Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

im getting bsod ran test on separate topic think malware issue please

Started by John Lauhoff , May 05 2012 08:11 PM

  • This topic is locked This topic is locked

#16
John Lauhoff
Posted 05 May 2012 - 11:08 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
All processes killed
========== OTL ==========
No active process named Au_.exe was found!
Registry value HKEY_USERS\S-1-5-21-1277986409-3721482306-3149500578-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}\ deleted successfully.
C:\Users\John\AppData\Roaming\SpeedMaxPc\SpeedMaxPc folder moved successfully.
C:\ProgramData\SpeedMaxPc\SpeedMaxPc folder moved successfully.
File C:\Users\John\AppData\Local\Temp11.html not found.
C:\Users\John\AppData\Local\Temp1.html moved successfully.
Folder C:\Users\John\AppData\Roaming\BitTorrent\ not found.
C:\Users\John\AppData\Roaming\FixCleaner\Results folder moved successfully.
C:\Users\John\AppData\Roaming\FixCleaner\Logs folder moved successfully.
C:\Users\John\AppData\Roaming\FixCleaner folder moved successfully.
C:\Users\John\AppData\Roaming\redsn0w folder moved successfully.
C:\Users\John\AppData\Roaming\SpeedMaxPc folder moved successfully.
C:\install.exe moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\John\Downloads\cmd.bat deleted successfully.
C:\Users\John\Downloads\cmd.txt deleted successfully.
File\Folder C:\Users\John\AppData\Local\Temp\~nsu.tmp\Au_.exe not found.
File\Folder C:\Users\John\AppData\Local\Temp\~nsu.tmp not found.
========== REGISTRY ==========
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: John
->Temp folder emptied: 141075409 bytes
->Temporary Internet Files folder emptied: 2277172 bytes
->Google Chrome cache emptied: 12054220 bytes
->Flash cache emptied: 17373 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11375364 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 18294009704 bytes

Total Files Cleaned = 17,606.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.42.2 log created on 05052012_235710

Files\Folders moved on Reboot...
C:\Users\John\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...
  • 0

Advertisements

#17
CompCav
Posted 06 May 2012 - 04:54 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1.

Download and Install Combofix

Download ComboFix from one of the following locations:

Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks

Posted Image

Posted Image

When finished, it produces a log for you.
Please include the C:\ComboFix.txt in your next reply.



Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

After the run you may have internet problems or access to somethng problems. Simply reboot the computer.


Step 2.

Download the latest version of TDSSKiller from here and save it to your Desktop.


  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.

    Posted Image
  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • Get the report by selecting Reports

    Posted Image

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.


Step 3.

Please post:

