.0812 5412 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
18:56:43.0875 5412 PSched - ok
18:56:43.0875 5412 PSDFilter - ok
18:56:43.0890 5412 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
18:56:43.0906 5412 PxHelp20 - ok
18:56:44.0077 5412 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:56:44.0109 5412 ql2300 - ok
18:56:44.0140 5412 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:56:44.0155 5412 ql40xx - ok
18:56:44.0218 5412 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
18:56:44.0265 5412 QWAVE - ok
18:56:44.0280 5412 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:56:44.0296 5412 QWAVEdrv - ok
18:56:44.0327 5412 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:56:44.0374 5412 RasAcd - ok
18:56:44.0421 5412 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
18:56:44.0483 5412 RasAuto - ok
18:56:44.0530 5412 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:56:44.0561 5412 Rasl2tp - ok
18:56:44.0717 5412 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
18:56:44.0779 5412 RasMan - ok
18:56:44.0811 5412 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:56:44.0842 5412 RasPppoe - ok
18:56:44.0857 5412 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:56:44.0873 5412 RasSstp - ok
18:56:44.0904 5412 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:56:44.0935 5412 rdbss - ok
18:56:44.0967 5412 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:56:45.0013 5412 RDPCDD - ok
18:56:45.0045 5412 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
18:56:45.0076 5412 rdpdr - ok
18:56:45.0076 5412 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:56:45.0138 5412 RDPENCDD - ok
18:56:45.0185 5412 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:56:45.0247 5412 RDPWD - ok
18:56:45.0279 5412 [ 001B4278407F4303EFC902A2B16F2453 ] regi C:\Windows\system32\drivers\regi.sys
18:56:45.0294 5412 regi - ok
18:56:45.0341 5412 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:56:45.0372 5412 RemoteAccess - ok
18:56:45.0450 5412 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:56:45.0481 5412 RemoteRegistry - ok
18:56:45.0528 5412 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
18:56:45.0575 5412 RpcLocator - ok
18:56:45.0606 5412 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\System32\rpcss.dll
18:56:45.0653 5412 RpcSs - ok
18:56:45.0684 5412 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:56:45.0747 5412 rspndr - ok
18:56:45.0747 5412 rtl8029 - ok
18:56:45.0762 5412 RTL8192su - ok
18:56:45.0762 5412 s116unic - ok
18:56:45.0809 5412 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
18:56:45.0825 5412 SamSs - ok
18:56:45.0903 5412 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:56:45.0918 5412 sbp2port - ok
18:56:45.0965 5412 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:56:46.0012 5412 SCardSvr - ok
18:56:46.0059 5412 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
18:56:46.0183 5412 Schedule - ok
18:56:46.0230 5412 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:56:46.0261 5412 SCPolicySvc - ok
18:56:46.0449 5412 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:56:46.0558 5412 SDRSVC - ok
18:56:46.0605 5412 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:56:46.0667 5412 secdrv - ok
18:56:46.0683 5412 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
18:56:46.0745 5412 seclogon - ok
18:56:46.0745 5412 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
18:56:46.0792 5412 SENS - ok
18:56:46.0839 5412 [ AC1F2A09B76B57356F906EEDA43CCC2A ] Ser2pl C:\Windows\system32\DRIVERS\ser2pl.sys
18:56:46.0870 5412 Ser2pl - ok
18:56:46.0885 5412 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:56:46.0948 5412 Serenum - ok
18:56:47.0104 5412 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
18:56:47.0182 5412 Serial - ok
18:56:47.0197 5412 serialkeys - ok
18:56:47.0229 5412 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:56:47.0260 5412 sermouse - ok
18:56:47.0338 5412 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
18:56:47.0369 5412 SessionEnv - ok
18:56:47.0478 5412 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
18:56:47.0478 5412 SFEP - ok
18:56:47.0509 5412 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:56:47.0525 5412 sffdisk - ok
18:56:47.0603 5412 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:56:47.0650 5412 sffp_mmc - ok
18:56:47.0665 5412 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:56:47.0728 5412 sffp_sd - ok
18:56:47.0743 5412 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:56:47.0806 5412 sfloppy - ok
18:56:47.0806 5412 SGHIDI - ok
18:56:47.0853 5412 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:56:47.0899 5412 SharedAccess - ok
18:56:47.0946 5412 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:56:47.0977 5412 ShellHWDetection - ok
18:56:48.0024 5412 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:56:48.0040 5412 sisagp - ok
18:56:48.0040 5412 sisperf - ok
