Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Go to first new post Windows 8 running slowly
Go to first new post Suspected Malware - Radio plays randomly ...
Go to first new post Windows Update not working
Go to first new post only command prompt apears on boot
Go to first new post Trojan virus
Go to first new post Freezing Computer and beyond ridiculousl ...
Go to first new post virus n error loading problem
Go to first new post Memory upgrade problems.
Go to first new post Unable to use HJT
Go to first new post Browser shutdown
Go to first new post FBI Virus - Simi fixed
Go to first new post Please check my log...Computer running S ...
Go to first new post Unable to run malware programs, Proxy Se ...
Go to first new post bitcoin miner infected on my PC
Go to first new post Windows 7 Restarts When I Establish Inte ...
Search Search
Search for:
Tech Support Guy Forums > > >

Solved: trojan.zeroaccess and trojan.gen.2 virus


(!)

Reply
Page 1 of 3 1 23
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
09-Sep-2012, 07:10 PM #1
trojan.zeroaccess and trojan.gen.2 virus
Hey guys,

I have a virus, and the two viruses that both Norton and Mbam have found are the two viruses listed above. However, they are unable to delete them. I have tried scanning in safe mode, but no success. I can no longer detect the virus when scanning, and I cannot update any definitions either. I have thread open with a similar problem, but that is for a different machine. Thank you for your help in advance!

Logs to be posted next.
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
09-Sep-2012, 07:11 PM #2
dds text
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31
Run by Choystoy at 16:46:54 on 2012-09-06
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8151.6358 [GMT -7:00]
.
AV: Norton Security Suite *Enabled/Outdated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
AV: Microsoft Security Essentials *Enabled/Outdated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Outdated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Norton Security Suite *Enabled/Outdated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Security Suite *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k HPService
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe
C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Users\Choystoy\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler .exe
C:\Users\Choystoy\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler 64.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = www.google.com
mWinlogon: Userinit=userinit.exe,
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Google Update] "C:\Users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe" /c
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [ShwiconXP9106] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [D-Link Wireless G WDA-1320] C:\Program Files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe
mRun: [ANIWZCS2Service] C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
mRun: [<NO NAME>]
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
StartupFolder: C:\Users\Choystoy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startu p\DELLDO~1.LNK - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
StartupFolder: C:\Users\Choystoy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startu p\DING!.lnk - C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
StartupFolder: C:\Users\Choystoy\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startu p\Dropbox.lnk - C:\Users\Choystoy\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: Append to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
Trusted Zone: intuit.com\ttlc
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{55FF8F53-5DA4-476B-BDFB-40F0FAA57811} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{55FF8F53-5DA4-476B-BDFB-40F0FAA57811}\77962756C6563737 : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{C3CC11DC-E4B6-46A1-9CC9-4E742338F8A4} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{C51E28B9-8120-49EF-8597-EB9968863BD2} : DhcpNameServer = 10.1.10.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO-X64: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO-X64: HP Print Enhancer - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
BHO-X64: Symantec NCO BHO - No File
BHO-X64: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\IPS\IPSBHO.DLL
BHO-X64: Symantec Intrusion Prevention - No File
BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
BHO-X64: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
BHO-X64: HP Smart BHO Class - No File
TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
TB-X64: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
EB-X64: {182EC0BE-5110-49C8-A062-BEB1D02A220B} - No File
EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [ShwiconXP9106] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
mRun-x64: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
mRun-x64: [UpdReg] C:\Windows\UpdReg.EXE
mRun-x64: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
mRun-x64: [D-Link Wireless G WDA-1320] C:\Program Files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe
mRun-x64: [ANIWZCS2Service] C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
mRun-x64: [(Default)]
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Choystoy\AppData\Roaming\Mozilla\Firefox\Profiles\cmo3tacg.default \
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll
FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll
FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\coFFPlgn_2011_7_3_6\components\coFFPlgn.dll
FF - component: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\IPSFFPlgn\components\IPSFFPl.dll
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npdf.dll
FF - plugin: C:\Program Files (x86)\Nitro PDF\Reader 2\npnitromozilla.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Choystoy\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dl l
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_265.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R0 SymDS;Symantec Data Store;C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS [?]
R0 SymEFA;Symantec Extended File Attributes;C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS [?]
R1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20120804.001\BHDrvx64.sys [2012-8-11 1161376]
R1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120815.002\IDSviA64.sys [2012-8-16 509088]
R1 SymIRON;Symantec Iron Driver;C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS --> C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS [?]
R1 SymNetS;Symantec Network Security WFP Driver;C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS --> C:\Windows\system32\Drivers\N360x64\0502020.003\SYMNETS.SYS [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-1-3 63928]
R2 DockLoginService;Dock Login Service;C:\Program Files\Dell\DellDock\DockLogin.exe [2009-6-9 155648]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-10-19 13336]
R2 N360;Norton Security Suite;C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccsvchst.exe [2012-8-11 130008]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;C:\Progra m Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2011-6-21 341296]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-6-12 138912]
R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\k57nd60a.sys --> C:\Windows\system32\DRIVERS\k57nd60a.sys [?]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-4-28 136176]
S2 SessionLauncher;SessionLauncher;c:\Users\ADMINI~1\AppData\Local\Temp\DX9\Se ssionLauncher.exe --> c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-11 250056]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-4-28 136176]
S3 Impcd;Impcd;C:\Windows\system32\DRIVERS\Impcd.sys --> C:\Windows\system32\DRIVERS\Impcd.sys [?]
S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;C:\Windows\system32\DRIVERS\LEqdUsb.Sys --> C:\Windows\system32\DRIVERS\LEqdUsb.Sys [?]
S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;C:\Windows\system32\DRIVERS\LHidEqd.Sys --> C:\Windows\system32\DRIVERS\LHidEqd.Sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-11 129976]
S3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver;C:\Windows\system32\DRIVERS\netr28ux.sys --> C:\Windows\system32\DRIVERS\netr28ux.sys [?]
S3 netr7364;Conceptronic RT73 Wireles Driver for Vista;C:\Windows\system32\DRIVERS\netr7364.sys --> C:\Windows\system32\DRIVERS\netr7364.sys [?]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-3-26 291696]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 pmxdrv;pmxdrv;\??\C:\Windows\system32\drivers\pmxdrv.sys --> C:\Windows\system32\drivers\pmxdrv.sys [?]
S3 RoxMediaDB10;RoxMediaDB10;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCom\RoxMediaDB10.exe [2009-6-26 1124848]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2012-08-12 01:54:19 -------- d-----w- C:\TDSSKiller_Quarantine
2012-08-12 01:35:05 912504 ----a-w- C:\Windows\System32\drivers\N360x64\0502020.003\symefa64.sys
2012-08-12 01:35:05 744568 ----a-w- C:\Windows\System32\drivers\N360x64\0502020.003\srtsp64.sys
2012-08-12 01:35:05 450680 ----a-w- C:\Windows\System32\drivers\N360x64\0502020.003\symds64.sys
2012-08-12 01:35:05 40568 ----a-w- C:\Windows\System32\drivers\N360x64\0502020.003\srtspx64.sys
2012-08-12 01:35:05 386168 ----a-w- C:\Windows\System32\drivers\N360x64\0502020.003\symnets.sys
2012-08-12 01:35:05 171128 ----a-r- C:\Windows\System32\drivers\N360x64\0502020.003\ironx64.sys
2012-08-12 01:34:49 -------- d-----w- C:\Windows\System32\drivers\N360x64\0502020.003
2012-08-12 01:34:39 9133488 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C764BD44-2256-4FAE-A88D-AAC28A6284BF}\mpengine.dll
.
==================== Find3M ====================
.
2012-08-17 00:58:32 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-17 00:58:32 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-12 14:15:09 16200 ----a-w- C:\Windows\stinger.sys
2012-07-03 20:46:44 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 16:47:18.99 ===============
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
09-Sep-2012, 07:11 PM #3
HiJackThis log
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:46:06 PM, on 9/6/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal

Running processes:
C:\Users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe
C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Users\Choystoy\AppData\Local\Google\Update\1.3.21.115\GoogleCrashHandler .exe
C:\Users\Choystoy\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\coIEPlg.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [ShwiconXP9106] C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
O4 - HKLM\..\Run: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [D-Link Wireless G WDA-1320] C:\Program Files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')
O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
O4 - Startup: DING!.lnk = C:\Program Files (x86)\Southwest Airlines\Ding\Ding.exe
O4 - Startup: Dropbox.lnk = C:\Users\Choystoy\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton Security Suite (N360) - Symantec Corporation - C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SessionLauncher - Unknown owner - c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WUSB54Gv2SVC - Unknown owner - C:\Program Files (x86)\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe (file missing)

--
End of file - 15210 bytes
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
09-Sep-2012, 07:16 PM #4
Attach log
I have also tried TDSSKiller as well and can provide that log. I did run Frst64 and can run that log, too. Thanks in advance for your help!
Attachment Blocked
Attachments in the HJT forum are often designed to solve a specific issue and not meant to be used without instructions specific to your computer. If you want help specific to your computer, please post a HiJackThis Log. If you started this thread, please make sure you are logged in to be able to view attachments.
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
jeffce has a Photo Album
Malware Removal Specialist with 1,714 posts.
  
Join Date: May 2011
09-Sep-2012, 09:08 PM #5
Hi and welcome.

**WARNING**Unfortunately one or more of the infections I have identified are Backdoor Trojans, IRCBots or other Malware capable of stealing very important information. You need to stop using all Internet Banking sites, change passwords to all sites with sensitive information from a clean computer and phone your bank to inform them that you may be a victim of identify theft. More often than not, we advise users that a full reinstallation of their Operating System is the only way to ensure that their computer will ever be 100% clean again.

Unfortunately I have found what is known as the ZeroAccess rootkit on your system. It is an especially nasty infection that can take quite some time to clean as well as may have damaged your system files itself. As a warning, during the cleaning (if you choose to do so) you may lose internet access with this computer and in the end we may need to reinstall the operating system anyway depending on the extent of the infection.

If you would like to format and reinstall your Operating System please let me know and we can assist you with that.

If you would like to continue with the cleaning, please continue with the following instructions and I will be more than happy to help.
----------

Please post the logs created by TDSSKiller and FRST.
---------
__________________
-Jeff-
Proud graduate of WTT Classroom. -- Member of ASAP and UNITE. -- If I am working with you and not responded in 2 days, please PM me.
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
09-Sep-2012, 11:01 PM #6
I am willing to attempt the cleaning. I think we have been pretty successful on my other computer, and I think this one will be less complicated. I will post the other logs when I get back go that computer. I will have access to another uninfected computer and I have already disabled the internet. Talk to you soon.
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
jeffce has a Photo Album
Malware Removal Specialist with 1,714 posts.
  
Join Date: May 2011
10-Sep-2012, 07:33 AM #7
Sounds good.
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
10-Sep-2012, 12:33 PM #8
TDSS killer log #1
I think I have two, so I'll post both in case they are important.