ComboFix.txt
TDSSKiller log


How is the computer performing now?
  • 0

#18
John Lauhoff
Posted 06 May 2012 - 08:18 AM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
09:11:43.0618 2240 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18
09:11:43.0899 2240 ============================================================
09:11:43.0899 2240 Current date / time: 2012/05/06 09:11:43.0899
09:11:43.0899 2240 SystemInfo:
09:11:43.0899 2240
09:11:43.0899 2240 OS Version: 6.1.7600 ServicePack: 0.0
09:11:43.0899 2240 Product type: Workstation
09:11:43.0899 2240 ComputerName: JOHN-PC
09:11:43.0899 2240 UserName: John
09:11:43.0899 2240 Windows directory: C:\Windows
09:11:43.0899 2240 System windows directory: C:\Windows
09:11:43.0899 2240 Running under WOW64
09:11:43.0899 2240 Processor architecture: Intel x64
09:11:43.0899 2240 Number of processors: 6
09:11:43.0899 2240 Page size: 0x1000
09:11:43.0899 2240 Boot type: Normal boot
09:11:43.0899 2240 ============================================================
09:11:48.0751 2240 Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:11:48.0751 2240 ============================================================
09:11:48.0751 2240 \Device\Harddisk0\DR0:
09:11:48.0751 2240 MBR partitions:
09:11:48.0751 2240 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:11:48.0751 2240 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xAEA54800
09:11:48.0751 2240 ============================================================
09:11:48.0798 2240 C: <-> \Device\Harddisk0\DR0\Partition1
09:11:48.0798 2240 ============================================================
09:11:48.0798 2240 Initialize success
09:11:48.0798 2240 ============================================================
09:12:30.0366 2912 ============================================================
09:12:30.0366 2912 Scan started
09:12:30.0366 2912 Mode: Manual;
09:12:30.0366 2912 ============================================================
09:12:33.0573 2912 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
09:12:33.0589 2912 1394ohci - ok
09:12:33.0656 2912 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
09:12:33.0660 2912 ACPI - ok
09:12:33.0668 2912 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
09:12:33.0668 2912 AcpiPmi - ok
09:12:33.0704 2912 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
09:12:33.0708 2912 adp94xx - ok
09:12:33.0721 2912 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
09:12:33.0724 2912 adpahci - ok
09:12:33.0732 2912 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
09:12:33.0734 2912 adpu320 - ok
09:12:33.0773 2912 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
09:12:33.0773 2912 AeLookupSvc - ok
09:12:33.0844 2912 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
09:12:33.0851 2912 AFD - ok
09:12:33.0866 2912 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
09:12:33.0867 2912 agp440 - ok
09:12:33.0875 2912 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
09:12:33.0894 2912 ALG - ok
09:12:33.0917 2912 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
09:12:33.0918 2912 aliide - ok
09:12:33.0984 2912 AMD External Events Utility (b3d5af30fa3a5a5e27816084125f6d18) C:\Windows\system32\atiesrxx.exe
09:12:34.0020 2912 AMD External Events Utility - ok
09:12:34.0160 2912 AMD FUEL Service - ok
09:12:34.0184 2912 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
09:12:34.0185 2912 amdide - ok
09:12:34.0215 2912 amdide64 (4249da806451d394712b4d66c8652dbb) C:\Windows\system32\DRIVERS\amdide64.sys
09:12:34.0215 2912 amdide64 - ok
09:12:34.0223 2912 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
09:12:34.0224 2912 AmdK8 - ok
09:12:35.0275 2912 amdkmdag (5520cc4f9f53e162c3377128615b1663) C:\Windows\system32\DRIVERS\atikmdag.sys
09:12:35.0479 2912 amdkmdag - ok
09:12:35.0900 2912 amdkmdap (be3535c5695c081e440249f4a6809c2a) C:\Windows\system32\DRIVERS\atikmpag.sys
09:12:35.0900 2912 amdkmdap - ok
09:12:35.0962 2912 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
09:12:35.0962 2912 AmdPPM - ok
09:12:36.0009 2912 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
09:12:36.0009 2912 amdsata - ok
09:12:36.0040 2912 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
09:12:36.0056 2912 amdsbs - ok
09:12:36.0071 2912 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
09:12:36.0071 2912 amdxata - ok
09:12:36.0196 2912 AODDriver4.01 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:12:36.0196 2912 AODDriver4.01 - ok
09:12:36.0212 2912 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:12:36.0212 2912 AODDriver4.1 - ok
09:12:36.0227 2912 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
09:12:36.0243 2912 AppID - ok
09:12:36.0259 2912 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
09:12:36.0274 2912 AppIDSvc - ok
09:12:36.0290 2912 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
09:12:36.0290 2912 Appinfo - ok
09:12:36.0446 2912 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:12:36.0446 2912 Apple Mobile Device - ok
09:12:36.0493 2912 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
09:12:36.0493 2912 arc - ok
09:12:36.0493 2912 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
09:12:36.0493 2912 arcsas - ok
09:12:36.0508 2912 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:12:36.0508 2912 AsyncMac - ok
09:12:36.0524 2912 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
09:12:36.0524 2912 atapi - ok
09:12:36.0539 2912 AtiHDAudioService (7304a11c66b3314ebff1604c89477487) C:\Windows\system32\drivers\AtihdW86.sys
09:12:36.0539 2912 AtiHDAudioService - ok
09:12:36.0555 2912 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
09:12:36.0555 2912 AtiPcie - ok
09:12:36.0711 2912 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
09:12:36.0742 2912 AudioEndpointBuilder - ok
09:12:36.0742 2912 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
09:12:36.0742 2912 AudioSrv - ok
09:12:36.0789 2912 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
09:12:36.0805 2912 AxInstSV - ok
09:12:36.0836 2912 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
09:12:36.0836 2912 b06bdrv - ok
09:12:36.0851 2912 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:12:36.0867 2912 b57nd60a - ok
09:12:37.0257 2912 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
09:12:37.0273 2912 BBSvc - ok
09:12:37.0304 2912 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
09:12:37.0319 2912 BDESVC - ok
09:12:37.0366 2912 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:12:37.0366 2912 Beep - ok
09:12:37.0429 2912 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
09:12:37.0460 2912 BFE - ok
09:12:37.0663 2912 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
09:12:37.0663 2912 BITS - ok
09:12:38.0006 2912 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:12:38.0006 2912 blbdrive - ok
09:12:39.0098 2912 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
09:12:39.0113 2912 Bonjour Service - ok
09:12:39.0160 2912 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
09:12:39.0160 2912 bowser - ok
09:12:39.0191 2912 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:12:39.0191 2912 BrFiltLo - ok
09:12:39.0191 2912 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:12:39.0191 2912 BrFiltUp - ok
09:12:39.0238 2912 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
09:12:39.0238 2912 BridgeMP - ok
09:12:39.0285 2912 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
09:12:39.0285 2912 Browser - ok
09:12:39.0316 2912 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:12:39.0332 2912 Brserid - ok
09:12:39.0332 2912 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:12:39.0332 2912 BrSerWdm - ok
09:12:39.0332 2912 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:12:39.0332 2912 BrUsbMdm - ok
09:12:39.0332 2912 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:12:39.0332 2912 BrUsbSer - ok
09:12:39.0347 2912 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
09:12:39.0347 2912 BTHMODEM - ok
09:12:39.0347 2912 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
09:12:39.0363 2912 bthserv - ok
09:12:39.0706 2912 btwdins (756b097ef48254b26218b816fbd20f9f) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
09:12:39.0706 2912 btwdins - ok
09:12:39.0737 2912 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:12:39.0737 2912 cdfs - ok
09:12:39.0769 2912 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
09:12:39.0769 2912 cdrom - ok
09:12:39.0784 2912 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
09:12:39.0800 2912 CertPropSvc - ok
09:12:39.0831 2912 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
09:12:39.0831 2912 circlass - ok
09:12:39.0862 2912 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:12:39.0862 2912 CLFS - ok
09:12:40.0346 2912 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:12:40.0346 2912 clr_optimization_v2.0.50727_32 - ok
09:12:40.0736 2912 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:12:40.0736 2912 clr_optimization_v2.0.50727_64 - ok
09:12:40.0736 2912 Scan interrupted by user!
09:12:40.0736 2912 Scan interrupted by user!
09:12:40.0736 2912 Scan interrupted by user!
09:12:40.0736 2912 ============================================================
09:12:40.0736 2912 Scan finished
09:12:40.0736 2912 ============================================================
09:12:40.0751 4088 Detected object count: 0
09:12:40.0751 4088 Actual detected object count: 0
09:13:15.0732 0636 ============================================================
09:13:15.0732 0636 Scan started
09:13:15.0732 0636 Mode: Manual; SigCheck; TDLFS;
09:13:15.0732 0636 ============================================================
09:13:16.0154 0636 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
09:13:16.0185 0636 1394ohci - ok
09:13:16.0216 0636 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
09:13:16.0216 0636 ACPI - ok
09:13:16.0232 0636 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
09:13:16.0294 0636 AcpiPmi - ok
09:13:16.0325 0636 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
09:13:16.0325 0636 adp94xx - ok
09:13:16.0372 0636 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
09:13:16.0388 0636 adpahci - ok
09:13:16.0388 0636 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
09:13:16.0403 0636 adpu320 - ok
09:13:16.0434 0636 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
09:13:16.0481 0636 AeLookupSvc - ok
09:13:16.0528 0636 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
09:13:16.0544 0636 AFD - ok
09:13:16.0559 0636 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
09:13:16.0559 0636 agp440 - ok
09:13:16.0575 0636 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
09:13:16.0590 0636 ALG - ok
09:13:16.0590 0636 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
09:13:16.0606 0636 aliide - ok
09:13:16.0668 0636 AMD External Events Utility (b3d5af30fa3a5a5e27816084125f6d18) C:\Windows\system32\atiesrxx.exe
09:13:16.0715 0636 AMD External Events Utility - ok
09:13:16.0793 0636 AMD FUEL Service - ok