18:56:48.0071 5412 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
18:56:48.0087 5412 SiSRaid2 - ok
18:56:48.0133 5412 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:56:48.0149 5412 SiSRaid4 - ok
18:56:48.0289 5412 [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
18:56:48.0289 5412 SkypeUpdate - ok
18:56:49.0147 5412 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
18:56:49.0303 5412 slsvc - ok
18:56:49.0335 5412 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
18:56:49.0397 5412 SLUINotify - ok
18:56:49.0397 5412 smapint - ok
18:56:49.0413 5412 smartscaps - ok
18:56:49.0428 5412 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:56:49.0475 5412 Smb - ok
18:56:49.0491 5412 smcirda - ok
18:56:49.0522 5412 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:56:49.0537 5412 SNMPTRAP - ok
18:56:49.0569 5412 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
18:56:49.0584 5412 spldr - ok
18:56:49.0693 5412 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
18:56:49.0756 5412 Spooler - ok
18:56:49.0787 5412 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys
18:56:49.0803 5412 sptd - ok
18:56:49.0849 5412 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
18:56:49.0865 5412 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
18:56:49.0865 5412 SPTISRV - detected UnsignedFile.Multi.Generic (1)
18:56:49.0865 5412 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:56:49.0896 5412 srv - ok
18:56:49.0974 5412 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:56:49.0990 5412 srv2 - ok
18:56:50.0005 5412 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:56:50.0068 5412 srvnet - ok
18:56:50.0146 5412 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:56:50.0208 5412 SSDPSRV - ok
18:56:50.0224 5412 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:56:50.0255 5412 SstpSvc - ok
18:56:50.0255 5412 stcagent - ok
18:56:50.0255 5412 steamdvr - ok
18:56:50.0395 5412 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
18:56:50.0473 5412 stisvc - ok
18:56:50.0520 5412 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:56:50.0551 5412 swenum - ok
18:56:50.0614 5412 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
18:56:50.0645 5412 swprv - ok
18:56:50.0770 5412 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
18:56:50.0785 5412 Symc8xx - ok
18:56:50.0832 5412 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
18:56:50.0848 5412 Sym_hi - ok
18:56:50.0941 5412 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
18:56:50.0957 5412 Sym_u3 - ok
18:56:51.0082 5412 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
18:56:51.0175 5412 SysMain - ok
18:56:51.0222 5412 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:56:51.0285 5412 TabletInputService - ok
18:56:51.0316 5412 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:56:51.0363 5412 TapiSrv - ok
18:56:51.0394 5412 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
18:56:51.0425 5412 TBS - ok
18:56:51.0472 5412 [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:56:51.0503 5412 Tcpip - ok
18:56:51.0519 5412 [ D18D53974FD715D50FC76F9FFE1C830D ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
18:56:51.0565 5412 Tcpip6 - ok
18:56:51.0565 5412 tcpipBM - ok
18:56:51.0612 5412 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:56:51.0628 5412 tcpipreg - ok
18:56:51.0675 5412 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:56:51.0737 5412 TDPIPE - ok
18:56:51.0737 5412 tdrpman174 - ok
18:56:51.0768 5412 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:56:51.0799 5412 TDTCP - ok
18:56:51.0877 5412 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:56:51.0909 5412 tdx - ok
18:56:53.0827 5412 [ F67C21CC4195F6AFC447418FE163E156 ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
18:56:54.0015 5412 TeamViewer8 - ok
18:56:54.0046 5412 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:56:54.0061 5412 TermDD - ok
18:56:54.0576 5412 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
18:56:54.0685 5412 TermService - ok
18:56:54.0795 5412 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
18:56:54.0810 5412 Themes - ok
18:56:54.0919 5412 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
18:56:54.0951 5412 THREADORDER - ok
18:56:55.0216 5412 [ 909CD987B54A8179C9AEE874D754721A ] ti21sony C:\Windows\system32\drivers\ti21sony.sys
18:56:55.0247 5412 ti21sony - ok
18:56:55.0294 5412 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
18:56:55.0356 5412 TrkWks - ok
18:56:55.0434 5412 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:56:55.0497 5412 TrustedInstaller - ok
18:56:55.0528 5412 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:56:55.0559 5412 tssecsrv - ok
18:56:56.0464 5412 [ 86CD728FB5F6A409112662E1596D987B ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
18:56:56.0511 5412 TuneUp.UtilitiesSvc - ok
18:56:56.0667 5412 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys
18:56:56.0682 5412 TuneUpUtilitiesDrv - ok
18:56:56.0776 5412 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
18:56:56.0823 5412 tunmp - ok
18:56:56.0854 5412 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:56:56.0885 5412 tunnel - ok
18:56:56.0901 5412 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:56:56.0916 5412 uagp35 - ok
18:56:56.0947 5412 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:56:56.0963 5412 udfs - ok
18:56:57.0103 5412 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:56:57.0135 5412 UI0Detect - ok
18:56:57.0135 5412 uiusys - ok
18:56:57.0166 5412 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:56:57.0181 5412 uliagpkx - ok
18:56:57.0291 5412 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
18:56:57.0306 5412 uliahci - ok
18:56:57.0353 5412 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
18:56:57.0369 5412 UlSata - ok
18:56:57.0400 5412 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
18:56:57.0415 5412 ulsata2 - ok
18:56:57.0447 5412 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:56:57.0509 5412 umbus - ok
18:56:57.0525 5412 [ 88BD96A1BAEED33EE8BDF9499C07A841 ] UMPass C:\Windows\system32\DRIVERS\umpass.sys
18:56:57.0571 5412 UMPass - ok
18:56:57.0603 5412 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
18:56:57.0665 5412 upnphost - ok
18:56:57.0681 5412 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
18:56:57.0743 5412 USBAAPL - ok
18:56:57.0774 5412 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:56:57.0821 5412 usbaudio - ok
18:56:57.0852 5412 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:56:57.0899 5412 usbccgp - ok
18:56:57.0946 5412 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:56:58.0024 5412 usbcir - ok
18:56:58.0024 5412 USBDongle - ok
18:56:58.0149 5412 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:56:58.0195 5412 usbehci - ok
18:56:58.0351 5412 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:56:58.0383 5412 usbhub - ok
18:56:58.0492 5412 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:56:58.0539 5412 usbohci - ok
18:56:58.0695 5412 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:56:58.0726 5412 usbprint - ok
18:56:58.0866 5412 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:56:58.0944 5412 usbscan - ok
18:56:58.0975 5412 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:56:59.0022 5412 USBSTOR - ok
18:56:59.0053 5412 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:56:59.0085 5412 usbuhci - ok
18:56:59.0085 5412 USIUDF - ok
18:56:59.0100 5412 UWProSys - ok
18:56:59.0209 5412 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
18:56:59.0241 5412 UxSms - ok
18:56:59.0397 5412 [ DE2C51E244E543ED4C649052BA66DC0D ] UxTuneUp C:\Windows\System32\uxtuneup.dll
18:56:59.0412 5412 UxTuneUp - ok
18:56:59.0490 5412 [ AFBCD738DF9DE3B6D71AFC704E7F27FB ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
18:56:59.0506 5412 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
18:56:59.0506 5412 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
18:56:59.0646 5412 [ 8A9F18ADAD471402236CA931553BF79B ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
18:56:59.0662 5412 VAIO Event Service - ok
18:57:00.0036 5412 [ 4B8F85BFC82B849D52FD4F3F32259DBC ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
18:57:00.0114 5412 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - warning
18:57:00.0114 5412 VAIOMediaPlatform-IntegratedServer-AppServer - detected UnsignedFile.Multi.Generic (1)
18:57:00.0192 5412 [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:57:00.0223 5412 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - warning
18:57:00.0223 5412 VAIOMediaPlatform-IntegratedServer-HTTP - detected UnsignedFile.Multi.Generic (1)
18:57:00.0348 5412 [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:57:00.0426 5412 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - warning
18:57:00.0426 5412 VAIOMediaPlatform-IntegratedServer-UPnP - detected UnsignedFile.Multi.Generic (1)
18:57:00.0535 5412 [ 52D4F568FE7D05AE5026B8717EEB59EB ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
18:57:00.0567 5412 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - warning
18:57:00.0567 5412 VAIOMediaPlatform-UCLS-AppServer - detected UnsignedFile.Multi.Generic (1)
18:57:00.0598 5412 [ 56E33AAA46CBA8431E72486196AFB3A1 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:57:00.0645 5412 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - warning
18:57:00.0645 5412 VAIOMediaPlatform-UCLS-HTTP - detected UnsignedFile.Multi.Generic (1)
18:57:00.0879 5412 [ 58558F3DC2FEF127B697D1138A8D7AFB ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:57:01.0035 5412 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - warning
18:57:01.0035 5412 VAIOMediaPlatform-UCLS-UPnP - detected UnsignedFile.Multi.Generic (1)
18:57:01.0425 5412 [ 6EF45DF2FCC4AE35C715A6C9B5C68B17 ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