18:50:20.0572 4652 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
18:50:20.0588 4652 ============================================================
18:50:20.0588 4652 Current date / time: 2012/08/11 18:50:20.0588
18:50:20.0588 4652 SystemInfo:
18:50:20.0588 4652
18:50:20.0588 4652 OS Version: 6.1.7601 ServicePack: 1.0
18:50:20.0588 4652 Product type: Workstation
18:50:20.0588 4652 ComputerName: CHOYSTOY-PC
18:50:20.0588 4652 UserName: Choystoy
18:50:20.0588 4652 Windows directory: C:\Windows
18:50:20.0588 4652 System windows directory: C:\Windows
18:50:20.0588 4652 Running under WOW64
18:50:20.0588 4652 Processor architecture: Intel x64
18:50:20.0588 4652 Number of processors: 4
18:50:20.0588 4652 Page size: 0x1000
18:50:20.0588 4652 Boot type: Normal boot
18:50:20.0588 4652 ============================================================
18:50:21.0258 4652 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:50:21.0290 4652 Drive \Device\Harddisk5\DR6 - Size: 0x3E80000 (0.06 Gb), SectorSize: 0x200, Cylinders: 0x7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:50:21.0290 4652 ============================================================
18:50:21.0290 4652 \Device\Harddisk0\DR0:
18:50:21.0290 4652 MBR partitions:
18:50:21.0290 4652 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x27800, BlocksNum 0x1339000
18:50:21.0290 4652 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1360800, BlocksNum 0x733A5800
18:50:21.0290 4652 \Device\Harddisk5\DR6:
18:50:21.0290 4652 MBR partitions:
18:50:21.0290 4652 \Device\Harddisk5\DR6\Partition0: MBR, Type 0xB, StartLBA 0x2A, BlocksNum 0x1F368
18:50:21.0290 4652 ============================================================
18:50:21.0305 4652 C: <-> \Device\Harddisk0\DR0\Partition1
18:50:21.0305 4652 ============================================================
18:50:21.0305 4652 Initialize success
18:50:21.0305 4652 ============================================================
18:50:24.0878 1948 ============================================================
18:50:24.0878 1948 Scan started
18:50:24.0878 1948 Mode: Manual;
18:50:24.0878 1948 ============================================================
18:50:25.0096 1948 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:50:25.0096 1948 1394ohci - ok
18:50:25.0143 1948 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:50:25.0143 1948 ACPI - ok
18:50:25.0174 1948 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:50:25.0174 1948 AcpiPmi - ok
18:50:25.0283 1948 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:50:25.0283 1948 AdobeARMservice - ok
18:50:25.0392 1948 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:50:25.0424 1948 AdobeFlashPlayerUpdateSvc - ok
18:50:25.0455 1948 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:50:25.0470 1948 adp94xx - ok
18:50:25.0486 1948 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:50:25.0486 1948 adpahci - ok
18:50:25.0517 1948 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:50:25.0517 1948 adpu320 - ok
18:50:25.0548 1948 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:50:25.0548 1948 AeLookupSvc - ok
18:50:25.0611 1948 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:50:25.0611 1948 AFD - ok
18:50:25.0626 1948 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:50:25.0626 1948 agp440 - ok
18:50:25.0658 1948 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:50:25.0658 1948 ALG - ok
18:50:25.0673 1948 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:50:25.0673 1948 aliide - ok
18:50:25.0689 1948 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:50:25.0689 1948 amdide - ok
18:50:25.0704 1948 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:50:25.0704 1948 AmdK8 - ok
18:50:25.0720 1948 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:50:25.0720 1948 AmdPPM - ok
18:50:25.0736 1948 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:50:25.0751 1948 amdsata - ok
18:50:25.0767 1948 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:50:25.0767 1948 amdsbs - ok
18:50:25.0782 1948 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:50:25.0782 1948 amdxata - ok
18:50:25.0860 1948 ANIWZCSdService (aa3d68f26b2a27f660afc46039b061a4) C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
18:50:25.0860 1948 ANIWZCSdService - ok
18:50:25.0907 1948 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:50:25.0907 1948 AppID - ok
18:50:25.0907 1948 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:50:25.0907 1948 AppIDSvc - ok
18:50:25.0938 1948 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:50:25.0938 1948 Appinfo - ok
18:50:25.0970 1948 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:50:25.0970 1948 arc - ok
18:50:25.0985 1948 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:50:25.0985 1948 arcsas - ok
18:50:26.0001 1948 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:50:26.0016 1948 AsyncMac - ok
18:50:26.0032 1948 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:50:26.0032 1948 atapi - ok
18:50:26.0172 1948 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
18:50:26.0188 1948 athr - ok
18:50:26.0344 1948 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:50:26.0344 1948 AudioEndpointBuilder - ok
18:50:26.0360 1948 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:50:26.0360 1948 AudioSrv - ok
18:50:26.0391 1948 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:50:26.0391 1948 AxInstSV - ok
18:50:26.0438 1948 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:50:26.0438 1948 b06bdrv - ok
18:50:26.0484 1948 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:50:26.0484 1948 b57nd60a - ok
18:50:26.0516 1948 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:50:26.0516 1948 BDESVC - ok
18:50:26.0531 1948 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:50:26.0531 1948 Beep - ok
18:50:26.0609 1948 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:50:26.0625 1948 BFE - ok
18:50:26.0843 1948 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
18:50:26.0859 1948 BHDrvx64 - ok
18:50:26.0984 1948 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:50:26.0999 1948 BITS - ok
18:50:27.0046 1948 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:50:27.0046 1948 blbdrive - ok
18:50:27.0077 1948 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:50:27.0093 1948 bowser - ok
18:50:27.0093 1948 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:50:27.0108 1948 BrFiltLo - ok
18:50:27.0108 1948 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:50:27.0108 1948 BrFiltUp - ok
18:50:27.0155 1948 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:50:27.0155 1948 Browser - ok
18:50:27.0202 1948 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:50:27.0218 1948 Brserid - ok
18:50:27.0233 1948 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:50:27.0233 1948 BrSerWdm - ok
18:50:27.0249 1948 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:50:27.0249 1948 BrUsbMdm - ok
18:50:27.0249 1948 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:50:27.0264 1948 BrUsbSer - ok
18:50:27.0280 1948 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:50:27.0280 1948 BTHMODEM - ok
18:50:27.0311 1948 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:50:27.0311 1948 bthserv - ok
18:50:27.0327 1948 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:50:27.0327 1948 cdfs - ok
18:50:27.0374 1948 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:50:27.0374 1948 cdrom - ok
18:50:27.0389 1948 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:50:27.0389 1948 CertPropSvc - ok
18:50:27.0405 1948 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:50:27.0405 1948 circlass - ok
18:50:27.0452 1948 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:50:27.0452 1948 CLFS - ok
18:50:27.0530 1948 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:50:27.0530 1948 clr_optimization_v2.0.50727_32 - ok
18:50:27.0561 1948 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:50:27.0576 1948 clr_optimization_v2.0.50727_64 - ok
18:50:27.0670 1948 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:50:27.0670 1948 clr_optimization_v4.0.30319_32 - ok
18:50:27.0701 1948 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:50:27.0701 1948 clr_optimization_v4.0.30319_64 - ok
18:50:27.0717 1948 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:50:27.0717 1948 CmBatt - ok
18:50:27.0732 1948 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:50:27.0748 1948 cmdide - ok
18:50:27.0795 1948 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:50:27.0810 1948 CNG - ok
18:50:27.0826 1948 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:50:27.0826 1948 Compbatt - ok
18:50:27.0857 1948 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:50:27.0857 1948 CompositeBus - ok
18:50:27.0857 1948 COMSysApp - ok
18:50:27.0873 1948 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:50:27.0873 1948 crcdisk - ok
18:50:27.0935 1948 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:50:27.0935 1948 CryptSvc - ok
18:50:27.0998 1948 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:50:28.0013 1948 DcomLaunch - ok
18:50:28.0060 1948 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:50:28.0060 1948 defragsvc - ok
18:50:28.0107 1948 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:50:28.0107 1948 DfsC - ok
18:50:28.0138 1948 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:50:28.0138 1948 Dhcp - ok
18:50:28.0169 1948 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:50:28.0169 1948 discache - ok
18:50:28.0185 1948 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:50:28.0185 1948 Disk - ok
18:50:28.0232 1948 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:50:28.0232 1948 Dnscache - ok
18:50:28.0310 1948 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
18:50:28.0325 1948 DockLoginService - ok
18:50:28.0372 1948 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:50:28.0372 1948 dot3svc - ok
18:50:28.0419 1948 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
18:50:28.0434 1948 Dot4 - ok
18:50:28.0450 1948 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:50:28.0466 1948 Dot4Print - ok
18:50:28.0481 1948 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
18:50:28.0481 1948 dot4usb - ok
18:50:28.0528 1948 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:50:28.0528 1948 DPS - ok
18:50:28.0544 1948 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:50:28.0544 1948 drmkaud - ok
18:50:28.0606 1948 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:50:28.0622 1948 DXGKrnl - ok
18:50:28.0668 1948 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:50:28.0668 1948 EapHost - ok
18:50:28.0793 1948 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:50:28.0840 1948 ebdrv - ok
18:50:28.0918 1948 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:50:28.0918 1948 eeCtrl - ok
18:50:29.0058 1948 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:50:29.0058 1948 EFS - ok
18:50:29.0105 1948 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:50:29.0105 1948 ehRecvr - ok
18:50:29.0152 1948 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:50:29.0152 1948 ehSched - ok
18:50:29.0230 1948 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:50:29.0246 1948 elxstor - ok
18:50:29.0308 1948 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:50:29.0308 1948 EraserUtilRebootDrv - ok
18:50:29.0339 1948 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:50:29.0339 1948 ErrDev - ok
18:50:29.0386 1948 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:50:29.0402 1948 EventSystem - ok
18:50:29.0433 1948 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:50:29.0433 1948 exfat - ok
18:50:29.0448 1948 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:50:29.0448 1948 fastfat - ok
18:50:29.0526 1948 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:50:29.0526 1948 Fax - ok
18:50:29.0542 1948 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:50:29.0542 1948 fdc - ok
18:50:29.0573 1948 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:50:29.0573 1948 fdPHost - ok
18:50:29.0589 1948 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:50:29.0589 1948 FDResPub - ok
18:50:29.0620 1948 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:50:29.0620 1948 FileInfo - ok
18:50:29.0620 1948 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:50:29.0620 1948 Filetrace - ok
18:50:29.0714 1948 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:50:29.0729 1948 FLEXnet Licensing Service - ok
18:50:29.0745 1948 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:50:29.0745 1948 flpydisk - ok
18:50:29.0776 1948 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:50:29.0776 1948 FltMgr - ok
18:50:29.0854 1948 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:50:29.0870 1948 FontCache - ok
18:50:29.0932 1948 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:50:29.0948 1948 FontCache3.0.0.0 - ok
18:50:29.0963 1948 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:50:29.0963 1948 FsDepends - ok
18:50:29.0994 1948 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:50:29.0994 1948 Fs_Rec - ok
18:50:30.0026 1948 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:50:30.0026 1948 fvevol - ok
18:50:30.0072 1948 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:50:30.0072 1948 gagp30kx - ok
18:50:30.0119 1948 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:50:30.0119 1948 GEARAspiWDM - ok
18:50:30.0213 1948 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
18:50:30.0213 1948 GoToAssist - ok
18:50:30.0275 1948 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:50:30.0291 1948 gpsvc - ok
18:50:30.0369 1948 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:50:30.0369 1948 gupdate - ok
18:50:30.0400 1948 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:50:30.0400 1948 gupdatem - ok
18:50:30.0431 1948 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:50:30.0447 1948 gusvc - ok
18:50:30.0462 1948 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:50:30.0462 1948 hcw85cir - ok
18:50:30.0525 1948 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:50:30.0525 1948 HDAudBus - ok
18:50:30.0556 1948 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:50:30.0556 1948 HECIx64 - ok
18:50:30.0556 1948 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:50:30.0556 1948 HidBatt - ok
18:50:30.0587 1948 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:50:30.0587 1948 HidBth - ok
18:50:30.0618 1948 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:50:30.0618 1948 HidIr - ok
18:50:30.0650 1948 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:50:30.0665 1948 hidserv - ok
18:50:30.0665 1948 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:50:30.0681 1948 HidUsb - ok
18:50:30.0696 1948 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:50:30.0712 1948 hkmsvc - ok
18:50:30.0759 1948 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:50:30.0759 1948 HomeGroupListener - ok
18:50:30.0790 1948 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:50:30.0806 1948 HomeGroupProvider - ok
18:50:30.0915 1948 hpqcxs08 (97aac45a375168c6a2297beeb9692e31) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:50:30.0915 1948 hpqcxs08 - ok
18:50:30.0962 1948 hpqddsvc (19a4fb67b1c97ea18edff44340973cd9) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:50:30.0962 1948 hpqddsvc - ok
18:50:30.0993 1948 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:50:30.0993 1948 HpSAMD - ok
18:50:31.0071 1948 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:50:31.0086 1948 HPSLPSVC - ok
18:50:31.0149 1948 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:50:31.0164 1948 HTTP - ok
18:50:31.0211 1948 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:50:31.0211 1948 hwpolicy - ok
18:50:31.0227 1948 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:50:31.0242 1948 i8042prt - ok
18:50:31.0320 1948 iaStor (631fa8935163b01fc0c02966cb3adb92) C:\Windows\system32\DRIVERS\iaStor.sys
18:50:31.0320 1948 iaStor - ok
18:50:31.0398 1948 IAStorDataMgrSvc (7493ea4de41348f7d3edbf9db298f56a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:50:31.0398 1948 IAStorDataMgrSvc - ok
18:50:31.0461 1948 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:50:31.0461 1948 iaStorV - ok
18:50:31.0570 1948 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:50:31.0570 1948 idsvc - ok
18:50:31.0851 1948 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120810.001\IDSvia64.sys
18:50:31.0851 1948 IDSVia64 - ok
18:50:31.0929 1948 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:50:31.0944 1948 iirsp - ok
18:50:31.0991 1948 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:50:32.0007 1948 IKEEXT - ok
18:50:32.0022 1948 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
18:50:32.0022 1948 Impcd - ok
18:50:32.0147 1948 IntcAzAudAddService (ee64207f2f5c20bfe5f73db2566c4601) C:\Windows\system32\drivers\RTKVHD64.sys
18:50:32.0163 1948 IntcAzAudAddService - ok
18:50:32.0272 1948 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:50:32.0272 1948 IntcDAud - ok
18:50:32.0303 1948 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:50:32.0319 1948 intelide - ok
18:50:32.0334 1948 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:50:32.0334 1948 intelppm - ok
18:50:32.0366 1948 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:50:32.0366 1948 IPBusEnum - ok
18:50:32.0428 1948 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:50:32.0428 1948 IpFilterDriver - ok
18:50:32.0490 1948 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:50:32.0506 1948 iphlpsvc - ok
18:50:32.0537 1948 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:50:32.0537 1948 IPMIDRV - ok
18:50:32.0553 1948 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:50:32.0553 1948 IPNAT - ok
18:50:32.0568 1948 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:50:32.0584 1948 IRENUM - ok
18:50:32.0600 1948 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:50:32.0600 1948 isapnp - ok
18:50:32.0631 1948 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:50:32.0631 1948 iScsiPrt - ok
18:50:32.0662 1948 k57nd60a (d85f3f18e44f7447b5f1ba5c85baeb7c) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:50:32.0678 1948 k57nd60a - ok
18:50:32.0678 1948 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:50:32.0678 1948 kbdclass - ok
18:50:32.0709 1948 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:50:32.0709 1948 kbdhid - ok
18:50:32.0740 1948 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:32.0740 1948 KeyIso - ok
18:50:32.0771 1948 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:50:32.0771 1948 KSecDD - ok
18:50:32.0818 1948 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:50:32.0818 1948 KSecPkg - ok
18:50:32.0865 1948 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:50:32.0865 1948 ksthunk - ok
18:50:32.0927 1948 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:50:32.0927 1948 KtmRm - ok
18:50:32.0990 1948 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:50:33.0005 1948 LanmanServer - ok
18:50:33.0036 1948 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:50:33.0052 1948 LanmanWorkstation - ok
18:50:33.0083 1948 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
18:50:33.0083 1948 LEqdUsb - ok
18:50:33.0130 1948 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
18:50:33.0130 1948 LHidEqd - ok
18:50:33.0161 1948 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:50:33.0161 1948 LHidFilt - ok
18:50:33.0192 1948 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:50:33.0192 1948 lltdio - ok
18:50:33.0239 1948 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:50:33.0239 1948 lltdsvc - ok
18:50:33.0255 1948 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:50:33.0255 1948 lmhosts - ok
18:50:33.0270 1948 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:50:33.0270 1948 LMouFilt - ok
18:50:33.0317 1948 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:50:33.0317 1948 LSI_FC - ok
18:50:33.0333 1948 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:50:33.0333 1948 LSI_SAS - ok
18:50:33.0348 1948 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:50:33.0348 1948 LSI_SAS2 - ok
18:50:33.0364 1948 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:50:33.0364 1948 LSI_SCSI - ok
18:50:33.0395 1948 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:50:33.0395 1948 luafv - ok
18:50:33.0426 1948 LUsbFilt (9d9714e78eac9e5368208649489c920e) C:\Windows\system32\Drivers\LUsbFilt.Sys
18:50:33.0426 1948 LUsbFilt - ok
18:50:33.0489 1948 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:50:33.0489 1948 Mcx2Svc - ok
18:50:33.0504 1948 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:50:33.0504 1948 megasas - ok
18:50:33.0536 1948 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:50:33.0536 1948 MegaSR - ok
18:50:33.0614 1948 Microsoft SharePoint Workspace Audit Service - ok
18:50:33.0645 1948 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:50:33.0645 1948 MMCSS - ok
18:50:33.0676 1948 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:50:33.0676 1948 Modem - ok
18:50:33.0707 1948 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:50:33.0707 1948 monitor - ok
18:50:33.0738 1948 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:50:33.0738 1948 mouclass - ok
18:50:33.0754 1948 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:50:33.0754 1948 mouhid - ok
18:50:33.0801 1948 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:50:33.0801 1948 mountmgr - ok
18:50:33.0894 1948 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:50:33.0894 1948 MozillaMaintenance - ok
18:50:33.0957 1948 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
18:50:33.0957 1948 MpFilter - ok
18:50:34.0004 1948 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:50:34.0004 1948 mpio - ok
18:50:34.0019 1948 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:50:34.0019 1948 mpsdrv - ok
18:50:34.0082 1948 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:50:34.0097 1948 MpsSvc - ok
18:50:34.0128 1948 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:50:34.0128 1948 MRxDAV - ok
18:50:34.0160 1948 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:50:34.0160 1948 mrxsmb - ok
18:50:34.0206 1948 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:50:34.0222 1948 mrxsmb10 - ok
18:50:34.0238 1948 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:50:34.0238 1948 mrxsmb20 - ok
18:50:34.0269 1948 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:50:34.0269 1948 msahci - ok
18:50:34.0316 1948 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:50:34.0316 1948 msdsm - ok
18:50:34.0347 1948 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:50:34.0362 1948 MSDTC - ok
18:50:34.0378 1948 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:50:34.0378 1948 Msfs - ok
18:50:34.0394 1948 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:50:34.0394 1948 mshidkmdf - ok
18:50:34.0409 1948 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:50:34.0409 1948 msisadrv - ok
18:50:34.0440 1948 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:50:34.0440 1948 MSiSCSI - ok
18:50:34.0440 1948 msiserver - ok
18:50:34.0456 1948 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:50:34.0456 1948 MSKSSRV - ok
18:50:34.0550 1948 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:50:34.0550 1948 MsMpSvc - ok
18:50:34.0565 1948 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:50:34.0565 1948 MSPCLOCK - ok
18:50:34.0581 1948 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:50:34.0581 1948 MSPQM - ok
18:50:34.0628 1948 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:50:34.0643 1948 MsRPC - ok
18:50:34.0659 1948 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:50:34.0659 1948 mssmbios - ok
18:50:34.0674 1948 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:50:34.0674 1948 MSTEE - ok
18:50:34.0690 1948 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:50:34.0690 1948 MTConfig - ok
18:50:34.0706 1948 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:50:34.0706 1948 Mup - ok
18:50:34.0846 1948 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
18:50:34.0846 1948 N360 - ok
18:50:34.0877 1948 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:50:34.0893 1948 napagent - ok
18:50:34.0940 1948 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:50:34.0940 1948 NativeWifiP - ok
18:50:35.0127 1948 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\ENG64.SYS
18:50:35.0127 1948 NAVENG - ok
18:50:35.0220 1948 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\EX64.SYS
18:50:35.0236 1948 NAVEX15 - ok
18:50:35.0345 1948 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:50:35.0361 1948 NDIS - ok
18:50:35.0376 1948 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:50:35.0376 1948 NdisCap - ok
18:50:35.0392 1948 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:50:35.0408 1948 NdisTapi - ok
18:50:35.0439 1948 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:50:35.0454 1948 Ndisuio - ok
18:50:35.0486 1948 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:50:35.0486 1948 NdisWan - ok
18:50:35.0501 1948 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:50:35.0501 1948 NDProxy - ok
18:50:35.0564 1948 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
18:50:35.0564 1948 Net Driver HPZ12 - ok
18:50:35.0564 1948 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:50:35.0564 1948 NetBIOS - ok