09:13:16.0793 0636 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
09:13:16.0809 0636 amdide - ok
09:13:16.0840 0636 amdide64 (4249da806451d394712b4d66c8652dbb) C:\Windows\system32\DRIVERS\amdide64.sys
09:13:16.0840 0636 amdide64 - ok
09:13:16.0856 0636 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
09:13:16.0856 0636 AmdK8 - ok
09:13:17.0168 0636 amdkmdag (5520cc4f9f53e162c3377128615b1663) C:\Windows\system32\DRIVERS\atikmdag.sys
09:13:17.0261 0636 amdkmdag - ok
09:13:17.0651 0636 amdkmdap (be3535c5695c081e440249f4a6809c2a) C:\Windows\system32\DRIVERS\atikmpag.sys
09:13:17.0667 0636 amdkmdap - ok
09:13:17.0682 0636 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
09:13:17.0698 0636 AmdPPM - ok
09:13:17.0714 0636 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\DRIVERS\amdsata.sys
09:13:17.0714 0636 amdsata - ok
09:13:17.0729 0636 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
09:13:17.0745 0636 amdsbs - ok
09:13:17.0760 0636 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\DRIVERS\amdxata.sys
09:13:17.0760 0636 amdxata - ok
09:13:17.0854 0636 AODDriver4.01 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:13:17.0870 0636 AODDriver4.01 - ok
09:13:17.0870 0636 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
09:13:17.0870 0636 AODDriver4.1 - ok
09:13:17.0885 0636 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
09:13:17.0916 0636 AppID - ok
09:13:17.0948 0636 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
09:13:17.0979 0636 AppIDSvc - ok
09:13:17.0994 0636 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
09:13:18.0026 0636 Appinfo - ok
09:13:18.0150 0636 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:13:18.0150 0636 Apple Mobile Device - ok
09:13:18.0166 0636 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
09:13:18.0166 0636 arc - ok
09:13:18.0182 0636 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
09:13:18.0182 0636 arcsas - ok
09:13:18.0197 0636 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
09:13:18.0213 0636 AsyncMac - ok
09:13:18.0213 0636 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
09:13:18.0228 0636 atapi - ok
09:13:18.0244 0636 AtiHDAudioService (7304a11c66b3314ebff1604c89477487) C:\Windows\system32\drivers\AtihdW86.sys
09:13:18.0291 0636 AtiHDAudioService - ok
09:13:18.0322 0636 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys
09:13:18.0322 0636 AtiPcie - ok
09:13:18.0353 0636 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
09:13:18.0400 0636 AudioEndpointBuilder - ok
09:13:18.0400 0636 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
09:13:18.0431 0636 AudioSrv - ok
09:13:18.0431 0636 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
09:13:18.0478 0636 AxInstSV - ok
09:13:18.0509 0636 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
09:13:18.0525 0636 b06bdrv - ok
09:13:18.0540 0636 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
09:13:18.0556 0636 b57nd60a - ok
09:13:18.0681 0636 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
09:13:18.0696 0636 BBSvc - ok
09:13:18.0712 0636 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
09:13:18.0748 0636 BDESVC - ok
09:13:18.0751 0636 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
09:13:18.0772 0636 Beep - ok
09:13:18.0814 0636 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
09:13:18.0841 0636 BFE - ok
09:13:18.0908 0636 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
09:13:18.0937 0636 BITS - ok
09:13:19.0033 0636 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
09:13:19.0041 0636 blbdrive - ok
09:13:19.0135 0636 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
09:13:19.0145 0636 Bonjour Service - ok
09:13:19.0163 0636 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
09:13:19.0205 0636 bowser - ok
09:13:19.0209 0636 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:13:19.0219 0636 BrFiltLo - ok
09:13:19.0222 0636 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:13:19.0231 0636 BrFiltUp - ok
09:13:19.0240 0636 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
09:13:19.0262 0636 BridgeMP - ok
09:13:19.0291 0636 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
09:13:19.0313 0636 Browser - ok
09:13:19.0335 0636 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
09:13:19.0359 0636 Brserid - ok
09:13:19.0395 0636 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
09:13:19.0408 0636 BrSerWdm - ok
09:13:19.0412 0636 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
09:13:19.0421 0636 BrUsbMdm - ok
09:13:19.0424 0636 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
09:13:19.0443 0636 BrUsbSer - ok
09:13:19.0452 0636 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
09:13:19.0460 0636 BTHMODEM - ok
09:13:19.0470 0636 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
09:13:19.0507 0636 bthserv - ok
09:13:19.0646 0636 btwdins (756b097ef48254b26218b816fbd20f9f) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
09:13:19.0660 0636 btwdins - ok
09:13:19.0669 0636 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
09:13:19.0692 0636 cdfs - ok
09:13:19.0703 0636 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
09:13:19.0720 0636 cdrom - ok
09:13:19.0732 0636 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
09:13:19.0760 0636 CertPropSvc - ok
09:13:19.0765 0636 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
09:13:19.0774 0636 circlass - ok
09:13:19.0792 0636 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
09:13:19.0802 0636 CLFS - ok
09:13:19.0937 0636 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:13:19.0952 0636 clr_optimization_v2.0.50727_32 - ok
09:13:20.0046 0636 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:13:20.0061 0636 clr_optimization_v2.0.50727_64 - ok
09:13:20.0108 0636 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:13:20.0108 0636 clr_optimization_v4.0.30319_32 - ok
09:13:20.0155 0636 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:13:20.0171 0636 clr_optimization_v4.0.30319_64 - ok
09:13:20.0202 0636 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
09:13:20.0202 0636 CmBatt - ok
09:13:20.0233 0636 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
09:13:20.0264 0636 cmdide - ok
09:13:20.0311 0636 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
09:13:20.0342 0636 CNG - ok
09:13:20.0342 0636 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
09:13:20.0342 0636 Compbatt - ok
09:13:20.0405 0636 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
09:13:20.0420 0636 CompositeBus - ok
09:13:20.0436 0636 COMSysApp - ok
09:13:20.0451 0636 cpuz135 (75dbd5db9892d7451d0429bec1aabe1a) C:\Windows\system32\drivers\cpuz135_x64.sys
09:13:20.0467 0636 cpuz135 - ok
09:13:20.0467 0636 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
09:13:20.0483 0636 crcdisk - ok
09:13:20.0514 0636 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
09:13:20.0545 0636 CryptSvc - ok
09:13:20.0576 0636 dc3d (ac41058c1138bbbbc76c8ab55b3eea6a) C:\Windows\system32\DRIVERS\dc3d.sys
09:13:20.0592 0636 dc3d - ok
09:13:20.0654 0636 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
09:13:20.0685 0636 DcomLaunch - ok
09:13:20.0701 0636 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
09:13:20.0763 0636 defragsvc - ok
09:13:20.0810 0636 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
09:13:20.0841 0636 DfsC - ok
09:13:20.0873 0636 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
09:13:20.0951 0636 Dhcp - ok
09:13:20.0951 0636 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
09:13:20.0982 0636 discache - ok
09:13:20.0982 0636 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
09:13:20.0997 0636 Disk - ok
09:13:21.0013 0636 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
09:13:21.0075 0636 Dnscache - ok
09:13:21.0107 0636 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
09:13:21.0153 0636 dot3svc - ok
09:13:21.0169 0636 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
09:13:21.0185 0636 DPS - ok
09:13:21.0216 0636 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
09:13:21.0231 0636 drmkaud - ok
09:13:21.0278 0636 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
09:13:21.0294 0636 DXGKrnl - ok
09:13:21.0325 0636 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
09:13:21.0372 0636 EapHost - ok
09:13:21.0465 0636 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
09:13:21.0528 0636 ebdrv - ok
09:13:21.0871 0636 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
09:13:21.0887 0636 EFS - ok
09:13:21.0980 0636 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
09:13:22.0043 0636 ehRecvr - ok
09:13:22.0058 0636 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
09:13:22.0105 0636 ehSched - ok
09:13:22.0230 0636 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
09:13:22.0245 0636 elxstor - ok
09:13:22.0245 0636 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
09:13:22.0261 0636 ErrDev - ok
09:13:22.0308 0636 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
09:13:22.0339 0636 EventSystem - ok
09:13:22.0355 0636 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
09:13:22.0370 0636 exfat - ok
09:13:22.0386 0636 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
09:13:22.0401 0636 fastfat - ok
09:13:22.0433 0636 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
09:13:22.0479 0636 Fax - ok
09:13:22.0479 0636 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
09:13:22.0495 0636 fdc - ok
09:13:22.0511 0636 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
09:13:22.0542 0636 fdPHost - ok
09:13:22.0542 0636 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
09:13:22.0557 0636 FDResPub - ok
09:13:22.0573 0636 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
09:13:22.0573 0636 FileInfo - ok
09:13:22.0589 0636 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
09:13:22.0604 0636 Filetrace - ok
09:13:22.0620 0636 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
09:13:22.0635 0636 flpydisk - ok
09:13:22.0651 0636 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
09:13:22.0667 0636 FltMgr - ok
09:13:22.0713 0636 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
09:13:22.0760 0636 FontCache - ok
09:13:22.0838 0636 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:13:22.0838 0636 FontCache3.0.0.0 - ok
09:13:22.0947 0636 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
09:13:22.0963 0636 FsDepends - ok
09:13:22.0979 0636 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
09:13:22.0994 0636 fssfltr - ok
09:13:23.0150 0636 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
09:13:23.0181 0636 fsssvc - ok
09:13:23.0540 0636 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
09:13:23.0540 0636 Fs_Rec - ok
09:13:23.0603 0636 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
09:13:23.0618 0636 fvevol - ok
09:13:23.0649 0636 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
09:13:23.0665 0636 gagp30kx - ok
09:13:23.0696 0636 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:13:23.0712 0636 GEARAspiWDM - ok
09:13:23.0759 0636 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