18:57:01.0440 5412 VcmIAlzMgr - ok
18:57:01.0487 5412 [ B56CD01F36EEF2967EF18D8DF0E5C285 ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
18:57:01.0503 5412 VcmXmlIfHelper - ok
18:57:01.0503 5412 Vcsw - ok
18:57:01.0971 5412 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
18:57:02.0017 5412 vds - ok
18:57:02.0049 5412 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:57:02.0111 5412 vga - ok
18:57:02.0142 5412 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
18:57:02.0173 5412 VgaSave - ok
18:57:02.0189 5412 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:57:02.0205 5412 viaagp - ok
18:57:02.0236 5412 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
18:57:02.0267 5412 ViaC7 - ok
18:57:02.0407 5412 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
18:57:02.0423 5412 viaide - ok
18:57:02.0439 5412 vmm - ok
18:57:02.0485 5412 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:57:02.0501 5412 volmgr - ok
18:57:02.0579 5412 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:57:02.0610 5412 volmgrx - ok
18:57:02.0673 5412 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:57:02.0688 5412 volsnap - ok
18:57:02.0735 5412 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:57:02.0751 5412 vsmraid - ok
18:57:02.0844 5412 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
18:57:02.0907 5412 VSS - ok
18:57:03.0078 5412 [ 416F115DC1003BB624D03E019C3D563D ] VUAgent C:\Program Files\Sony\VAIO Update\VUAgent.exe
18:57:03.0125 5412 VUAgent - ok
18:57:03.0125 5412 vusbbus - ok
18:57:03.0219 5412 [ 212F0BE9ECA72CB56F9C30E4FE1858E2 ] vvftav303 C:\Windows\system32\drivers\vvftav303.sys
18:57:03.0297 5412 vvftav303 - ok
18:57:03.0375 5412 [ 2E785F4F92C4C67CEBB61DD55ED1F6A1 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
18:57:03.0390 5412 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
18:57:03.0390 5412 VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
18:57:03.0437 5412 [ 2D876CAD8C7FFB08179DFF361FF851E6 ] VzFw C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
18:57:03.0453 5412 VzFw ( UnsignedFile.Multi.Generic ) - warning
18:57:03.0453 5412 VzFw - detected UnsignedFile.Multi.Generic (1)
18:57:03.0499 5412 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
18:57:03.0531 5412 W32Time - ok
18:57:03.0546 5412 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:57:03.0609 5412 WacomPen - ok
18:57:03.0640 5412 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
18:57:03.0655 5412 Wanarp - ok
18:57:03.0671 5412 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:57:03.0687 5412 Wanarpv6 - ok
18:57:03.0702 5412 wanatw - ok
18:57:03.0780 5412 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:57:03.0827 5412 wcncsvc - ok
18:57:03.0858 5412 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:57:03.0889 5412 WcsPlugInService - ok
18:57:03.0936 5412 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
18:57:03.0952 5412 Wd - ok
18:57:03.0999 5412 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:57:04.0030 5412 Wdf01000 - ok
18:57:04.0092 5412 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:57:04.0139 5412 WdiServiceHost - ok
18:57:04.0139 5412 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:57:04.0170 5412 WdiSystemHost - ok
18:57:04.0233 5412 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
18:57:04.0264 5412 WebClient - ok
18:57:04.0279 5412 websenselogserver - ok
18:57:04.0311 5412 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:57:04.0357 5412 Wecsvc - ok
18:57:04.0389 5412 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:57:04.0404 5412 wercplsupport - ok
18:57:04.0467 5412 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
18:57:04.0498 5412 WerSvc - ok
18:57:04.0529 5412 [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
18:57:04.0545 5412 WimFltr - ok
18:57:04.0623 5412 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:57:04.0638 5412 winachsf - ok
18:57:04.0732 5412 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:57:04.0747 5412 WinDefend - ok
18:57:04.0763 5412 WinHttpAutoProxySvc - ok
18:57:04.0841 5412 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:57:04.0872 5412 Winmgmt - ok
18:57:05.0013 5412 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
18:57:05.0122 5412 WinRM - ok
18:57:05.0169 5412 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\winusb.sys
18:57:05.0215 5412 winusb - ok
18:57:05.0340 5412 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:57:05.0418 5412 Wlansvc - ok
18:57:05.0559 5412 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:57:05.0637 5412 wlidsvc - ok
18:57:05.0715 5412 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:57:05.0730 5412 WmiAcpi - ok
18:57:05.0777 5412 [ 43BE3875207DCB62A85C8C49970B66CC ] WmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:57:05.0824 5412 WmiApSrv - ok
18:57:05.0995 5412 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:57:06.0058 5412 WMPNetworkSvc - ok