18:50:35.0595 1948 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:50:35.0595 1948 NetBT - ok
18:50:35.0626 1948 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:35.0626 1948 Netlogon - ok
18:50:35.0688 1948 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:50:35.0688 1948 Netman - ok
18:50:35.0751 1948 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:50:35.0751 1948 netprofm - ok
18:50:35.0829 1948 netr28ux (eed1fbde98cf5f6d5c0c5b27ab1f68ec) C:\Windows\system32\DRIVERS\netr28ux.sys
18:50:35.0860 1948 netr28ux - ok
18:50:35.0922 1948 netr7364 (81b8d0c1ce44a7fdbd596b693783950c) C:\Windows\system32\DRIVERS\netr7364.sys
18:50:35.0938 1948 netr7364 - ok
18:50:36.0000 1948 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:50:36.0016 1948 NetTcpPortSharing - ok
18:50:36.0047 1948 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:50:36.0047 1948 nfrd960 - ok
18:50:36.0110 1948 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:50:36.0110 1948 NisDrv - ok
18:50:36.0203 1948 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
18:50:36.0203 1948 NisSrv - ok
18:50:36.0281 1948 NitroReaderDriverReadSpool2 (0734398d3d99986bb8006e9bb5eab1e5) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
18:50:36.0281 1948 NitroReaderDriverReadSpool2 - ok
18:50:36.0344 1948 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:50:36.0344 1948 NlaSvc - ok
18:50:36.0359 1948 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:50:36.0359 1948 Npfs - ok
18:50:36.0375 1948 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:50:36.0375 1948 nsi - ok
18:50:36.0390 1948 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:50:36.0390 1948 nsiproxy - ok
18:50:36.0484 1948 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:50:36.0500 1948 Ntfs - ok
18:50:36.0593 1948 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:50:36.0593 1948 Null - ok
18:50:36.0624 1948 NVHDA (ed9380f201c8126425c09bed96dbe1e5) C:\Windows\system32\drivers\nvhda64v.sys
18:50:36.0624 1948 NVHDA - ok
18:50:37.0046 1948 nvlddmkm (ac8cbe9a0663e88f6429ee5530d5e32b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:50:37.0092 1948 nvlddmkm - ok
18:50:37.0186 1948 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:50:37.0186 1948 nvraid - ok
18:50:37.0217 1948 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:50:37.0233 1948 nvstor - ok
18:50:37.0311 1948 nvsvc (0393e59488c67f704336f3ff06e2b7bd) C:\Windows\system32\nvvsvc.exe
18:50:37.0326 1948 nvsvc - ok
18:50:37.0342 1948 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:50:37.0342 1948 nv_agp - ok
18:50:37.0358 1948 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:50:37.0358 1948 ohci1394 - ok
18:50:37.0451 1948 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:50:37.0451 1948 ose - ok
18:50:37.0670 1948 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:50:37.0763 1948 osppsvc - ok
18:50:37.0872 1948 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:50:37.0872 1948 p2pimsvc - ok
18:50:37.0904 1948 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:50:37.0919 1948 p2psvc - ok
18:50:37.0950 1948 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:50:37.0950 1948 Parport - ok
18:50:37.0997 1948 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:50:37.0997 1948 partmgr - ok
18:50:38.0013 1948 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:50:38.0028 1948 PcaSvc - ok
18:50:38.0060 1948 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:50:38.0060 1948 pci - ok
18:50:38.0091 1948 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:50:38.0091 1948 pciide - ok
18:50:38.0106 1948 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:50:38.0106 1948 pcmcia - ok
18:50:38.0138 1948 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:50:38.0138 1948 pcw - ok
18:50:38.0169 1948 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:50:38.0184 1948 PEAUTH - ok
18:50:38.0262 1948 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:50:38.0262 1948 PerfHost - ok
18:50:38.0356 1948 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:50:38.0387 1948 pla - ok
18:50:38.0450 1948 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:50:38.0450 1948 PlugPlay - ok
18:50:38.0528 1948 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
18:50:38.0528 1948 Pml Driver HPZ12 - ok
18:50:38.0574 1948 pmxdrv (34bfc6ed31b4e8be940c884b8ac7d9df) C:\Windows\system32\drivers\pmxdrv.sys
18:50:38.0606 1948 pmxdrv - ok
18:50:38.0637 1948 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:50:38.0637 1948 PNRPAutoReg - ok
18:50:38.0652 1948 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:50:38.0668 1948 PNRPsvc - ok
18:50:38.0699 1948 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:50:38.0699 1948 PolicyAgent - ok
18:50:38.0730 1948 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:50:38.0730 1948 Power - ok
18:50:38.0762 1948 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:50:38.0762 1948 PptpMiniport - ok
18:50:38.0793 1948 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:50:38.0793 1948 Processor - ok
18:50:38.0824 1948 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:50:38.0824 1948 ProfSvc - ok
18:50:38.0855 1948 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:38.0855 1948 ProtectedStorage - ok
18:50:38.0902 1948 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:50:38.0902 1948 Psched - ok
18:50:38.0949 1948 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:50:38.0949 1948 PxHlpa64 - ok
18:50:39.0027 1948 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:50:39.0058 1948 ql2300 - ok
18:50:39.0120 1948 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:50:39.0136 1948 ql40xx - ok
18:50:39.0152 1948 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:50:39.0167 1948 QWAVE - ok
18:50:39.0183 1948 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:50:39.0183 1948 QWAVEdrv - ok
18:50:39.0183 1948 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:50:39.0198 1948 RasAcd - ok
18:50:39.0214 1948 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:50:39.0214 1948 RasAgileVpn - ok
18:50:39.0230 1948 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:50:39.0230 1948 RasAuto - ok
18:50:39.0261 1948 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:50:39.0261 1948 Rasl2tp - ok
18:50:39.0292 1948 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:50:39.0292 1948 RasMan - ok
18:50:39.0308 1948 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:50:39.0308 1948 RasPppoe - ok
18:50:39.0323 1948 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:50:39.0323 1948 RasSstp - ok
18:50:39.0354 1948 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:50:39.0354 1948 rdbss - ok
18:50:39.0370 1948 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:50:39.0386 1948 rdpbus - ok
18:50:39.0417 1948 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:50:39.0417 1948 RDPCDD - ok
18:50:39.0417 1948 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:50:39.0417 1948 RDPENCDD - ok
18:50:39.0432 1948 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:50:39.0432 1948 RDPREFMP - ok
18:50:39.0479 1948 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:50:39.0479 1948 RDPWD - ok
18:50:39.0526 1948 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:50:39.0526 1948 rdyboost - ok
18:50:39.0557 1948 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:50:39.0573 1948 RemoteAccess - ok
18:50:39.0588 1948 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:50:39.0604 1948 RemoteRegistry - ok
18:50:39.0744 1948 RoxMediaDB10 (05fc44d32a144925eae45570029fd6e1) c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
18:50:39.0791 1948 RoxMediaDB10 - ok
18:50:39.0807 1948 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:50:39.0807 1948 RpcEptMapper - ok
18:50:39.0822 1948 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:50:39.0838 1948 RpcLocator - ok
18:50:39.0885 1948 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:50:39.0900 1948 RpcSs - ok
18:50:39.0932 1948 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:50:39.0932 1948 rspndr - ok
18:50:39.0947 1948 RT2500USB - ok
18:50:39.0947 1948 RxFilter - ok
18:50:40.0010 1948 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:40.0010 1948 SamSs - ok
18:50:40.0041 1948 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:50:40.0041 1948 sbp2port - ok
18:50:40.0088 1948 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:50:40.0103 1948 SCardSvr - ok
18:50:40.0134 1948 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:50:40.0134 1948 scfilter - ok
18:50:40.0212 1948 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:50:40.0212 1948 Schedule - ok
18:50:40.0244 1948 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:50:40.0244 1948 SCPolicySvc - ok
18:50:40.0275 1948 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:50:40.0290 1948 SDRSVC - ok
18:50:40.0306 1948 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:50:40.0306 1948 secdrv - ok
18:50:40.0337 1948 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:50:40.0353 1948 seclogon - ok
18:50:40.0368 1948 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:50:40.0368 1948 SENS - ok
18:50:40.0384 1948 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:50:40.0384 1948 SensrSvc - ok
18:50:40.0415 1948 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:50:40.0415 1948 Serenum - ok
18:50:40.0431 1948 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:50:40.0431 1948 Serial - ok
18:50:40.0446 1948 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:50:40.0446 1948 sermouse - ok
18:50:40.0493 1948 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:50:40.0493 1948 SessionEnv - ok
18:50:40.0524 1948 SessionLauncher - ok
18:50:40.0540 1948 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:50:40.0540 1948 sffdisk - ok
18:50:40.0556 1948 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:50:40.0556 1948 sffp_mmc - ok
18:50:40.0571 1948 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:50:40.0571 1948 sffp_sd - ok
18:50:40.0587 1948 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:50:40.0587 1948 sfloppy - ok
18:50:40.0649 1948 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:50:40.0665 1948 SharedAccess - ok
18:50:40.0712 1948 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:50:40.0727 1948 ShellHWDetection - ok
18:50:40.0743 1948 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:50:40.0758 1948 SiSRaid2 - ok
18:50:40.0774 1948 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:50:40.0774 1948 SiSRaid4 - ok
18:50:40.0821 1948 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:50:40.0821 1948 Smb - ok
18:50:40.0852 1948 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:50:40.0868 1948 SNMPTRAP - ok
18:50:40.0868 1948 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:50:40.0868 1948 spldr - ok
18:50:40.0914 1948 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:50:40.0914 1948 Spooler - ok
18:50:41.0070 1948 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:50:41.0148 1948 sppsvc - ok
18:50:41.0226 1948 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:50:41.0226 1948 sppuinotify - ok
18:50:41.0289 1948 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
18:50:41.0289 1948 sprtsvc_DellSupportCenter - ok
18:50:41.0398 1948 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\Windows\System32\Drivers\N360x64\0502010.003\SRTSP64.SYS
18:50:41.0414 1948 SRTSP - ok
18:50:41.0460 1948 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
18:50:41.0460 1948 SRTSPX - ok
18:50:41.0523 1948 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:50:41.0523 1948 srv - ok
18:50:41.0570 1948 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:50:41.0570 1948 srv2 - ok
18:50:41.0601 1948 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:50:41.0601 1948 srvnet - ok
18:50:41.0616 1948 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:50:41.0616 1948 SSDPSRV - ok
18:50:41.0632 1948 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:50:41.0648 1948 SstpSvc - ok
18:50:41.0694 1948 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:50:41.0694 1948 Stereo Service - ok
18:50:41.0710 1948 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:50:41.0710 1948 stexstor - ok
18:50:41.0757 1948 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:50:41.0757 1948 StillCam - ok
18:50:41.0819 1948 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:50:41.0835 1948 stisvc - ok
18:50:41.0882 1948 stllssvr (e476c66713c842f58e61a95826ed1d57) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
18:50:41.0882 1948 stllssvr - ok
18:50:41.0913 1948 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:50:41.0913 1948 swenum - ok
18:50:41.0960 1948 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:50:41.0975 1948 swprv - ok
18:50:42.0069 1948 SymDS (6160145c7a87fc7672e8e3b886888176) C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
18:50:42.0069 1948 SymDS - ok
18:50:42.0147 1948 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
18:50:42.0147 1948 SymEFA - ok
18:50:42.0194 1948 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:50:42.0194 1948 SymEvent - ok
18:50:42.0240 1948 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
18:50:42.0240 1948 SymIRON - ok
18:50:42.0318 1948 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\Windows\System32\Drivers\N360x64\0502010.003\SYMNETS.SYS
18:50:42.0318 1948 SymNetS - ok
18:50:42.0412 1948 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:50:42.0428 1948 SysMain - ok
18:50:42.0568 1948 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:50:42.0568 1948 TabletInputService - ok
18:50:42.0599 1948 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:50:42.0599 1948 TapiSrv - ok
18:50:42.0630 1948 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:50:42.0630 1948 TBS - ok
18:50:42.0755 1948 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:50:42.0771 1948 Tcpip - ok
18:50:42.0958 1948 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:50:42.0958 1948 TCPIP6 - ok
18:50:43.0020 1948 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:50:43.0020 1948 tcpipreg - ok
18:50:43.0052 1948 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:50:43.0052 1948 TDPIPE - ok
18:50:43.0083 1948 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:50:43.0083 1948 TDTCP - ok
18:50:43.0114 1948 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:50:43.0114 1948 tdx - ok
18:50:43.0145 1948 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:50:43.0145 1948 TermDD - ok
18:50:43.0208 1948 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:50:43.0223 1948 TermService - ok
18:50:43.0239 1948 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:50:43.0239 1948 Themes - ok
18:50:43.0254 1948 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:50:43.0254 1948 THREADORDER - ok
18:50:43.0286 1948 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:50:43.0286 1948 TrkWks - ok
18:50:43.0332 1948 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:50:43.0332 1948 TrustedInstaller - ok
18:50:43.0364 1948 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:50:43.0379 1948 tssecsrv - ok
18:50:43.0410 1948 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:50:43.0410 1948 TsUsbFlt - ok
18:50:43.0457 1948 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:50:43.0457 1948 tunnel - ok
18:50:43.0473 1948 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:50:43.0473 1948 uagp35 - ok
18:50:43.0504 1948 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:50:43.0520 1948 udfs - ok
18:50:43.0535 1948 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:50:43.0535 1948 UI0Detect - ok
18:50:43.0566 1948 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:50:43.0566 1948 uliagpkx - ok
18:50:43.0613 1948 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:50:43.0613 1948 umbus - ok
18:50:43.0644 1948 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:50:43.0644 1948 UmPass - ok
18:50:43.0676 1948 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:50:43.0676 1948 upnphost - ok
18:50:43.0707 1948 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
18:50:43.0722 1948 usbbus - ok
18:50:43.0754 1948 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:50:43.0754 1948 usbccgp - ok
18:50:43.0769 1948 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:50:43.0785 1948 usbcir - ok
18:50:43.0800 1948 UsbDiag (3fb6e423f7567c92c32ea786f5fd0c69) C:\Windows\system32\DRIVERS\lgx64diag.sys
18:50:43.0800 1948 UsbDiag - ok
18:50:43.0816 1948 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
18:50:43.0816 1948 usbehci - ok
18:50:43.0863 1948 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:50:43.0863 1948 usbhub - ok
18:50:43.0894 1948 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
18:50:43.0894 1948 USBModem - ok
18:50:43.0910 1948 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:50:43.0910 1948 usbohci - ok
18:50:43.0941 1948 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:50:43.0941 1948 usbprint - ok
18:50:43.0988 1948 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:50:43.0988 1948 usbscan - ok
18:50:44.0019 1948 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:50:44.0019 1948 USBSTOR - ok
18:50:44.0035 1948 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:50:44.0035 1948 usbuhci - ok
18:50:44.0066 1948 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:50:44.0066 1948 UxSms - ok
18:50:44.0097 1948 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:44.0097 1948 VaultSvc - ok
18:50:44.0128 1948 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:50:44.0128 1948 vdrvroot - ok
18:50:44.0191 1948 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:50:44.0206 1948 vds - ok
18:50:44.0237 1948 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:50:44.0237 1948 vga - ok
18:50:44.0253 1948 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:50:44.0253 1948 VgaSave - ok
18:50:44.0284 1948 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:50:44.0300 1948 vhdmp - ok
18:50:44.0315 1948 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:50:44.0315 1948 viaide - ok
18:50:44.0347 1948 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:50:44.0347 1948 volmgr - ok
18:50:44.0393 1948 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:50:44.0409 1948 volmgrx - ok
18:50:44.0440 1948 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:50:44.0440 1948 volsnap - ok
18:50:44.0471 1948 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:50:44.0471 1948 vsmraid - ok
18:50:44.0534 1948 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:50:44.0565 1948 VSS - ok
18:50:44.0643 1948 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:50:44.0643 1948 vwifibus - ok
18:50:44.0659 1948 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:50:44.0659 1948 vwififlt - ok
18:50:44.0674 1948 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:50:44.0674 1948 vwifimp - ok
18:50:44.0721 1948 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:50:44.0737 1948 W32Time - ok
18:50:44.0752 1948 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:50:44.0752 1948 WacomPen - ok
18:50:44.0783 1948 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:50:44.0799 1948 WANARP - ok
18:50:44.0799 1948 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:50:44.0799 1948 Wanarpv6 - ok
18:50:44.0893 1948 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:50:44.0924 1948 WatAdminSvc - ok
18:50:44.0986 1948 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:50:45.0017 1948 wbengine - ok
18:50:45.0095 1948 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:50:45.0095 1948 WbioSrvc - ok
18:50:45.0127 1948 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:50:45.0142 1948 wcncsvc - ok
18:50:45.0142 1948 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:50:45.0158 1948 WcsPlugInService - ok
18:50:45.0173 1948 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:50:45.0173 1948 Wd - ok
18:50:45.0236 1948 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:50:45.0236 1948 Wdf01000 - ok
18:50:45.0251 1948 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:50:45.0251 1948 WdiServiceHost - ok
18:50:45.0267 1948 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:50:45.0267 1948 WdiSystemHost - ok
18:50:45.0283 1948 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:50:45.0283 1948 WebClient - ok
18:50:45.0298 1948 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:50:45.0298 1948 Wecsvc - ok
18:50:45.0314 1948 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:50:45.0314 1948 wercplsupport - ok
18:50:45.0345 1948 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:50:45.0361 1948 WerSvc - ok
18:50:45.0376 1948 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:50:45.0376 1948 WfpLwf - ok
18:50:45.0392 1948 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:50:45.0407 1948 WIMMount - ok
18:50:45.0423 1948 WinDefend - ok
18:50:45.0439 1948 WinHttpAutoProxySvc - ok
18:50:45.0501 1948 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:50:45.0501 1948 Winmgmt - ok
18:50:45.0595 1948 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:50:45.0626 1948 WinRM - ok
18:50:45.0704 1948 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:50:45.0704 1948 WinUsb - ok
18:50:45.0766 1948 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:50:45.0782 1948 Wlansvc - ok
18:50:45.0953 1948 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:50:46.0000 1948 wlidsvc - ok
18:50:46.0094 1948 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:50:46.0094 1948 WmiAcpi - ok
18:50:46.0156 1948 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:50:46.0156 1948 wmiApSrv - ok
18:50:46.0172 1948 WMPNetworkSvc - ok
18:50:46.0219 1948 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:50:46.0219 1948 WPCSvc - ok
18:50:46.0265 1948 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:50:46.0265 1948 WPDBusEnum - ok
18:50:46.0281 1948 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:50:46.0281 1948 ws2ifsl - ok
18:50:46.0312 1948 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:50:46.0312 1948 wscsvc - ok
18:50:46.0312 1948 WSearch - ok
18:50:46.0437 1948 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:50:46.0499 1948 wuauserv - ok
18:50:46.0577 1948 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:50:46.0577 1948 WudfPf - ok
18:50:46.0624 1948 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:50:46.0624 1948 WUDFRd - ok
18:50:46.0671 1948 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:50:46.0671 1948 wudfsvc - ok
18:50:46.0702 1948 WUSB54Gv2SVC - ok
18:50:46.0749 1948 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:50:46.0749 1948 WwanSvc - ok
18:50:46.0796 1948 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:50:46.0967 1948 \Device\Harddisk0\DR0 - ok
18:50:46.0999 1948 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR6
18:50:47.0794 1948 \Device\Harddisk5\DR6 - ok
18:50:47.0794 1948 Boot (0x1200) (bcdc11761b88f71ac82cf42441f1e20c) \Device\Harddisk0\DR0\Partition0
18:50:47.0794 1948 \Device\Harddisk0\DR0\Partition0 - ok
18:50:47.0810 1948 Boot (0x1200) (36db8355f3bfe691c3511b31e4f21a90) \Device\Harddisk0\DR0\Partition1
18:50:47.0810 1948 \Device\Harddisk0\DR0\Partition1 - ok
18:50:47.0825 1948 Boot (0x1200) (b12d405050a5391cf09c09405a1f6a44) \Device\Harddisk5\DR6\Partition0
18:50:47.0825 1948 \Device\Harddisk5\DR6\Partition0 - ok
18:50:47.0825 1948 ============================================================
18:50:47.0825 1948 Scan finished
18:50:47.0825 1948 ============================================================
18:50:47.0825 2912 Detected object count: 0
18:50:47.0825 2912 Actual detected object count: 0
18:53:05.0121 3828 ============================================================
18:53:05.0121 3828 Scan started
18:53:05.0121 3828 Mode: Manual; SigCheck; TDLFS;
18:53:05.0121 3828 ============================================================
18:53:05.0277 3828 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:53:05.0386 3828 1394ohci - ok
18:53:05.0418 3828 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:53:05.0449 3828 ACPI - ok
18:53:05.0464 3828 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:53:05.0527 3828 AcpiPmi - ok
18:53:05.0620 3828 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:53:05.0652 3828 AdobeARMservice - ok
18:53:05.0745 3828 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:53:05.0823 3828 AdobeFlashPlayerUpdateSvc - ok
18:53:05.0854 3828 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:53:05.0870 3828 adp94xx - ok
18:53:05.0901 3828 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:53:05.0917 3828 adpahci - ok
18:53:05.0932 3828 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:53:05.0948 3828 adpu320 - ok
18:53:05.0979 3828 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:53:06.0120 3828 AeLookupSvc - ok
18:53:06.0151 3828 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:53:06.0213 3828 AFD - ok
18:53:06.0244 3828 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:53:06.0260 3828 agp440 - ok
18:53:06.0276 3828 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:53:06.0354 3828 ALG - ok
18:53:06.0369 3828 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:53:06.0385 3828 aliide - ok
18:53:06.0385 3828 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:53:06.0400 3828 amdide - ok
18:53:06.0416 3828 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:53:06.0478 3828 AmdK8 - ok