09:13:23.0790 0636 gpsvc - ok
09:13:23.0790 0636 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
09:13:23.0837 0636 hcw85cir - ok
09:13:23.0852 0636 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
09:13:23.0883 0636 HDAudBus - ok
09:13:23.0883 0636 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
09:13:23.0899 0636 HidBatt - ok
09:13:23.0899 0636 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
09:13:23.0915 0636 HidBth - ok
09:13:23.0930 0636 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
09:13:23.0930 0636 HidIr - ok
09:13:23.0946 0636 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
09:13:23.0977 0636 hidserv - ok
09:13:24.0008 0636 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
09:13:24.0008 0636 HidUsb - ok
09:13:24.0039 0636 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
09:13:24.0086 0636 hkmsvc - ok
09:13:24.0109 0636 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
09:13:24.0136 0636 HomeGroupListener - ok
09:13:24.0155 0636 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
09:13:24.0169 0636 HomeGroupProvider - ok
09:13:24.0177 0636 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
09:13:24.0185 0636 HpSAMD - ok
09:13:24.0248 0636 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
09:13:24.0279 0636 HTTP - ok
09:13:24.0283 0636 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
09:13:24.0291 0636 hwpolicy - ok
09:13:24.0303 0636 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
09:13:24.0311 0636 i8042prt - ok
09:13:24.0362 0636 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\DRIVERS\iaStorV.sys
09:13:24.0375 0636 iaStorV - ok
09:13:24.0508 0636 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:13:24.0526 0636 idsvc - ok
09:13:24.0533 0636 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
09:13:24.0540 0636 iirsp - ok
09:13:24.0597 0636 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
09:13:24.0678 0636 IKEEXT - ok
09:13:24.0684 0636 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
09:13:24.0691 0636 intelide - ok
09:13:24.0698 0636 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
09:13:24.0712 0636 intelppm - ok
09:13:24.0728 0636 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
09:13:24.0767 0636 IPBusEnum - ok
09:13:24.0775 0636 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:13:24.0798 0636 IpFilterDriver - ok
09:13:24.0817 0636 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
09:13:24.0856 0636 iphlpsvc - ok
09:13:24.0864 0636 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
09:13:24.0872 0636 IPMIDRV - ok
09:13:24.0886 0636 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
09:13:24.0914 0636 IPNAT - ok
09:13:25.0017 0636 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
09:13:25.0035 0636 iPod Service - ok
09:13:25.0051 0636 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
09:13:25.0061 0636 IRENUM - ok
09:13:25.0065 0636 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
09:13:25.0072 0636 isapnp - ok
09:13:25.0097 0636 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
09:13:25.0099 0636 iScsiPrt - ok
09:13:25.0130 0636 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
09:13:25.0130 0636 kbdclass - ok
09:13:25.0130 0636 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
09:13:25.0146 0636 kbdhid - ok
09:13:25.0177 0636 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
09:13:25.0192 0636 KeyIso - ok
09:13:25.0208 0636 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
09:13:25.0208 0636 KSecDD - ok
09:13:25.0224 0636 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
09:13:25.0239 0636 KSecPkg - ok
09:13:25.0239 0636 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
09:13:25.0270 0636 ksthunk - ok
09:13:25.0286 0636 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
09:13:25.0333 0636 KtmRm - ok
09:13:25.0380 0636 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
09:13:25.0411 0636 LanmanServer - ok
09:13:25.0442 0636 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
09:13:25.0489 0636 LanmanWorkstation - ok
09:13:25.0660 0636 LBTServ (7772dfab22611050b79504e671b06e6e) C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
09:13:25.0692 0636 LBTServ - ok
09:13:26.0025 0636 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
09:13:26.0152 0636 LeapFrog Connect Device Service - ok
09:13:26.0551 0636 LEqdUsb (ed7ec050cd6c20e1a93a4dafb7efd14d) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
09:13:26.0559 0636 LEqdUsb - ok
09:13:26.0614 0636 LHidEqd (3267bc698e29474a8381e68904eb0390) C:\Windows\system32\DRIVERS\LHidEqd.Sys
09:13:26.0623 0636 LHidEqd - ok
09:13:26.0637 0636 LHidFilt (241f2648adf090e2a10095bd6d6f5dcb) C:\Windows\system32\DRIVERS\LHidFilt.Sys
09:13:26.0645 0636 LHidFilt - ok
09:13:26.0693 0636 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
09:13:26.0715 0636 lltdio - ok
09:13:26.0761 0636 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
09:13:26.0811 0636 lltdsvc - ok
09:13:26.0815 0636 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
09:13:26.0851 0636 lmhosts - ok
09:13:26.0868 0636 LMouFilt (342ed5a4b3326014438f36d22d803737) C:\Windows\system32\DRIVERS\LMouFilt.Sys
09:13:26.0875 0636 LMouFilt - ok
09:13:26.0914 0636 LPCFilter (2825a71e7501cb33b3b9f856610c729d) C:\Windows\system32\DRIVERS\LPCFilter.sys
09:13:26.0922 0636 LPCFilter - ok
09:13:26.0950 0636 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
09:13:26.0958 0636 LSI_FC - ok
09:13:27.0011 0636 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
09:13:27.0020 0636 LSI_SAS - ok
09:13:27.0027 0636 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:13:27.0035 0636 LSI_SAS2 - ok
09:13:27.0045 0636 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:13:27.0054 0636 LSI_SCSI - ok
09:13:27.0074 0636 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
09:13:27.0110 0636 luafv - ok
09:13:27.0144 0636 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
09:13:27.0168 0636 Mcx2Svc - ok
09:13:27.0173 0636 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
09:13:27.0181 0636 megasas - ok
09:13:27.0202 0636 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
09:13:27.0213 0636 MegaSR - ok
09:13:27.0245 0636 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:13:27.0281 0636 MMCSS - ok
09:13:27.0286 0636 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
09:13:27.0314 0636 Modem - ok
09:13:27.0319 0636 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
09:13:27.0328 0636 monitor - ok
09:13:27.0347 0636 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
09:13:27.0354 0636 mouclass - ok
09:13:27.0359 0636 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
09:13:27.0367 0636 mouhid - ok
09:13:27.0377 0636 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
09:13:27.0385 0636 mountmgr - ok
09:13:27.0419 0636 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
09:13:27.0429 0636 MpFilter - ok
09:13:27.0443 0636 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
09:13:27.0453 0636 mpio - ok
09:13:27.0461 0636 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
09:13:27.0484 0636 mpsdrv - ok
09:13:27.0511 0636 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
09:13:27.0558 0636 MpsSvc - ok
09:13:27.0570 0636 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
09:13:27.0601 0636 MRxDAV - ok
09:13:27.0657 0636 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:13:27.0684 0636 mrxsmb - ok
09:13:27.0715 0636 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:13:27.0726 0636 mrxsmb10 - ok
09:13:27.0745 0636 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:13:27.0753 0636 mrxsmb20 - ok
09:13:27.0758 0636 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
09:13:27.0765 0636 msahci - ok
09:13:27.0779 0636 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
09:13:27.0789 0636 msdsm - ok
09:13:27.0805 0636 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
09:13:27.0829 0636 MSDTC - ok
09:13:27.0837 0636 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
09:13:27.0859 0636 Msfs - ok
09:13:27.0862 0636 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
09:13:27.0885 0636 mshidkmdf - ok
09:13:27.0916 0636 MSHUSBVideo (bb590070d606ae6f008341fc9a7b2ad7) C:\Windows\system32\Drivers\nx6000.sys
09:13:27.0921 0636 MSHUSBVideo - ok
09:13:27.0925 0636 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
09:13:27.0932 0636 msisadrv - ok
09:13:27.0955 0636 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
09:13:27.0994 0636 MSiSCSI - ok
09:13:27.0997 0636 msiserver - ok
09:13:28.0002 0636 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
09:13:28.0024 0636 MSKSSRV - ok
09:13:28.0127 0636 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:13:28.0134 0636 MsMpSvc - ok
09:13:28.0137 0636 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
09:13:28.0159 0636 MSPCLOCK - ok
09:13:28.0162 0636 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
09:13:28.0185 0636 MSPQM - ok
09:13:28.0210 0636 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
09:13:28.0222 0636 MsRPC - ok
09:13:28.0229 0636 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
09:13:28.0236 0636 mssmbios - ok
09:13:28.0250 0636 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
09:13:28.0273 0636 MSTEE - ok
09:13:28.0276 0636 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
09:13:28.0300 0636 MTConfig - ok
09:13:28.0324 0636 MTsensor (19b006b181e3875fd254f7b67acf1e7c) C:\Windows\system32\DRIVERS\ASACPI.sys
09:13:28.0324 0636 MTsensor - ok
09:13:28.0340 0636 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
09:13:28.0340 0636 Mup - ok
09:13:28.0387 0636 mv61xx (7064f169a5e53b915091b55525d73483) C:\Windows\system32\DRIVERS\mv61xx.sys
09:13:28.0387 0636 mv61xx - ok
09:13:28.0418 0636 MxEFUF (08835780cc6a5cff5275101b5a9d17a4) C:\Windows\system32\DRIVERS\MxEFUF64.sys
09:13:28.0449 0636 MxEFUF - ok
09:13:28.0480 0636 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
09:13:28.0511 0636 napagent - ok
09:13:28.0527 0636 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
09:13:28.0543 0636 NativeWifiP - ok
09:13:28.0589 0636 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
09:13:28.0605 0636 NDIS - ok
09:13:28.0621 0636 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
09:13:28.0652 0636 NdisCap - ok
09:13:28.0652 0636 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
09:13:28.0667 0636 NdisTapi - ok
09:13:28.0683 0636 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
09:13:28.0699 0636 Ndisuio - ok
09:13:28.0699 0636 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
09:13:28.0730 0636 NdisWan - ok
09:13:28.0730 0636 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
09:13:28.0761 0636 NDProxy - ok
09:13:28.0761 0636 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
09:13:28.0792 0636 NetBIOS - ok
09:13:28.0808 0636 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
09:13:28.0839 0636 NetBT - ok
09:13:28.0870 0636 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
09:13:28.0886 0636 Netlogon - ok