18:57:06.0105 5412 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:57:06.0151 5412 WPCSvc - ok
18:57:06.0183 5412 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:57:06.0229 5412 WPDBusEnum - ok
18:57:06.0245 5412 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
18:57:06.0261 5412 WpdUsb - ok
18:57:06.0479 5412 [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:57:06.0510 5412 WPFFontCache_v0400 - ok
18:57:06.0541 5412 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:57:06.0604 5412 ws2ifsl - ok
18:57:06.0604 5412 WscNetDr - ok
18:57:06.0635 5412 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
18:57:06.0666 5412 wscsvc - ok
18:57:06.0682 5412 WSearch - ok
18:57:06.0900 5412 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:57:06.0978 5412 wuauserv - ok
18:57:07.0025 5412 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:57:07.0056 5412 WudfPf - ok
18:57:07.0072 5412 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:57:07.0103 5412 WUDFRd - ok
18:57:07.0119 5412 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:57:07.0150 5412 wudfsvc - ok
18:57:07.0197 5412 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
18:57:07.0243 5412 XAudio - ok
18:57:07.0275 5412 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
18:57:07.0321 5412 XAudioService - ok
18:57:07.0368 5412 [ 2D07E65ED0023BB10B13A912B27DFB1A ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
18:57:07.0384 5412 yukonwlh - ok
18:57:07.0399 5412 z800mgmt - ok
18:57:07.0399 5412 zpnodecollector - ok
18:57:07.0493 5412 [ 51DF76D8F9DDF0E0012639448652956D ] ZSMC0303 C:\Windows\system32\Drivers\usbVM303.sys
18:57:07.0587 5412 ZSMC0303 - ok
18:57:07.0602 5412 ================ Scan global ===============================
18:57:07.0649 5412 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:57:07.0680 5412 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:57:07.0696 5412 [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
18:57:07.0774 5412 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:57:07.0774 5412 [Global] - ok
18:57:07.0774 5412 ================ Scan MBR ==================================
18:57:07.0805 5412 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
18:57:08.0273 5412 \Device\Harddisk0\DR0 - ok
18:57:08.0273 5412 ================ Scan VBR ==================================
18:57:08.0320 5412 [ E0DD9EDC4AD5F1E7F8523439DDC4CBC2 ] \Device\Harddisk0\DR0\Partition1
18:57:08.0320 5412 \Device\Harddisk0\DR0\Partition1 - ok
18:57:08.0367 5412 [ 8A56A6FCD73201DFF9D4197898DFF041 ] \Device\Harddisk0\DR0\Partition2
18:57:08.0367 5412 \Device\Harddisk0\DR0\Partition2 - ok
18:57:08.0367 5412 ============================================================
18:57:08.0367 5412 Scan finished
18:57:08.0367 5412 ============================================================
18:57:08.0382 5400 Detected object count: 14
18:57:08.0382 5400 Actual detected object count: 14
18:57:48.0381 5400 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0381 5400 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0381 5400 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0381 5400 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0381 5400 NSUService ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0381 5400 NSUService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0381 5400 PACSPTISVR ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0381 5400 PACSPTISVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0381 5400 SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0381 5400 SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-AppServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-IntegratedServer-UPnP ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-AppServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0396 5400 VAIOMediaPlatform-UCLS-UPnP ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0412 5400 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0412 5400 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:48.0412 5400 VzFw ( UnsignedFile.Multi.Generic ) - skipped by user
18:57:48.0412 5400 VzFw ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:57:57.0475 7388 Deinitialize success
Malwarebyts logMalwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2013.10.09.11
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Joan :: JOAN-PC [administrator]
10/9/2013 7:00:25 PM
mbam-log-2013-10-09 (19-00-25).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 219099
Time elapsed: 8 minute(s), 27 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1BCEDE99-16B9-A219-9E21-DE62B2314CE3} (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\ProgramData\InstallMate\{DD486110-EFE7-42D7-A03C-A7C506AB43E6}\Setup.exe (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
C:\ProgramData\InstallMate\{DD486110-EFE7-42D7-A03C-A7C506AB43E6}\TsuDll.dll (PUP.Optional.Tarma.A) -> Quarantined and deleted successfully.
(end)
thanks again