18:53:06.0494 3828 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:53:06.0525 3828 AmdPPM - ok
18:53:06.0541 3828 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:53:06.0556 3828 amdsata - ok
18:53:06.0588 3828 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:53:06.0619 3828 amdsbs - ok
18:53:06.0634 3828 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:53:06.0650 3828 amdxata - ok
18:53:06.0712 3828 ANIWZCSdService (aa3d68f26b2a27f660afc46039b061a4) C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
18:53:06.0759 3828 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - warning
18:53:06.0759 3828 ANIWZCSdService - detected UnsignedFile.Multi.Generic (1)
18:53:06.0775 3828 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:53:06.0837 3828 AppID - ok
18:53:06.0837 3828 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:53:06.0884 3828 AppIDSvc - ok
18:53:06.0915 3828 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:53:06.0993 3828 Appinfo - ok
18:53:07.0009 3828 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:53:07.0024 3828 arc - ok
18:53:07.0040 3828 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:53:07.0087 3828 arcsas - ok
18:53:07.0102 3828 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:53:07.0165 3828 AsyncMac - ok
18:53:07.0196 3828 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:53:07.0212 3828 atapi - ok
18:53:07.0290 3828 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
18:53:07.0383 3828 athr - ok
18:53:07.0508 3828 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:07.0602 3828 AudioEndpointBuilder - ok
18:53:07.0602 3828 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:07.0648 3828 AudioSrv - ok
18:53:07.0648 3828 Scan interrupted by user!
18:53:07.0648 3828 Scan interrupted by user!
18:53:07.0648 3828 Scan interrupted by user!
18:53:07.0648 3828 ============================================================
18:53:07.0648 3828 Scan finished
18:53:07.0648 3828 ============================================================
18:53:07.0648 4652 Detected object count: 1
18:53:07.0648 4652 Actual detected object count: 1
18:53:21.0252 4652 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - skipped by user
18:53:21.0252 4652 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:53:23.0826 4960 ============================================================
18:53:23.0826 4960 Scan started
18:53:23.0826 4960 Mode: Manual; SigCheck; TDLFS;
18:53:23.0826 4960 ============================================================
18:53:23.0997 4960 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:53:24.0044 4960 1394ohci - ok
18:53:24.0091 4960 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:53:24.0106 4960 ACPI - ok
18:53:24.0138 4960 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:53:24.0153 4960 AcpiPmi - ok
18:53:24.0262 4960 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:53:24.0294 4960 AdobeARMservice - ok
18:53:24.0387 4960 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:53:24.0465 4960 AdobeFlashPlayerUpdateSvc - ok
18:53:24.0512 4960 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:53:24.0559 4960 adp94xx - ok
18:53:24.0621 4960 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:53:24.0652 4960 adpahci - ok
18:53:24.0684 4960 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:53:24.0699 4960 adpu320 - ok
18:53:24.0746 4960 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:53:24.0793 4960 AeLookupSvc - ok
18:53:24.0840 4960 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:53:24.0886 4960 AFD - ok
18:53:24.0918 4960 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:53:24.0949 4960 agp440 - ok
18:53:24.0980 4960 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:53:25.0011 4960 ALG - ok
18:53:25.0058 4960 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:53:25.0074 4960 aliide - ok
18:53:25.0074 4960 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:53:25.0089 4960 amdide - ok
18:53:25.0105 4960 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:53:25.0120 4960 AmdK8 - ok
18:53:25.0136 4960 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:53:25.0152 4960 AmdPPM - ok
18:53:25.0167 4960 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:53:25.0214 4960 amdsata - ok
18:53:25.0230 4960 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:53:25.0276 4960 amdsbs - ok
18:53:25.0292 4960 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:53:25.0308 4960 amdxata - ok
18:53:25.0370 4960 ANIWZCSdService (aa3d68f26b2a27f660afc46039b061a4) C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
18:53:25.0401 4960 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - warning
18:53:25.0401 4960 ANIWZCSdService - detected UnsignedFile.Multi.Generic (1)
18:53:25.0432 4960 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:53:25.0464 4960 AppID - ok
18:53:25.0464 4960 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:53:25.0510 4960 AppIDSvc - ok
18:53:25.0542 4960 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:53:25.0588 4960 Appinfo - ok
18:53:25.0604 4960 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:53:25.0620 4960 arc - ok
18:53:25.0651 4960 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:53:25.0666 4960 arcsas - ok
18:53:25.0682 4960 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:53:25.0744 4960 AsyncMac - ok
18:53:25.0760 4960 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:53:25.0776 4960 atapi - ok
18:53:25.0854 4960 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
18:53:25.0900 4960 athr - ok
18:53:26.0010 4960 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:26.0072 4960 AudioEndpointBuilder - ok
18:53:26.0072 4960 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:53:26.0119 4960 AudioSrv - ok
18:53:26.0134 4960 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:53:26.0228 4960 AxInstSV - ok
18:53:26.0259 4960 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:53:26.0306 4960 b06bdrv - ok
18:53:26.0337 4960 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:53:26.0384 4960 b57nd60a - ok
18:53:26.0431 4960 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:53:26.0509 4960 BDESVC - ok
18:53:26.0509 4960 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:53:26.0540 4960 Beep - ok
18:53:26.0602 4960 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:53:26.0665 4960 BFE - ok
18:53:26.0883 4960 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
18:53:26.0930 4960 BHDrvx64 - ok
18:53:27.0070 4960 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:53:27.0148 4960 BITS - ok
18:53:27.0180 4960 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:53:27.0226 4960 blbdrive - ok
18:53:27.0258 4960 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:53:27.0289 4960 bowser - ok
18:53:27.0304 4960 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:53:27.0320 4960 BrFiltLo - ok
18:53:27.0336 4960 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:53:27.0351 4960 BrFiltUp - ok
18:53:27.0382 4960 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:53:27.0460 4960 Browser - ok
18:53:27.0492 4960 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:53:27.0523 4960 Brserid - ok
18:53:27.0538 4960 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:53:27.0570 4960 BrSerWdm - ok
18:53:27.0601 4960 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:53:27.0632 4960 BrUsbMdm - ok
18:53:27.0648 4960 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:53:27.0663 4960 BrUsbSer - ok
18:53:27.0679 4960 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:53:27.0710 4960 BTHMODEM - ok
18:53:27.0726 4960 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:53:27.0804 4960 bthserv - ok
18:53:27.0835 4960 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:53:27.0882 4960 cdfs - ok
18:53:27.0928 4960 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:53:27.0960 4960 cdrom - ok
18:53:27.0975 4960 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:53:28.0022 4960 CertPropSvc - ok
18:53:28.0053 4960 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:53:28.0069 4960 circlass - ok
18:53:28.0100 4960 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:53:28.0147 4960 CLFS - ok
18:53:28.0194 4960 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:53:28.0240 4960 clr_optimization_v2.0.50727_32 - ok
18:53:28.0272 4960 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:53:28.0303 4960 clr_optimization_v2.0.50727_64 - ok
18:53:28.0365 4960 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:53:28.0396 4960 clr_optimization_v4.0.30319_32 - ok
18:53:28.0428 4960 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:53:28.0459 4960 clr_optimization_v4.0.30319_64 - ok
18:53:28.0459 4960 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:53:28.0521 4960 CmBatt - ok
18:53:28.0537 4960 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:53:28.0552 4960 cmdide - ok
18:53:28.0599 4960 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:53:28.0646 4960 CNG - ok
18:53:28.0646 4960 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:53:28.0662 4960 Compbatt - ok
18:53:28.0693 4960 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:53:28.0724 4960 CompositeBus - ok
18:53:28.0724 4960 COMSysApp - ok
18:53:28.0740 4960 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:53:28.0755 4960 crcdisk - ok
18:53:28.0802 4960 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:53:28.0880 4960 CryptSvc - ok
18:53:28.0942 4960 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:53:29.0005 4960 DcomLaunch - ok
18:53:29.0052 4960 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:53:29.0114 4960 defragsvc - ok
18:53:29.0145 4960 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:53:29.0223 4960 DfsC - ok
18:53:29.0254 4960 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:53:29.0317 4960 Dhcp - ok
18:53:29.0348 4960 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:53:29.0379 4960 discache - ok
18:53:29.0379 4960 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:53:29.0410 4960 Disk - ok
18:53:29.0442 4960 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:53:29.0504 4960 Dnscache - ok
18:53:29.0598 4960 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
18:53:29.0676 4960 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
18:53:29.0676 4960 DockLoginService - detected UnsignedFile.Multi.Generic (1)
18:53:29.0722 4960 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:53:29.0800 4960 dot3svc - ok
18:53:29.0832 4960 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
18:53:29.0863 4960 Dot4 - ok
18:53:29.0878 4960 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:53:29.0894 4960 Dot4Print - ok
18:53:29.0925 4960 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
18:53:29.0972 4960 dot4usb - ok
18:53:30.0019 4960 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:53:30.0097 4960 DPS - ok
18:53:30.0112 4960 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:53:30.0159 4960 drmkaud - ok
18:53:30.0222 4960 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:53:30.0268 4960 DXGKrnl - ok
18:53:30.0300 4960 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:53:30.0362 4960 EapHost - ok
18:53:30.0502 4960 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:53:30.0549 4960 ebdrv - ok
18:53:30.0643 4960 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:53:30.0690 4960 eeCtrl - ok
18:53:30.0752 4960 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:53:30.0830 4960 EFS - ok
18:53:30.0892 4960 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:53:30.0986 4960 ehRecvr - ok
18:53:31.0017 4960 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:53:31.0095 4960 ehSched - ok
18:53:31.0158 4960 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:53:31.0204 4960 elxstor - ok
18:53:31.0251 4960 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:53:31.0298 4960 EraserUtilRebootDrv - ok
18:53:31.0329 4960 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:53:31.0360 4960 ErrDev - ok
18:53:31.0423 4960 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:53:31.0470 4960 EventSystem - ok
18:53:31.0501 4960 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:53:31.0563 4960 exfat - ok
18:53:31.0594 4960 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:53:31.0657 4960 fastfat - ok
18:53:31.0704 4960 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:53:31.0797 4960 Fax - ok
18:53:31.0813 4960 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:53:31.0875 4960 fdc - ok
18:53:31.0891 4960 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:53:31.0922 4960 fdPHost - ok
18:53:31.0938 4960 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:53:31.0984 4960 FDResPub - ok
18:53:32.0000 4960 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:53:32.0031 4960 FileInfo - ok
18:53:32.0031 4960 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:53:32.0109 4960 Filetrace - ok
18:53:32.0203 4960 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:53:32.0296 4960 FLEXnet Licensing Service - ok
18:53:32.0296 4960 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:53:32.0312 4960 flpydisk - ok
18:53:32.0359 4960 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:53:32.0390 4960 FltMgr - ok
18:53:32.0468 4960 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:53:32.0515 4960 FontCache - ok
18:53:32.0577 4960 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:53:32.0624 4960 FontCache3.0.0.0 - ok
18:53:32.0640 4960 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:53:32.0655 4960 FsDepends - ok
18:53:32.0686 4960 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:53:32.0718 4960 Fs_Rec - ok
18:53:32.0749 4960 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:53:32.0780 4960 fvevol - ok
18:53:32.0796 4960 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:53:32.0811 4960 gagp30kx - ok
18:53:32.0842 4960 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:53:32.0874 4960 GEARAspiWDM - ok
18:53:32.0905 4960 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
18:53:32.0952 4960 GoToAssist - ok
18:53:32.0983 4960 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:53:33.0061 4960 gpsvc - ok
18:53:33.0123 4960 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:53:33.0186 4960 gupdate - ok
18:53:33.0186 4960 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:53:33.0232 4960 gupdatem - ok
18:53:33.0264 4960 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:53:33.0310 4960 gusvc - ok
18:53:33.0326 4960 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:53:33.0388 4960 hcw85cir - ok
18:53:33.0435 4960 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:53:33.0466 4960 HDAudBus - ok
18:53:33.0498 4960 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:53:33.0529 4960 HECIx64 - ok
18:53:33.0529 4960 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:53:33.0560 4960 HidBatt - ok
18:53:33.0591 4960 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:53:33.0622 4960 HidBth - ok
18:53:33.0638 4960 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:53:33.0654 4960 HidIr - ok
18:53:33.0685 4960 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:53:33.0732 4960 hidserv - ok
18:53:33.0763 4960 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:53:33.0778 4960 HidUsb - ok
18:53:33.0810 4960 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:53:33.0872 4960 hkmsvc - ok
18:53:33.0903 4960 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:53:33.0981 4960 HomeGroupListener - ok
18:53:34.0028 4960 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:53:34.0059 4960 HomeGroupProvider - ok
18:53:34.0137 4960 hpqcxs08 (97aac45a375168c6a2297beeb9692e31) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:53:34.0231 4960 hpqcxs08 - ok
18:53:34.0262 4960 hpqddsvc (19a4fb67b1c97ea18edff44340973cd9) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:53:34.0356 4960 hpqddsvc - ok
18:53:34.0371 4960 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:53:34.0387 4960 HpSAMD - ok
18:53:34.0465 4960 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:53:34.0512 4960 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
18:53:34.0512 4960 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
18:53:34.0574 4960 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:53:34.0636 4960 HTTP - ok
18:53:34.0652 4960 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:53:34.0668 4960 hwpolicy - ok
18:53:34.0683 4960 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:53:34.0730 4960 i8042prt - ok
18:53:34.0777 4960 iaStor (631fa8935163b01fc0c02966cb3adb92) C:\Windows\system32\DRIVERS\iaStor.sys
18:53:34.0824 4960 iaStor - ok
18:53:34.0886 4960 IAStorDataMgrSvc (7493ea4de41348f7d3edbf9db298f56a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:53:34.0933 4960 IAStorDataMgrSvc - ok
18:53:34.0964 4960 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:53:35.0011 4960 iaStorV - ok
18:53:35.0089 4960 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:53:35.0136 4960 idsvc - ok
18:53:35.0385 4960 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120810.001\IDSvia64.sys
18:53:35.0432 4960 IDSVia64 - ok
18:53:35.0494 4960 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:53:35.0526 4960 iirsp - ok
18:53:35.0588 4960 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:53:35.0650 4960 IKEEXT - ok
18:53:35.0666 4960 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
18:53:35.0744 4960 Impcd - ok
18:53:35.0822 4960 IntcAzAudAddService (ee64207f2f5c20bfe5f73db2566c4601) C:\Windows\system32\drivers\RTKVHD64.sys
18:53:35.0869 4960 IntcAzAudAddService - ok
18:53:35.0978 4960 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:53:36.0056 4960 IntcDAud - ok
18:53:36.0072 4960 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:53:36.0103 4960 intelide - ok
18:53:36.0118 4960 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:53:36.0150 4960 intelppm - ok
18:53:36.0181 4960 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:53:36.0259 4960 IPBusEnum - ok
18:53:36.0290 4960 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:53:36.0352 4960 IpFilterDriver - ok
18:53:36.0399 4960 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:53:36.0477 4960 iphlpsvc - ok
18:53:36.0524 4960 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:53:36.0571 4960 IPMIDRV - ok
18:53:36.0602 4960 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:53:36.0664 4960 IPNAT - ok
18:53:36.0680 4960 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:53:36.0742 4960 IRENUM - ok
18:53:36.0774 4960 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:53:36.0805 4960 isapnp - ok
18:53:36.0852 4960 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:53:36.0883 4960 iScsiPrt - ok
18:53:36.0930 4960 k57nd60a (d85f3f18e44f7447b5f1ba5c85baeb7c) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:53:36.0976 4960 k57nd60a - ok
18:53:37.0039 4960 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:53:37.0070 4960 kbdclass - ok
18:53:37.0086 4960 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:53:37.0101 4960 kbdhid - ok
18:53:37.0132 4960 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:37.0148 4960 KeyIso - ok
18:53:37.0195 4960 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:53:37.0226 4960 KSecDD - ok
18:53:37.0273 4960 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:53:37.0304 4960 KSecPkg - ok
18:53:37.0320 4960 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:53:37.0366 4960 ksthunk - ok
18:53:37.0398 4960 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:53:37.0460 4960 KtmRm - ok
18:53:37.0491 4960 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:53:37.0569 4960 LanmanServer - ok
18:53:37.0600 4960 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:53:37.0663 4960 LanmanWorkstation - ok
18:53:37.0694 4960 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
18:53:37.0725 4960 LEqdUsb - ok
18:53:37.0741 4960 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
18:53:37.0788 4960 LHidEqd - ok
18:53:37.0819 4960 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:53:37.0850 4960 LHidFilt - ok
18:53:37.0866 4960 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:53:37.0928 4960 lltdio - ok
18:53:37.0975 4960 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:53:38.0022 4960 lltdsvc - ok
18:53:38.0037 4960 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:53:38.0068 4960 lmhosts - ok
18:53:38.0084 4960 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:53:38.0100 4960 LMouFilt - ok
18:53:38.0115 4960 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:53:38.0131 4960 LSI_FC - ok
18:53:38.0131 4960 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:53:38.0146 4960 LSI_SAS - ok
18:53:38.0162 4960 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:53:38.0178 4960 LSI_SAS2 - ok
18:53:38.0193 4960 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:53:38.0209 4960 LSI_SCSI - ok
18:53:38.0240 4960 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:53:38.0318 4960 luafv - ok
18:53:38.0334 4960 LUsbFilt (9d9714e78eac9e5368208649489c920e) C:\Windows\system32\Drivers\LUsbFilt.Sys
18:53:38.0349 4960 LUsbFilt - ok
18:53:38.0380 4960 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:53:38.0412 4960 Mcx2Svc - ok
18:53:38.0427 4960 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:53:38.0443 4960 megasas - ok
18:53:38.0474 4960 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:53:38.0505 4960 MegaSR - ok
18:53:38.0583 4960 Microsoft SharePoint Workspace Audit Service - ok
18:53:38.0614 4960 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:53:38.0677 4960 MMCSS - ok
18:53:38.0692 4960 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:53:38.0724 4960 Modem - ok
18:53:38.0755 4960 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:53:38.0802 4960 monitor - ok
18:53:38.0833 4960 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:53:38.0864 4960 mouclass - ok
18:53:38.0880 4960 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:53:38.0926 4960 mouhid - ok
18:53:38.0958 4960 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:53:38.0989 4960 mountmgr - ok
18:53:39.0051 4960 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:53:39.0114 4960 MozillaMaintenance - ok
18:53:39.0160 4960 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
18:53:39.0176 4960 MpFilter - ok
18:53:39.0207 4960 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:53:39.0254 4960 mpio - ok
18:53:39.0254 4960 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:53:39.0285 4960 mpsdrv - ok
18:53:39.0348 4960 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:53:39.0410 4960 MpsSvc - ok
18:53:39.0441 4960 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:53:39.0504 4960 MRxDAV - ok
18:53:39.0550 4960 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:53:39.0628 4960 mrxsmb - ok
18:53:39.0675 4960 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:53:39.0722 4960 mrxsmb10 - ok
18:53:39.0753 4960 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:53:39.0769 4960 mrxsmb20 - ok
18:53:39.0800 4960 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:53:39.0831 4960 msahci - ok
18:53:39.0862 4960 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:53:39.0894 4960 msdsm - ok
18:53:39.0925 4960 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:53:39.0972 4960 MSDTC - ok
18:53:40.0003 4960 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:53:40.0034 4960 Msfs - ok
18:53:40.0034 4960 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:53:40.0065 4960 mshidkmdf - ok
18:53:40.0081 4960 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:53:40.0096 4960 msisadrv - ok
18:53:40.0112 4960 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:53:40.0159 4960 MSiSCSI - ok
18:53:40.0159 4960 msiserver - ok
18:53:40.0159 4960 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:53:40.0206 4960 MSKSSRV - ok
18:53:40.0284 4960 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:53:40.0315 4960 MsMpSvc - ok
18:53:40.0330 4960 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:53:40.0377 4960 MSPCLOCK - ok
18:53:40.0408 4960 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:53:40.0455 4960 MSPQM - ok
18:53:40.0502 4960 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:53:40.0533 4960 MsRPC - ok
18:53:40.0549 4960 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:53:40.0564 4960 mssmbios - ok
18:53:40.0580 4960 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:53:40.0627 4960 MSTEE - ok
18:53:40.0642 4960 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:53:40.0689 4960 MTConfig - ok
18:53:40.0720 4960 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:53:40.0736 4960 Mup - ok
18:53:40.0876 4960 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
18:53:40.0954 4960 N360 - ok
18:53:40.0986 4960 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:53:41.0079 4960 napagent - ok
18:53:41.0110 4960 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:53:41.0126 4960 NativeWifiP - ok
18:53:41.0329 4960 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\ENG64.SYS
18:53:41.0360 4960 NAVENG - ok
18:53:41.0438 4960 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\EX64.SYS
18:53:41.0485 4960 NAVEX15 - ok
18:53:41.0594 4960 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:53:41.0641 4960 NDIS - ok