09:13:28.0901 0636 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
09:13:28.0933 0636 Netman - ok
09:13:28.0948 0636 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
09:13:28.0979 0636 netprofm - ok
09:13:29.0073 0636 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:13:29.0104 0636 NetTcpPortSharing - ok
09:13:29.0120 0636 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
09:13:29.0120 0636 nfrd960 - ok
09:13:29.0191 0636 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:13:29.0201 0636 NisDrv - ok
09:13:29.0309 0636 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
09:13:29.0325 0636 NisSrv - ok
09:13:29.0349 0636 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
09:13:29.0374 0636 NlaSvc - ok
09:13:29.0380 0636 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
09:13:29.0403 0636 Npfs - ok
09:13:29.0418 0636 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
09:13:29.0473 0636 nsi - ok
09:13:29.0477 0636 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
09:13:29.0517 0636 nsiproxy - ok
09:13:29.0805 0636 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
09:13:29.0828 0636 Ntfs - ok
09:13:30.0201 0636 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
09:13:30.0224 0636 Null - ok
09:13:30.0271 0636 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\DRIVERS\nvraid.sys
09:13:30.0283 0636 nvraid - ok
09:13:30.0297 0636 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\DRIVERS\nvstor.sys
09:13:30.0306 0636 nvstor - ok
09:13:30.0317 0636 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
09:13:30.0326 0636 nv_agp - ok
09:13:30.0348 0636 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
09:13:30.0356 0636 ohci1394 - ok
09:13:30.0396 0636 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:13:30.0429 0636 p2pimsvc - ok
09:13:30.0465 0636 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
09:13:30.0477 0636 p2psvc - ok
09:13:30.0486 0636 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
09:13:30.0494 0636 Parport - ok
09:13:30.0503 0636 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
09:13:30.0511 0636 partmgr - ok
09:13:30.0525 0636 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
09:13:30.0548 0636 PcaSvc - ok
09:13:30.0566 0636 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
09:13:30.0575 0636 pci - ok
09:13:30.0579 0636 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
09:13:30.0595 0636 pciide - ok
09:13:30.0629 0636 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
09:13:30.0639 0636 pcmcia - ok
09:13:30.0644 0636 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
09:13:30.0652 0636 pcw - ok
09:13:30.0669 0636 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
09:13:30.0696 0636 PEAUTH - ok
09:13:30.0892 0636 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
09:13:30.0908 0636 PerfHost - ok
09:13:31.0204 0636 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
09:13:31.0267 0636 pla - ok
09:13:31.0345 0636 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
09:13:31.0376 0636 PlugPlay - ok
09:13:31.0392 0636 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
09:13:31.0423 0636 PNRPAutoReg - ok
09:13:31.0423 0636 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
09:13:31.0438 0636 PNRPsvc - ok
09:13:31.0563 0636 Point64 (89f340670034834ddc91cbc452b756ec) C:\Windows\system32\DRIVERS\point64.sys
09:13:31.0579 0636 Point64 - ok
09:13:31.0641 0636 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
09:13:31.0672 0636 PolicyAgent - ok
09:13:31.0719 0636 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
09:13:31.0750 0636 Power - ok
09:13:31.0813 0636 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
09:13:31.0844 0636 PptpMiniport - ok
09:13:31.0860 0636 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
09:13:31.0860 0636 Processor - ok
09:13:31.0906 0636 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
09:13:31.0938 0636 ProfSvc - ok
09:13:31.0969 0636 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
09:13:31.0984 0636 ProtectedStorage - ok
09:13:32.0000 0636 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
09:13:32.0031 0636 Psched - ok
09:13:32.0078 0636 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
09:13:32.0109 0636 ql2300 - ok
09:13:32.0468 0636 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
09:13:32.0499 0636 ql40xx - ok
09:13:32.0530 0636 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
09:13:32.0562 0636 QWAVE - ok
09:13:32.0562 0636 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
09:13:32.0577 0636 QWAVEdrv - ok
09:13:32.0593 0636 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
09:13:32.0608 0636 RasAcd - ok
09:13:32.0655 0636 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
09:13:32.0671 0636 RasAgileVpn - ok
09:13:32.0686 0636 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
09:13:32.0733 0636 RasAuto - ok
09:13:32.0733 0636 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:13:32.0764 0636 Rasl2tp - ok
09:13:32.0780 0636 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
09:13:32.0811 0636 RasMan - ok
09:13:32.0811 0636 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
09:13:32.0842 0636 RasPppoe - ok
09:13:32.0842 0636 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
09:13:32.0874 0636 RasSstp - ok
09:13:32.0889 0636 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
09:13:32.0905 0636 rdbss - ok
09:13:32.0905 0636 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
09:13:32.0920 0636 rdpbus - ok
09:13:32.0920 0636 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:13:32.0983 0636 RDPCDD - ok
09:13:33.0014 0636 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
09:13:33.0030 0636 RDPENCDD - ok
09:13:33.0030 0636 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
09:13:33.0061 0636 RDPREFMP - ok
09:13:33.0092 0636 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
09:13:33.0108 0636 RDPWD - ok
09:13:33.0139 0636 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
09:13:33.0154 0636 rdyboost - ok
09:13:33.0186 0636 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
09:13:33.0217 0636 RemoteAccess - ok
09:13:33.0232 0636 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
09:13:33.0264 0636 RemoteRegistry - ok
09:13:33.0264 0636 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
09:13:33.0310 0636 RpcEptMapper - ok
09:13:33.0342 0636 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
09:13:33.0357 0636 RpcLocator - ok
09:13:33.0451 0636 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\System32\rpcss.dll
09:13:33.0466 0636 RpcSs - ok
09:13:33.0482 0636 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
09:13:33.0513 0636 rspndr - ok
09:13:33.0560 0636 RTL8167 (f307f1c796c0886490839fde5ed5728c) C:\Windows\system32\DRIVERS\Rt64win7.sys
09:13:33.0576 0636 RTL8167 - ok
09:13:33.0639 0636 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
09:13:33.0647 0636 SamSs - ok
09:13:33.0657 0636 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
09:13:33.0678 0636 sbp2port - ok
09:13:33.0694 0636 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
09:13:33.0749 0636 SCardSvr - ok
09:13:33.0754 0636 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
09:13:33.0778 0636 scfilter - ok
09:13:33.0837 0636 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
09:13:33.0852 0636 Schedule - ok
09:13:33.0882 0636 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
09:13:33.0904 0636 SCPolicySvc - ok
09:13:33.0920 0636 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
09:13:33.0969 0636 SDRSVC - ok
09:13:34.0092 0636 SeaPort (78779ee07231c658b483b1f38b5088df) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
09:13:34.0102 0636 SeaPort - ok
09:13:34.0206 0636 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
09:13:34.0233 0636 secdrv - ok
09:13:34.0240 0636 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
09:13:34.0274 0636 seclogon - ok
09:13:34.0312 0636 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
09:13:34.0335 0636 SENS - ok
09:13:34.0345 0636 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
09:13:34.0380 0636 SensrSvc - ok
09:13:34.0384 0636 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
09:13:34.0391 0636 Serenum - ok
09:13:34.0399 0636 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
09:13:34.0419 0636 Serial - ok
09:13:34.0424 0636 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
09:13:34.0434 0636 sermouse - ok
09:13:34.0449 0636 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
09:13:34.0488 0636 SessionEnv - ok
09:13:34.0492 0636 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
09:13:34.0505 0636 sffdisk - ok
09:13:34.0509 0636 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
09:13:34.0518 0636 sffp_mmc - ok
09:13:34.0521 0636 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
09:13:34.0530 0636 sffp_sd - ok
09:13:34.0533 0636 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
09:13:34.0540 0636 sfloppy - ok
09:13:34.0585 0636 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
09:13:34.0631 0636 SharedAccess - ok
09:13:34.0661 0636 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
09:13:34.0676 0636 ShellHWDetection - ok
09:13:34.0676 0636 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:13:34.0694 0636 SiSRaid2 - ok
09:13:34.0707 0636 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
09:13:34.0716 0636 SiSRaid4 - ok
09:13:34.0841 0636 SkypeUpdate (68ea68d03bf58389fe6ad2b38fad798c) C:\Program Files (x86)\Skype\Updater\Updater.exe
09:13:34.0850 0636 SkypeUpdate - ok
09:13:34.0876 0636 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
09:13:34.0913 0636 Smb - ok
09:13:34.0939 0636 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
09:13:34.0958 0636 SNMPTRAP - ok
09:13:34.0962 0636 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
09:13:34.0969 0636 spldr - ok
09:13:35.0020 0636 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
09:13:35.0032 0636 Spooler - ok
09:13:35.0136 0636 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
09:13:35.0218 0636 sppsvc - ok
09:13:35.0514 0636 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
09:13:35.0555 0636 sppuinotify - ok
09:13:35.0681 0636 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
09:13:35.0697 0636 srv - ok
09:13:35.0731 0636 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
09:13:35.0740 0636 srv2 - ok
09:13:35.0763 0636 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
09:13:35.0773 0636 srvnet - ok
09:13:35.0805 0636 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
09:13:35.0831 0636 SSDPSRV - ok
09:13:35.0838 0636 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
09:13:35.0863 0636 SstpSvc - ok
09:13:35.0967 0636 Steam Client Service - ok
09:13:35.0992 0636 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
09:13:36.0001 0636 stexstor - ok
09:13:36.0062 0636 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
09:13:36.0079 0636 stisvc - ok
09:13:36.0111 0636 SWDUMon (04cf20310145dec63d5387beaff77d9a) C:\Windows\system32\DRIVERS\SWDUMon.sys
09:13:36.0118 0636 SWDUMon - ok
09:13:36.0121 0636 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
09:13:36.0129 0636 swenum - ok
09:13:36.0173 0636 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
09:13:36.0216 0636 swprv - ok
09:13:36.0286 0636 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
09:13:36.0327 0636 SysMain - ok
09:13:36.0640 0636 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
09:13:36.0665 0636 TabletInputService - ok
09:13:36.0684 0636 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
09:13:36.0709 0636 TapiSrv - ok
09:13:36.0722 0636 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
09:13:36.0747 0636 TBS - ok
09:13:36.0893 0636 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
09:13:36.0918 0636 Tcpip - ok
09:13:37.0051 0636 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
09:13:37.0077 0636 TCPIP6 - ok
09:13:37.0164 0636 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
09:13:37.0188 0636 tcpipreg - ok
09:13:37.0194 0636 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
09:13:37.0225 0636 TDPIPE - ok
09:13:37.0249 0636 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
09:13:37.0272 0636 TDTCP - ok
09:13:37.0300 0636 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
09:13:37.0324 0636 tdx - ok
09:13:37.0331 0636 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
09:13:37.0333 0636 TermDD - ok
09:13:37.0379 0636 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
09:13:37.0411 0636 TermService - ok
09:13:37.0426 0636 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
09:13:37.0442 0636 Themes - ok
09:13:37.0473 0636 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
09:13:37.0504 0636 THREADORDER - ok
09:13:37.0504 0636 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
09:13:37.0535 0636 TrkWks - ok
09:13:37.0567 0636 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
09:13:37.0582 0636 TrustedInstaller - ok
09:13:37.0582 0636 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:13:37.0613 0636 tssecsrv - ok
09:13:37.0645 0636 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
09:13:37.0676 0636 tunnel - ok
09:13:37.0676 0636 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
09:13:37.0691 0636 uagp35 - ok
09:13:37.0707 0636 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
09:13:37.0738 0636 udfs - ok
09:13:37.0754 0636 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
09:13:37.0769 0636 UI0Detect - ok
09:13:37.0785 0636 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
09:13:37.0785 0636 uliagpkx - ok
09:13:37.0816 0636 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
09:13:37.0816 0636 umbus - ok
09:13:37.0816 0636 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
09:13:37.0847 0636 UmPass - ok
09:13:37.0863 0636 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
09:13:37.0879 0636 upnphost - ok
09:13:37.0941 0636 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
09:13:37.0957 0636 USBAAPL64 - ok
09:13:38.0003 0636 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys
09:13:38.0019 0636 usbaudio - ok
09:13:38.0050 0636 usbccgp (7b6a127c93ee590e4d79a5f2a76fe46f) C:\Windows\system32\DRIVERS\usbccgp.sys
09:13:38.0081 0636 usbccgp - ok
09:13:38.0097 0636 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
09:13:38.0128 0636 usbcir - ok
09:13:38.0159 0636 usbehci (92969ba5ac44e229c55a332864f79677) C:\Windows\system32\DRIVERS\usbehci.sys
09:13:38.0159 0636 usbehci - ok
09:13:38.0191 0636 usbfilter (33a58c5630200e17b51c8d73dd64181b) C:\Windows\system32\DRIVERS\usbfilter.sys
09:13:38.0206 0636 usbfilter - ok
09:13:38.0222 0636 usbhub (e7df1cfd28ca86b35ef5add0735ceef3) C:\Windows\system32\DRIVERS\usbhub.sys
09:13:38.0253 0636 usbhub - ok
09:13:38.0284 0636 usbohci (f1bb1e55f1e7a65c5839ccc7b36d773e) C:\Windows\system32\DRIVERS\usbohci.sys
09:13:38.0300 0636 usbohci - ok
09:13:38.0315 0636 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
09:13:38.0315 0636 usbprint - ok
09:13:38.0362 0636 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:13:38.0378 0636 USBSTOR - ok
09:13:38.0393 0636 usbuhci (bc3070350a491d84b518d7cca9abd36f) C:\Windows\system32\DRIVERS\usbuhci.sys
09:13:38.0393 0636 usbuhci - ok
09:13:38.0409 0636 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
09:13:38.0440 0636 usbvideo - ok
09:13:38.0471 0636 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
09:13:38.0518 0636 UxSms - ok
09:13:38.0549 0636 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
09:13:38.0565 0636 VaultSvc - ok
09:13:38.0565 0636 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
09:13:38.0581 0636 vdrvroot - ok
09:13:38.0627 0636 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
09:13:38.0643 0636 vds - ok
09:13:38.0659 0636 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
09:13:38.0659 0636 vga - ok
09:13:38.0659 0636 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
09:13:38.0705 0636 VgaSave - ok
09:13:38.0721 0636 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
09:13:38.0737 0636 vhdmp - ok
09:13:38.0830 0636 VIAHdAudAddService (3826718e3b26643470094c414aa762ca) C:\Windows\system32\drivers\viahduaa.sys
09:13:38.0846 0636 VIAHdAudAddService - ok
09:13:39.0189 0636 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
09:13:39.0205 0636 viaide - ok
09:13:39.0236 0636 VIAKaraokeService (a83a9731d98f7acec581af9ddd57fe10) C:\Windows\system32\viakaraokesrv.exe
09:13:39.0236 0636 VIAKaraokeService - ok
09:13:39.0251 0636 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
09:13:39.0251 0636 volmgr - ok
09:13:39.0329 0636 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
09:13:39.0345 0636 volmgrx - ok
09:13:39.0361 0636 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
09:13:39.0376 0636 volsnap - ok
09:13:39.0392 0636 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
09:13:39.0392 0636 vsmraid - ok
09:13:39.0470 0636 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
09:13:39.0548 0636 VSS - ok
09:13:39.0751 0636 vToolbarUpdater11.0.2 (56e1e4442e4613fb2039a6b7421f4e58) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
09:13:39.0766 0636 vToolbarUpdater11.0.2 - ok
09:13:40.0172 0636 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
09:13:40.0203 0636 vwifibus - ok
09:13:40.0234 0636 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
09:13:40.0265 0636 W32Time - ok
09:13:40.0281 0636 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
09:13:40.0297 0636 WacomPen - ok
09:13:40.0328 0636 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
09:13:40.0359 0636 WANARP - ok
09:13:40.0359 0636 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
09:13:40.0375 0636 Wanarpv6 - ok
09:13:40.0468 0636 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
09:13:40.0499 0636 WatAdminSvc - ok
09:13:40.0562 0636 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
09:13:40.0687 0636 wbengine - ok
09:13:41.0030 0636 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
09:13:41.0061 0636 WbioSrvc - ok
09:13:41.0108 0636 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
09:13:41.0170 0636 wcncsvc - ok
09:13:41.0201 0636 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
09:13:41.0233 0636 WcsPlugInService - ok
09:13:41.0342 0636 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
09:13:41.0357 0636 Wd - ok
09:13:41.0373 0636 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
09:13:41.0389 0636 Wdf01000 - ok
09:13:41.0435 0636 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:13:41.0451 0636 WdiServiceHost - ok
09:13:41.0451 0636 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
09:13:41.0467 0636 WdiSystemHost - ok
09:13:41.0513 0636 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
09:13:41.0576 0636 WebClient - ok
09:13:41.0623 0636 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
09:13:41.0669 0636 Wecsvc - ok
09:13:41.0716 0636 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
09:13:41.0747 0636 wercplsupport - ok
09:13:41.0763 0636 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
09:13:41.0794 0636 WerSvc - ok
09:13:41.0825 0636 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
09:13:41.0841 0636 WfpLwf - ok
09:13:41.0857 0636 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
09:13:41.0857 0636 WIMMount - ok
09:13:41.0919 0636 WinDefend - ok
09:13:41.0919 0636 WinHttpAutoProxySvc - ok
09:13:42.0091 0636 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
09:13:42.0122 0636 Winmgmt - ok
09:13:42.0200 0636 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
09:13:42.0278 0636 WinRM - ok
09:13:42.0699 0636 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
09:13:42.0699 0636 WinUsb - ok
09:13:42.0746 0636 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
09:13:42.0793 0636 Wlansvc - ok
09:13:42.0886 0636 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:13:42.0902 0636 wlcrasvc - ok
09:13:43.0042 0636 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:13:43.0105 0636 wlidsvc - ok
09:13:43.0495 0636 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
09:13:43.0510 0636 WmiAcpi - ok
09:13:43.0666 0636 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
09:13:43.0697 0636 wmiApSrv - ok
09:13:43.0775 0636 WMPNetworkSvc - ok
09:13:43.0807 0636 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
09:13:43.0838 0636 WPCSvc - ok
09:13:43.0853 0636 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
09:13:43.0869 0636 WPDBusEnum - ok
09:13:43.0869 0636 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
09:13:43.0916 0636 ws2ifsl - ok
09:13:43.0963 0636 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
09:13:44.0009 0636 wscsvc - ok
09:13:44.0009 0636 WSearch - ok
09:13:44.0103 0636 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
09:13:44.0165 0636 wuauserv - ok
09:13:44.0555 0636 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
09:13:44.0587 0636 WudfPf - ok
09:13:44.0587 0636 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:13:44.0618 0636 WUDFRd - ok
09:13:44.0618 0636 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
09:13:44.0665 0636 wudfsvc - ok
09:13:44.0680 0636 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
09:13:44.0711 0636 WwanSvc - ok
09:13:44.0758 0636 xusb21 (2ee48cfce7ca8e0db4c44c7476c0943b) C:\Windows\system32\DRIVERS\xusb21.sys
09:13:44.0789 0636 xusb21 - ok
09:13:44.0805 0636 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:13:44.0961 0636 \Device\Harddisk0\DR0 - ok
09:13:44.0961 0636 Boot (0x1200) (a0192d10e73372e732dabd7e9a0fad9c) \Device\Harddisk0\DR0\Partition0
09:13:44.0961 0636 \Device\Harddisk0\DR0\Partition0 - ok
09:13:44.0992 0636 Boot (0x1200) (80448c0cbba40657cc1719cc01db10d2) \Device\Harddisk0\DR0\Partition1
09:13:44.0992 0636 \Device\Harddisk0\DR0\Partition1 - ok
09:13:44.0992 0636 ============================================================
09:13:44.0992 0636 Scan finished
09:13:44.0992 0636 ============================================================
09:13:45.0008 1996 Detected object count: 0
09:13:45.0008 1996 Actual detected object count: 0