18:53:41.0656 4960 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:53:41.0688 4960 NdisCap - ok
18:53:41.0703 4960 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:53:41.0734 4960 NdisTapi - ok
18:53:41.0766 4960 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:53:41.0812 4960 Ndisuio - ok
18:53:41.0859 4960 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:53:41.0922 4960 NdisWan - ok
18:53:41.0937 4960 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:53:41.0968 4960 NDProxy - ok
18:53:42.0000 4960 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
18:53:42.0046 4960 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:53:42.0046 4960 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:53:42.0046 4960 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:53:42.0093 4960 NetBIOS - ok
18:53:42.0109 4960 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:53:42.0202 4960 NetBT - ok
18:53:42.0234 4960 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:42.0265 4960 Netlogon - ok
18:53:42.0296 4960 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:53:42.0358 4960 Netman - ok
18:53:42.0390 4960 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:53:42.0452 4960 netprofm - ok
18:53:42.0514 4960 netr28ux (eed1fbde98cf5f6d5c0c5b27ab1f68ec) C:\Windows\system32\DRIVERS\netr28ux.sys
18:53:42.0561 4960 netr28ux - ok
18:53:42.0592 4960 netr7364 (81b8d0c1ce44a7fdbd596b693783950c) C:\Windows\system32\DRIVERS\netr7364.sys
18:53:42.0655 4960 netr7364 - ok
18:53:42.0733 4960 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:53:42.0748 4960 NetTcpPortSharing - ok
18:53:42.0764 4960 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:53:42.0780 4960 nfrd960 - ok
18:53:42.0811 4960 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:53:42.0858 4960 NisDrv - ok
18:53:42.0920 4960 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
18:53:42.0967 4960 NisSrv - ok
18:53:43.0014 4960 NitroReaderDriverReadSpool2 (0734398d3d99986bb8006e9bb5eab1e5) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
18:53:43.0076 4960 NitroReaderDriverReadSpool2 - ok
18:53:43.0123 4960 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:53:43.0201 4960 NlaSvc - ok
18:53:43.0216 4960 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:53:43.0248 4960 Npfs - ok
18:53:43.0279 4960 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:53:43.0310 4960 nsi - ok
18:53:43.0326 4960 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:53:43.0372 4960 nsiproxy - ok
18:53:43.0450 4960 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:53:43.0497 4960 Ntfs - ok
18:53:43.0560 4960 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:53:43.0622 4960 Null - ok
18:53:43.0638 4960 NVHDA (ed9380f201c8126425c09bed96dbe1e5) C:\Windows\system32\drivers\nvhda64v.sys
18:53:43.0669 4960 NVHDA - ok
18:53:44.0074 4960 nvlddmkm (ac8cbe9a0663e88f6429ee5530d5e32b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:53:44.0215 4960 nvlddmkm - ok
18:53:44.0324 4960 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:53:44.0355 4960 nvraid - ok
18:53:44.0371 4960 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:53:44.0402 4960 nvstor - ok
18:53:44.0496 4960 nvsvc (0393e59488c67f704336f3ff06e2b7bd) C:\Windows\system32\nvvsvc.exe
18:53:44.0589 4960 nvsvc - ok
18:53:44.0620 4960 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:53:44.0652 4960 nv_agp - ok
18:53:44.0698 4960 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:53:44.0761 4960 ohci1394 - ok
18:53:44.0808 4960 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:53:44.0854 4960 ose - ok
18:53:45.0073 4960 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:53:45.0244 4960 osppsvc - ok
18:53:45.0338 4960 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:53:45.0416 4960 p2pimsvc - ok
18:53:45.0463 4960 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:53:45.0510 4960 p2psvc - ok
18:53:45.0541 4960 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:53:45.0588 4960 Parport - ok
18:53:45.0619 4960 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:53:45.0650 4960 partmgr - ok
18:53:45.0666 4960 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:53:45.0712 4960 PcaSvc - ok
18:53:45.0759 4960 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:53:45.0775 4960 pci - ok
18:53:45.0790 4960 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:53:45.0822 4960 pciide - ok
18:53:45.0853 4960 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:53:45.0884 4960 pcmcia - ok
18:53:45.0900 4960 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:53:45.0915 4960 pcw - ok
18:53:45.0946 4960 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:53:46.0009 4960 PEAUTH - ok
18:53:46.0071 4960 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:53:46.0134 4960 PerfHost - ok
18:53:46.0212 4960 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:53:46.0274 4960 pla - ok
18:53:46.0305 4960 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:53:46.0399 4960 PlugPlay - ok
18:53:46.0430 4960 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
18:53:46.0492 4960 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:53:46.0492 4960 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:53:46.0539 4960 pmxdrv (34bfc6ed31b4e8be940c884b8ac7d9df) C:\Windows\system32\drivers\pmxdrv.sys
18:53:46.0586 4960 pmxdrv - ok
18:53:46.0602 4960 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:53:46.0633 4960 PNRPAutoReg - ok
18:53:46.0664 4960 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:53:46.0695 4960 PNRPsvc - ok
18:53:46.0758 4960 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:53:46.0836 4960 PolicyAgent - ok
18:53:46.0867 4960 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:53:46.0929 4960 Power - ok
18:53:46.0960 4960 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:53:47.0023 4960 PptpMiniport - ok
18:53:47.0054 4960 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:53:47.0116 4960 Processor - ok
18:53:47.0148 4960 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:53:47.0241 4960 ProfSvc - ok
18:53:47.0272 4960 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:47.0288 4960 ProtectedStorage - ok
18:53:47.0335 4960 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:53:47.0397 4960 Psched - ok
18:53:47.0428 4960 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:53:47.0444 4960 PxHlpa64 - ok
18:53:47.0506 4960 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:53:47.0553 4960 ql2300 - ok
18:53:47.0647 4960 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:53:47.0694 4960 ql40xx - ok
18:53:47.0725 4960 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:53:47.0772 4960 QWAVE - ok
18:53:47.0787 4960 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:53:47.0834 4960 QWAVEdrv - ok
18:53:47.0850 4960 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:53:47.0881 4960 RasAcd - ok
18:53:47.0896 4960 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:53:47.0928 4960 RasAgileVpn - ok
18:53:47.0943 4960 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:53:47.0990 4960 RasAuto - ok
18:53:48.0021 4960 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:53:48.0068 4960 Rasl2tp - ok
18:53:48.0099 4960 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:53:48.0162 4960 RasMan - ok
18:53:48.0177 4960 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:53:48.0208 4960 RasPppoe - ok
18:53:48.0224 4960 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:53:48.0271 4960 RasSstp - ok
18:53:48.0286 4960 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:53:48.0349 4960 rdbss - ok
18:53:48.0364 4960 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:53:48.0411 4960 rdpbus - ok
18:53:48.0427 4960 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:53:48.0458 4960 RDPCDD - ok
18:53:48.0458 4960 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:53:48.0505 4960 RDPENCDD - ok
18:53:48.0520 4960 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:53:48.0552 4960 RDPREFMP - ok
18:53:48.0598 4960 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:53:48.0630 4960 RDPWD - ok
18:53:48.0661 4960 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:53:48.0692 4960 rdyboost - ok
18:53:48.0723 4960 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:53:48.0754 4960 RemoteAccess - ok
18:53:48.0770 4960 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:53:48.0801 4960 RemoteRegistry - ok
18:53:48.0957 4960 RoxMediaDB10 (05fc44d32a144925eae45570029fd6e1) c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
18:53:49.0004 4960 RoxMediaDB10 - ok
18:53:49.0020 4960 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:53:49.0066 4960 RpcEptMapper - ok
18:53:49.0098 4960 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:53:49.0129 4960 RpcLocator - ok
18:53:49.0176 4960 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:53:49.0222 4960 RpcSs - ok
18:53:49.0254 4960 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:53:49.0285 4960 rspndr - ok
18:53:49.0285 4960 RT2500USB - ok
18:53:49.0300 4960 RxFilter - ok
18:53:49.0316 4960 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:49.0363 4960 SamSs - ok
18:53:49.0410 4960 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:53:49.0441 4960 sbp2port - ok
18:53:49.0472 4960 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:53:49.0519 4960 SCardSvr - ok
18:53:49.0550 4960 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:53:49.0597 4960 scfilter - ok
18:53:49.0659 4960 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:53:49.0737 4960 Schedule - ok
18:53:49.0753 4960 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:53:49.0800 4960 SCPolicySvc - ok
18:53:49.0846 4960 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:53:49.0893 4960 SDRSVC - ok
18:53:49.0909 4960 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:53:49.0940 4960 secdrv - ok
18:53:49.0971 4960 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:53:50.0049 4960 seclogon - ok
18:53:50.0065 4960 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:53:50.0112 4960 SENS - ok
18:53:50.0143 4960 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:53:50.0205 4960 SensrSvc - ok
18:53:50.0221 4960 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:53:50.0236 4960 Serenum - ok
18:53:50.0252 4960 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:53:50.0283 4960 Serial - ok
18:53:50.0314 4960 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:53:50.0361 4960 sermouse - ok
18:53:50.0408 4960 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:53:50.0470 4960 SessionEnv - ok
18:53:50.0502 4960 SessionLauncher - ok
18:53:50.0533 4960 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:53:50.0595 4960 sffdisk - ok
18:53:50.0611 4960 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:53:50.0642 4960 sffp_mmc - ok
18:53:50.0658 4960 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:53:50.0720 4960 sffp_sd - ok
18:53:50.0736 4960 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:53:50.0751 4960 sfloppy - ok
18:53:50.0782 4960 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:53:50.0860 4960 SharedAccess - ok
18:53:50.0892 4960 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:53:50.0954 4960 ShellHWDetection - ok
18:53:50.0954 4960 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:53:50.0970 4960 SiSRaid2 - ok
18:53:50.0985 4960 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:53:51.0001 4960 SiSRaid4 - ok
18:53:51.0032 4960 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:53:51.0063 4960 Smb - ok
18:53:51.0094 4960 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:53:51.0141 4960 SNMPTRAP - ok
18:53:51.0141 4960 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:53:51.0157 4960 spldr - ok
18:53:51.0188 4960 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:53:51.0235 4960 Spooler - ok
18:53:51.0391 4960 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:53:51.0469 4960 sppsvc - ok
18:53:51.0547 4960 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:53:51.0609 4960 sppuinotify - ok
18:53:51.0687 4960 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
18:53:51.0750 4960 sprtsvc_DellSupportCenter - ok
18:53:51.0843 4960 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\Windows\System32\Drivers\N360x64\0502010.003\SRTSP64.SYS
18:53:51.0874 4960 SRTSP - ok
18:53:51.0937 4960 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
18:53:51.0968 4960 SRTSPX - ok
18:53:52.0030 4960 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:53:52.0093 4960 srv - ok
18:53:52.0124 4960 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:53:52.0171 4960 srv2 - ok
18:53:52.0202 4960 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:53:52.0233 4960 srvnet - ok
18:53:52.0249 4960 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:53:52.0327 4960 SSDPSRV - ok
18:53:52.0342 4960 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:53:52.0420 4960 SstpSvc - ok
18:53:52.0467 4960 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:53:52.0530 4960 Stereo Service - ok
18:53:52.0561 4960 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:53:52.0576 4960 stexstor - ok
18:53:52.0592 4960 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:53:52.0639 4960 StillCam - ok
18:53:52.0686 4960 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:53:52.0717 4960 stisvc - ok
18:53:52.0764 4960 stllssvr (e476c66713c842f58e61a95826ed1d57) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
18:53:52.0795 4960 stllssvr - ok
18:53:52.0826 4960 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:53:52.0873 4960 swenum - ok
18:53:52.0920 4960 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:53:52.0951 4960 swprv - ok
18:53:53.0044 4960 SymDS (6160145c7a87fc7672e8e3b886888176) C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
18:53:53.0091 4960 SymDS - ok
18:53:53.0138 4960 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
18:53:53.0169 4960 SymEFA - ok
18:53:53.0185 4960 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:53:53.0216 4960 SymEvent - ok
18:53:53.0263 4960 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
18:53:53.0294 4960 SymIRON - ok
18:53:53.0372 4960 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\Windows\System32\Drivers\N360x64\0502010.003\SYMNETS.SYS
18:53:53.0434 4960 SymNetS - ok
18:53:53.0512 4960 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:53:53.0590 4960 SysMain - ok
18:53:53.0700 4960 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:53:53.0746 4960 TabletInputService - ok
18:53:53.0793 4960 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:53:53.0856 4960 TapiSrv - ok
18:53:53.0871 4960 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:53:53.0918 4960 TBS - ok
18:53:54.0027 4960 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:53:54.0074 4960 Tcpip - ok
18:53:54.0214 4960 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:53:54.0261 4960 TCPIP6 - ok
18:53:54.0339 4960 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:53:54.0402 4960 tcpipreg - ok
18:53:54.0417 4960 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:53:54.0480 4960 TDPIPE - ok
18:53:54.0511 4960 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:53:54.0558 4960 TDTCP - ok
18:53:54.0573 4960 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:53:54.0620 4960 tdx - ok
18:53:54.0651 4960 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:53:54.0698 4960 TermDD - ok
18:53:54.0745 4960 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:53:54.0807 4960 TermService - ok
18:53:54.0838 4960 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:53:54.0901 4960 Themes - ok
18:53:54.0916 4960 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:53:54.0948 4960 THREADORDER - ok
18:53:54.0963 4960 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:53:55.0010 4960 TrkWks - ok
18:53:55.0072 4960 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:53:55.0119 4960 TrustedInstaller - ok
18:53:55.0166 4960 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:53:55.0228 4960 tssecsrv - ok
18:53:55.0244 4960 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:53:55.0275 4960 TsUsbFlt - ok
18:53:55.0306 4960 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:53:55.0400 4960 tunnel - ok
18:53:55.0431 4960 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:53:55.0478 4960 uagp35 - ok
18:53:55.0494 4960 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:53:55.0572 4960 udfs - ok
18:53:55.0572 4960 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:53:55.0603 4960 UI0Detect - ok
18:53:55.0634 4960 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:53:55.0665 4960 uliagpkx - ok
18:53:55.0696 4960 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:53:55.0759 4960 umbus - ok
18:53:55.0774 4960 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:53:55.0790 4960 UmPass - ok
18:53:55.0806 4960 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:53:55.0852 4960 upnphost - ok
18:53:55.0884 4960 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
18:53:55.0930 4960 usbbus - ok
18:53:55.0962 4960 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:53:56.0008 4960 usbccgp - ok
18:53:56.0055 4960 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:53:56.0086 4960 usbcir - ok
18:53:56.0102 4960 UsbDiag (3fb6e423f7567c92c32ea786f5fd0c69) C:\Windows\system32\DRIVERS\lgx64diag.sys
18:53:56.0133 4960 UsbDiag - ok
18:53:56.0149 4960 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
18:53:56.0196 4960 usbehci - ok
18:53:56.0227 4960 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:53:56.0289 4960 usbhub - ok
18:53:56.0305 4960 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
18:53:56.0320 4960 USBModem - ok
18:53:56.0336 4960 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:53:56.0383 4960 usbohci - ok
18:53:56.0414 4960 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:53:56.0461 4960 usbprint - ok
18:53:56.0508 4960 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:53:56.0570 4960 usbscan - ok
18:53:56.0586 4960 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:53:56.0632 4960 USBSTOR - ok
18:53:56.0648 4960 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:53:56.0679 4960 usbuhci - ok
18:53:56.0695 4960 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:53:56.0773 4960 UxSms - ok
18:53:56.0804 4960 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:53:56.0835 4960 VaultSvc - ok
18:53:56.0851 4960 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:53:56.0866 4960 vdrvroot - ok
18:53:56.0913 4960 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:53:56.0960 4960 vds - ok
18:53:56.0991 4960 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:53:57.0007 4960 vga - ok
18:53:57.0022 4960 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:53:57.0069 4960 VgaSave - ok
18:53:57.0085 4960 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:53:57.0116 4960 vhdmp - ok
18:53:57.0116 4960 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:53:57.0132 4960 viaide - ok
18:53:57.0147 4960 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:53:57.0163 4960 volmgr - ok
18:53:57.0225 4960 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:53:57.0256 4960 volmgrx - ok
18:53:57.0288 4960 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:53:57.0303 4960 volsnap - ok
18:53:57.0334 4960 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:53:57.0350 4960 vsmraid - ok
18:53:57.0428 4960 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:53:57.0506 4960 VSS - ok
18:53:57.0600 4960 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:53:57.0646 4960 vwifibus - ok
18:53:57.0678 4960 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:53:57.0709 4960 vwififlt - ok
18:53:57.0724 4960 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:53:57.0740 4960 vwifimp - ok
18:53:57.0771 4960 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:53:57.0818 4960 W32Time - ok
18:53:57.0834 4960 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:53:57.0849 4960 WacomPen - ok
18:53:57.0880 4960 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:53:57.0912 4960 WANARP - ok
18:53:57.0912 4960 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:53:57.0943 4960 Wanarpv6 - ok
18:53:58.0036 4960 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:53:58.0239 4960 WatAdminSvc - ok
18:53:58.0317 4960 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:53:58.0411 4960 wbengine - ok
18:53:58.0489 4960 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:53:58.0536 4960 WbioSrvc - ok
18:53:58.0551 4960 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:53:58.0598 4960 wcncsvc - ok
18:53:58.0614 4960 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:53:58.0645 4960 WcsPlugInService - ok
18:53:58.0676 4960 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:53:58.0707 4960 Wd - ok
18:53:58.0754 4960 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:53:58.0785 4960 Wdf01000 - ok
18:53:58.0816 4960 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:53:58.0910 4960 WdiServiceHost - ok
18:53:58.0910 4960 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:53:58.0941 4960 WdiSystemHost - ok
18:53:58.0972 4960 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:53:59.0035 4960 WebClient - ok
18:53:59.0066 4960 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:53:59.0128 4960 Wecsvc - ok
18:53:59.0144 4960 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:53:59.0191 4960 wercplsupport - ok
18:53:59.0222 4960 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:53:59.0284 4960 WerSvc - ok
18:53:59.0331 4960 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:53:59.0378 4960 WfpLwf - ok
18:53:59.0394 4960 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:53:59.0409 4960 WIMMount - ok
18:53:59.0425 4960 WinDefend - ok
18:53:59.0440 4960 WinHttpAutoProxySvc - ok
18:53:59.0487 4960 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:53:59.0550 4960 Winmgmt - ok
18:53:59.0643 4960 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:53:59.0706 4960 WinRM - ok
18:53:59.0799 4960 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:53:59.0846 4960 WinUsb - ok
18:53:59.0908 4960 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:53:59.0971 4960 Wlansvc - ok
18:54:00.0127 4960 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:54:00.0220 4960 wlidsvc - ok
18:54:00.0314 4960 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:54:00.0345 4960 WmiAcpi - ok
18:54:00.0392 4960 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:54:00.0439 4960 wmiApSrv - ok
18:54:00.0470 4960 WMPNetworkSvc - ok
18:54:00.0486 4960 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:54:00.0517 4960 WPCSvc - ok
18:54:00.0564 4960 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:54:00.0626 4960 WPDBusEnum - ok
18:54:00.0642 4960 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:54:00.0673 4960 ws2ifsl - ok
18:54:00.0704 4960 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:54:00.0766 4960 wscsvc - ok
18:54:00.0766 4960 WSearch - ok
18:54:00.0891 4960 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:54:00.0938 4960 wuauserv - ok
18:54:01.0047 4960 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:54:01.0125 4960 WudfPf - ok
18:54:01.0156 4960 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:54:01.0203 4960 WUDFRd - ok
18:54:01.0234 4960 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:54:01.0297 4960 wudfsvc - ok
18:54:01.0312 4960 WUSB54Gv2SVC - ok
18:54:01.0359 4960 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:54:01.0453 4960 WwanSvc - ok
18:54:01.0468 4960 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:54:01.0765 4960 \Device\Harddisk0\DR0 - ok
18:54:01.0796 4960 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR6
18:54:02.0997 4960 \Device\Harddisk5\DR6 - ok
18:54:02.0997 4960 Boot (0x1200) (bcdc11761b88f71ac82cf42441f1e20c) \Device\Harddisk0\DR0\Partition0
18:54:02.0997 4960 \Device\Harddisk0\DR0\Partition0 - ok
18:54:03.0028 4960 Boot (0x1200) (36db8355f3bfe691c3511b31e4f21a90) \Device\Harddisk0\DR0\Partition1
18:54:03.0028 4960 \Device\Harddisk0\DR0\Partition1 - ok
18:54:03.0028 4960 Boot (0x1200) (b12d405050a5391cf09c09405a1f6a44) \Device\Harddisk5\DR6\Partition0
18:54:03.0044 4960 \Device\Harddisk5\DR6\Partition0 - ok
18:54:03.0044 4960 ============================================================
18:54:03.0044 4960 Scan finished
18:54:03.0044 4960 ============================================================
18:54:03.0044 3456 Detected object count: 5
18:54:03.0044 3456 Actual detected object count: 5
18:54:19.0237 3456 C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe - copied to quarantine
18:54:19.0252 3456 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:54:19.0315 3456 C:\Program Files\Dell\DellDock\DockLogin.exe - copied to quarantine
18:54:19.0377 3456 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:54:19.0502 3456 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - copied to quarantine
18:54:19.0549 3456 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:54:19.0627 3456 C:\Windows\system32\HPZinw12.dll - copied to quarantine
18:54:19.0642 3456 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:54:19.0658 3456 C:\Windows\system32\HPZipm12.dll - copied to quarantine
18:54:19.0674 3456 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
18:54:25.0118 4476 Deinitialize success
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
10-Sep-2012, 12:34 PM #9
TDSS killer log #2
18:58:23.0187 1628 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
18:58:23.0234 1628 ============================================================
18:58:23.0234 1628 Current date / time: 2012/08/11 18:58:23.0234
18:58:23.0234 1628 SystemInfo:
18:58:23.0234 1628
18:58:23.0234 1628 OS Version: 6.1.7601 ServicePack: 1.0
18:58:23.0234 1628 Product type: Workstation
18:58:23.0234 1628 ComputerName: CHOYSTOY-PC
18:58:23.0234 1628 UserName: Choystoy
18:58:23.0234 1628 Windows directory: C:\Windows
18:58:23.0234 1628 System windows directory: C:\Windows
18:58:23.0234 1628 Running under WOW64
18:58:23.0234 1628 Processor architecture: Intel x64
18:58:23.0234 1628 Number of processors: 4
18:58:23.0234 1628 Page size: 0x1000
18:58:23.0234 1628 Boot type: Safe boot
18:58:23.0234 1628 ============================================================
18:58:23.0702 1628 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:58:23.0717 1628 Drive \Device\Harddisk5\DR5 - Size: 0x3E80000 (0.06 Gb), SectorSize: 0x200, Cylinders: 0x7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:58:23.0717 1628 ============================================================
18:58:23.0717 1628 \Device\Harddisk0\DR0:
18:58:23.0717 1628 MBR partitions:
18:58:23.0717 1628 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x27800, BlocksNum 0x1339000
18:58:23.0717 1628 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1360800, BlocksNum 0x733A5800
18:58:23.0717 1628 \Device\Harddisk5\DR5:
18:58:23.0717 1628 MBR partitions:
18:58:23.0717 1628 \Device\Harddisk5\DR5\Partition0: MBR, Type 0xB, StartLBA 0x2A, BlocksNum 0x1F368
18:58:23.0717 1628 ============================================================
18:58:23.0733 1628 C: <-> \Device\Harddisk0\DR0\Partition1
18:58:23.0733 1628 ============================================================
18:58:23.0733 1628 Initialize success
18:58:23.0733 1628 ============================================================
18:58:29.0770 1660 ============================================================
18:58:29.0770 1660 Scan started
18:58:29.0770 1660 Mode: Manual; SigCheck; TDLFS;
18:58:29.0770 1660 ============================================================
18:58:30.0160 1660 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:58:30.0301 1660 1394ohci - ok
18:58:30.0332 1660 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:58:30.0347 1660 ACPI - ok
18:58:30.0363 1660 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:58:30.0410 1660 AcpiPmi - ok
18:58:30.0519 1660 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:58:30.0519 1660 AdobeARMservice - ok
18:58:30.0644 1660 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:58:30.0659 1660 AdobeFlashPlayerUpdateSvc - ok
18:58:30.0675 1660 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:58:30.0706 1660 adp94xx - ok
18:58:30.0722 1660 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:58:30.0737 1660 adpahci - ok
18:58:30.0753 1660 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:58:30.0769 1660 adpu320 - ok
18:58:30.0784 1660 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:58:30.0878 1660 AeLookupSvc - ok
18:58:30.0956 1660 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:58:30.0987 1660 AFD - ok
18:58:31.0034 1660 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:58:31.0049 1660 agp440 - ok
18:58:31.0096 1660 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:58:31.0143 1660 ALG - ok
18:58:31.0174 1660 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:58:31.0174 1660 aliide - ok
18:58:31.0205 1660 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:58:31.0205 1660 amdide - ok
18:58:31.0221 1660 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:58:31.0268 1660 AmdK8 - ok
18:58:31.0283 1660 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:58:31.0299 1660 AmdPPM - ok
18:58:31.0393 1660 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:58:31.0408 1660 amdsata - ok
18:58:31.0424 1660 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:58:31.0424 1660 amdsbs - ok
18:58:31.0439 1660 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:58:31.0455 1660 amdxata - ok
18:58:31.0533 1660 ANIWZCSdService (aa3d68f26b2a27f660afc46039b061a4) C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
18:58:31.0549 1660 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - warning
18:58:31.0549 1660 ANIWZCSdService - detected UnsignedFile.Multi.Generic (1)
18:58:31.0642 1660 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:58:31.0783 1660 AppID - ok
18:58:31.0814 1660 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:58:31.0845 1660 AppIDSvc - ok
18:58:31.0892 1660 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:58:31.0939 1660 Appinfo - ok
18:58:32.0141 1660 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:58:32.0141 1660 arc - ok
18:58:32.0157 1660 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:58:32.0173 1660 arcsas - ok
18:58:32.0188 1660 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:58:32.0235 1660 AsyncMac - ok
18:58:32.0297 1660 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:58:32.0297 1660 atapi - ok
18:58:32.0375 1660 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
18:58:32.0485 1660 athr - ok
18:58:32.0656 1660 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:58:32.0703 1660 AudioEndpointBuilder - ok
18:58:32.0703 1660 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:58:32.0734 1660 AudioSrv - ok
18:58:32.0797 1660 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:58:32.0859 1660 AxInstSV - ok
18:58:32.0906 1660 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:58:32.0937 1660 b06bdrv - ok
18:58:32.0968 1660 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:58:32.0999 1660 b57nd60a - ok
18:58:33.0046 1660 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:58:33.0093 1660 BDESVC - ok
18:58:33.0093 1660 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:58:33.0140 1660 Beep - ok
18:58:33.0218 1660 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:58:33.0265 1660 BFE - ok
18:58:33.0530 1660 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20120804.001\BHDrvx64.sys
18:58:33.0592 1660 BHDrvx64 - ok
18:58:33.0717 1660 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:58:33.0795 1660 BITS - ok
18:58:33.0857 1660 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:58:33.0857 1660 blbdrive - ok
18:58:33.0904 1660 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:58:33.0920 1660 bowser - ok
18:58:33.0935 1660 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:58:33.0951 1660 BrFiltLo - ok
18:58:33.0967 1660 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:58:33.0967 1660 BrFiltUp - ok
18:58:34.0013 1660 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:58:34.0045 1660 Browser - ok
18:58:34.0076 1660 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:58:34.0123 1660 Brserid - ok
18:58:34.0123 1660 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:58:34.0154 1660 BrSerWdm - ok
18:58:34.0169 1660 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:58:34.0185 1660 BrUsbMdm - ok
18:58:34.0201 1660 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:58:34.0216 1660 BrUsbSer - ok
18:58:34.0232 1660 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:58:34.0247 1660 BTHMODEM - ok
18:58:34.0279 1660 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:58:34.0310 1660 bthserv - ok
18:58:34.0357 1660 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:58:34.0388 1660 cdfs - ok
18:58:34.0450 1660 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:58:34.0450 1660 cdrom - ok
18:58:34.0481 1660 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:58:34.0513 1660 CertPropSvc - ok
18:58:34.0544 1660 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:58:34.0559 1660 circlass - ok
18:58:34.0591 1660 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:58:34.0606 1660 CLFS - ok
18:58:34.0653 1660 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:58:34.0669 1660 clr_optimization_v2.0.50727_32 - ok
18:58:34.0700 1660 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:58:34.0715 1660 clr_optimization_v2.0.50727_64 - ok
18:58:34.0809 1660 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:58:34.0840 1660 clr_optimization_v4.0.30319_32 - ok
18:58:34.0871 1660 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:58:34.0887 1660 clr_optimization_v4.0.30319_64 - ok
18:58:34.0887 1660 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:58:34.0903 1660 CmBatt - ok
18:58:34.0949 1660 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:58:34.0949 1660 cmdide - ok
18:58:34.0996 1660 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:58:35.0012 1660 CNG - ok
18:58:35.0027 1660 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:58:35.0027 1660 Compbatt - ok
18:58:35.0059 1660 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:58:35.0090 1660 CompositeBus - ok
18:58:35.0105 1660 COMSysApp - ok
18:58:35.0137 1660 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:58:35.0137 1660 crcdisk - ok
18:58:35.0183 1660 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:58:35.0230 1660 CryptSvc - ok
18:58:35.0261 1660 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:58:35.0324 1660 DcomLaunch - ok
18:58:35.0355 1660 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:58:35.0386 1660 defragsvc - ok
18:58:35.0433 1660 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:58:35.0464 1660 DfsC - ok
18:58:35.0542 1660 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:58:35.0573 1660 Dhcp - ok
18:58:35.0605 1660 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:58:35.0636 1660 discache - ok
18:58:35.0667 1660 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:58:35.0667 1660 Disk - ok
18:58:35.0714 1660 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:58:35.0761 1660 Dnscache - ok
18:58:35.0839 1660 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
18:58:35.0854 1660 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
18:58:35.0854 1660 DockLoginService - detected UnsignedFile.Multi.Generic (1)
18:58:35.0885 1660 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:58:35.0917 1660 dot3svc - ok
18:58:35.0963 1660 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
18:58:35.0995 1660 Dot4 - ok
18:58:36.0026 1660 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:58:36.0041 1660 Dot4Print - ok
18:58:36.0088 1660 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
18:58:36.0104 1660 dot4usb - ok
18:58:36.0135 1660 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:58:36.0166 1660 DPS - ok
18:58:36.0197 1660 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:58:36.0229 1660 drmkaud - ok
18:58:36.0307 1660 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:58:36.0322 1660 DXGKrnl - ok
18:58:36.0353 1660 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:58:36.0400 1660 EapHost - ok
18:58:36.0509 1660 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:58:36.0587 1660 ebdrv - ok
18:58:36.0665 1660 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:58:36.0681 1660 eeCtrl - ok
18:58:36.0759 1660 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:58:36.0790 1660 EFS - ok
18:58:36.0837 1660 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:58:36.0853 1660 ehRecvr - ok
18:58:36.0884 1660 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:58:36.0931 1660 ehSched - ok
18:58:36.0977 1660 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:58:36.0993 1660 elxstor - ok
18:58:37.0040 1660 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:58:37.0055 1660 EraserUtilRebootDrv - ok
18:58:37.0087 1660 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:58:37.0102 1660 ErrDev - ok
18:58:37.0149 1660 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:58:37.0180 1660 EventSystem - ok
18:58:37.0196 1660 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:58:37.0243 1660 exfat - ok
18:58:37.0258 1660 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:58:37.0305 1660 fastfat - ok
18:58:37.0352 1660 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:58:37.0399 1660 Fax - ok
18:58:37.0414 1660 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:58:37.0430 1660 fdc - ok
18:58:37.0445 1660 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:58:37.0477 1660 fdPHost - ok
18:58:37.0508 1660 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:58:37.0539 1660 FDResPub - ok
18:58:37.0555 1660 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:58:37.0570 1660 FileInfo - ok
18:58:37.0570 1660 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:58:37.0617 1660 Filetrace - ok
18:58:37.0711 1660 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:58:37.0726 1660 FLEXnet Licensing Service - ok
18:58:37.0742 1660 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:58:37.0742 1660 flpydisk - ok
18:58:37.0789 1660 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:58:37.0789 1660 FltMgr - ok
18:58:37.0851 1660 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:58:37.0882 1660 FontCache - ok
18:58:37.0945 1660 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:58:37.0960 1660 FontCache3.0.0.0 - ok
18:58:37.0960 1660 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:58:37.0976 1660 FsDepends - ok
18:58:38.0007 1660 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:58:38.0023 1660 Fs_Rec - ok
18:58:38.0054 1660 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:58:38.0069 1660 fvevol - ok
18:58:38.0085 1660 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:58:38.0101 1660 gagp30kx - ok
18:58:38.0132 1660 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:58:38.0147 1660 GEARAspiWDM - ok
18:58:38.0194 1660 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
18:58:38.0194 1660 GoToAssist - ok
18:58:38.0225 1660 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:58:38.0272 1660 gpsvc - ok
18:58:38.0366 1660 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:58:38.0366 1660 gupdate - ok
18:58:38.0381 1660 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:58:38.0397 1660 gupdatem - ok
18:58:38.0444 1660 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:58:38.0444 1660 gusvc - ok
18:58:38.0459 1660 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:58:38.0491 1660 hcw85cir - ok
18:58:38.0537 1660 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:58:38.0553 1660 HDAudBus - ok
18:58:38.0584 1660 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:58:38.0584 1660 HECIx64 - ok
18:58:38.0584 1660 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:58:38.0600 1660 HidBatt - ok
18:58:38.0615 1660 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:58:38.0647 1660 HidBth - ok
18:58:38.0678 1660 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:58:38.0709 1660 HidIr - ok
18:58:38.0740 1660 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:58:38.0771 1660 hidserv - ok
18:58:38.0803 1660 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:58:38.0818 1660 HidUsb - ok
18:58:38.0834 1660 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:58:38.0881 1660 hkmsvc - ok
18:58:38.0896 1660 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:58:38.0943 1660 HomeGroupListener - ok
18:58:38.0974 1660 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:58:39.0005 1660 HomeGroupProvider - ok
18:58:39.0130 1660 hpqcxs08 (97aac45a375168c6a2297beeb9692e31) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:58:39.0130 1660 hpqcxs08 - ok
18:58:39.0161 1660 hpqddsvc (19a4fb67b1c97ea18edff44340973cd9) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:58:39.0161 1660 hpqddsvc - ok
18:58:39.0177 1660 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:58:39.0193 1660 HpSAMD - ok
18:58:39.0271 1660 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:58:39.0302 1660 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
18:58:39.0302 1660 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
18:58:39.0364 1660 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:58:39.0411 1660 HTTP - ok
18:58:39.0442 1660 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:58:39.0442 1660 hwpolicy - ok
18:58:39.0505 1660 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:58:39.0520 1660 i8042prt - ok
18:58:39.0536 1660 iaStor (631fa8935163b01fc0c02966cb3adb92) C:\Windows\system32\DRIVERS\iaStor.sys
18:58:39.0551 1660 iaStor - ok
18:58:39.0629 1660 IAStorDataMgrSvc (7493ea4de41348f7d3edbf9db298f56a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:58:39.0645 1660 IAStorDataMgrSvc - ok
18:58:39.0676 1660 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:58:39.0692 1660 iaStorV - ok
18:58:39.0785 1660 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:58:39.0801 1660 idsvc - ok
18:58:40.0035 1660 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120810.001\IDSvia64.sys
18:58:40.0051 1660 IDSVia64 - ok
18:58:40.0097 1660 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:58:40.0097 1660 iirsp - ok
18:58:40.0160 1660 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:58:40.0222 1660 IKEEXT - ok
18:58:40.0269 1660 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
18:58:40.0300 1660 Impcd - ok
18:58:40.0378 1660 IntcAzAudAddService (ee64207f2f5c20bfe5f73db2566c4601) C:\Windows\system32\drivers\RTKVHD64.sys
18:58:40.0425 1660 IntcAzAudAddService - ok
18:58:40.0503 1660 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:58:40.0550 1660 IntcDAud - ok
18:58:40.0581 1660 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:58:40.0597 1660 intelide - ok
18:58:40.0643 1660 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:58:40.0659 1660 intelppm - ok
18:58:40.0706 1660 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:58:40.0753 1660 IPBusEnum - ok
18:58:40.0784 1660 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:58:40.0815 1660 IpFilterDriver - ok
18:58:40.0846 1660 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:58:40.0893 1660 iphlpsvc - ok
18:58:40.0924 1660 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:58:40.0940 1660 IPMIDRV - ok
18:58:40.0955 1660 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:58:41.0002 1660 IPNAT - ok
18:58:41.0033 1660 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:58:41.0049 1660 IRENUM - ok
18:58:41.0065 1660 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:58:41.0065 1660 isapnp - ok
18:58:41.0096 1660 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:58:41.0096 1660 iScsiPrt - ok
18:58:41.0143 1660 k57nd60a (d85f3f18e44f7447b5f1ba5c85baeb7c) C:\Windows\system32\DRIVERS\k57nd60a.sys
18:58:41.0158 1660 k57nd60a - ok
18:58:41.0189 1660 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:58:41.0189 1660 kbdclass - ok
18:58:41.0205 1660 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:58:41.0205 1660 kbdhid - ok
18:58:41.0236 1660 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:58:41.0252 1660 KeyIso - ok
18:58:41.0267 1660 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:58:41.0283 1660 KSecDD - ok
18:58:41.0314 1660 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:58:41.0330 1660 KSecPkg - ok
18:58:41.0345 1660 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:58:41.0377 1660 ksthunk - ok
18:58:41.0423 1660 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:58:41.0455 1660 KtmRm - ok
18:58:41.0501 1660 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:58:41.0548 1660 LanmanServer - ok
18:58:41.0595 1660 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:58:41.0626 1660 LanmanWorkstation - ok
18:58:41.0673 1660 LEqdUsb (becbd7cd46776b8739ee18061f45a581) C:\Windows\system32\DRIVERS\LEqdUsb.Sys
18:58:41.0689 1660 LEqdUsb - ok
18:58:41.0735 1660 LHidEqd (21d6bd7d62c270059eb8e2b1d4095880) C:\Windows\system32\DRIVERS\LHidEqd.Sys
18:58:41.0751 1660 LHidEqd - ok
18:58:41.0782 1660 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:58:41.0782 1660 LHidFilt - ok
18:58:41.0813 1660 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:58:41.0845 1660 lltdio - ok
18:58:41.0891 1660 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:58:41.0923 1660 lltdsvc - ok
18:58:41.0923 1660 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:58:41.0954 1660 lmhosts - ok
18:58:41.0969 1660 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:58:41.0969 1660 LMouFilt - ok
18:58:42.0016 1660 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:58:42.0016 1660 LSI_FC - ok
18:58:42.0032 1660 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:58:42.0032 1660 LSI_SAS - ok
18:58:42.0047 1660 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:58:42.0063 1660 LSI_SAS2 - ok
18:58:42.0063 1660 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:58:42.0079 1660 LSI_SCSI - ok
18:58:42.0094 1660 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:58:42.0141 1660 luafv - ok
18:58:42.0172 1660 LUsbFilt (9d9714e78eac9e5368208649489c920e) C:\Windows\system32\Drivers\LUsbFilt.Sys
18:58:42.0188 1660 LUsbFilt - ok
18:58:42.0219 1660 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:58:42.0219 1660 Mcx2Svc - ok
18:58:42.0235 1660 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:58:42.0250 1660 megasas - ok
18:58:42.0250 1660 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:58:42.0266 1660 MegaSR - ok
18:58:42.0344 1660 Microsoft SharePoint Workspace Audit Service - ok
18:58:42.0359 1660 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:58:42.0391 1660 MMCSS - ok
18:58:42.0406 1660 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:58:42.0437 1660 Modem - ok
18:58:42.0453 1660 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:58:42.0484 1660 monitor - ok
18:58:42.0515 1660 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:58:42.0515 1660 mouclass - ok
18:58:42.0531 1660 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:58:42.0562 1660 mouhid - ok
18:58:42.0593 1660 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:58:42.0593 1660 mountmgr - ok
18:58:42.0671 1660 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:58:42.0687 1660 MozillaMaintenance - ok
18:58:42.0749 1660 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
18:58:42.0765 1660 MpFilter - ok
18:58:42.0812 1660 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:58:42.0827 1660 mpio - ok
18:58:42.0827 1660 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:58:42.0859 1660 mpsdrv - ok
18:58:42.0890 1660 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:58:42.0921 1660 MpsSvc - ok
18:58:42.0952 1660 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:58:42.0983 1660 MRxDAV - ok
18:58:42.0999 1660 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:58:43.0030 1660 mrxsmb - ok
18:58:43.0077 1660 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:58:43.0093 1660 mrxsmb10 - ok
18:58:43.0108 1660 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:58:43.0124 1660 mrxsmb20 - ok
18:58:43.0139 1660 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:58:43.0155 1660 msahci - ok
18:58:43.0186 1660 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:58:43.0186 1660 msdsm - ok
18:58:43.0202 1660 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:58:43.0233 1660 MSDTC - ok
18:58:43.0249 1660 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:58:43.0280 1660 Msfs - ok
18:58:43.0311 1660 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:58:43.0327 1660 mshidkmdf - ok
18:58:43.0327 1660 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:58:43.0342 1660 msisadrv - ok
18:58:43.0373 1660 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:58:43.0420 1660 MSiSCSI - ok
18:58:43.0420 1660 msiserver - ok
18:58:43.0436 1660 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:58:43.0483 1660 MSKSSRV - ok
18:58:43.0592 1660 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:58:43.0592 1660 MsMpSvc - ok
18:58:43.0623 1660 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:58:43.0654 1660 MSPCLOCK - ok
18:58:43.0685 1660 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:58:43.0732 1660 MSPQM - ok
18:58:43.0779 1660 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:58:43.0795 1660 MsRPC - ok
18:58:43.0795 1660 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:58:43.0810 1660 mssmbios - ok
18:58:43.0826 1660 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:58:43.0857 1660 MSTEE - ok
18:58:43.0873 1660 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:58:43.0888 1660 MTConfig - ok
18:58:43.0888 1660 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:58:43.0904 1660 Mup - ok
18:58:44.0029 1660 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files (x86)\Norton Security Suite\Engine\5.2.2.3\ccSvcHst.exe
18:58:44.0044 1660 N360 - ok
18:58:44.0060 1660 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:58:44.0107 1660 napagent - ok
18:58:44.0153 1660 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:58:44.0169 1660 NativeWifiP - ok
18:58:44.0372 1660 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\ENG64.SYS
18:58:44.0387 1660 NAVENG - ok
18:58:44.0465 1660 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120714.017\EX64.SYS
18:58:44.0543 1660 NAVEX15 - ok
18:58:44.0653 1660 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:58:44.0668 1660 NDIS - ok
18:58:44.0684 1660 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:58:44.0715 1660 NdisCap - ok
18:58:44.0746 1660 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:58:44.0762 1660 NdisTapi - ok
18:58:44.0809 1660 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:58:44.0840 1660 Ndisuio - ok
18:58:44.0887 1660 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:58:44.0933 1660 NdisWan - ok
18:58:44.0949 1660 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:58:44.0980 1660 NDProxy - ok
18:58:45.0027 1660 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
18:58:45.0027 1660 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:58:45.0027 1660 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:58:45.0043 1660 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:58:45.0074 1660 NetBIOS - ok
18:58:45.0105 1660 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:58:45.0136 1660 NetBT - ok
18:58:45.0167 1660 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:58:45.0183 1660 Netlogon - ok
18:58:45.0214 1660 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:58:45.0245 1660 Netman - ok
18:58:45.0261 1660 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:58:45.0292 1660 netprofm - ok
18:58:45.0370 1660 netr28ux (eed1fbde98cf5f6d5c0c5b27ab1f68ec) C:\Windows\system32\DRIVERS\netr28ux.sys
18:58:45.0417 1660 netr28ux - ok
18:58:45.0448 1660 netr7364 (81b8d0c1ce44a7fdbd596b693783950c) C:\Windows\system32\DRIVERS\netr7364.sys
18:58:45.0495 1660 netr7364 - ok
18:58:45.0557 1660 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:58:45.0557 1660 NetTcpPortSharing - ok
18:58:45.0573 1660 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:58:45.0589 1660 nfrd960 - ok
18:58:45.0651 1660 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:58:45.0651 1660 NisDrv - ok
18:58:45.0729 1660 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
18:58:45.0745 1660 NisSrv - ok
18:58:45.0823 1660 NitroReaderDriverReadSpool2 (0734398d3d99986bb8006e9bb5eab1e5) C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
18:58:45.0823 1660 NitroReaderDriverReadSpool2 - ok
18:58:45.0901 1660 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:58:45.0932 1660 NlaSvc - ok
18:58:45.0963 1660 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:58:45.0979 1660 Npfs - ok
18:58:45.0994 1660 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:58:46.0025 1660 nsi - ok
18:58:46.0041 1660 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:58:46.0072 1660 nsiproxy - ok
18:58:46.0150 1660 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:58:46.0197 1660 Ntfs - ok
18:58:46.0259 1660 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:58:46.0291 1660 Null - ok
18:58:46.0337 1660 NVHDA (ed9380f201c8126425c09bed96dbe1e5) C:\Windows\system32\drivers\nvhda64v.sys
18:58:46.0337 1660 NVHDA - ok
18:58:46.0696 1660 nvlddmkm (ac8cbe9a0663e88f6429ee5530d5e32b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:58:46.0946 1660 nvlddmkm - ok
18:58:47.0024 1660 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:58:47.0039 1660 nvraid - ok
18:58:47.0055 1660 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:58:47.0071 1660 nvstor - ok
18:58:47.0133 1660 nvsvc (0393e59488c67f704336f3ff06e2b7bd) C:\Windows\system32\nvvsvc.exe
18:58:47.0149 1660 nvsvc - ok
18:58:47.0164 1660 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:58:47.0180 1660 nv_agp - ok
18:58:47.0180 1660 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:58:47.0227 1660 ohci1394 - ok
18:58:47.0289 1660 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:58:47.0305 1660 ose - ok
18:58:47.0476 1660 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:58:47.0585 1660 osppsvc - ok
18:58:47.0648 1660 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:58:47.0695 1660 p2pimsvc - ok
18:58:47.0741 1660 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:58:47.0741 1660 p2psvc - ok
18:58:47.0788 1660 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:58:47.0804 1660 Parport - ok
18:58:47.0835 1660 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:58:47.0835 1660 partmgr - ok
18:58:47.0851 1660 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:58:47.0882 1660 PcaSvc - ok
18:58:47.0929 1660 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:58:47.0944 1660 pci - ok
18:58:47.0944 1660 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:58:47.0960 1660 pciide - ok
18:58:47.0991 1660 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:58:47.0991 1660 pcmcia - ok
18:58:48.0007 1660 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:58:48.0022 1660 pcw - ok
18:58:48.0053 1660 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:58:48.0100 1660 PEAUTH - ok
18:58:48.0163 1660 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:58:48.0178 1660 PerfHost - ok
18:58:48.0241 1660 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:58:48.0303 1660 pla - ok
18:58:48.0334 1660 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:58:48.0365 1660 PlugPlay - ok
18:58:48.0428 1660 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
18:58:48.0443 1660 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:58:48.0443 1660 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:58:48.0506 1660 pmxdrv (34bfc6ed31b4e8be940c884b8ac7d9df) C:\Windows\system32\drivers\pmxdrv.sys
18:58:48.0521 1660 pmxdrv - ok
18:58:48.0537 1660 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:58:48.0553 1660 PNRPAutoReg - ok
18:58:48.0568 1660 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:58:48.0584 1660 PNRPsvc - ok
18:58:48.0615 1660 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:58:48.0646 1660 PolicyAgent - ok
18:58:48.0677 1660 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:58:48.0724 1660 Power - ok
18:58:48.0771 1660 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:58:48.0802 1660 PptpMiniport - ok
18:58:48.0833 1660 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:58:48.0849 1660 Processor - ok
18:58:48.0896 1660 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:58:48.0927 1660 ProfSvc - ok
18:58:48.0958 1660 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:58:48.0958 1660 ProtectedStorage - ok
18:58:49.0005 1660 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:58:49.0052 1660 Psched - ok
18:58:49.0083 1660 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:58:49.0083 1660 PxHlpa64 - ok
18:58:49.0130 1660 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:58:49.0177 1660 ql2300 - ok
18:58:49.0255 1660 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:58:49.0255 1660 ql40xx - ok
18:58:49.0286 1660 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:58:49.0301 1660 QWAVE - ok
18:58:49.0317 1660 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:58:49.0333 1660 QWAVEdrv - ok
18:58:49.0348 1660 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:58:49.0379 1660 RasAcd - ok
18:58:49.0411 1660 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:58:49.0442 1660 RasAgileVpn - ok
18:58:49.0442 1660 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:58:49.0489 1660 RasAuto - ok
18:58:49.0504 1660 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:58:49.0551 1660 Rasl2tp - ok
18:58:49.0582 1660 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:58:49.0598 1660 RasMan - ok
18:58:49.0613 1660 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:58:49.0645 1660 RasPppoe - ok
18:58:49.0676 1660 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:58:49.0691 1660 RasSstp - ok
18:58:49.0723 1660 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:58:49.0769 1660 rdbss - ok
18:58:49.0801 1660 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:58:49.0816 1660 rdpbus - ok
18:58:49.0847 1660 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:58:49.0863 1660 RDPCDD - ok
18:58:49.0879 1660 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:58:49.0910 1660 RDPENCDD - ok
18:58:49.0941 1660 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:58:49.0972 1660 RDPREFMP - ok
18:58:50.0003 1660 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:58:50.0050 1660 RDPWD - ok
18:58:50.0081 1660 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:58:50.0097 1660 rdyboost - ok
18:58:50.0113 1660 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:58:50.0144 1660 RemoteAccess - ok
18:58:50.0175 1660 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:58:50.0191 1660 RemoteRegistry - ok
18:58:50.0331 1660 RoxMediaDB10 (05fc44d32a144925eae45570029fd6e1) c:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
18:58:50.0362 1660 RoxMediaDB10 - ok
18:58:50.0378 1660 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:58:50.0409 1660 RpcEptMapper - ok
18:58:50.0440 1660 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:58:50.0456 1660 RpcLocator - ok
18:58:50.0503 1660 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:58:50.0534 1660 RpcSs - ok
18:58:50.0549 1660 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:58:50.0581 1660 rspndr - ok
18:58:50.0596 1660 RT2500USB - ok
18:58:50.0612 1660 RxFilter - ok
18:58:50.0627 1660 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:58:50.0643 1660 SamSs - ok
18:58:50.0674 1660 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:58:50.0690 1660 sbp2port - ok
18:58:50.0705 1660 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:58:50.0737 1660 SCardSvr - ok
18:58:50.0752 1660 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:58:50.0799 1660 scfilter - ok
18:58:50.0846 1660 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:58:50.0908 1660 Schedule - ok
18:58:50.0939 1660 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:58:50.0955 1660 SCPolicySvc - ok
18:58:50.0986 1660 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:58:51.0002 1660 SDRSVC - ok
18:58:51.0033 1660 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:58:51.0049 1660 secdrv - ok
18:58:51.0080 1660 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:58:51.0111 1660 seclogon - ok
18:58:51.0111 1660 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:58:51.0142 1660 SENS - ok
18:58:51.0158 1660 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:58:51.0173 1660 SensrSvc - ok
18:58:51.0189 1660 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:58:51.0205 1660 Serenum - ok
18:58:51.0220 1660 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:58:51.0236 1660 Serial - ok
18:58:51.0251 1660 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:58:51.0283 1660 sermouse - ok
18:58:51.0314 1660 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:58:51.0345 1660 SessionEnv - ok
18:58:51.0361 1660 SessionLauncher - ok
18:58:51.0392 1660 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:58:51.0423 1660 sffdisk - ok
18:58:51.0439 1660 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:58:51.0470 1660 sffp_mmc - ok
18:58:51.0485 1660 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:58:51.0501 1660 sffp_sd - ok
18:58:51.0548 1660 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:58:51.0548 1660 sfloppy - ok
18:58:51.0610 1660 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:58:51.0641 1660 SharedAccess - ok
18:58:51.0688 1660 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:58:51.0704 1660 ShellHWDetection - ok
18:58:51.0719 1660 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:58:51.0735 1660 SiSRaid2 - ok
18:58:51.0735 1660 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:58:51.0751 1660 SiSRaid4 - ok
18:58:51.0782 1660 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:58:51.0813 1660 Smb - ok
18:58:51.0844 1660 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:58:51.0875 1660 SNMPTRAP - ok
18:58:51.0891 1660 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:58:51.0907 1660 spldr - ok
18:58:51.0922 1660 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:58:51.0953 1660 Spooler - ok
18:58:52.0063 1660 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:58:52.0141 1660 sppsvc - ok
18:58:52.0219 1660 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:58:52.0250 1660 sppuinotify - ok
18:58:52.0328 1660 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
18:58:52.0343 1660 sprtsvc_DellSupportCenter - ok
18:58:52.0437 1660 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\Windows\System32\Drivers\N360x64\0502010.003\SRTSP64.SYS
18:58:52.0453 1660 SRTSP - ok
18:58:52.0531 1660 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS
18:58:52.0546 1660 SRTSPX - ok
18:58:52.0577 1660 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:58:52.0609 1660 srv - ok
18:58:52.0640 1660 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:58:52.0640 1660 srv2 - ok
18:58:52.0655 1660 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:58:52.0671 1660 srvnet - ok
18:58:52.0687 1660 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:58:52.0718 1660 SSDPSRV - ok
18:58:52.0749 1660 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:58:52.0765 1660 SstpSvc - ok
18:58:52.0827 1660 Stereo Service (8d01686ae82b466f4cd074f31f2942ca) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:58:52.0827 1660 Stereo Service - ok
18:58:52.0858 1660 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:58:52.0874 1660 stexstor - ok
18:58:52.0921 1660 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:58:52.0936 1660 StillCam - ok
18:58:52.0999 1660 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:58:53.0014 1660 stisvc - ok
18:58:53.0061 1660 stllssvr (e476c66713c842f58e61a95826ed1d57) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
18:58:53.0061 1660 stllssvr - ok
18:58:53.0092 1660 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:58:53.0108 1660 swenum - ok
18:58:53.0123 1660 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:58:53.0170 1660 swprv - ok
18:58:53.0233 1660 SymDS (6160145c7a87fc7672e8e3b886888176) C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS
18:58:53.0248 1660 SymDS - ok
18:58:53.0311 1660 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS
18:58:53.0326 1660 SymEFA - ok
18:58:53.0342 1660 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:58:53.0357 1660 SymEvent - ok
18:58:53.0389 1660 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS
18:58:53.0404 1660 SymIRON - ok
18:58:53.0482 1660 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\Windows\System32\Drivers\N360x64\0502010.003\SYMNETS.SYS
18:58:53.0498 1660 SymNetS - ok
18:58:53.0576 1660 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:58:53.0654 1660 SysMain - ok
18:58:53.0747 1660 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:58:53.0747 1660 TabletInputService - ok
18:58:53.0779 1660 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:58:53.0810 1660 TapiSrv - ok
18:58:53.0841 1660 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:58:53.0872 1660 TBS - ok
18:58:53.0981 1660 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:58:54.0028 1660 Tcpip - ok
18:58:54.0122 1660 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:58:54.0153 1660 TCPIP6 - ok
18:58:54.0231 1660 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:58:54.0278 1660 tcpipreg - ok
18:58:54.0293 1660 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:58:54.0325 1660 TDPIPE - ok
18:58:54.0356 1660 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:58:54.0387 1660 TDTCP - ok
18:58:54.0434 1660 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:58:54.0465 1660 tdx - ok
18:58:54.0496 1660 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:58:54.0496 1660 TermDD - ok
18:58:54.0559 1660 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:58:54.0605 1660 TermService - ok
18:58:54.0637 1660 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:58:54.0668 1660 Themes - ok
18:58:54.0683 1660 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:58:54.0715 1660 THREADORDER - ok
18:58:54.0715 1660 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:58:54.0761 1660 TrkWks - ok
18:58:54.0824 1660 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:58:54.0839 1660 TrustedInstaller - ok
18:58:54.0871 1660 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:58:54.0902 1660 tssecsrv - ok
18:58:54.0949 1660 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:58:54.0964 1660 TsUsbFlt - ok
18:58:55.0011 1660 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:58:55.0042 1660 tunnel - ok
18:58:55.0058 1660 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:58:55.0073 1660 uagp35 - ok
18:58:55.0105 1660 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:58:55.0151 1660 udfs - ok
18:58:55.0151 1660 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:58:55.0167 1660 UI0Detect - ok
18:58:55.0183 1660 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:58:55.0198 1660 uliagpkx - ok
18:58:55.0245 1660 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:58:55.0261 1660 umbus - ok
18:58:55.0292 1660 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:58:55.0307 1660 UmPass - ok
18:58:55.0339 1660 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:58:55.0370 1660 upnphost - ok
18:58:55.0401 1660 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
18:58:55.0417 1660 usbbus - ok
18:58:55.0448 1660 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:58:55.0463 1660 usbccgp - ok
18:58:55.0495 1660 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:58:55.0495 1660 usbcir - ok
18:58:55.0510 1660 UsbDiag (3fb6e423f7567c92c32ea786f5fd0c69) C:\Windows\system32\DRIVERS\lgx64diag.sys
18:58:55.0526 1660 UsbDiag - ok
18:58:55.0541 1660 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
18:58:55.0557 1660 usbehci - ok
18:58:55.0604 1660 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:58:55.0619 1660 usbhub - ok
18:58:55.0651 1660 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
18:58:55.0666 1660 USBModem - ok
18:58:55.0682 1660 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
18:58:55.0682 1660 usbohci - ok
18:58:55.0729 1660 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:58:55.0744 1660 usbprint - ok
18:58:55.0775 1660 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:58:55.0807 1660 usbscan - ok
18:58:55.0822 1660 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:58:55.0838 1660 USBSTOR - ok
18:58:55.0853 1660 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:58:55.0869 1660 usbuhci - ok
18:58:55.0900 1660 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:58:55.0931 1660 UxSms - ok
18:58:55.0963 1660 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:58:55.0978 1660 VaultSvc - ok
18:58:56.0041 1660 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:58:56.0056 1660 vdrvroot - ok
18:58:56.0103 1660 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:58:56.0150 1660 vds - ok
18:58:56.0165 1660 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:58:56.0181 1660 vga - ok
18:58:56.0197 1660 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:58:56.0228 1660 VgaSave - ok
18:58:56.0259 1660 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:58:56.0275 1660 vhdmp - ok
18:58:56.0290 1660 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:58:56.0290 1660 viaide - ok
18:58:56.0306 1660 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:58:56.0321 1660 volmgr - ok
18:58:56.0368 1660 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:58:56.0384 1660 volmgrx - ok
18:58:56.0415 1660 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:58:56.0415 1660 volsnap - ok
18:58:56.0431 1660 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:58:56.0446 1660 vsmraid - ok
18:58:56.0509 1660 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:58:56.0571 1660 VSS - ok
18:58:56.0649 1660 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:58:56.0665 1660 vwifibus - ok
18:58:56.0680 1660 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:58:56.0711 1660 vwififlt - ok
18:58:56.0743 1660 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:58:56.0758 1660 vwifimp - ok
18:58:56.0805 1660 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:58:56.0821 1660 W32Time - ok
18:58:56.0867 1660 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:58:56.0899 1660 WacomPen - ok
18:58:56.0930 1660 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:58:56.0977 1660 WANARP - ok
18:58:56.0977 1660 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:58:57.0008 1660 Wanarpv6 - ok
18:58:57.0086 1660 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:58:57.0117 1660 WatAdminSvc - ok
18:58:57.0179 1660 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:58:57.0257 1660 wbengine - ok
18:58:57.0351 1660 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:58:57.0367 1660 WbioSrvc - ok
18:58:57.0382 1660 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:58:57.0413 1660 wcncsvc - ok
18:58:57.0429 1660 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:58:57.0445 1660 WcsPlugInService - ok
18:58:57.0476 1660 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:58:57.0476 1660 Wd - ok
18:58:57.0507 1660 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:58:57.0523 1660 Wdf01000 - ok
18:58:57.0538 1660 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:58:57.0616 1660 WdiServiceHost - ok
18:58:57.0616 1660 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:58:57.0632 1660 WdiSystemHost - ok
18:58:57.0663 1660 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:58:57.0679 1660 WebClient - ok
18:58:57.0694 1660 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:58:57.0741 1660 Wecsvc - ok
18:58:57.0757 1660 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:58:57.0803 1660 wercplsupport - ok
18:58:57.0835 1660 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:58:57.0866 1660 WerSvc - ok
18:58:57.0897 1660 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:58:57.0928 1660 WfpLwf - ok
18:58:57.0944 1660 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:58:57.0944 1660 WIMMount - ok
18:58:57.0975 1660 WinDefend - ok
18:58:57.0975 1660 WinHttpAutoProxySvc - ok
18:58:58.0006 1660 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:58:58.0037 1660 Winmgmt - ok
18:58:58.0084 1660 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:58:58.0147 1660 WinRM - ok
18:58:58.0225 1660 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:58:58.0240 1660 WinUsb - ok
18:58:58.0287 1660 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:58:58.0318 1660 Wlansvc - ok
18:58:58.0459 1660 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:58:58.0505 1660 wlidsvc - ok
18:58:58.0552 1660 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:58:58.0568 1660 WmiAcpi - ok
18:58:58.0599 1660 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:58:58.0630 1660 wmiApSrv - ok
18:58:58.0646 1660 WMPNetworkSvc - ok
18:58:58.0677 1660 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:58:58.0693 1660 WPCSvc - ok
18:58:58.0724 1660 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:58:58.0755 1660 WPDBusEnum - ok
18:58:58.0771 1660 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:58:58.0802 1660 ws2ifsl - ok
18:58:58.0817 1660 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:58:58.0849 1660 wscsvc - ok
18:58:58.0864 1660 WSearch - ok
18:58:58.0958 1660 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:58:59.0020 1660 wuauserv - ok
18:58:59.0098 1660 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:58:59.0129 1660 WudfPf - ok
18:58:59.0145 1660 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:58:59.0192 1660 WUDFRd - ok
18:58:59.0223 1660 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:58:59.0254 1660 wudfsvc - ok
18:58:59.0285 1660 WUSB54Gv2SVC - ok
18:58:59.0317 1660 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:58:59.0348 1660 WwanSvc - ok
18:58:59.0395 1660 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:58:59.0613 1660 \Device\Harddisk0\DR0 - ok
18:58:59.0644 1660 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR5
18:59:00.0923 1660 \Device\Harddisk5\DR5 - ok
18:59:00.0939 1660 Boot (0x1200) (bcdc11761b88f71ac82cf42441f1e20c) \Device\Harddisk0\DR0\Partition0
18:59:00.0939 1660 \Device\Harddisk0\DR0\Partition0 - ok
18:59:00.0955 1660 Boot (0x1200) (36db8355f3bfe691c3511b31e4f21a90) \Device\Harddisk0\DR0\Partition1
18:59:00.0955 1660 \Device\Harddisk0\DR0\Partition1 - ok
18:59:00.0970 1660 Boot (0x1200) (7fed1beb028dd57b38a71d473772477d) \Device\Harddisk5\DR5\Partition0
18:59:00.0970 1660 \Device\Harddisk5\DR5\Partition0 - ok
18:59:00.0970 1660 ============================================================
18:59:00.0970 1660 Scan finished
18:59:00.0970 1660 ============================================================
18:59:00.0970 1652 Detected object count: 5
18:59:00.0970 1652 Actual detected object count: 5
19:00:46.0161 1652 C:\Program Files (x86)\ANI\ANIWZCS2 Service\ANIWZCSdS.exe - copied to quarantine
19:00:46.0161 1652 ANIWZCSdService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
19:00:46.0255 1652 C:\Program Files\Dell\DellDock\DockLogin.exe - copied to quarantine
19:00:46.0255 1652 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
19:00:46.0364 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - copied to quarantine
19:00:46.0364 1652 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
19:00:46.0442 1652 C:\Windows\system32\HPZinw12.dll - copied to quarantine
19:00:46.0442 1652 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
19:00:46.0458 1652 C:\Windows\system32\HPZipm12.dll - copied to quarantine
19:00:46.0458 1652 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
19:00:49.0281 1624 Deinitialize success
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
10-Sep-2012, 12:37 PM #10
Hey Jeff,

I am not 100% sure where the farbar report as because I believe it saves it on the flash drive that I used. Lol since i've been diagnosing two machines, I think it may be elsewhere. Will that prevent us from moving on?

Thanks in advance for your help!
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
jeffce has a Photo Album
Malware Removal Specialist with 1,714 posts.
  
Join Date: May 2011
10-Sep-2012, 02:54 PM #11
Quote:
Will that prevent us from moving on?
No no no...not at all.
--------

Download Combofix from either of the links below, and save it to your desktop.
Link 1
Link 2

**Note: It is important that it is saved directly to your desktop**
If you get a message saying "Illegal operation attempted on a registry key that has been marked for deletion", please restart your computer.


--------------------------------------------------------------------

IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

--------------------------------------------------------------------

Right-Click and Run as Administrator on ComboFix.exe & follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt for further review.
__________________
-Jeff-
Proud graduate of WTT Classroom. -- Member of ASAP and UNITE. -- If I am working with you and not responded in 2 days, please PM me.
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
11-Sep-2012, 10:21 PM #12
So I've tried to run combofix, but it stalls at step 4 for some reason. When I came back to my computer, it went to sleep mode. I tried again, but it seemed to be hung at step 4 again for like an hour. I'm not sure if I should try again? I've never had this issue with combofix before, and I've tried it before (troubleshooting with another forum). Let me know. Thanks! P.S. - I moved my desktop to work so I have access to it all day so we can move along faster.
jeffce's Avatar
jeffce   (Jeff) jeffce is offline jeffce is authorized to help remove malware.
jeffce has a Photo Album
Malware Removal Specialist with 1,714 posts.
  
Join Date: May 2011
12-Sep-2012, 07:57 AM #13
Hi,

I think that Norton might be causing a bit of conflict with running ComboFix. Until we are complete I would like for you to uninstall it, reboot your system and then try to run ComboFix again.
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
13-Sep-2012, 09:08 PM #14
combo fix log
ComboFix 12-09-11.02 - Choystoy 09/13/2012 16:47:16.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8151.6535 [GMT -7:00]
Running from: c:\users\Choystoy\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Outdated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Outdated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Choystoy\GoToAssistDownloadHelper.exe
c:\users\Public\sdelevURL.tmp
c:\windows\SysWow64\AegisI5Installer.exe
c:\windows\SysWow64\Thumbs.db
.
.
((((((((((((((((((((((((( Files Created from 2012-08-14 to 2012-09-14 )))))))))))))))))))))))))))))))
.
.
2012-09-13 23:51 . 2012-09-13 23:51 -------- d-----w- c:\users\Xiao Rui\AppData\Local\temp
2012-09-13 23:51 . 2012-09-13 23:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-13 23:28 . 2008-04-17 21:12 126312 ----a-r- c:\windows\system32\GEARAspi64.dll
2012-09-13 23:28 . 2008-04-17 21:12 107368 ----a-r- c:\windows\SysWow64\GEARAspi.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-17 00:58 . 2012-05-11 22:57 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-17 00:58 . 2011-05-28 18:35 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-15 10:00 . 2010-10-28 15:15 59701280 ----a-w- c:\windows\system32\MRT.exe
2012-07-12 14:15 . 2012-07-12 14:15 16200 ----a-w- c:\windows\stinger.sys
2012-07-03 20:46 . 2011-04-04 16:11 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-29 10:04 . 2012-08-12 01:34 9133488 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C764BD44-2256-4FAE-A88D-AAC28A6284BF}\mpengine.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\ex plorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 94208 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\ex plorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 94208 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\ex plorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 94208 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ru n]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-10-02 284696]
"ShwiconXP9106"="c:\program files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe" [2009-07-17 237568]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" [2009-12-01 963584]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"DellSupportCenter"="c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"D-Link Wireless G WDA-1320"="c:\program files (x86)\D-Link\Wireless G WDA-1320\AirGCFG.exe" [2007-08-29 1662976]
"ANIWZCS2Service"="c:\program files (x86)\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2007-01-19 49152]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2011-08-30 624056]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-30 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
.
c:\users\Xiao Rui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\users\Choystoy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
DING!.lnk - c:\program files (x86)\Southwest Airlines\Ding\Ding.exe [2006-6-22 462848]
Dropbox.lnk - c:\users\Choystoy\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2010-5-28 276328]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\syste m]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSv c]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-29 136176]
R2 SessionLauncher;SessionLauncher;c:\users\ADMINI~1\AppData\Local\Temp\DX9\Se ssionLauncher.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-17 250056]
R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-29 136176]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
R3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys [2009-06-17 74256]
R3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys [2009-06-17 13328]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-05-11 129976]
R3 netr28ux;RT2870 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr28ux.sys [2009-09-15 1061888]
R3 netr7364;Conceptronic RT73 Wireles Driver for Vista;c:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-21 98688]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-27 291696]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 pmxdrv;pmxdrv;c:\windows\system32\drivers\pmxdrv.sys [2010-10-29 38536]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-26 1124848]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-28 1255736]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-10-02 13336]
S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\progra m files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2011-06-22 341296]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-16 369256]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-03 271872]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2009-08-06 320040]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-09-07 155752]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-11 00:58]
.
2012-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-29 00:25]
.
2012-09-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-29 00:25]
.
2012-09-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-570169472-1549921634-2792129254-1000Core.job
- c:\users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-22 21:59]
.
2012-09-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-570169472-1549921634-2792129254-1000UA.job
- c:\users\Choystoy\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-22 21:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 97792 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 97792 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 97792 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-12-05 19:17 97792 ----a-w- c:\users\Choystoy\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-07 8158240]
"RunDLLEntry_THXCfg"="c:\windows\system32\THXCfg64.dll" [2009-10-15 17920]
"RunDLLEntry_EptMon"="c:\windows\system32\EptMon64.dll" [2009-10-15 21504]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-04-13 1860496]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2010-11-04 1580368]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-27 1271168]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append to existing PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
Trusted Zone: intuit.com\ttlc
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Choystoy\AppData\Roaming\Mozilla\Firefox\Profiles\cmo3tacg.default \
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_ 3_300_271_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX .exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00, 79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00, \
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Dell Support Center\bin\sprtsvc.exe
.
**************************************************************************
.
Completion time: 2012-09-13 17:24:39 - machine was rebooted
ComboFix-quarantined-files.txt 2012-09-14 00:24
.
Pre-Run: 890,928,418,816 bytes free
Post-Run: 890,123,763,712 bytes free
.
- - End Of File - - F1F73DAC7A9D060851EC20CD0A4BFA72
mathew206's Avatar
Computer Specs
Member with 133 posts.
THREAD STARTER
  
Join Date: Aug 2012
Experience: Intermediate
13-Sep-2012, 09:09 PM #15
You were right. Norton was the culprit.
Email This Email  Print This Print  Tweet This Send to Facebook Send to MySpace Send to StumbleUpon Digg This | More Services More
Reply
Page 1 of 3 1 23
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join Today!

(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!

« Previous Thread | Virus & Other Malware Removal | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


TECH SUPPORT GUY
WELCOME
FOLLOW US
 
You Are Using: Server ID
All times are GMT -4. The time now is 06:26 AM.
Advertisements do not imply our endorsement of that product or service.
Copyright © 1996 - 2013 TechGuy, Inc. All rights reserved. Privacy & Terms.

Trusted Website Back to the Top ↑