ComboFix 12-05-06.01 - John 05/06/2012 8:59.1.6 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.8191.7017 [GMT -5:00]
Running from: c:\users\John\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-04-06 to 2012-05-06 )))))))))))))))))))))))))))))))
.
.
2012-05-06 14:03 . 2012-05-06 14:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-05-06 04:57 . 2012-05-06 04:57 -------- d-----w- C:\_OTL
2012-05-06 01:05 . 2012-05-06 14:07 -------- d-----w- c:\program files (x86)\Steam
2012-05-05 22:49 . 2012-05-05 22:55 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-05-05 22:48 . 2012-05-05 22:48 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2012-05-05 22:00 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2012-05-05 21:35 . 2012-05-05 19:33 -------- d-----w- c:\windows\Panther
2012-05-05 21:25 . 2012-05-05 19:20 -------- d-----w- C:\$WINDOWS.~Q
2012-05-05 21:17 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2012-05-05 21:17 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2012-05-05 21:13 . 2009-09-10 05:52 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll
2012-05-05 21:13 . 2009-09-10 06:28 311808 ----a-w- c:\windows\system32\msv1_0.dll
2012-05-05 21:10 . 2012-05-05 21:18 -------- d-----w- C:\$INPLACE.~TR
2012-05-05 21:03 . 2009-11-25 17:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2012-05-05 21:03 . 2009-11-25 17:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2012-05-05 21:03 . 2009-11-25 17:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2012-05-05 21:03 . 2009-11-25 17:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2012-05-05 21:03 . 2009-11-25 17:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2012-05-05 21:03 . 2009-11-25 17:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2012-05-05 21:03 . 2009-11-25 17:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2012-05-05 21:03 . 2009-11-25 17:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2012-05-05 21:03 . 2009-11-25 17:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2012-05-05 21:03 . 2009-11-25 17:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2012-05-05 20:32 . 2012-03-06 06:43 5504880 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-05 20:32 . 2012-03-06 05:59 3958128 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-05-05 20:32 . 2012-03-06 05:59 3902320 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-05-05 20:28 . 2012-05-05 20:28 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-05-05 20:21 . 2012-03-01 06:54 22896 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-05-05 20:21 . 2012-03-01 06:40 80896 ----a-w- c:\windows\system32\imagehlp.dll
2012-05-05 20:21 . 2012-03-01 05:45 158720 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-05-05 20:21 . 2012-03-01 06:45 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-05-05 20:21 . 2012-03-01 06:35 5120 ----a-w- c:\windows\system32\wmi.dll
2012-05-05 20:21 . 2012-03-01 05:49 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-05-05 20:21 . 2012-03-01 05:40 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-05-05 20:16 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2012-05-05 20:16 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2012-05-05 20:14 . 2009-09-03 07:36 1975296 ----a-w- c:\windows\system32\CertEnroll.dll
2012-05-05 20:13 . 2011-11-17 07:10 340992 ----a-w- c:\windows\system32\schannel.dll
2012-05-05 20:12 . 2009-10-28 06:24 389632 ----a-w- c:\windows\system32\winlogon.exe
2012-05-05 20:11 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll
2012-05-05 20:03 . 2011-10-15 06:25 723456 ----a-w- c:\windows\system32\EncDec.dll
2012-05-05 20:03 . 2011-10-15 05:48 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2012-05-05 20:02 . 2010-08-27 06:14 236032 ----a-w- c:\windows\system32\srvsvc.dll
2012-05-05 20:02 . 2010-08-27 05:46 9728 ----a-w- c:\windows\SysWow64\sscore.dll
2012-05-05 20:02 . 2011-02-23 05:15 90624 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-05-05 20:01 . 2010-10-16 05:23 112000 ----a-w- c:\windows\system32\consent.exe
2012-05-05 20:01 . 2011-11-19 15:07 77312 ----a-w- c:\windows\system32\packager.dll
2012-05-05 20:01 . 2011-11-19 14:06 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-05-05 19:40 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll
2012-05-05 19:40 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll
2012-05-05 19:40 . 2012-01-25 06:27 76288 ----a-w- c:\windows\system32\rdpwsx.dll
2012-05-05 19:40 . 2012-01-25 06:27 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-05-05 19:40 . 2012-01-25 06:20 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-05-05 19:40 . 2012-02-15 06:27 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-05-05 19:39 . 2012-02-15 05:44 826368 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-05-05 19:39 . 2012-02-15 04:47 204800 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-05-05 19:39 . 2012-02-15 04:46 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-05-05 19:36 . 2012-05-05 19:36 -------- d-----w- c:\program files (x86)\Microsoft.NET
2012-05-05 18:43 . 2012-05-05 19:33 -------- d-----w- c:\users\John
2012-05-05 18:42 . 2012-05-05 18:43 18960 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2012-05-05 18:42 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\Microsoft LifeCam
2012-05-05 18:42 . 2012-05-05 18:45 -------- d-----w- c:\program files\Microsoft LifeCam
2012-05-05 18:41 . 2012-05-05 18:41 0 ----a-w- c:\windows\ativpsrm.bin
2012-05-05 04:27 . 2012-05-05 04:27 927800 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C8929607-9A06-4223-A290-AA542BC6C4EC}\gapaengine.dll
2012-05-05 04:27 . 2012-04-13 06:46 8917360 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{97C1508A-C2E4-4329-9419-5BD218978D77}\mpengine.dll
2012-05-05 04:24 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2012-05-05 04:24 . 2012-05-05 18:45 -------- d-----w- c:\program files\Microsoft Security Client
2012-05-05 03:37 . 2009-08-14 04:10 73984 ----a-w- c:\windows\system32\drivers\xusb21.sys
2012-05-05 03:37 . 2009-07-31 04:46 1436920 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2012-05-05 03:37 . 2010-11-04 02:50 1580368 ----a-w- c:\windows\system32\LogiLDA.DLL
2012-05-05 03:36 . 2012-02-16 22:21 51568 ----a-w- c:\windows\system32\drivers\dc3d.sys
2012-05-05 03:35 . 2011-10-20 16:24 157696 ----a-w- c:\windows\system32\drivers\MxEFUF64.sys
2012-05-05 03:34 . 2010-03-22 15:55 46192 ----a-w- c:\windows\system32\drivers\LPCFilter.sys
2012-05-05 03:34 . 2012-02-16 22:21 45424 ----a-w- c:\windows\system32\drivers\point64.sys
2012-05-05 03:33 . 2012-04-18 14:16 90624 ----a-w- c:\windows\system32\drivers\AtihdW86.sys
2012-05-05 03:27 . 2012-02-16 22:21 2046320 ----a-w- c:\windows\system32\coin90.dll
2012-05-05 02:21 . 2012-05-06 01:44 13920 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2012-05-05 02:17 . 2012-05-05 18:45 -------- d-----w- c:\program files\CPUID
2012-05-05 02:17 . 2012-03-09 15:57 23816 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-05-05 00:15 . 2012-05-05 00:15 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-05-05 00:14 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\QuickTime
2012-05-04 23:42 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\Runic Games
2012-05-04 22:34 . 2010-03-30 14:48 11832 ----a-w- c:\windows\system32\drivers\amdide64.sys
2012-05-04 20:46 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2012-05-04 20:28 . 2012-05-05 18:46 -------- d-----w- c:\program files (x86)\Innovative Solutions
2012-05-04 17:22 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\Screenshot Utility
2012-05-04 16:41 . 2011-12-13 17:44 56448 ----a-w- c:\windows\system32\drivers\usbfilter.sys
2012-05-04 16:39 . 2012-05-05 18:45 -------- d-----w- c:\program files\Logitech
2012-05-04 16:38 . 2012-05-05 18:45 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2012-05-04 16:37 . 2012-03-24 02:07 677488 ----a-w- c:\windows\system32\VIASysFx.dll
2012-05-04 16:37 . 2012-03-24 02:07 2965104 ----a-w- c:\windows\system32\VIAPropPageExt.dll
2012-05-04 16:37 . 2012-03-24 02:07 94832 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll
2012-05-04 16:37 . 2012-03-24 02:07 1119344 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll
2012-05-04 16:37 . 2012-03-24 02:07 27760 ----a-w- c:\windows\system32\ViakaraokeSrv.exe
2012-05-04 16:37 . 2012-03-24 02:07 116848 ----a-w- c:\windows\system32\ViaKaraokePropPageExt.dll
2012-05-04 16:37 . 2012-03-24 02:07 1161328 ----a-w- c:\windows\system32\ViaKaraokeApo.dll
2012-05-04 16:37 . 2012-03-24 02:07 2193008 ----a-w- c:\windows\system32\drivers\viahduaa.sys
2012-05-04 16:37 . 2012-03-24 02:07 91760 ----a-w- c:\windows\system32\Dts2PropPageExt.dll
2012-05-04 16:37 . 2011-06-09 05:19 85504 ----a-w- c:\windows\system32\nQPropPageExt.dll
2012-05-04 16:37 . 2011-06-09 05:19 83968 ----a-w- c:\windows\system32\nQAPO.dll
2012-05-04 15:55 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\Realtek
2012-05-04 15:55 . 2012-05-05 18:46 -------- d-----w- c:\program files (x86)\Marvell
2012-05-04 15:53 . 2007-04-12 02:35 414632 ----a-w- c:\windows\difxapi.dll
2012-05-04 15:53 . 2012-05-05 19:03 -------- d-----w- c:\program files (x86)\VIA
2012-05-04 15:51 . 2012-05-05 18:46 -------- d-----w- c:\program files (x86)\Common Files\InstallShield
2012-05-04 15:50 . 2012-05-05 19:04 -------- d-----w- c:\windows\AsDmiHtm
2012-05-04 15:41 . 2009-08-24 11:55 16440 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2012-05-03 23:45 . 2012-05-05 19:04 -------- d-----w- c:\programdata\Norton
2012-05-03 23:11 . 2012-05-06 04:57 -------- d-----w- c:\programdata\SpeedMaxPc
2012-05-03 22:09 . 2012-03-16 21:02 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2012-05-03 22:09 . 2012-03-16 21:02 685672 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2012-05-03 22:09 . 2012-03-16 21:02 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2012-05-03 20:22 . 2012-05-06 04:40 -------- d-----w- c:\program files\WhoCrashed
2012-05-03 18:32 . 2012-05-05 19:04 -------- d-----w- c:\programdata\Codemasters
2012-05-03 18:31 . 2011-09-06 01:57 1306624 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2012-05-03 18:31 . 2010-09-22 19:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2012-05-03 18:31 . 2012-05-05 18:46 -------- d-----w- c:\program files (x86)\BRS
2012-05-03 18:31 . 2012-05-05 18:47 -------- d-----w- c:\program files (x86)\OpenAL
2012-05-03 18:31 . 2012-05-03 18:31 466456 ----a-w- c:\windows\system32\wrap_oal.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-13 08:46 . 2012-05-04 14:50 8917360 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{AFCE4AC1-F791-42C4-B282-ECE0865DC6CB}\mpengine.dll
2012-04-06 03:34 . 2012-04-06 03:34 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-04-06 03:34 . 2012-04-06 03:34 74752 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-04-06 03:34 . 2012-04-06 03:34 64512 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-04-06 03:33 . 2012-04-06 03:33 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-04-06 03:33 . 2012-04-06 03:33 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-04-06 03:33 . 2012-04-06 03:33 16457216 ----a-w- c:\windows\system32\amdocl64.dll
2012-04-06 03:32 . 2012-04-06 03:32 13007872 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-03-29 19:06 . 2012-03-29 19:06 858176 ----a-w- c:\windows\SysWow64\msvcr110.dll
2012-03-29 19:06 . 2012-03-29 19:06 852544 ----a-w- c:\windows\system32\msvcr110.dll
2012-03-29 19:06 . 2012-03-29 19:06 497728 ----a-w- c:\windows\SysWow64\msvcp110.dll
2012-03-29 19:06 . 2012-03-29 19:06 329288 ----a-w- c:\windows\system32\vccorlib110.dll
2012-03-29 19:06 . 2012-03-29 19:06 234056 ----a-w- c:\windows\SysWow64\vccorlib110.dll
2012-03-29 19:06 . 2012-03-29 19:06 701552 ----a-w- c:\windows\system32\LCCoin40.dll
2012-03-29 19:06 . 2012-03-29 19:06 617536 ----a-w- c:\windows\system32\msvcp110.dll
2012-03-24 02:07 . 2012-03-24 02:07 248944 ----a-w- c:\windows\system32\Dts2APO.dll
2012-03-21 01:44 . 2012-03-21 01:44 98688 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2012-03-21 01:44 . 2012-03-21 01:44 203888 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-03-09 19:07 . 2012-03-09 19:07 29184 ----a-w- c:\windows\system32\kdbsdk64.dll
2012-03-09 19:06 . 2012-03-09 19:06 24576 ----a-w- c:\windows\SysWow64\kdbsdk32.dll
2012-03-07 00:25 . 2011-03-29 00:36 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-02-23 12:32 . 2012-02-23 12:32 95760 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2012-02-15 03:03 . 2012-02-15 03:03 54272 ----a-w- c:\windows\system32\OpenCL.dll
2012-02-15 03:03 . 2012-02-15 03:03 48128 ----a-w- c:\windows\SysWow64\OpenCL.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-05-01 22:07 2067328 ----a-w- c:\program files (x86)\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll" [2012-05-01 2067328]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\John\AppData\Local\Akamai\netsession_win.exe" [2012-03-13 3331872]
"DriverMax"="c:\program files (x86)\Innovative Solutions\DriverMax\drivermax.exe" [2012-03-26 9532824]
"DriverMax_RESTART"="c:\program files (x86)\Innovative Solutions\DriverMax\drivermax.exe" [2012-03-26 9532824]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-05-06 1242448]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2011-10-12 393216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-03-31 5138032]
"LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2012-03-29 128112]
"Monitor"="c:\program files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe" [2011-11-12 268640]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-06 641664]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-05-01 1116544]
.
c:\users\John\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech . Product Registration.lnk - c:\program files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-04-05 158856]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW86.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-04-01 183560]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 amdide64;amdide64;c:\windows\system32\DRIVERS\amdide64.sys [x]
S0 mv61xx;mv61xx;c:\windows\system32\DRIVERS\mv61xx.sys [x]
S0 MxEFUF;Matrox Extio Upper Function Filter;c:\windows\system32\DRIVERS\MxEFUF64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-04-06 361984]
S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [x]
S2 vToolbarUpdater11.0.2;vToolbarUpdater11.0.2;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe [2012-05-01 932736]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [x]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys [x]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys [x]
S3 MSHUSBVideo;NX6000/NX3000/VX2000/VX5000/VX5500/VX7000/Cinema Filter Driver;c:\windows\system32\Drivers\nx6000.sys [x]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-05-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1277986409-3721482306-3149500578-1001Core.job
- c:\users\John\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-24 21:04]
.
2012-05-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1277986409-3721482306-3149500578-1001UA.job
- c:\users\John\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-24 21:04]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-10-07 1744152]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 1271168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://isearch.avg.com/?cid={EB946F96-9760-4A6E-ACA8-425F71ABA4F6}&mid=55f242a985e847d088946de7833fe057-7ab202433f653793a5a8168678088017161d295e&lang=en&ds=ts025&pr=sa&d=2012-05-01 17:07&v=11.0.0.9&sap=hp
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local;<local>
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.0.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1277986409-3721482306-3149500578-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-1277986409-3721482306-3149500578-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
.
**************************************************************************
.
Completion time: 2012-05-06 09:10:25 - machine was rebooted
ComboFix-quarantined-files.txt 2012-05-06 14:10
.
Pre-Run: 804,325,076,992 bytes free
Post-Run: 803,920,416,768 bytes free
.
- - End Of File - - 990C6CFAD172893D184100ACEED3DA63
  • 0

#19
CompCav
Posted 06 May 2012 - 11:52 AM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
How is the computer performing now?

What issues remain??
  • 0

#20
John Lauhoff
Posted 06 May 2012 - 03:50 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
crashed on me againn heres crash report ?

On Sun 5/6/2012 9:44:47 PM GMT your computer crashed
crash dump file: C:\Windows\Minidump\050612-35256-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70540)
Bugcheck code: 0x50 (0xFFFFFFFFFFFFFF8A, 0x1, 0xFFFFF880041C6FFD, 0x0)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver which cannot be identified at this time.


On Sun 5/6/2012 9:44:47 PM GMT your computer crashed
crash dump file: C:\Windows\memory.dmp
This was probably caused by the following module: dxgmms1.sys (dxgmms1!VidMmInterface+0xF73D)
Bugcheck code: 0x50 (0xFFFFFFFFFFFFFF8A, 0x1, 0xFFFFF880041C6FFD, 0x0)
Error: PAGE_FAULT_IN_NONPAGED_AREA
file path: C:\Windows\system32\drivers\dxgmms1.sys
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: DirectX Graphics MMS
Bug check description: This indicates that invalid system memory has been referenced.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system which cannot be identified at this time
  • 0

#21
John Lauhoff
Posted 06 May 2012 - 03:52 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
i had update also service pack 1 lol idk if makes diff
  • 0

#22
CompCav
Posted 06 May 2012 - 04:47 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Step 1.

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application. Please do not accept the trial right now. We just want to run it on demand.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.


Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.


Step 2.

Run ESET Online Scan

Note: You can use either Internet Explorer or Mozilla FireFox for this scan.

Vista / 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

Please go here then click on: Posted Image

If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
All of the following instructions work with either Internet Explorer or Mozilla FireFox.

  • Select the option YES, I accept the Terms of Use then click on: Posted Image
  • When prompted allow Add-On/Active X to install.
  • Make sure that the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Posted Image
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically. The scan may take several hours.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close, make sure you copy the logfile first!
  • Now click on: Posted Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.


Step 3.

Security Check
Download Security Check by screen317 from here or here.

Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Step 4.

Please post:


mbam log
eset log
security check log

Please give me an update on how your computer is doing!
  • 0

#23
John Lauhoff
Posted 06 May 2012 - 05:47 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.06.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
John :: JOHN-PC [administrator]

5/6/2012 5:49:41 PM
mbam-log-2012-05-06 (17-49-41).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 199346
Time elapsed: 2 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
  • 0

#24
John Lauhoff
Posted 06 May 2012 - 05:49 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
Results of screen317's Security Check version 0.99.32
Windows 7 x64 (UAC is disabled!)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
AVG Security Toolbar
ESET Online Scanner v3
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
````````````````````````````````
Process Check:
objlist.exe by Laurent
Windows Defender MSMpEng.exe
Microsoft Security Essentials msseces.exe
ESET ESET Online Scanner OnlineScannerApp.exe
``````````End of Log````````````
  • 0

#25
John Lauhoff
Posted 06 May 2012 - 07:17 PM

John Lauhoff

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 104 posts
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=411221fceac0c347a936f4af85c56abb
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-05-07 12:53:01
# local_time=2012-05-06 07:53:01 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 0 87891693 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=192413
# found=0
# cleaned=0
# scan_time=3738
  • 0

Advertisements

#26
CompCav
Posted 06 May 2012 - 07:32 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
You had some minor malware that may or may not have contributed to your BSOD's

However at this point you are malware free and after following the directions below please return to your previous topic to continue BSOD diagnosis.

I will remove my tools now and give some recommendations.
Your log now appears clean :thumbsup:

The following will implement some cleanup procedures as well as reset System Restore points:

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :Commands
    [resethosts]
    [emptytemp]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done

Remove ComboFix

  • Hold down the Windows key + R on your keyboard. This will display the Run dialogue box
  • In the Run box, type in ComboFix /Uninstall (Notice the space between the "x" and "/") then click OK

    Posted Image
  • Follow the prompts on the screen
  • A message should appear confirming that ComboFix was uninstalled

Run OTL and hit the cleanup button. It will remove all the programs we have used plus itself.

We will now confirm that your hidden files are set to that, as some of the tools I use will change that
  • Click Start.
  • Open My Computer.
  • Select the Tools menu and click Folder Options.
  • Select the View Tab.
  • Under the Hidden files and folders heading select Do not show hidden files and folders.
  • Click Yes to confirm.
  • Click OK.



Now that you are clean, to help protect your computer in the future I recommend that you get the following free programs:
Posted Image
Malwarebytes. Update and run weekly to keep your system clean

Download and install FileHippo update checker and run it monthly it will show you which programs on your system need updating and give a download link

It is critical to have both a firewall and anti virus to protect your system and to keep them updated. To keep your operating system up to date visit

Keep safe :wave:
  • 0

#27
CompCav
Posted 06 May 2012 - 09:24 PM

CompCav

    Member 5k

  • Expert
  • 12,454 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP