Jump to content

ai3643

Members
  • Posts

    9
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Thank you very much for the help!!!! I am going to use the Maintance folder to make a Windows backup thats like 500GB+ in size in case of a huge problem down the road, and I figuare now would be a good backup time seeing how my pc is now clean. Is there a good backup program you would recommend? Im looking for something that would take a completly crashed PC and restore it and its contents to how it sits today. Anything like that on the market? Or is that what the windows backup is doing?
  2. ComboFix 12-09-07.03 - The Welch's 09/07/2012 19:20:12.2.8 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.24524.20690 [GMT -7:00] Running from: c:\users\The Welch's\Desktop\Downloads\ComboFix.exe AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401} FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2} SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\SysWow64\20612062 c:\windows\SysWow64\FlashPlayerInstaller.exe . . ((((((((((((((((((((((((( Files Created from 2012-08-08 to 2012-09-08 ))))))))))))))))))))))))))))))) . . 2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\Public\AppData\Local\temp 2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-09-08 01:59 . 2012-09-08 02:15 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2012-09-08 01:59 . 2012-09-08 02:01 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2012-09-07 23:34 . 2012-09-07 23:34 -------- d-----w- c:\users\The Welch's\AppData\Roaming\AVG2013 2012-09-07 23:33 . 2012-09-07 23:33 -------- d-----w- c:\users\The Welch's\AppData\Local\AVG Secure Search 2012-09-07 23:33 . 2012-09-07 23:33 -------- d-----w- c:\users\The Welch's\AppData\Roaming\TuneUp Software 2012-09-07 23:33 . 2012-09-07 23:33 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys 2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search 2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\program files (x86)\AVG Secure Search 2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\programdata\AVG Secure Search 2012-09-07 23:31 . 2012-09-07 23:51 -------- d-----w- c:\programdata\AVG2013 2012-09-07 23:31 . 2012-09-07 23:31 -------- d-----w- C:\$AVG 2012-09-07 23:30 . 2012-09-07 23:30 -------- d-----w- c:\program files (x86)\AVG 2012-09-07 23:20 . 2012-09-08 01:57 -------- d-----w- c:\programdata\MFAData 2012-09-07 23:20 . 2012-09-07 23:51 -------- d-----w- c:\users\The Welch's\AppData\Local\Avg2013 2012-09-07 23:20 . 2012-09-07 23:20 -------- d--h--w- c:\programdata\Common Files 2012-09-07 23:20 . 2012-09-07 23:20 -------- d-----w- c:\users\The Welch's\AppData\Local\MFAData 2012-09-07 11:34 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\mpengine.dll 2012-09-07 01:56 . 2012-09-07 01:56 -------- d-----w- c:\users\The Welch's\AppData\Roaming\Actual Tools 2012-09-07 01:56 . 2012-09-07 10:26 -------- d-----w- c:\program files (x86)\Actual Window Manager 2012-09-06 18:12 . 2012-09-06 18:12 -------- d-----w- c:\windows\SysWow64\1063 2012-09-05 19:24 . 2012-09-05 19:24 282696 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2012-08-30 18:12 . 2012-09-06 18:12 -------- d-----w- c:\windows\SysWow64\1096 2012-08-30 00:06 . 2012-08-30 00:06 -------- d-----w- c:\users\The Welch's\AppData\Local\IsolatedStorage 2012-08-30 00:06 . 2012-08-30 00:06 -------- d-----w- c:\users\The Welch's\AppData\Local\Futuremark_Corporation 2012-08-30 00:02 . 2012-08-30 00:02 -------- d-----w- c:\program files (x86)\Futuremark 2012-08-30 00:02 . 2012-08-30 00:02 -------- d-----w- c:\program files\Futuremark 2012-08-29 22:44 . 2012-08-29 22:44 -------- d-----w- c:\program files (x86)\PerformanceTest 2012-08-23 18:12 . 2012-08-30 18:12 -------- d-----w- c:\windows\SysWow64\3028 2012-08-21 02:53 . 2012-08-21 02:53 -------- d-----w- c:\program files (x86)\GPU-Z 2012-08-15 14:30 . 2012-08-27 01:58 -------- d-----w- c:\program files (x86)\Diablo III 2012-08-15 14:30 . 2012-08-15 14:30 -------- d-----w- c:\programdata\Blizzard Entertainment 2012-08-15 14:30 . 2012-08-15 14:30 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment 2012-08-13 23:40 . 2012-08-13 23:40 150880 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys 2012-08-13 00:44 . 2012-08-13 00:44 -------- d-----w- c:\users\The Welch's\AppData\Local\Western_Digital 2012-08-13 00:43 . 2012-08-13 00:43 -------- d-----w- c:\program files\DIFX 2012-08-13 00:43 . 2012-08-13 00:43 -------- d-----w- c:\program files\WDCSAM 2012-08-13 00:39 . 2012-08-13 00:39 -------- d-----w- c:\programdata\Western Digital 2012-08-13 00:38 . 2012-08-13 00:38 -------- d-----w- c:\program files (x86)\Western Digital 2012-08-13 00:38 . 2012-08-13 00:38 -------- d-----w- c:\program files\Western Digital 2012-08-13 00:37 . 2012-08-13 00:37 -------- d-----w- c:\users\The Welch's\AppData\Local\Western Digital 2012-08-10 11:52 . 2012-08-10 11:52 199520 ----a-w- c:\windows\system32\drivers\avgtdia.sys 2012-08-10 11:52 . 2012-08-10 11:52 105312 ----a-w- c:\windows\system32\drivers\avgmfx64.sys 2012-08-10 11:52 . 2012-08-10 11:52 40288 ----a-w- c:\windows\system32\drivers\avgrkx64.sys 2012-08-09 20:56 . 2012-08-09 20:56 230240 ----a-w- c:\windows\system32\drivers\avgloga.sys 2012-08-09 20:56 . 2012-08-09 20:56 60768 ----a-w- c:\windows\system32\drivers\avgidsha.sys 2012-08-09 20:56 . 2012-08-09 20:56 175968 ----a-w- c:\windows\system32\drivers\avgldx64.sys 2012-08-09 18:12 . 2012-08-16 18:12 -------- d-----w- c:\windows\SysWow64\1094 2012-08-09 02:47 . 2012-08-09 02:47 -------- d-----w- c:\users\The Welch's\AppData\Roaming\SUPERAntiSpyware.com 2012-08-09 02:47 . 2012-09-08 01:59 -------- d-----w- c:\program files\SUPERAntiSpyware 2012-08-09 02:47 . 2012-08-09 02:47 -------- d-----w- c:\programdata\SUPERAntiSpyware.com . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-09-05 19:24 . 2012-07-26 00:15 282696 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr 2012-09-05 19:24 . 2012-07-25 23:22 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2012-08-29 14:24 . 2012-02-07 18:40 149752 ----a-w- c:\windows\SysWow64\WRusr.dll 2012-08-29 14:24 . 2012-02-07 18:40 110160 ----a-w- c:\windows\system32\drivers\WRkrn.sys 2012-08-29 14:24 . 2012-02-07 18:40 102896 ----a-w- c:\windows\system32\WRusr.dll 2012-08-14 20:11 . 2012-05-23 00:35 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-08-14 20:11 . 2012-02-01 14:40 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-03 20:46 . 2012-05-09 23:05 24904 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-07-03 10:19 . 2012-02-18 13:13 59701280 ----a-w- c:\windows\system32\MRT.exe 2012-06-12 03:08 . 2012-07-14 02:22 3148800 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((( SnapShot@2012-07-29_02.20.26 ))))))))))))))))))))))))))))))))))))))))) . + 2011-03-18 16:08 . 2011-03-18 16:08 29592 c:\windows\SysWOW64\speedfan.sys + 2009-07-14 04:54 . 2012-09-06 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-07-14 04:54 . 2012-07-27 17:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-07-14 04:54 . 2012-07-27 17:11 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2012-09-06 18:12 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-07-14 04:54 . 2012-07-27 17:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-07-14 04:54 . 2012-09-06 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-11-21 03:09 . 2012-09-07 10:30 58740 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2012-09-08 01:58 41748 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2012-02-07 19:28 . 2012-09-08 01:58 18262 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3534664107-3724608150-2471794589-1001_UserData.bin - 2009-07-14 05:30 . 2012-07-24 02:01 86016 c:\windows\system32\DriverStore\infpub.dat + 2009-07-14 05:30 . 2012-09-07 23:31 86016 c:\windows\system32\DriverStore\infpub.dat + 2009-02-13 18:02 . 2009-02-13 18:02 14464 c:\windows\system32\DriverStore\FileRepository\wdcsam.inf_amd64_neutral_8206e7d34f6b0583\wdcsam64.sys + 2011-05-23 08:03 . 2011-05-23 08:03 48992 c:\windows\system32\DriverStore\FileRepository\avgfwfd6.inf_amd64_neutral_ae1e76d52507ef34\avgfwd6a.sys + 2011-05-23 08:03 . 2011-05-23 08:03 48992 c:\windows\system32\drivers\avgfwd6a.sys - 2012-02-07 18:22 . 2012-07-27 22:01 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2012-02-07 18:22 . 2012-09-04 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2012-02-07 18:22 . 2012-07-27 22:01 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2012-02-07 18:22 . 2012-09-04 15:48 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-07-14 04:54 . 2012-07-27 22:01 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-07-14 04:54 . 2012-09-04 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2012-09-07 23:34 . 2012-09-01 02:01 85008 c:\windows\system32\config\systemprofile\AppData\Local\Avg2013\update\backup\sc.dat - 2009-07-14 04:46 . 2012-07-16 20:22 94576 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat + 2009-07-14 04:46 . 2012-08-11 10:14 94576 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat + 2012-08-08 14:54 . 2012-08-08 14:54 32256 c:\windows\Installer\6ed09f.msi + 2012-09-06 18:12 . 2012-09-06 18:12 7044 c:\windows\SysWOW64\1063\inf1063.dat - 2012-03-08 17:08 . 2012-07-27 10:39 5312 c:\windows\system32\wdi\ERCQueuedResolutions.dat + 2012-03-08 17:08 . 2012-09-07 00:22 5312 c:\windows\system32\wdi\ERCQueuedResolutions.dat - 2012-07-27 10:40 . 2012-07-27 10:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-09-07 10:26 . 2012-09-08 01:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2012-07-27 10:40 . 2012-07-27 10:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2012-09-07 10:26 . 2012-09-08 01:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2012-08-14 20:11 . 2012-08-14 20:11 686792 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe + 2012-08-14 19:11 . 2012-08-14 19:11 686792 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe + 2012-08-14 19:11 . 2012-08-14 19:11 466632 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.dll - 2012-05-23 00:35 . 2012-07-27 17:11 250056 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe + 2012-05-23 00:35 . 2012-08-14 20:11 250056 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe + 2012-02-11 11:59 . 2012-08-28 16:51 390712 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin - 2009-07-14 02:36 . 2012-07-27 10:46 660318 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2012-09-07 00:45 660318 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2012-09-07 00:45 121214 c:\windows\system32\perfc009.dat - 2009-07-14 02:36 . 2012-07-27 10:46 121214 c:\windows\system32\perfc009.dat + 2012-08-14 20:11 . 2012-08-14 20:11 417992 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_Plugin.exe + 2012-08-14 19:11 . 2012-08-14 19:11 417992 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_ActiveX.exe + 2012-08-14 19:11 . 2012-08-14 19:11 513224 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_ActiveX.dll + 2009-07-14 05:30 . 2012-09-07 23:31 239616 c:\windows\system32\DriverStore\infstrng.dat - 2009-07-14 05:30 . 2012-07-24 02:01 239616 c:\windows\system32\DriverStore\infstrng.dat - 2009-07-14 05:30 . 2012-07-12 20:26 143360 c:\windows\system32\DriverStore\infstor.dat + 2009-07-14 05:30 . 2012-09-07 23:31 143360 c:\windows\system32\DriverStore\infstor.dat + 2012-09-07 23:34 . 2012-09-01 02:00 177496 c:\windows\system32\config\systemprofile\AppData\Local\Avg2013\update\backup\sb.dat - 2009-07-14 05:01 . 2012-07-27 10:39 564492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2009-07-14 05:01 . 2012-09-07 10:24 564492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2012-08-11 17:17 . 2012-08-11 17:17 371272 c:\windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe - 2012-07-13 01:43 . 2012-07-13 01:43 371272 c:\windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe + 2012-08-13 00:38 . 2012-08-13 00:38 410598 c:\windows\Installer\{07179D37-D5FE-4373-90D9-A25B992EFB3E}\WDSmartWare.exe + 2012-08-14 20:11 . 2012-08-14 20:11 9465032 c:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll + 2012-08-14 20:11 . 2012-08-14 20:11 1536712 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe + 2012-04-11 23:05 . 2012-09-07 10:24 9667440 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat - 2012-04-11 23:05 . 2012-07-27 10:39 9667440 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat + 2011-03-09 18:31 . 2011-03-09 18:31 1090048 c:\windows\Installer\827b671.msi + 2011-03-09 18:42 . 2011-03-09 18:42 9803264 c:\windows\Installer\827b665.msi + 2012-09-07 23:21 . 2012-09-07 23:21 8540160 c:\windows\Installer\2ce139d.msi + 2012-09-07 23:30 . 2012-09-07 23:30 2818048 c:\windows\Installer\2ce1399.msi + 2012-08-14 20:11 . 2012-08-14 20:11 12315336 c:\windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll + 2012-02-07 21:50 . 2012-09-07 10:24 50389984 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3534664107-3724608150-2471794589-1001-12288.dat + 2012-08-22 11:16 . 2012-08-22 11:16 10141696 c:\windows\Installer\7ba79ae.msi + 2012-09-07 23:30 . 2012-09-07 23:30 13074432 c:\windows\Installer\2ce1395.msi + 2012-08-11 17:17 . 2012-08-11 17:17 19337216 c:\windows\Installer\16d4d46.msi . -- Snapshot reset to current date -- . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2012-09-07 23:32 2045536 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.5.4\AVG Secure Search_toolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.5.4\AVG Secure Search_toolbar.dll" [2012-09-07 2045536] . [HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-09-08 5663616] "SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-09-14 283160] "AlienwareOn-ScreenDisplay"="c:\program files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe" [2011-09-03 1636208] "WRSVC"="c:\program files\Webroot\WRSA.exe" [2012-08-29 712104] "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] "AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-08-29 3039352] "vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-09-07 950368] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer] "DisableLocalMachineRun"= 0 (0x0) "DisableLocalMachineRunOnce"= 0 (0x0) "DisableCurrentUserRun"= 0 (0x0) "DisableCurrentUserRunOnce"= 0 (0x0) "NoFile"= 0 (0x0) "HideClock"= 0 (0x0) "NoDevMgrUpdate"= 0 (0x0) "NoDFSTab"= 0 (0x0) "NoEncryptOnMove"= 0 (0x0) "NoResolveTrack"= 0 (0x0) "NoStartMenuSubFolders"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2013\avgrsa.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . R0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2012-04-25 54728] R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-08-20 5751928] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400] R2 WRSVC;WRSVC;c:\program files\Webroot\WRSA.exe [2012-08-29 712104] R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056] R3 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe [2011-03-22 15296] R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys [2009-01-30 6144] R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-08-17 344616] R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-02 130976] R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-02-27 158976] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880] R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [2009-07-10 31744] R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys [2011-04-04 21504] R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys [2009-01-30 9216] R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys [2009-05-08 53632] R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys [2010-04-01 26624] R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys [2011-05-12 11776] R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-07 114144] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184] R3 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0;PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\alienautopsy\pcdsrvc_x64.pkms [2012-03-22 25072] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992] R3 SftService;SoftThinks Agent Service;c:\program files (x86)\AlienRespawn\sftservice.EXE [2011-09-22 1692480] R3 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000] R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944] R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x] R3 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [2011-09-09 528760] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-08 1255736] R4 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600] R4 HPHNDUSVC;HP Home Network Diagnostic Support Service;c:\windows\system32\svchost.exe [2009-07-14 27136] R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400] R4 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656] R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-08-09 60768] S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-08-09 230240] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-08-10 40288] S0 EMSC;COMPAL Embedded System Control;c:\windows\system32\DRIVERS\EMSC.SYS [2009-06-26 16752] S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys [2011-12-01 72240] S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys [2011-12-01 15920] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856] S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616] S0 WRkrn;WRkrn;c:\windows\System32\drivers\WRkrn.sys [2012-08-29 110160] S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992] S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-08-13 150880] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-08-09 175968] S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-08-10 105312] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-08-10 199520] S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-09-07 31080] S1 BfLwf;Bigfoot Networks Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys [2012-02-01 75368] S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys [2012-05-15 249152] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928] S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-09-08 140672] S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2012-08-20 1286392] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-08-20 184304] S2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;c:\program files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2012-02-01 490496] S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408] S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\nlssrv32.exe [2012-03-29 66560] S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2012-04-25 584224] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272] S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [2011-09-09 6583160] S2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-07 722528] S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768] S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896] S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920] S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys [2010-09-07 27760] S3 Ak27x64;Killer Wireless-N 1102 device driver;c:\windows\system32\DRIVERS\Ak27x64.sys [2012-02-01 2740328] S3 ALSysIO;ALSysIO;c:\users\THEWEL~1\AppData\Local\Temp\ALSysIO64.sys [x] S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096] S3 HP8207_8307;HP-HP8207_8307;c:\windows\system32\DRIVERS\HP8207_8307.sys [2010-02-05 15360] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-30 76912] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904] S3 MEIx64;Intel® Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-03-04 82432] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-03-04 181760] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736] S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [2011-05-04 337512] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2008-05-06 14464] . . --- Other Services/Drivers In Memory --- . *Deregistered* - GPU-Z . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] HPHNDUService REG_MULTI_SZ HPHNDUSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Contents of the 'Scheduled Tasks' folder . 2012-09-08 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-23 20:11] . 2012-04-11 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job - c:\program files\AlienAutopsy\uaclauncher.exe [2012-03-28 23:01] . 2012-09-07 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 01fedbbd-562a-4c63-b256-5c822c064caa.job - c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52] . 2012-09-06 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task b6d1c9d7-60fe-4082-b64e-879bcfd3a065.job - c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52] . 2012-04-11 c:\windows\Tasks\SystemToolsDailyTest.job - c:\program files\AlienAutopsy\uaclauncher.exe [2012-03-28 23:01] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-13 416024] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-03-17 1128448] "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 LSP: %SYSTEMROOT%\system32\BfLLR.dll TCP: DhcpNameServer = 192.168.1.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll FF - ProfilePath - c:\users\The Welch's\AppData\Roaming\Mozilla\Firefox\Profiles\h4graeg6.default-1343169283270\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - www.google.com . . ------- File Associations ------- . inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1 JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %* txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1 . - - - - ORPHANS REMOVED - - - - . BHO-{39AF1227-1A37-7B76-03A8-79907179628D} - c:\windows\SysWow64\dhhcpcsvc.dll Toolbar-Locked - (no file) . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0] "ImagePath"="\??\c:\program files\alienautopsy\pcdsrvc_x64.pkms" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-3534664107-3724608150-2471794589-1001\Software\SecuROM\License information*] "datasecu"=hex:79,1b,66,4a,65,c4,d1,5e,35,51,b5,3b,d6,58,b6,74,6f,f2,e4,6a,3d, ba,69,5e,30,d1,18,4a,11,33,8f,6c,4c,b6,42,86,60,3c,46,37,37,31,e0,e2,34,b0,\ "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2012-09-07 19:29:50 ComboFix-quarantined-files.txt 2012-09-08 02:29 . Pre-Run: 242,046,398,464 bytes free Post-Run: 241,807,818,752 bytes free . - - End Of File - - B58690D460D974786DAF4FDE2A584D8F
  3. 17:07:23.0755 1848 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48 17:07:25.0235 1848 ============================================================ 17:07:25.0235 1848 Current date / time: 2012/09/07 17:07:25.0235 17:07:25.0235 1848 SystemInfo: 17:07:25.0235 1848 17:07:25.0235 1848 OS Version: 6.1.7601 ServicePack: 1.0 17:07:25.0235 1848 Product type: Workstation 17:07:25.0236 1848 ComputerName: THEWELCHS-PC 17:07:25.0236 1848 UserName: The Welch's 17:07:25.0236 1848 Windows directory: C:\Windows 17:07:25.0236 1848 System windows directory: C:\Windows 17:07:25.0236 1848 Running under WOW64 17:07:25.0236 1848 Processor architecture: Intel x64 17:07:25.0236 1848 Number of processors: 8 17:07:25.0236 1848 Page size: 0x1000 17:07:25.0236 1848 Boot type: Normal boot 17:07:25.0236 1848 ============================================================ 17:07:25.0673 1848 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 17:07:25.0674 1848 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 17:07:25.0679 1848 Drive \Device\Harddisk4\DR4 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 17:07:25.0681 1848 ============================================================ 17:07:25.0681 1848 \Device\Harddisk0\DR0: 17:07:25.0681 1848 MBR partitions: 17:07:25.0681 1848 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1378000 17:07:25.0681 1848 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x138C000, BlocksNum 0x38FF8000 17:07:25.0681 1848 \Device\Harddisk1\DR1: 17:07:25.0681 1848 MBR partitions: 17:07:25.0681 1848 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800 17:07:25.0681 1848 \Device\Harddisk4\DR4: 17:07:25.0682 1848 MBR partitions: 17:07:25.0682 1848 \Device\Harddisk4\DR4\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0 17:07:25.0682 1848 ============================================================ 17:07:25.0685 1848 C: <-> \Device\Harddisk0\DR0\Partition2 17:07:25.0936 1848 D: <-> \Device\Harddisk1\DR1\Partition1 17:07:25.0936 1848 ============================================================ 17:07:25.0936 1848 Initialize success 17:07:25.0936 1848 ============================================================ 17:07:30.0686 5916 ============================================================ 17:07:30.0686 5916 Scan started 17:07:30.0686 5916 Mode: Manual; SigCheck; TDLFS; 17:07:30.0686 5916 ============================================================ 17:07:31.0653 5916 ================ Scan system memory ======================== 17:07:31.0653 5916 System memory - ok 17:07:31.0654 5916 ================ Scan services ============================= 17:07:31.0815 5916 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE 17:07:31.0858 5916 !SASCORE - ok 17:07:32.0113 5916 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 17:07:32.0127 5916 1394ohci - ok 17:07:32.0143 5916 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys 17:07:32.0156 5916 Acceler - ok 17:07:32.0172 5916 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 17:07:32.0183 5916 ACPI - ok 17:07:32.0186 5916 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 17:07:32.0196 5916 AcpiPmi - ok 17:07:32.0414 5916 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe 17:07:32.0421 5916 AdobeActiveFileMonitor8.0 - ok 17:07:32.0733 5916 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 17:07:32.0742 5916 AdobeFlashPlayerUpdateSvc - ok 17:07:32.0813 5916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 17:07:32.0826 5916 adp94xx - ok 17:07:32.0871 5916 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 17:07:32.0882 5916 adpahci - ok 17:07:32.0886 5916 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 17:07:32.0896 5916 adpu320 - ok 17:07:32.0922 5916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 17:07:32.0947 5916 AeLookupSvc - ok 17:07:33.0102 5916 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe 17:07:33.0111 5916 AESTFilters - ok 17:07:33.0178 5916 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 17:07:33.0191 5916 AFD - ok 17:07:33.0230 5916 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 17:07:33.0238 5916 agp440 - ok 17:07:33.0388 5916 [ 9725E7266CC9ABC475CA3762CECA6444 ] Ak27x64 C:\Windows\system32\DRIVERS\Ak27x64.sys 17:07:33.0428 5916 Ak27x64 - ok 17:07:33.0466 5916 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 17:07:33.0476 5916 ALG - ok 17:07:33.0584 5916 [ 73FD38C98996FA971BAD46376610FA67 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe 17:07:33.0594 5916 AlienFusionService - ok 17:07:33.0646 5916 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 17:07:33.0657 5916 aliide - ok 17:07:33.0855 5916 ALSysIO - ok 17:07:33.0858 5916 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 17:07:33.0870 5916 amdide - ok 17:07:33.0884 5916 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 17:07:33.0896 5916 AmdK8 - ok 17:07:33.0899 5916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 17:07:33.0912 5916 AmdPPM - ok 17:07:33.0918 5916 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 17:07:33.0930 5916 amdsata - ok 17:07:33.0959 5916 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 17:07:33.0971 5916 amdsbs - ok 17:07:33.0984 5916 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 17:07:33.0995 5916 amdxata - ok 17:07:34.0057 5916 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 17:07:34.0084 5916 AppID - ok 17:07:34.0100 5916 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 17:07:34.0123 5916 AppIDSvc - ok 17:07:34.0149 5916 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 17:07:34.0173 5916 Appinfo - ok 17:07:34.0304 5916 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 17:07:34.0311 5916 Apple Mobile Device - ok 17:07:34.0418 5916 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 17:07:34.0429 5916 AppMgmt - ok 17:07:34.0433 5916 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 17:07:34.0443 5916 arc - ok 17:07:34.0447 5916 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 17:07:34.0456 5916 arcsas - ok 17:07:34.0642 5916 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 17:07:34.0650 5916 aspnet_state - ok 17:07:34.0675 5916 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 17:07:34.0701 5916 AsyncMac - ok 17:07:34.0725 5916 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 17:07:34.0733 5916 atapi - ok 17:07:34.0851 5916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 17:07:34.0867 5916 AudioEndpointBuilder - ok 17:07:34.0883 5916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 17:07:34.0914 5916 AudioSrv - ok 17:07:35.0007 5916 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys 17:07:35.0023 5916 Avgfwfd - ok 17:07:35.0241 5916 [ 0CA0F4F13CDB30C488E069E88040DB07 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe 17:07:35.0273 5916 avgfws - ok 17:07:35.0725 5916 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe 17:07:35.0787 5916 AVGIDSAgent - ok 17:07:35.0834 5916 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys 17:07:35.0850 5916 AVGIDSDriver - ok 17:07:35.0865 5916 [ D19F5C2C2BA0962DD4437EC020858FA3 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys 17:07:35.0881 5916 AVGIDSHA - ok 17:07:35.0897 5916 [ B5C6EC8D0FC00BD291994926C5888FD3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys 17:07:35.0912 5916 Avgldx64 - ok 17:07:36.0021 5916 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys 17:07:36.0021 5916 Avgloga - ok 17:07:36.0053 5916 [ 91FEFBFF54E30A339F21F784983C9F6A ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys 17:07:36.0053 5916 Avgmfx64 - ok 17:07:36.0147 5916 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys 17:07:36.0163 5916 Avgrkx64 - ok 17:07:36.0194 5916 [ ECBE71E3AF3E146453EF9623A245E6E0 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys 17:07:36.0210 5916 Avgtdia - ok 17:07:36.0241 5916 [ E827B1156B85345929DBF16E12C02880 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys 17:07:36.0256 5916 avgtp - ok 17:07:36.0303 5916 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe 17:07:36.0319 5916 avgwd - ok 17:07:36.0366 5916 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 17:07:36.0366 5916 AxInstSV - ok 17:07:36.0428 5916 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 17:07:36.0428 5916 b06bdrv - ok 17:07:36.0459 5916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 17:07:36.0475 5916 b57nd60a - ok 17:07:36.0506 5916 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 17:07:36.0522 5916 BDESVC - ok 17:07:36.0522 5916 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 17:07:36.0553 5916 Beep - ok 17:07:36.0678 5916 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 17:07:36.0709 5916 BFE - ok 17:07:36.0724 5916 [ B6CB0C7A0EA9DEE5B7DB2DF0CF2A6625 ] BfLwf C:\Windows\system32\DRIVERS\bflwfx64.sys 17:07:36.0740 5916 BfLwf - ok 17:07:36.0896 5916 [ 0CB778BD8DEA06787C33B5577029802C ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe 17:07:36.0912 5916 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - warning 17:07:36.0912 5916 Bigfoot Networks Killer Service - detected UnsignedFile.Multi.Generic (1) 17:07:36.0974 5916 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 17:07:37.0005 5916 BITS - ok 17:07:37.0021 5916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 17:07:37.0036 5916 blbdrive - ok 17:07:37.0146 5916 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 17:07:37.0161 5916 Bonjour Service - ok 17:07:37.0208 5916 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 17:07:37.0224 5916 bowser - ok 17:07:37.0239 5916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 17:07:37.0255 5916 BrFiltLo - ok 17:07:37.0255 5916 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 17:07:37.0270 5916 BrFiltUp - ok 17:07:37.0364 5916 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 17:07:37.0395 5916 BridgeMP - ok 17:07:37.0411 5916 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll 17:07:37.0442 5916 Browser - ok 17:07:37.0473 5916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 17:07:37.0489 5916 Brserid - ok 17:07:37.0489 5916 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 17:07:37.0504 5916 BrSerWdm - ok 17:07:37.0504 5916 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 17:07:37.0520 5916 BrUsbMdm - ok 17:07:37.0551 5916 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 17:07:37.0551 5916 BrUsbSer - ok 17:07:37.0660 5916 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys 17:07:37.0660 5916 BTCFilterService - ok 17:07:37.0692 5916 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 17:07:37.0707 5916 BthEnum - ok 17:07:37.0723 5916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 17:07:37.0738 5916 BTHMODEM - ok 17:07:37.0738 5916 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 17:07:37.0754 5916 BthPan - ok 17:07:37.0785 5916 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 17:07:37.0801 5916 BTHPORT - ok 17:07:37.0879 5916 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 17:07:37.0910 5916 bthserv - ok 17:07:37.0941 5916 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 17:07:37.0941 5916 BTHUSB - ok 17:07:37.0988 5916 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys 17:07:38.0004 5916 btwampfl - ok 17:07:38.0004 5916 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys 17:07:38.0019 5916 btwavdt - ok 17:07:38.0035 5916 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\drivers\btwrchid.sys 17:07:38.0050 5916 btwrchid - ok 17:07:38.0128 5916 catchme - ok 17:07:38.0175 5916 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 17:07:38.0206 5916 cdfs - ok 17:07:38.0222 5916 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 17:07:38.0222 5916 cdrom - ok 17:07:38.0253 5916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 17:07:38.0284 5916 CertPropSvc - ok 17:07:38.0316 5916 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 17:07:38.0331 5916 circlass - ok 17:07:38.0362 5916 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 17:07:38.0378 5916 CLFS - ok 17:07:38.0955 5916 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 17:07:38.0955 5916 clr_optimization_v2.0.50727_32 - ok 17:07:39.0018 5916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 17:07:39.0018 5916 clr_optimization_v2.0.50727_64 - ok 17:07:39.0127 5916 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 17:07:39.0127 5916 clr_optimization_v4.0.30319_32 - ok 17:07:39.0142 5916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 17:07:39.0158 5916 clr_optimization_v4.0.30319_64 - ok 17:07:39.0174 5916 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 17:07:39.0189 5916 CmBatt - ok 17:07:39.0205 5916 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 17:07:39.0205 5916 cmdide - ok 17:07:39.0252 5916 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 17:07:39.0267 5916 CNG - ok 17:07:39.0283 5916 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 17:07:39.0283 5916 Compbatt - ok 17:07:39.0298 5916 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 17:07:39.0314 5916 CompositeBus - ok 17:07:39.0330 5916 COMSysApp - ok 17:07:39.0626 5916 cpuz135 - ok 17:07:39.0626 5916 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 17:07:39.0642 5916 crcdisk - ok 17:07:39.0657 5916 Crypkey License - ok 17:07:39.0735 5916 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll 17:07:39.0751 5916 CryptSvc - ok 17:07:39.0829 5916 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 17:07:39.0844 5916 CSC - ok 17:07:39.0876 5916 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 17:07:39.0891 5916 CscService - ok 17:07:39.0922 5916 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys 17:07:39.0938 5916 CtClsFlt - ok 17:07:40.0000 5916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 17:07:40.0032 5916 DcomLaunch - ok 17:07:40.0110 5916 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 17:07:40.0141 5916 defragsvc - ok 17:07:40.0172 5916 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 17:07:40.0188 5916 DfsC - ok 17:07:40.0266 5916 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 17:07:40.0297 5916 Dhcp - ok 17:07:40.0297 5916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 17:07:40.0328 5916 discache - ok 17:07:40.0390 5916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 17:07:40.0390 5916 Disk - ok 17:07:40.0422 5916 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 17:07:40.0422 5916 Dnscache - ok 17:07:40.0453 5916 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 17:07:40.0468 5916 dot3svc - ok 17:07:40.0515 5916 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 17:07:40.0515 5916 Dot4 - ok 17:07:40.0593 5916 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 17:07:40.0593 5916 Dot4Print - ok 17:07:40.0609 5916 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 17:07:40.0624 5916 dot4usb - ok 17:07:40.0640 5916 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 17:07:40.0656 5916 DPS - ok 17:07:40.0702 5916 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 17:07:40.0718 5916 drmkaud - ok 17:07:40.0812 5916 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 17:07:40.0827 5916 DXGKrnl - ok 17:07:40.0874 5916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 17:07:40.0890 5916 EapHost - ok 17:07:41.0046 5916 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 17:07:41.0077 5916 ebdrv - ok 17:07:41.0092 5916 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 17:07:41.0092 5916 EFS - ok 17:07:41.0202 5916 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 17:07:41.0217 5916 ehRecvr - ok 17:07:41.0233 5916 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 17:07:41.0248 5916 ehSched - ok 17:07:41.0264 5916 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 17:07:41.0280 5916 elxstor - ok 17:07:41.0311 5916 [ E47D9D7E6E53892FC97282482F4AE307 ] EMSC C:\Windows\system32\DRIVERS\EMSC.SYS 17:07:41.0311 5916 EMSC - ok 17:07:41.0326 5916 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 17:07:41.0342 5916 ErrDev - ok 17:07:41.0389 5916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 17:07:41.0420 5916 EventSystem - ok 17:07:41.0451 5916 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 17:07:41.0482 5916 exfat - ok 17:07:41.0482 5916 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 17:07:41.0514 5916 fastfat - ok 17:07:41.0623 5916 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 17:07:41.0638 5916 Fax - ok 17:07:41.0670 5916 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 17:07:41.0670 5916 fdc - ok 17:07:41.0716 5916 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 17:07:41.0748 5916 fdPHost - ok 17:07:41.0748 5916 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 17:07:41.0779 5916 FDResPub - ok 17:07:41.0779 5916 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 17:07:41.0779 5916 FileInfo - ok 17:07:41.0810 5916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 17:07:41.0841 5916 Filetrace - ok 17:07:41.0935 5916 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 17:07:41.0950 5916 FLEXnet Licensing Service - ok 17:07:41.0966 5916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 17:07:41.0966 5916 flpydisk - ok 17:07:41.0997 5916 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 17:07:42.0013 5916 FltMgr - ok 17:07:42.0138 5916 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 17:07:42.0169 5916 FontCache - ok 17:07:42.0325 5916 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 17:07:42.0325 5916 FontCache3.0.0.0 - ok 17:07:42.0356 5916 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 17:07:42.0372 5916 FsDepends - ok 17:07:42.0372 5916 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 17:07:42.0387 5916 Fs_Rec - ok 17:07:42.0465 5916 [ 79B4CDE2B69ED8BA4011859780A66A4D ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe 17:07:42.0465 5916 Futuremark SystemInfo Service - ok 17:07:42.0481 5916 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 17:07:42.0496 5916 fvevol - ok 17:07:42.0528 5916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 17:07:42.0543 5916 gagp30kx - ok 17:07:42.0574 5916 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 17:07:42.0590 5916 GEARAspiWDM - ok 17:07:42.0637 5916 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 17:07:42.0668 5916 gpsvc - ok 17:07:42.0777 5916 GPU-Z - ok 17:07:42.0793 5916 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 17:07:42.0793 5916 hcw85cir - ok 17:07:42.0808 5916 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 17:07:42.0824 5916 HDAudBus - ok 17:07:42.0824 5916 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 17:07:42.0840 5916 HidBatt - ok 17:07:42.0840 5916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 17:07:42.0855 5916 HidBth - ok 17:07:42.0855 5916 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 17:07:42.0871 5916 HidIr - ok 17:07:42.0902 5916 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 17:07:42.0918 5916 hidserv - ok 17:07:42.0949 5916 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 17:07:42.0949 5916 HidUsb - ok 17:07:42.0980 5916 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 17:07:43.0011 5916 hkmsvc - ok 17:07:43.0042 5916 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 17:07:43.0042 5916 HomeGroupListener - ok 17:07:43.0058 5916 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 17:07:43.0074 5916 HomeGroupProvider - ok 17:07:43.0074 5916 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys 17:07:43.0089 5916 HP8207_8307 - ok 17:07:43.0089 5916 HPHNDUSVC - ok 17:07:43.0230 5916 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 17:07:43.0230 5916 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning 17:07:43.0230 5916 hpqcxs08 - detected UnsignedFile.Multi.Generic (1) 17:07:43.0276 5916 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 17:07:43.0276 5916 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning 17:07:43.0276 5916 hpqddsvc - detected UnsignedFile.Multi.Generic (1) 17:07:43.0339 5916 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 17:07:43.0339 5916 HpSAMD - ok 17:07:43.0448 5916 [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL 17:07:43.0448 5916 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning 17:07:43.0448 5916 HPSLPSVC - detected UnsignedFile.Multi.Generic (1) 17:07:43.0479 5916 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 17:07:43.0510 5916 HTTP - ok 17:07:43.0526 5916 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 17:07:43.0526 5916 hwpolicy - ok 17:07:43.0620 5916 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 17:07:43.0635 5916 i8042prt - ok 17:07:43.0651 5916 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 17:07:43.0666 5916 iaStor - ok 17:07:43.0729 5916 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe 17:07:43.0744 5916 IAStorDataMgrSvc - ok 17:07:43.0760 5916 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 17:07:43.0776 5916 iaStorV - ok 17:07:43.0822 5916 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 17:07:43.0822 5916 IDriverT ( UnsignedFile.Multi.Generic ) - warning 17:07:43.0822 5916 IDriverT - detected UnsignedFile.Multi.Generic (1) 17:07:43.0916 5916 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 17:07:43.0932 5916 idsvc - ok 17:07:44.0540 5916 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 17:07:44.0634 5916 igfx - ok 17:07:44.0665 5916 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 17:07:44.0680 5916 iirsp - ok 17:07:44.0743 5916 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 17:07:44.0774 5916 IKEEXT - ok 17:07:44.0790 5916 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys 17:07:44.0805 5916 Impcd - ok 17:07:44.0852 5916 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 17:07:44.0868 5916 IntcDAud - ok 17:07:44.0883 5916 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 17:07:44.0883 5916 intelide - ok 17:07:44.0914 5916 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 17:07:44.0914 5916 intelppm - ok 17:07:44.0946 5916 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 17:07:44.0961 5916 IPBusEnum - ok 17:07:44.0961 5916 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 17:07:44.0992 5916 IpFilterDriver - ok 17:07:45.0008 5916 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 17:07:45.0039 5916 iphlpsvc - ok 17:07:45.0055 5916 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 17:07:45.0070 5916 IPMIDRV - ok 17:07:45.0086 5916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 17:07:45.0117 5916 IPNAT - ok 17:07:45.0258 5916 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 17:07:45.0273 5916 iPod Service - ok 17:07:45.0304 5916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 17:07:45.0320 5916 IRENUM - ok 17:07:45.0336 5916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 17:07:45.0336 5916 isapnp - ok 17:07:45.0351 5916 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 17:07:45.0367 5916 iScsiPrt - ok 17:07:45.0382 5916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 17:07:45.0398 5916 kbdclass - ok 17:07:45.0398 5916 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 17:07:45.0398 5916 kbdhid - ok 17:07:45.0414 5916 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 17:07:45.0414 5916 KeyIso - ok 17:07:45.0445 5916 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 17:07:45.0445 5916 KSecDD - ok 17:07:45.0460 5916 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 17:07:45.0460 5916 KSecPkg - ok 17:07:45.0460 5916 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 17:07:45.0492 5916 ksthunk - ok 17:07:45.0538 5916 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 17:07:45.0570 5916 KtmRm - ok 17:07:45.0616 5916 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 17:07:45.0616 5916 L1C - ok 17:07:45.0741 5916 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 17:07:45.0772 5916 LanmanServer - ok 17:07:45.0788 5916 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 17:07:45.0819 5916 LanmanWorkstation - ok 17:07:45.0850 5916 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 17:07:45.0866 5916 lltdio - ok 17:07:45.0897 5916 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 17:07:45.0913 5916 lltdsvc - ok 17:07:45.0944 5916 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 17:07:45.0960 5916 lmhosts - ok 17:07:46.0006 5916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 17:07:46.0022 5916 LSI_FC - ok 17:07:46.0053 5916 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 17:07:46.0053 5916 LSI_SAS - ok 17:07:46.0053 5916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 17:07:46.0069 5916 LSI_SAS2 - ok 17:07:46.0069 5916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 17:07:46.0084 5916 LSI_SCSI - ok 17:07:46.0100 5916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 17:07:46.0131 5916 luafv - ok 17:07:46.0240 5916 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 17:07:46.0256 5916 MBAMProtector - ok 17:07:46.0428 5916 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 17:07:46.0443 5916 MBAMService - ok 17:07:46.0459 5916 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 17:07:46.0459 5916 Mcx2Svc - ok 17:07:46.0474 5916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 17:07:46.0474 5916 megasas - ok 17:07:46.0521 5916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 17:07:46.0537 5916 MegaSR - ok 17:07:46.0568 5916 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 17:07:46.0568 5916 MEIx64 - ok 17:07:46.0584 5916 Microsoft SharePoint Workspace Audit Service - ok 17:07:46.0584 5916 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 17:07:46.0615 5916 MMCSS - ok 17:07:46.0615 5916 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 17:07:46.0646 5916 Modem - ok 17:07:46.0677 5916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 17:07:46.0677 5916 monitor - ok 17:07:46.0724 5916 [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb C:\Windows\system32\Drivers\motoandroid.sys 17:07:46.0724 5916 motandroidusb - ok 17:07:46.0849 5916 [ C94A2EA3FDFA5D650884926B710B7DB1 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys 17:07:46.0849 5916 motccgp - ok 17:07:46.0864 5916 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys 17:07:46.0880 5916 motccgpfl - ok 17:07:46.0896 5916 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys 17:07:46.0896 5916 MotDev - ok 17:07:46.0942 5916 [ 060F0EF84F430802DF3788F3DCFD009C ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys 17:07:46.0942 5916 motmodem - ok 17:07:46.0989 5916 [ EBD05F60CAFC5BBA2602B8D7101082D3 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys 17:07:46.0989 5916 MotoSwitchService - ok 17:07:47.0020 5916 [ 87701078C3F720AC7A028E937994CC49 ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys 17:07:47.0036 5916 Motousbnet - ok 17:07:47.0114 5916 [ 4244E427CDA5F6485E74461B5B48A7B6 ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys 17:07:47.0130 5916 motusbdevice - ok 17:07:47.0161 5916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 17:07:47.0176 5916 mouclass - ok 17:07:47.0192 5916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 17:07:47.0208 5916 mouhid - ok 17:07:47.0223 5916 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 17:07:47.0239 5916 mountmgr - ok 17:07:47.0332 5916 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 17:07:47.0332 5916 MozillaMaintenance - ok 17:07:47.0348 5916 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 17:07:47.0364 5916 mpio - ok 17:07:47.0379 5916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 17:07:47.0410 5916 mpsdrv - ok 17:07:47.0535 5916 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 17:07:47.0566 5916 MpsSvc - ok 17:07:47.0598 5916 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 17:07:47.0613 5916 MRxDAV - ok 17:07:47.0660 5916 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 17:07:47.0660 5916 mrxsmb - ok 17:07:47.0707 5916 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 17:07:47.0707 5916 mrxsmb10 - ok 17:07:47.0722 5916 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 17:07:47.0722 5916 mrxsmb20 - ok 17:07:47.0738 5916 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 17:07:47.0738 5916 msahci - ok 17:07:47.0769 5916 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 17:07:47.0769 5916 msdsm - ok 17:07:47.0800 5916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 17:07:47.0816 5916 MSDTC - ok 17:07:47.0816 5916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 17:07:47.0863 5916 Msfs - ok 17:07:47.0878 5916 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 17:07:47.0910 5916 mshidkmdf - ok 17:07:47.0925 5916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 17:07:47.0925 5916 msisadrv - ok 17:07:47.0941 5916 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 17:07:47.0972 5916 MSiSCSI - ok 17:07:47.0972 5916 msiserver - ok 17:07:48.0019 5916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 17:07:48.0034 5916 MSKSSRV - ok 17:07:48.0050 5916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 17:07:48.0081 5916 MSPCLOCK - ok 17:07:48.0097 5916 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 17:07:48.0128 5916 MSPQM - ok 17:07:48.0144 5916 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 17:07:48.0159 5916 MsRPC - ok 17:07:48.0175 5916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 17:07:48.0190 5916 mssmbios - ok 17:07:48.0206 5916 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 17:07:48.0237 5916 MSTEE - ok 17:07:48.0253 5916 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 17:07:48.0268 5916 MTConfig - ok 17:07:48.0268 5916 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 17:07:48.0284 5916 Mup - ok 17:07:48.0362 5916 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 17:07:48.0393 5916 napagent - ok 17:07:48.0440 5916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 17:07:48.0456 5916 NativeWifiP - ok 17:07:48.0705 5916 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe 17:07:48.0721 5916 NAUpdate - ok 17:07:48.0736 5916 [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys 17:07:48.0752 5916 NBVol - ok 17:07:48.0752 5916 [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys 17:07:48.0752 5916 NBVolUp - ok 17:07:48.0877 5916 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys 17:07:48.0892 5916 NDIS - ok 17:07:48.0924 5916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 17:07:48.0955 5916 NdisCap - ok 17:07:48.0986 5916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 17:07:49.0002 5916 NdisTapi - ok 17:07:49.0017 5916 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 17:07:49.0048 5916 Ndisuio - ok 17:07:49.0080 5916 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 17:07:49.0095 5916 NdisWan - ok 17:07:49.0095 5916 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 17:07:49.0126 5916 NDProxy - ok 17:07:49.0189 5916 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 17:07:49.0189 5916 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:07:49.0189 5916 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:07:49.0220 5916 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 17:07:49.0251 5916 NetBIOS - ok 17:07:49.0267 5916 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 17:07:49.0298 5916 NetBT - ok 17:07:49.0298 5916 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 17:07:49.0314 5916 Netlogon - ok 17:07:49.0345 5916 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 17:07:49.0376 5916 Netman - ok 17:07:49.0407 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 17:07:49.0423 5916 NetMsmqActivator - ok 17:07:49.0423 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 17:07:49.0438 5916 NetPipeActivator - ok 17:07:49.0470 5916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 17:07:49.0501 5916 netprofm - ok 17:07:49.0501 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 17:07:49.0501 5916 NetTcpActivator - ok 17:07:49.0516 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 17:07:49.0516 5916 NetTcpPortSharing - ok 17:07:49.0548 5916 [ 2263727032E9B19231A706046B8C82D3 ] NetworkX C:\Windows\system32\ckldrv.sys 17:07:49.0548 5916 NetworkX - ok 17:07:49.0594 5916 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 17:07:49.0594 5916 nfrd960 - ok 17:07:49.0641 5916 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll 17:07:49.0672 5916 NlaSvc - ok 17:07:49.0813 5916 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe 17:07:49.0813 5916 nlsX86cc - ok 17:07:49.0813 5916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 17:07:49.0844 5916 Npfs - ok 17:07:49.0844 5916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 17:07:49.0875 5916 nsi - ok 17:07:49.0875 5916 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 17:07:49.0906 5916 nsiproxy - ok 17:07:49.0984 5916 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 17:07:50.0016 5916 Ntfs - ok 17:07:50.0016 5916 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 17:07:50.0047 5916 Null - ok 17:07:50.0047 5916 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys 17:07:50.0062 5916 nusb3hub - ok 17:07:50.0094 5916 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys 17:07:50.0094 5916 nusb3xhc - ok 17:07:50.0187 5916 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 17:07:50.0203 5916 NVHDA - ok 17:07:50.0265 5916 [ F8219CD9792008144A19691B17EA2993 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys 17:07:50.0281 5916 nvkflt - ok 17:07:50.0998 5916 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 17:07:51.0154 5916 nvlddmkm - ok 17:07:51.0186 5916 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys 17:07:51.0186 5916 nvpciflt - ok 17:07:51.0217 5916 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 17:07:51.0217 5916 nvraid - ok 17:07:51.0264 5916 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 17:07:51.0264 5916 nvstor - ok 17:07:51.0326 5916 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] NVSvc C:\Windows\system32\nvvsvc.exe 17:07:51.0342 5916 NVSvc - ok 17:07:51.0498 5916 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 17:07:51.0513 5916 nvUpdatusService - ok 17:07:51.0560 5916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 17:07:51.0560 5916 nv_agp - ok 17:07:51.0576 5916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 17:07:51.0591 5916 ohci1394 - ok 17:07:51.0669 5916 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 17:07:51.0685 5916 ose - ok 17:07:52.0122 5916 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 17:07:52.0184 5916 osppsvc - ok 17:07:52.0200 5916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 17:07:52.0215 5916 p2pimsvc - ok 17:07:52.0262 5916 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 17:07:52.0278 5916 p2psvc - ok 17:07:52.0309 5916 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 17:07:52.0309 5916 Parport - ok 17:07:52.0340 5916 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 17:07:52.0340 5916 partmgr - ok 17:07:52.0371 5916 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 17:07:52.0371 5916 PcaSvc - ok 17:07:52.0512 5916 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 c:\program files\alienautopsy\pcdsrvc_x64.pkms 17:07:52.0512 5916 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - ok 17:07:52.0527 5916 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 17:07:52.0543 5916 pci - ok 17:07:52.0558 5916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 17:07:52.0558 5916 pciide - ok 17:07:52.0574 5916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 17:07:52.0590 5916 pcmcia - ok 17:07:52.0590 5916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 17:07:52.0590 5916 pcw - ok 17:07:52.0652 5916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 17:07:52.0683 5916 PEAUTH - ok 17:07:52.0902 5916 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 17:07:52.0917 5916 PeerDistSvc - ok 17:07:52.0948 5916 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 17:07:52.0964 5916 PerfHost - ok 17:07:53.0089 5916 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 17:07:53.0120 5916 pla - ok 17:07:53.0198 5916 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 17:07:53.0214 5916 PlugPlay - ok 17:07:53.0229 5916 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 17:07:53.0245 5916 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:07:53.0245 5916 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:07:53.0307 5916 PnkBstrA - ok 17:07:53.0323 5916 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 17:07:53.0338 5916 PNRPAutoReg - ok 17:07:53.0370 5916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 17:07:53.0385 5916 PNRPsvc - ok 17:07:53.0432 5916 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 17:07:53.0463 5916 PolicyAgent - ok 17:07:53.0510 5916 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll 17:07:53.0510 5916 Power - ok 17:07:53.0557 5916 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 17:07:53.0572 5916 PptpMiniport - ok 17:07:53.0604 5916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 17:07:53.0604 5916 Processor - ok 17:07:53.0619 5916 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll 17:07:53.0650 5916 ProfSvc - ok 17:07:53.0650 5916 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 17:07:53.0666 5916 ProtectedStorage - ok 17:07:53.0697 5916 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 17:07:53.0713 5916 Psched - ok 17:07:53.0728 5916 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 17:07:53.0744 5916 PxHlpa64 - ok 17:07:53.0884 5916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 17:07:53.0900 5916 ql2300 - ok 17:07:53.0900 5916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 17:07:53.0916 5916 ql40xx - ok 17:07:53.0931 5916 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 17:07:53.0947 5916 QWAVE - ok 17:07:53.0978 5916 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 17:07:53.0994 5916 QWAVEdrv - ok 17:07:53.0994 5916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 17:07:54.0009 5916 RasAcd - ok 17:07:54.0040 5916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 17:07:54.0056 5916 RasAgileVpn - ok 17:07:54.0072 5916 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 17:07:54.0103 5916 RasAuto - ok 17:07:54.0103 5916 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 17:07:54.0134 5916 Rasl2tp - ok 17:07:54.0165 5916 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 17:07:54.0181 5916 RasMan - ok 17:07:54.0196 5916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 17:07:54.0212 5916 RasPppoe - ok 17:07:54.0228 5916 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 17:07:54.0259 5916 RasSstp - ok 17:07:54.0274 5916 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 17:07:54.0306 5916 rdbss - ok 17:07:54.0306 5916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 17:07:54.0321 5916 rdpbus - ok 17:07:54.0321 5916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 17:07:54.0352 5916 RDPCDD - ok 17:07:54.0415 5916 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 17:07:54.0415 5916 RDPDR - ok 17:07:54.0430 5916 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 17:07:54.0462 5916 RDPENCDD - ok 17:07:54.0462 5916 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 17:07:54.0493 5916 RDPREFMP - ok 17:07:54.0555 5916 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 17:07:54.0555 5916 RdpVideoMiniport - ok 17:07:54.0586 5916 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 17:07:54.0602 5916 RDPWD - ok 17:07:54.0633 5916 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 17:07:54.0649 5916 rdyboost - ok 17:07:54.0696 5916 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 17:07:54.0727 5916 RemoteAccess - ok 17:07:54.0758 5916 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 17:07:54.0774 5916 RemoteRegistry - ok 17:07:54.0789 5916 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 17:07:54.0805 5916 RFCOMM - ok 17:07:54.0961 5916 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe 17:07:54.0976 5916 RoxMediaDB12OEM - ok 17:07:55.0008 5916 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe 17:07:55.0008 5916 RoxWatch12 - ok 17:07:55.0023 5916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 17:07:55.0039 5916 RpcEptMapper - ok 17:07:55.0054 5916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 17:07:55.0070 5916 RpcLocator - ok 17:07:55.0148 5916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 17:07:55.0179 5916 RpcSs - ok 17:07:55.0226 5916 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys 17:07:55.0242 5916 RSPCIESTOR - ok 17:07:55.0273 5916 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 17:07:55.0288 5916 rspndr - ok 17:07:55.0288 5916 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 17:07:55.0304 5916 SamSs - ok 17:07:55.0366 5916 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS 17:07:55.0382 5916 SASDIFSV - ok 17:07:55.0413 5916 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS 17:07:55.0429 5916 SASKUTIL - ok 17:07:55.0429 5916 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 17:07:55.0444 5916 sbp2port - ok 17:07:55.0460 5916 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 17:07:55.0491 5916 SCardSvr - ok 17:07:55.0491 5916 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 17:07:55.0522 5916 scfilter - ok 17:07:55.0585 5916 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 17:07:55.0616 5916 Schedule - ok 17:07:55.0647 5916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 17:07:55.0663 5916 SCPolicySvc - ok 17:07:56.0381 5916 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 17:07:56.0381 5916 sdbus - ok 17:07:56.0396 5916 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 17:07:56.0412 5916 SDRSVC - ok 17:07:56.0443 5916 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 17:07:56.0459 5916 secdrv - ok 17:07:56.0474 5916 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 17:07:56.0505 5916 seclogon - ok 17:07:56.0521 5916 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 17:07:56.0552 5916 SENS - ok 17:07:56.0583 5916 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 17:07:56.0599 5916 SensrSvc - ok 17:07:56.0615 5916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 17:07:56.0615 5916 Serenum - ok 17:07:56.0630 5916 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 17:07:56.0646 5916 Serial - ok 17:07:56.0661 5916 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 17:07:56.0677 5916 sermouse - ok 17:07:56.0693 5916 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 17:07:56.0724 5916 SessionEnv - ok 17:07:56.0739 5916 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 17:07:56.0755 5916 sffdisk - ok 17:07:56.0755 5916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 17:07:56.0771 5916 sffp_mmc - ok 17:07:56.0771 5916 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 17:07:56.0786 5916 sffp_sd - ok 17:07:56.0802 5916 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 17:07:56.0817 5916 sfloppy - ok 17:07:56.0911 5916 [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService C:\Program Files (x86)\AlienRespawn\sftservice.EXE 17:07:56.0942 5916 SftService - ok 17:07:56.0973 5916 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 17:07:57.0005 5916 SharedAccess - ok 17:07:57.0051 5916 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 17:07:57.0083 5916 ShellHWDetection - ok 17:07:57.0083 5916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 17:07:57.0098 5916 SiSRaid2 - ok 17:07:57.0098 5916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 17:07:57.0114 5916 SiSRaid4 - ok 17:07:57.0441 5916 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 17:07:57.0488 5916 Skype C2C Service - ok 17:07:57.0582 5916 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 17:07:57.0597 5916 SkypeUpdate - ok 17:07:57.0629 5916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 17:07:57.0660 5916 Smb - ok 17:07:57.0675 5916 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 17:07:57.0675 5916 SNMPTRAP - ok 17:07:57.0738 5916 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys 17:07:57.0753 5916 Soluto - ok 17:07:57.0800 5916 [ ED8397986BE35C11BFB321636D6991EE ] SolutoService C:\Program Files\Soluto\SolutoService.exe 17:07:57.0800 5916 SolutoService - ok 17:07:57.0816 5916 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 17:07:57.0831 5916 spldr - ok 17:07:57.0909 5916 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe 17:07:57.0941 5916 Spooler - ok 17:07:58.0175 5916 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 17:07:58.0221 5916 sppsvc - ok 17:07:58.0221 5916 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 17:07:58.0253 5916 sppuinotify - ok 17:07:58.0284 5916 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 17:07:58.0299 5916 srv - ok 17:07:58.0331 5916 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 17:07:58.0331 5916 srv2 - ok 17:07:58.0362 5916 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 17:07:58.0362 5916 srvnet - ok 17:07:58.0409 5916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 17:07:58.0440 5916 SSDPSRV - ok 17:07:58.0440 5916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 17:07:58.0471 5916 SstpSvc - ok 17:07:58.0627 5916 [ E82994866A370A480607637F28B82835 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe 17:07:58.0643 5916 STacSV - ok 17:07:58.0658 5916 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys 17:07:58.0658 5916 stdcfltn - ok 17:07:58.0705 5916 Steam Client Service - ok 17:07:58.0861 5916 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 17:07:58.0877 5916 Stereo Service - ok 17:07:58.0892 5916 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 17:07:58.0892 5916 stexstor - ok 17:07:58.0939 5916 [ 3AD0ED8B19CD76D2254DE5FB298E3C26 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 17:07:58.0939 5916 STHDA - ok 17:07:58.0970 5916 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 17:07:58.0986 5916 StillCam - ok 17:07:59.0017 5916 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 17:07:59.0033 5916 stisvc - ok 17:07:59.0079 5916 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe 17:07:59.0079 5916 stllssvr - ok 17:07:59.0095 5916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 17:07:59.0111 5916 swenum - ok 17:07:59.0282 5916 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 17:07:59.0298 5916 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 17:07:59.0298 5916 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 17:07:59.0376 5916 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 17:07:59.0407 5916 swprv - ok 17:07:59.0423 5916 Synth3dVsc - ok 17:07:59.0547 5916 [ D8205430CFD64FDB7D691D3BB74FD18F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 17:07:59.0563 5916 SynTP - ok 17:07:59.0703 5916 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 17:07:59.0719 5916 SysMain - ok 17:07:59.0735 5916 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 17:07:59.0750 5916 TabletInputService - ok 17:08:00.0312 5916 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe 17:08:00.0390 5916 TabletServicePen - ok 17:08:00.0437 5916 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 17:08:00.0468 5916 TapiSrv - ok 17:08:00.0483 5916 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 17:08:00.0515 5916 TBS - ok 17:08:00.0655 5916 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 17:08:00.0686 5916 Tcpip - ok 17:08:00.0717 5916 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 17:08:00.0733 5916 TCPIP6 - ok 17:08:00.0764 5916 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 17:08:00.0780 5916 tcpipreg - ok 17:08:00.0795 5916 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 17:08:00.0811 5916 TDPIPE - ok 17:08:00.0842 5916 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 17:08:00.0858 5916 TDTCP - ok 17:08:00.0858 5916 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 17:08:00.0889 5916 tdx - ok 17:08:00.0889 5916 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 17:08:00.0905 5916 TermDD - ok 17:08:00.0920 5916 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 17:08:00.0951 5916 TermService - ok 17:08:00.0998 5916 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 17:08:01.0014 5916 Themes - ok 17:08:01.0014 5916 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 17:08:01.0045 5916 THREADORDER - ok 17:08:01.0185 5916 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe 17:08:01.0201 5916 TouchServicePen - ok 17:08:01.0217 5916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 17:08:01.0248 5916 TrkWks - ok 17:08:01.0295 5916 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 17:08:01.0310 5916 TrustedInstaller - ok 17:08:01.0326 5916 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 17:08:01.0341 5916 tssecsrv - ok 17:08:01.0388 5916 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 17:08:01.0404 5916 TsUsbFlt - ok 17:08:01.0419 5916 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 17:08:01.0435 5916 TsUsbGD - ok 17:08:01.0435 5916 tsusbhub - ok 17:08:01.0451 5916 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 17:08:01.0466 5916 tunnel - ok 17:08:01.0482 5916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 17:08:01.0482 5916 uagp35 - ok 17:08:01.0529 5916 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 17:08:01.0560 5916 udfs - ok 17:08:01.0575 5916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 17:08:01.0591 5916 UI0Detect - ok 17:08:01.0622 5916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 17:08:01.0622 5916 uliagpkx - ok 17:08:01.0638 5916 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 17:08:01.0638 5916 umbus - ok 17:08:01.0638 5916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 17:08:01.0653 5916 UmPass - ok 17:08:01.0716 5916 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 17:08:01.0731 5916 UmRdpService - ok 17:08:01.0747 5916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 17:08:01.0778 5916 upnphost - ok 17:08:01.0794 5916 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 17:08:01.0809 5916 USBAAPL64 - ok 17:08:01.0825 5916 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 17:08:01.0825 5916 usbccgp - ok 17:08:01.0841 5916 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 17:08:01.0856 5916 usbcir - ok 17:08:01.0856 5916 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 17:08:01.0872 5916 usbehci - ok 17:08:01.0903 5916 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 17:08:01.0903 5916 usbhub - ok 17:08:01.0919 5916 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 17:08:01.0934 5916 usbohci - ok 17:08:01.0950 5916 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 17:08:01.0965 5916 usbprint - ok 17:08:01.0997 5916 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 17:08:01.0997 5916 usbscan - ok 17:08:02.0012 5916 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 17:08:02.0028 5916 USBSTOR - ok 17:08:02.0043 5916 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 17:08:02.0059 5916 usbuhci - ok 17:08:02.0075 5916 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 17:08:02.0090 5916 usbvideo - ok 17:08:02.0090 5916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 17:08:02.0121 5916 UxSms - ok 17:08:02.0121 5916 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 17:08:02.0137 5916 VaultSvc - ok 17:08:02.0153 5916 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 17:08:02.0168 5916 vdrvroot - ok 17:08:02.0199 5916 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 17:08:02.0231 5916 vds - ok 17:08:02.0246 5916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 17:08:02.0262 5916 vga - ok 17:08:02.0262 5916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 17:08:02.0277 5916 VgaSave - ok 17:08:02.0293 5916 VGPU - ok 17:08:02.0293 5916 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 17:08:02.0309 5916 vhdmp - ok 17:08:02.0309 5916 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 17:08:02.0324 5916 viaide - ok 17:08:02.0324 5916 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 17:08:02.0340 5916 volmgr - ok 17:08:02.0371 5916 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 17:08:02.0387 5916 volmgrx - ok 17:08:02.0402 5916 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 17:08:02.0402 5916 volsnap - ok 17:08:02.0433 5916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 17:08:02.0449 5916 vsmraid - ok 17:08:02.0480 5916 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 17:08:02.0511 5916 VSS - ok 17:08:02.0621 5916 [ 52591834B0FA3293D35FD407FC230F7D ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe 17:08:02.0621 5916 vToolbarUpdater12.2.6 - ok 17:08:02.0636 5916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 17:08:02.0636 5916 vwifibus - ok 17:08:02.0652 5916 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 17:08:02.0652 5916 vwififlt - ok 17:08:02.0667 5916 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 17:08:02.0667 5916 vwifimp - ok 17:08:02.0730 5916 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 17:08:02.0761 5916 W32Time - ok 17:08:02.0948 5916 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys 17:08:02.0964 5916 wacommousefilter - ok 17:08:02.0964 5916 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 17:08:02.0979 5916 WacomPen - ok 17:08:03.0026 5916 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys 17:08:03.0026 5916 wacomvhid - ok 17:08:03.0042 5916 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 17:08:03.0073 5916 WANARP - ok 17:08:03.0073 5916 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 17:08:03.0104 5916 Wanarpv6 - ok 17:08:03.0151 5916 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 17:08:03.0182 5916 WatAdminSvc - ok 17:08:03.0213 5916 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 17:08:03.0229 5916 wbengine - ok 17:08:03.0276 5916 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 17:08:03.0291 5916 WbioSrvc - ok 17:08:03.0307 5916 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 17:08:03.0323 5916 wcncsvc - ok 17:08:03.0323 5916 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 17:08:03.0338 5916 WcsPlugInService - ok 17:08:03.0338 5916 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 17:08:03.0338 5916 Wd - ok 17:08:03.0338 5916 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys 17:08:03.0354 5916 WDC_SAM - ok 17:08:03.0432 5916 [ E6050FE6B60FA91188B8ABDB5B1E339F ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe 17:08:03.0432 5916 WDDMService ( UnsignedFile.Multi.Generic ) - warning 17:08:03.0432 5916 WDDMService - detected UnsignedFile.Multi.Generic (1) 17:08:03.0463 5916 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 17:08:03.0479 5916 Wdf01000 - ok 17:08:03.0572 5916 [ B83D5071B32A70BEBDB3330BFA7ACB80 ] WDFME C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe 17:08:03.0603 5916 WDFME - ok 17:08:03.0681 5916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 17:08:03.0697 5916 WdiServiceHost - ok 17:08:03.0697 5916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 17:08:03.0713 5916 WdiSystemHost - ok 17:08:03.0744 5916 [ 517DE2C5568CBA6B2A24A557AC60C30B ] WDSC C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe 17:08:03.0759 5916 WDSC - ok 17:08:03.0775 5916 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 17:08:03.0775 5916 WebClient - ok 17:08:03.0791 5916 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 17:08:03.0806 5916 Wecsvc - ok 17:08:03.0822 5916 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 17:08:03.0853 5916 wercplsupport - ok 17:08:03.0884 5916 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 17:08:03.0900 5916 WerSvc - ok 17:08:03.0900 5916 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 17:08:03.0931 5916 WfpLwf - ok 17:08:03.0962 5916 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 17:08:03.0962 5916 WimFltr - ok 17:08:03.0993 5916 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 17:08:03.0993 5916 WIMMount - ok 17:08:04.0025 5916 WinDefend - ok 17:08:04.0025 5916 WinHttpAutoProxySvc - ok 17:08:04.0056 5916 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 17:08:04.0087 5916 Winmgmt - ok 17:08:04.0134 5916 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 17:08:04.0196 5916 WinRM - ok 17:08:04.0259 5916 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 17:08:04.0259 5916 WinUsb - ok 17:08:04.0305 5916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 17:08:04.0337 5916 Wlansvc - ok 17:08:04.0524 5916 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 17:08:04.0555 5916 wlidsvc - ok 17:08:04.0555 5916 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 17:08:04.0571 5916 WmiAcpi - ok 17:08:04.0586 5916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 17:08:04.0602 5916 wmiApSrv - ok 17:08:04.0617 5916 WMPNetworkSvc - ok 17:08:04.0617 5916 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 17:08:04.0633 5916 WPCSvc - ok 17:08:04.0649 5916 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 17:08:04.0664 5916 WPDBusEnum - ok 17:08:04.0680 5916 [ D0BA650BD00C346B0B860F6CEC275296 ] WRkrn C:\Windows\system32\drivers\WRkrn.sys 17:08:04.0695 5916 WRkrn - ok 17:08:04.0742 5916 [ 198434E71A01A170EDA6C73A812B540D ] WRSVC C:\Program Files\Webroot\WRSA.exe 17:08:04.0758 5916 WRSVC - ok 17:08:04.0758 5916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 17:08:04.0789 5916 ws2ifsl - ok 17:08:04.0805 5916 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll 17:08:04.0820 5916 wscsvc - ok 17:08:04.0820 5916 WSearch - ok 17:08:04.0976 5916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 17:08:05.0007 5916 wuauserv - ok 17:08:05.0023 5916 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 17:08:05.0054 5916 WudfPf - ok 17:08:05.0085 5916 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 17:08:05.0101 5916 WUDFRd - ok 17:08:05.0132 5916 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 17:08:05.0148 5916 wudfsvc - ok 17:08:05.0179 5916 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 17:08:05.0195 5916 WwanSvc - ok 17:08:05.0210 5916 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys 17:08:05.0210 5916 xusb21 - ok 17:08:05.0319 5916 ================ Scan global =============================== 17:08:05.0319 5916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 17:08:05.0397 5916 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 17:08:05.0397 5916 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 17:08:05.0413 5916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 17:08:05.0460 5916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 17:08:05.0460 5916 [Global] - ok 17:08:05.0460 5916 ================ Scan MBR ================================== 17:08:05.0475 5916 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 17:08:06.0146 5916 \Device\Harddisk0\DR0 - ok 17:08:06.0146 5916 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1 17:08:06.0193 5916 \Device\Harddisk1\DR1 - ok 17:08:06.0209 5916 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4 17:08:06.0302 5916 \Device\Harddisk4\DR4 - ok 17:08:06.0302 5916 ================ Scan VBR ================================== 17:08:06.0318 5916 [ 67E7BE0179EF85BB07615A3E3E538E1A ] \Device\Harddisk0\DR0\Partition1 17:08:06.0318 5916 \Device\Harddisk0\DR0\Partition1 - ok 17:08:06.0318 5916 [ 44904C0F281407A95FDDF18B78F6532A ] \Device\Harddisk0\DR0\Partition2 17:08:06.0318 5916 \Device\Harddisk0\DR0\Partition2 - ok 17:08:06.0318 5916 [ AD70A3F884CDB14FB3A3EECF2C14D53A ] \Device\Harddisk1\DR1\Partition1 17:08:06.0318 5916 \Device\Harddisk1\DR1\Partition1 - ok 17:08:06.0349 5916 [ 34E3D9EBFD8265009819D5F35D18518E ] \Device\Harddisk4\DR4\Partition1 17:08:06.0349 5916 \Device\Harddisk4\DR4\Partition1 - ok 17:08:06.0349 5916 ============================================================ 17:08:06.0349 5916 Scan finished 17:08:06.0349 5916 ============================================================ 17:08:06.0365 6280 Detected object count: 9 17:08:06.0365 6280 Actual detected object count: 9 17:08:47.0861 6280 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0861 6280 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0861 6280 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0861 6280 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0861 6280 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0861 6280 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0861 6280 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0876 6280 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0876 6280 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0876 6280 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0876 6280 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:47.0876 6280 WDDMService ( UnsignedFile.Multi.Generic ) - skipped by user 17:08:47.0876 6280 WDDMService ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:08:52.0385 6412 Deinitialize success
  4. That last post is about half the log, im trying to figuare out how to upload the .txt file
  5. Never saw Cure as a option, so I went with Skip Heres the text file 16:58:11.0647 2672 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48 16:58:12.0558 2672 ============================================================ 16:58:12.0558 2672 Current date / time: 2012/09/07 16:58:12.0558 16:58:12.0558 2672 SystemInfo: 16:58:12.0558 2672 16:58:12.0558 2672 OS Version: 6.1.7601 ServicePack: 1.0 16:58:12.0558 2672 Product type: Workstation 16:58:12.0559 2672 ComputerName: THEWELCHS-PC 16:58:12.0559 2672 UserName: The Welch's 16:58:12.0559 2672 Windows directory: C:\Windows 16:58:12.0559 2672 System windows directory: C:\Windows 16:58:12.0559 2672 Running under WOW64 16:58:12.0559 2672 Processor architecture: Intel x64 16:58:12.0559 2672 Number of processors: 8 16:58:12.0559 2672 Page size: 0x1000 16:58:12.0559 2672 Boot type: Normal boot 16:58:12.0559 2672 ============================================================ 16:58:16.0597 2672 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 16:58:16.0810 2672 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 16:58:16.0879 2672 Drive \Device\Harddisk4\DR4 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 16:58:16.0881 2672 ============================================================ 16:58:16.0881 2672 \Device\Harddisk0\DR0: 16:58:16.0881 2672 MBR partitions: 16:58:16.0881 2672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1378000 16:58:16.0881 2672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x138C000, BlocksNum 0x38FF8000 16:58:16.0881 2672 \Device\Harddisk1\DR1: 16:58:16.0893 2672 MBR partitions: 16:58:16.0893 2672 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800 16:58:16.0893 2672 \Device\Harddisk4\DR4: 16:58:16.0894 2672 MBR partitions: 16:58:16.0894 2672 \Device\Harddisk4\DR4\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0 16:58:16.0894 2672 ============================================================ 16:58:16.0917 2672 C: <-> \Device\Harddisk0\DR0\Partition2 16:58:16.0986 2672 D: <-> \Device\Harddisk1\DR1\Partition1 16:58:16.0987 2672 ============================================================ 16:58:16.0987 2672 Initialize success 16:58:16.0987 2672 ============================================================ 16:58:32.0251 6360 ============================================================ 16:58:32.0251 6360 Scan started 16:58:32.0251 6360 Mode: Manual; SigCheck; TDLFS; 16:58:32.0251 6360 ============================================================ 16:58:33.0357 6360 ================ Scan system memory ======================== 16:58:33.0357 6360 System memory - ok 16:58:33.0357 6360 ================ Scan services ============================= 16:58:33.0436 6360 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE 16:58:33.0493 6360 !SASCORE - ok 16:58:33.0742 6360 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 16:58:33.0766 6360 1394ohci - ok 16:58:33.0797 6360 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys 16:58:33.0810 6360 Acceler - ok 16:58:33.0851 6360 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 16:58:33.0862 6360 ACPI - ok 16:58:33.0904 6360 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 16:58:33.0925 6360 AcpiPmi - ok 16:58:34.0133 6360 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe 16:58:34.0141 6360 AdobeActiveFileMonitor8.0 - ok 16:58:34.0503 6360 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 16:58:34.0512 6360 AdobeFlashPlayerUpdateSvc - ok 16:58:34.0608 6360 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 16:58:34.0621 6360 adp94xx - ok 16:58:34.0649 6360 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 16:58:34.0660 6360 adpahci - ok 16:58:34.0684 6360 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 16:58:34.0693 6360 adpu320 - ok 16:58:34.0715 6360 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 16:58:34.0760 6360 AeLookupSvc - ok 16:58:34.0898 6360 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe 16:58:34.0927 6360 AESTFilters - ok 16:58:35.0040 6360 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 16:58:35.0053 6360 AFD - ok 16:58:35.0098 6360 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 16:58:35.0107 6360 agp440 - ok 16:58:35.0299 6360 [ 9725E7266CC9ABC475CA3762CECA6444 ] Ak27x64 C:\Windows\system32\DRIVERS\Ak27x64.sys 16:58:35.0334 6360 Ak27x64 - ok 16:58:35.0392 6360 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 16:58:35.0432 6360 ALG - ok 16:58:35.0585 6360 [ 73FD38C98996FA971BAD46376610FA67 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe 16:58:35.0592 6360 AlienFusionService - ok 16:58:35.0652 6360 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 16:58:35.0660 6360 aliide - ok 16:58:35.0854 6360 ALSysIO - ok 16:58:35.0900 6360 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 16:58:35.0908 6360 amdide - ok 16:58:35.0910 6360 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 16:58:35.0944 6360 AmdK8 - ok 16:58:35.0947 6360 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 16:58:35.0970 6360 AmdPPM - ok 16:58:35.0975 6360 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 16:58:35.0984 6360 amdsata - ok 16:58:36.0012 6360 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 16:58:36.0022 6360 amdsbs - ok 16:58:36.0042 6360 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 16:58:36.0050 6360 amdxata - ok 16:58:36.0124 6360 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 16:58:36.0166 6360 AppID - ok 16:58:36.0208 6360 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 16:58:36.0232 6360 AppIDSvc - ok 16:58:36.0315 6360 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 16:58:36.0339 6360 Appinfo - ok 16:58:36.0528 6360 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 16:58:36.0535 6360 Apple Mobile Device - ok 16:58:36.0660 6360 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 16:58:36.0686 6360 AppMgmt - ok 16:58:36.0728 6360 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 16:58:36.0736 6360 arc - ok 16:58:36.0754 6360 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 16:58:36.0763 6360 arcsas - ok 16:58:36.0898 6360 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 16:58:36.0905 6360 aspnet_state - ok 16:58:36.0932 6360 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 16:58:36.0979 6360 AsyncMac - ok 16:58:37.0009 6360 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 16:58:37.0017 6360 atapi - ok 16:58:37.0072 6360 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 16:58:37.0100 6360 AudioEndpointBuilder - ok 16:58:37.0108 6360 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 16:58:37.0137 6360 AudioSrv - ok 16:58:37.0221 6360 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys 16:58:37.0228 6360 Avgfwfd - ok 16:58:37.0497 6360 [ 0CA0F4F13CDB30C488E069E88040DB07 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe 16:58:37.0519 6360 avgfws - ok 16:58:37.0947 6360 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe 16:58:38.0019 6360 AVGIDSAgent - ok 16:58:38.0073 6360 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys 16:58:38.0083 6360 AVGIDSDriver - ok 16:58:38.0100 6360 [ D19F5C2C2BA0962DD4437EC020858FA3 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys 16:58:38.0110 6360 AVGIDSHA - ok 16:58:38.0134 6360 [ B5C6EC8D0FC00BD291994926C5888FD3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys 16:58:38.0144 6360 Avgldx64 - ok 16:58:38.0237 6360 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys 16:58:38.0247 6360 Avgloga - ok 16:58:38.0263 6360 [ 91FEFBFF54E30A339F21F784983C9F6A ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys 16:58:38.0271 6360 Avgmfx64 - ok 16:58:38.0386 6360 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys 16:58:38.0394 6360 Avgrkx64 - ok 16:58:38.0429 6360 [ ECBE71E3AF3E146453EF9623A245E6E0 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys 16:58:38.0439 6360 Avgtdia - ok 16:58:38.0470 6360 [ E827B1156B85345929DBF16E12C02880 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys 16:58:38.0479 6360 avgtp - ok 16:58:38.0522 6360 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe 16:58:38.0531 6360 avgwd - ok 16:58:38.0592 6360 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 16:58:38.0620 6360 AxInstSV - ok 16:58:38.0702 6360 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 16:58:38.0733 6360 b06bdrv - ok 16:58:38.0806 6360 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 16:58:38.0839 6360 b57nd60a - ok 16:58:38.0916 6360 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 16:58:38.0927 6360 BDESVC - ok 16:58:38.0930 6360 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 16:58:38.0964 6360 Beep - ok 16:58:39.0069 6360 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 16:58:39.0119 6360 BFE - ok 16:58:39.0138 6360 [ B6CB0C7A0EA9DEE5B7DB2DF0CF2A6625 ] BfLwf C:\Windows\system32\DRIVERS\bflwfx64.sys 16:58:39.0145 6360 BfLwf - ok 16:58:39.0351 6360 [ 0CB778BD8DEA06787C33B5577029802C ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe 16:58:39.0358 6360 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - warning 16:58:39.0358 6360 Bigfoot Networks Killer Service - detected UnsignedFile.Multi.Generic (1) 16:58:39.0389 6360 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 16:58:39.0442 6360 BITS - ok 16:58:39.0458 6360 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 16:58:39.0484 6360 blbdrive - ok 16:58:39.0640 6360 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 16:58:39.0651 6360 Bonjour Service - ok 16:58:39.0715 6360 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 16:58:39.0745 6360 bowser - ok 16:58:39.0749 6360 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 16:58:39.0776 6360 BrFiltLo - ok 16:58:39.0778 6360 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 16:58:39.0797 6360 BrFiltUp - ok 16:58:39.0882 6360 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 16:58:39.0906 6360 BridgeMP - ok 16:58:39.0975 6360 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll 16:58:40.0025 6360 Browser - ok 16:58:40.0079 6360 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 16:58:40.0090 6360 Brserid - ok 16:58:40.0094 6360 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 16:58:40.0121 6360 BrSerWdm - ok 16:58:40.0143 6360 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 16:58:40.0154 6360 BrUsbMdm - ok 16:58:40.0158 6360 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 16:58:40.0188 6360 BrUsbSer - ok 16:58:40.0256 6360 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys 16:58:40.0287 6360 BTCFilterService - ok 16:58:40.0327 6360 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 16:58:40.0353 6360 BthEnum - ok 16:58:40.0360 6360 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 16:58:40.0394 6360 BTHMODEM - ok 16:58:40.0399 6360 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 16:58:40.0423 6360 BthPan - ok 16:58:40.0453 6360 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 16:58:40.0480 6360 BTHPORT - ok 16:58:40.0592 6360 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 16:58:40.0646 6360 bthserv - ok 16:58:40.0662 6360 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 16:58:40.0695 6360 BTHUSB - ok 16:58:40.0715 6360 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys 16:58:40.0726 6360 btwampfl - ok 16:58:40.0743 6360 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys 16:58:40.0751 6360 btwavdt - ok 16:58:40.0764 6360 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\drivers\btwrchid.sys 16:58:40.0771 6360 btwrchid - ok 16:58:40.0897 6360 catchme - ok 16:58:40.0926 6360 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 16:58:40.0968 6360 cdfs - ok 16:58:41.0017 6360 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 16:58:41.0045 6360 cdrom - ok 16:58:41.0100 6360 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 16:58:41.0139 6360 CertPropSvc - ok 16:58:41.0207 6360 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 16:58:41.0218 6360 circlass - ok 16:58:41.0270 6360 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 16:58:41.0281 6360 CLFS - ok 16:58:41.0386 6360 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 16:58:41.0394 6360 clr_optimization_v2.0.50727_32 - ok 16:58:41.0465 6360 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 16:58:41.0472 6360 clr_optimization_v2.0.50727_64 - ok 16:58:41.0633 6360 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 16:58:41.0641 6360 clr_optimization_v4.0.30319_32 - ok 16:58:41.0724 6360 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 16:58:41.0732 6360 clr_optimization_v4.0.30319_64 - ok 16:58:41.0774 6360 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 16:58:41.0809 6360 CmBatt - ok 16:58:41.0829 6360 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 16:58:41.0836 6360 cmdide - ok 16:58:41.0892 6360 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 16:58:41.0908 6360 CNG - ok 16:58:41.0949 6360 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 16:58:41.0956 6360 Compbatt - ok 16:58:41.0978 6360 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 16:58:41.0990 6360 CompositeBus - ok 16:58:42.0008 6360 COMSysApp - ok 16:58:42.0326 6360 cpuz135 - ok 16:58:42.0329 6360 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 16:58:42.0337 6360 crcdisk - ok 16:58:42.0378 6360 Crypkey License - ok 16:58:42.0496 6360 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll 16:58:42.0519 6360 CryptSvc - ok 16:58:42.0595 6360 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 16:58:42.0607 6360 CSC - ok 16:58:42.0673 6360 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 16:58:42.0691 6360 CscService - ok 16:58:42.0714 6360 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys 16:58:42.0735 6360 CtClsFlt - ok 16:58:42.0806 6360 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 16:58:42.0857 6360 DcomLaunch - ok 16:58:42.0926 6360 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 16:58:42.0971 6360 defragsvc - ok 16:58:42.0999 6360 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 16:58:43.0023 6360 DfsC - ok 16:58:43.0062 6360 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 16:58:43.0101 6360 Dhcp - ok 16:58:43.0106 6360 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 16:58:43.0137 6360 discache - ok 16:58:43.0160 6360 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 16:58:43.0168 6360 Disk - ok 16:58:43.0192 6360 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 16:58:43.0211 6360 Dnscache - ok 16:58:43.0241 6360 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 16:58:43.0268 6360 dot3svc - ok 16:58:43.0328 6360 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 16:58:43.0340 6360 Dot4 - ok 16:58:43.0396 6360 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 16:58:43.0429 6360 Dot4Print - ok 16:58:43.0444 6360 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 16:58:43.0469 6360 dot4usb - ok 16:58:43.0522 6360 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 16:58:43.0569 6360 DPS - ok 16:58:43.0611 6360 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 16:58:43.0623 6360 drmkaud - ok 16:58:43.0699 6360 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 16:58:43.0719 6360 DXGKrnl - ok 16:58:43.0746 6360 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 16:58:43.0771 6360 EapHost - ok 16:58:43.0922 6360 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 16:58:43.0954 6360 ebdrv - ok 16:58:43.0971 6360 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 16:58:43.0980 6360 EFS - ok 16:58:44.0068 6360 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 16:58:44.0099 6360 ehRecvr - ok 16:58:44.0130 6360 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 16:58:44.0140 6360 ehSched - ok 16:58:44.0170 6360 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 16:58:44.0183 6360 elxstor - ok 16:58:44.0203 6360 [ E47D9D7E6E53892FC97282482F4AE307 ] EMSC C:\Windows\system32\DRIVERS\EMSC.SYS 16:58:44.0209 6360 EMSC - ok 16:58:44.0221 6360 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 16:58:44.0243 6360 ErrDev - ok 16:58:44.0347 6360 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 16:58:44.0391 6360 EventSystem - ok 16:58:44.0438 6360 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 16:58:44.0462 6360 exfat - ok 16:58:44.0471 6360 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 16:58:44.0505 6360 fastfat - ok 16:58:44.0603 6360 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 16:58:44.0635 6360 Fax - ok 16:58:44.0680 6360 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 16:58:44.0715 6360 fdc - ok 16:58:44.0744 6360 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 16:58:44.0775 6360 fdPHost - ok 16:58:44.0778 6360 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 16:58:44.0818 6360 FDResPub - ok 16:58:44.0840 6360 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 16:58:44.0849 6360 FileInfo - ok 16:58:44.0872 6360 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 16:58:44.0917 6360 Filetrace - ok 16:58:45.0001 6360 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 16:58:45.0016 6360 FLEXnet Licensing Service - ok 16:58:45.0034 6360 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 16:58:45.0043 6360 flpydisk - ok 16:58:45.0058 6360 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 16:58:45.0068 6360 FltMgr - ok 16:58:45.0131 6360 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 16:58:45.0148 6360 FontCache - ok 16:58:45.0258 6360 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 16:58:45.0266 6360 FontCache3.0.0.0 - ok 16:58:45.0275 6360 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 16:58:45.0284 6360 FsDepends - ok 16:58:45.0304 6360 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 16:58:45.0312 6360 Fs_Rec - ok 16:58:45.0403 6360 [ 79B4CDE2B69ED8BA4011859780A66A4D ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe 16:58:45.0410 6360 Futuremark SystemInfo Service - ok 16:58:45.0438 6360 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 16:58:45.0450 6360 fvevol - ok 16:58:45.0471 6360 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 16:58:45.0479 6360 gagp30kx - ok 16:58:45.0517 6360 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 16:58:45.0524 6360 GEARAspiWDM - ok 16:58:45.0606 6360 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 16:58:45.0635 6360 gpsvc - ok 16:58:45.0867 6360 GPU-Z - ok 16:58:45.0904 6360 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 16:58:45.0929 6360 hcw85cir - ok 16:58:45.0943 6360 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 16:58:45.0966 6360 HDAudBus - ok 16:58:45.0969 6360 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 16:58:45.0995 6360 HidBatt - ok 16:58:46.0007 6360 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 16:58:46.0036 6360 HidBth - ok 16:58:46.0076 6360 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 16:58:46.0087 6360 HidIr - ok 16:58:46.0110 6360 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 16:58:46.0135 6360 hidserv - ok 16:58:46.0183 6360 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 16:58:46.0192 6360 HidUsb - ok 16:58:46.0242 6360 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 16:58:46.0285 6360 hkmsvc - ok 16:58:46.0327 6360 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 16:58:46.0357 6360 HomeGroupListener - ok 16:58:46.0384 6360 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 16:58:46.0394 6360 HomeGroupProvider - ok 16:58:46.0427 6360 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys 16:58:46.0434 6360 HP8207_8307 - ok 16:58:46.0451 6360 HPHNDUSVC - ok 16:58:46.0739 6360 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 16:58:46.0769 6360 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning 16:58:46.0769 6360 hpqcxs08 - detected UnsignedFile.Multi.Generic (1) 16:58:46.0969 6360 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 16:58:46.0990 6360 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning 16:58:46.0990 6360 hpqddsvc - detected UnsignedFile.Multi.Generic (1) 16:58:47.0027 6360 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 16:58:47.0035 6360 HpSAMD - ok 16:58:47.0224 6360 [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL 16:58:47.0251 6360 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning 16:58:47.0251 6360 HPSLPSVC - detected UnsignedFile.Multi.Generic (1) 16:58:47.0318 6360 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 16:58:47.0366 6360 HTTP - ok 16:58:47.0370 6360 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 16:58:47.0377 6360 hwpolicy - ok 16:58:47.0421 6360 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 16:58:47.0431 6360 i8042prt - ok 16:58:47.0446 6360 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 16:58:47.0458 6360 iaStor - ok 16:58:47.0609 6360 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe 16:58:47.0616 6360 IAStorDataMgrSvc - ok 16:58:47.0706 6360 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 16:58:47.0718 6360 iaStorV - ok 16:58:47.0816 6360 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 16:58:47.0846 6360 IDriverT ( UnsignedFile.Multi.Generic ) - warning 16:58:47.0846 6360 IDriverT - detected UnsignedFile.Multi.Generic (1) 16:58:47.0937 6360 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 16:58:47.0952 6360 idsvc - ok 16:58:48.0601 6360 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 16:58:48.0705 6360 igfx - ok 16:58:48.0724 6360 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 16:58:48.0732 6360 iirsp - ok 16:58:48.0833 6360 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 16:58:48.0881 6360 IKEEXT - ok 16:58:48.0901 6360 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys 16:58:48.0917 6360 Impcd - ok 16:58:48.0964 6360 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 16:58:48.0973 6360 IntcDAud - ok 16:58:49.0044 6360 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 16:58:49.0051 6360 intelide - ok 16:58:49.0072 6360 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 16:58:49.0104 6360 intelppm - ok 16:58:49.0108 6360 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 16:58:49.0147 6360 IPBusEnum - ok 16:58:49.0150 6360 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 16:58:49.0174 6360 IpFilterDriver - ok 16:58:49.0264 6360 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 16:58:49.0292 6360 iphlpsvc - ok 16:58:49.0311 6360 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 16:58:49.0344 6360 IPMIDRV - ok 16:58:49.0347 6360 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 16:58:49.0382 6360 IPNAT - ok 16:58:49.0554 6360 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 16:58:49.0571 6360 iPod Service - ok 16:58:49.0644 6360 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 16:58:49.0657 6360 IRENUM - ok 16:58:49.0685 6360 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 16:58:49.0693 6360 isapnp - ok 16:58:49.0703 6360 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 16:58:49.0716 6360 iScsiPrt - ok 16:58:49.0737 6360 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 16:58:49.0749 6360 kbdclass - ok 16:58:49.0767 6360 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 16:58:49.0780 6360 kbdhid - ok 16:58:49.0783 6360 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 16:58:49.0798 6360 KeyIso - ok 16:58:49.0815 6360 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 16:58:49.0828 6360 KSecDD - ok 16:58:49.0834 6360 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 16:58:49.0847 6360 KSecPkg - ok 16:58:49.0851 6360 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 16:58:49.0878 6360 ksthunk - ok 16:58:49.0908 6360 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 16:58:49.0951 6360 KtmRm - ok 16:58:49.0997 6360 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 16:58:50.0008 6360 L1C - ok 16:58:50.0109 6360 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 16:58:50.0153 6360 LanmanServer - ok 16:58:50.0210 6360 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 16:58:50.0309 6360 LanmanWorkstation - ok 16:58:50.0353 6360 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 16:58:50.0377 6360 lltdio - ok 16:58:50.0426 6360 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 16:58:50.0468 6360 lltdsvc - ok 16:58:50.0513 6360 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 16:58:50.0538 6360 lmhosts - ok 16:58:50.0566 6360 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 16:58:50.0574 6360 LSI_FC - ok 16:58:50.0600 6360 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 16:58:50.0609 6360 LSI_SAS - ok 16:58:50.0626 6360 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 16:58:50.0634 6360 LSI_SAS2 - ok 16:58:50.0637 6360 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 16:58:50.0646 6360 LSI_SCSI - ok 16:58:50.0667 6360 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 16:58:50.0691 6360 luafv - ok 16:58:50.0825 6360 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 16:58:50.0833 6360 MBAMProtector - ok 16:58:50.0996 6360 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 16:58:51.0009 6360 MBAMService - ok 16:58:51.0063 6360 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 16:58:51.0073 6360 Mcx2Svc - ok 16:58:51.0086 6360 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 16:58:51.0093 6360 megasas - ok 16:58:51.0118 6360 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 16:58:51.0129 6360 MegaSR - ok 16:58:51.0164 6360 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 16:58:51.0171 6360 MEIx64 - ok 16:58:51.0291 6360 Microsoft SharePoint Workspace Audit Service - ok 16:58:51.0344 6360 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 16:58:51.0389 6360 MMCSS - ok 16:58:51.0405 6360 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 16:58:51.0453 6360 Modem - ok 16:58:51.0506 6360 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 16:58:51.0538 6360 monitor - ok 16:58:51.0608 6360 [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb C:\Windows\system32\Drivers\motoandroid.sys 16:58:51.0620 6360 motandroidusb - ok 16:58:51.0757 6360 [ C94A2EA3FDFA5D650884926B710B7DB1 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys 16:58:51.0796 6360 motccgp - ok 16:58:51.0817 6360 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys 16:58:51.0849 6360 motccgpfl - ok 16:58:51.0941 6360 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys 16:58:51.0970 6360 MotDev - ok 16:58:52.0058 6360 [ 060F0EF84F430802DF3788F3DCFD009C ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys 16:58:52.0069 6360 motmodem - ok 16:58:52.0170 6360 [ EBD05F60CAFC5BBA2602B8D7101082D3 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys 16:58:52.0202 6360 MotoSwitchService - ok 16:58:52.0247 6360 [ 87701078C3F720AC7A028E937994CC49 ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys 16:58:52.0278 6360 Motousbnet - ok 16:58:52.0470 6360 [ 4244E427CDA5F6485E74461B5B48A7B6 ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys 16:58:52.0502 6360 motusbdevice - ok 16:58:52.0549 6360 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 16:58:52.0557 6360 mouclass - ok 16:58:52.0579 6360 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 16:58:54.0263 6360 mouhid - ok 16:58:54.0304 6360 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 16:58:54.0312 6360 mountmgr - ok 16:58:54.0456 6360 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 16:58:54.0465 6360 MozillaMaintenance - ok 16:58:54.0501 6360 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 16:58:54.0511 6360 mpio - ok 16:58:54.0598 6360 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 16:58:54.0622 6360 mpsdrv - ok 16:58:54.0732 6360 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 16:58:54.0780 6360 MpsSvc - ok 16:58:54.0795 6360 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 16:58:54.0808 6360 MRxDAV - ok 16:58:54.0852 6360 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 16:58:54.0891 6360 mrxsmb - ok 16:58:54.0928 6360 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 16:58:54.0938 6360 mrxsmb10 - ok 16:58:54.0944 6360 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 16:58:54.0953 6360 mrxsmb20 - ok 16:58:54.0959 6360 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 16:58:54.0967 6360 msahci - ok 16:58:55.0025 6360 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 16:58:55.0034 6360 msdsm - ok 16:58:55.0089 6360 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 16:58:55.0144 6360 MSDTC - ok 16:58:55.0149 6360 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 16:58:55.0173 6360 Msfs - ok 16:58:55.0243 6360 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 16:58:55.0269 6360 mshidkmdf - ok 16:58:55.0274 6360 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 16:58:55.0282 6360 msisadrv - ok 16:58:55.0324 6360 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 16:58:55.0397 6360 MSiSCSI - ok 16:58:55.0399 6360 msiserver - ok 16:58:55.0456 6360 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 16:58:55.0526 6360 MSKSSRV - ok 16:58:55.0569 6360 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 16:58:55.0615 6360 MSPCLOCK - ok 16:58:55.0658 6360 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 16:58:55.0707 6360 MSPQM - ok 16:58:55.0761 6360 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 16:58:55.0773 6360 MsRPC - ok 16:58:55.0777 6360 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 16:58:55.0785 6360 mssmbios - ok 16:58:55.0805 6360 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 16:58:55.0828 6360 MSTEE - ok 16:58:55.0848 6360 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 16:58:55.0857 6360 MTConfig - ok 16:58:55.0861 6360 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 16:58:55.0870 6360 Mup - ok 16:58:55.0919 6360 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 16:58:55.0958 6360 napagent - ok 16:58:55.0997 6360 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 16:58:56.0011 6360 NativeWifiP - ok 16:58:56.0313 6360 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe 16:58:56.0326 6360 NAUpdate - ok 16:58:56.0401 6360 [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys 16:58:56.0408 6360 NBVol - ok 16:58:56.0411 6360 [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys 16:58:56.0418 6360 NBVolUp - ok 16:58:56.0533 6360 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys 16:58:56.0550 6360 NDIS - ok 16:58:56.0601 6360 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 16:58:56.0645 6360 NdisCap - ok 16:58:56.0660 6360 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 16:58:56.0684 6360 NdisTapi - ok 16:58:56.0770 6360 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 16:58:56.0820 6360 Ndisuio - ok 16:58:56.0837 6360 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 16:58:56.0890 6360 NdisWan - ok 16:58:56.0894 6360 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 16:58:56.0917 6360 NDProxy - ok 16:58:56.0954 6360 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 16:58:56.0973 6360 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 16:58:56.0973 6360 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 16:58:56.0997 6360 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 16:58:57.0022 6360 NetBIOS - ok 16:58:57.0031 6360 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 16:58:57.0055 6360 NetBT - ok 16:58:57.0075 6360 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 16:58:57.0084 6360 Netlogon - ok 16:58:57.0137 6360 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 16:58:57.0186 6360 Netman - ok 16:58:57.0253 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 16:58:57.0261 6360 NetMsmqActivator - ok 16:58:57.0270 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 16:58:57.0278 6360 NetPipeActivator - ok 16:58:57.0364 6360 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 16:58:57.0402 6360 netprofm - ok 16:58:57.0443 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 16:58:57.0451 6360 NetTcpActivator - ok 16:58:57.0454 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 16:58:57.0461 6360 NetTcpPortSharing - ok 16:58:57.0479 6360 [ 2263727032E9B19231A706046B8C82D3 ] NetworkX C:\Windows\system32\ckldrv.sys 16:58:57.0491 6360 NetworkX - ok 16:58:57.0534 6360 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 16:58:57.0543 6360 nfrd960 - ok 16:58:57.0643 6360 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll 16:58:57.0669 6360 NlaSvc - ok 16:58:57.0820 6360 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe 16:58:57.0826 6360 nlsX86cc - ok 16:58:57.0831 6360 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 16:58:57.0855 6360 Npfs - ok 16:58:57.0873 6360 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 16:58:57.0897 6360 nsi - ok 16:58:57.0900 6360 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 16:58:57.0944 6360 nsiproxy - ok 16:58:58.0110 6360 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 16:58:58.0134 6360 Ntfs - ok 16:58:58.0138 6360 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 16:58:58.0161 6360 Null - ok 16:58:58.0188 6360 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys 16:58:58.0196 6360 nusb3hub - ok 16:58:58.0236 6360 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys 16:58:58.0264 6360 nusb3xhc - ok 16:58:58.0344 6360 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys 16:58:58.0353 6360 NVHDA - ok 16:58:58.0428 6360 [ F8219CD9792008144A19691B17EA2993 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys 16:58:58.0438 6360 nvkflt - ok 16:58:59.0310 6360 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 16:58:59.0460 6360 nvlddmkm - ok 16:58:59.0486 6360 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys 16:58:59.0494 6360 nvpciflt - ok 16:58:59.0541 6360 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 16:58:59.0550 6360 nvraid - ok 16:58:59.0574 6360 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 16:58:59.0583 6360 nvstor - ok 16:58:59.0733 6360 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] NVSvc C:\Windows\system32\nvvsvc.exe 16:58:59.0750 6360 NVSvc - ok 16:58:59.0828 6360 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 16:58:59.0847 6360 nvUpdatusService - ok 16:58:59.0893 6360 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 16:58:59.0902 6360 nv_agp - ok 16:58:59.0922 6360 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 16:58:59.0944 6360 ohci1394 - ok 16:59:00.0056 6360 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 16:59:00.0064 6360 ose - ok 16:59:00.0437 6360 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 16:59:00.0492 6360 osppsvc - ok 16:59:00.0542 6360 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 16:59:00.0572 6360 p2pimsvc - ok 16:59:00.0628 6360 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 16:59:00.0641 6360 p2psvc - ok 16:59:00.0661 6360 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 16:59:00.0670 6360 Parport - ok 16:59:00.0676 6360 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 16:59:00.0684 6360 partmgr - ok 16:59:00.0706 6360 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 16:59:00.0742 6360 PcaSvc - ok 16:59:00.0943 6360 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 c:\program files\alienautopsy\pcdsrvc_x64.pkms 16:59:00.0951 6360 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - ok 16:59:00.0958 6360 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 16:59:00.0967 6360 pci - ok 16:59:00.0999 6360 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 16:59:01.0007 6360 pciide - ok 16:59:01.0014 6360 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 16:59:01.0024 6360 pcmcia - ok 16:59:01.0028 6360 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 16:59:01.0036 6360 pcw - ok 16:59:01.0068 6360 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 16:59:01.0108 6360 PEAUTH - ok 16:59:01.0323 6360 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 16:59:01.0372 6360 PeerDistSvc - ok 16:59:01.0419 6360 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 16:59:01.0455 6360 PerfHost - ok 16:59:01.0549 6360 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 16:59:01.0624 6360 pla - ok 16:59:01.0713 6360 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 16:59:01.0725 6360 PlugPlay - ok 16:59:01.0760 6360 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 16:59:01.0770 6360 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 16:59:01.0770 6360 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 16:59:01.0803 6360 PnkBstrA - ok 16:59:01.0816 6360 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 16:59:01.0825 6360 PNRPAutoReg - ok 16:59:01.0868 6360 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 16:59:01.0879 6360 PNRPsvc - ok 16:59:01.0928 6360 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 16:59:01.0970 6360 PolicyAgent - ok 16:59:02.0022 6360 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll 16:59:02.0033 6360 Power - ok 16:59:02.0083 6360 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 16:59:02.0129 6360 PptpMiniport - ok 16:59:02.0140 6360 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 16:59:02.0167 6360 Processor - ok 16:59:02.0184 6360 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll 16:59:02.0227 6360 ProfSvc - ok 16:59:02.0231 6360 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 16:59:02.0240 6360 ProtectedStorage - ok 16:59:02.0263 6360 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 16:59:02.0288 6360 Psched - ok 16:59:02.0306 6360 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 16:59:02.0314 6360 PxHlpa64 - ok 16:59:02.0448 6360 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 16:59:02.0471 6360 ql2300 - ok 16:59:02.0484 6360 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 16:59:02.0493 6360 ql40xx - ok 16:59:02.0551 6360 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 16:59:02.0565 6360 QWAVE - ok 16:59:02.0580 6360 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 16:59:02.0616 6360 QWAVEdrv - ok 16:59:02.0618 6360 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 16:59:02.0653 6360 RasAcd - ok 16:59:02.0674 6360 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 16:59:02.0698 6360 RasAgileVpn - ok 16:59:02.0719 6360 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 16:59:02.0768 6360 RasAuto - ok 16:59:02.0775 6360 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 16:59:02.0813 6360 Rasl2tp - ok 16:59:02.0868 6360 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 16:59:02.0909 6360 RasMan - ok 16:59:02.0914 6360 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 16:59:02.0963 6360 RasPppoe - ok 16:59:02.0979 6360 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 16:59:03.0023 6360 RasSstp - ok 16:59:03.0042 6360 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 16:59:03.0067 6360 rdbss - ok 16:59:03.0071 6360 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 16:59:03.0093 6360 rdpbus - ok 16:59:03.0109 6360 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 16:59:03.0134 6360 RDPCDD - ok 16:59:03.0174 6360 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 16:59:03.0184 6360 RDPDR - ok 16:59:03.0187 6360 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 16:59:03.0228 6360 RDPENCDD - ok 16:59:03.0247 6360 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 16:59:03.0271 6360 RDPREFMP - ok 16:59:03.0358 6360 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 16:59:03.0384 6360 RdpVideoMiniport - ok 16:59:03.0431 6360 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 16:59:03.0442 6360 RDPWD - ok 16:59:03.0484 6360 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 16:59:03.0494 6360 rdyboost - ok 16:59:03.0533 6360 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 16:59:03.0566 6360 RemoteAccess - ok 16:59:03.0592 6360 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 16:59:03.0617 6360 RemoteRegistry - ok 16:59:03.0643 6360 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 16:59:03.0682 6360 RFCOMM - ok 16:59:03.0904 6360 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe 16:59:03.0922 6360 RoxMediaDB12OEM - ok 16:59:03.0972 6360 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe 16:59:03.0981 6360 RoxWatch12 - ok 16:59:03.0986 6360 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 16:59:04.0010 6360 RpcEptMapper - ok 16:59:04.0029 6360 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 16:59:04.0038 6360 RpcLocator - ok 16:59:04.0060 6360 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 16:59:04.0087 6360 RpcSs - ok 16:59:04.0149 6360 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys 16:59:04.0159 6360 RSPCIESTOR - ok 16:59:04.0195 6360 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 16:59:04.0238 6360 rspndr - ok 16:59:04.0241 6360 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 16:59:04.0250 6360 SamSs - ok 16:59:04.0282 6360 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS 16:59:04.0289 6360 SASDIFSV - ok 16:59:04.0370 6360 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS 16:59:04.0377 6360 SASKUTIL - ok 16:59:04.0397 6360 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 16:59:04.0405 6360 sbp2port - ok 16:59:04.0428 6360 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 16:59:04.0454 6360 SCardSvr - ok 16:59:04.0458 6360 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 16:59:04.0504 6360 scfilter - ok 16:59:04.0581 6360 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 16:59:04.0630 6360 Schedule - ok 16:59:04.0645 6360 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 16:59:04.0668 6360 SCPolicySvc - ok 16:59:04.0691 6360 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 16:59:04.0723 6360 sdbus - ok 16:59:04.0763 6360 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 16:59:04.0795 6360 SDRSVC - ok 16:59:04.0846 6360 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 16:59:04.0870 6360 secdrv - ok 16:59:04.0887 6360 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 16:59:04.0910 6360 seclogon - ok 16:59:04.0955 6360 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 16:59:05.0006 6360 SENS - ok 16:59:05.0039 6360 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 16:59:05.0069 6360 SensrSvc - ok 16:59:05.0115 6360 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 16:59:05.0150 6360 Serenum - ok 16:59:05.0157 6360 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 16:59:05.0182 6360 Serial - ok 16:59:05.0236 6360 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 16:59:05.0245 6360 sermouse - ok 16:59:05.0265 6360 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 16:59:05.0308 6360 SessionEnv - ok 16:59:05.0337 6360 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 16:59:05.0348 6360 sffdisk - ok 16:59:05.0379 6360 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 16:59:05.0390 6360 sffp_mmc - ok 16:59:05.0393 6360 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 16:59:05.0418 6360 sffp_sd - ok 16:59:05.0470 6360 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 16:59:05.0502 6360 sfloppy - ok 16:59:05.0772 6360 [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService C:\Program Files (x86)\AlienRespawn\sftservice.EXE 16:59:05.0795 6360 SftService - ok 16:59:05.0852 6360 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 16:59:05.0897 6360 SharedAccess - ok 16:59:05.0941 6360 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 16:59:05.0980 6360 ShellHWDetection - ok 16:59:06.0024 6360 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 16:59:06.0033 6360 SiSRaid2 - ok 16:59:06.0058 6360 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 16:59:06.0070 6360 SiSRaid4 - ok 16:59:06.0562 6360 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 16:59:06.0602 6360 Skype C2C Service - ok 16:59:06.0682 6360 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 16:59:06.0693 6360 SkypeUpdate - ok 16:59:06.0738 6360 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 16:59:06.0765 6360 Smb - ok 16:59:06.0791 6360 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 16:59:06.0817 6360 SNMPTRAP - ok 16:59:06.0948 6360 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys 16:59:06.0960 6360 Soluto - ok 16:59:07.0106 6360 [ ED8397986BE35C11BFB321636D6991EE ] SolutoService C:\Program Files\Soluto\SolutoService.exe 16:59:07.0121 6360 SolutoService - ok 16:59:07.0133 6360 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 16:59:07.0144 6360 spldr - ok 16:59:07.0169 6360 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe 16:59:07.0200 6360 Spooler - ok 16:59:07.0445 6360 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 16:59:07.0497 6360 sppsvc - ok 16:59:07.0550 6360 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 16:59:07.0578 6360 sppuinotify - ok 16:59:07.0630 6360 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 16:59:07.0663 6360 srv - ok 16:59:07.0693 6360 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 16:59:07.0724 6360 srv2 - ok 16:59:07.0738 6360 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 16:59:07.0748 6360 srvnet - ok 16:59:07.0822 6360 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 16:59:07.0864 6360 SSDPSRV - ok 16:59:07.0869 6360 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 16:59:07.0893 6360 SstpSvc - ok 16:59:07.0970 6360 [ E82994866A370A480607637F28B82835 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe 16:59:07.0980 6360 STacSV - ok 16:59:08.0030 6360 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys 16:59:08.0037 6360 stdcfltn - ok 16:59:08.0092 6360 Steam Client Service - ok 16:59:08.0319 6360 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 16:59:08.0331 6360 Stereo Service - ok 16:59:08.0356 6360 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 16:59:08.0364 6360 stexstor - ok 16:59:08.0538 6360 [ 3AD0ED8B19CD76D2254DE5FB298E3C26 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 16:59:08.0568 6360 STHDA - ok 16:59:08.0713 6360 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 16:59:08.0769 6360 StillCam - ok 16:59:08.0873 6360 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 16:59:08.0889 6360 stisvc - ok 16:59:09.0084 6360 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe 16:59:09.0091 6360 stllssvr - ok 16:59:09.0120 6360 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 16:59:09.0128 6360 swenum - ok 16:59:09.0494 6360 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 16:59:09.0527 6360 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 16:59:09.0527 6360 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 16:59:09.0683 6360 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 16:59:10.0017 6360 swprv - ok 16:59:10.0019 6360 Synth3dVsc - ok 16:59:10.0133 6360 [ D8205430CFD64FDB7D691D3BB74FD18F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 16:59:10.0153 6360 SynTP - ok 16:59:10.0291 6360 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 16:59:10.0331 6360 SysMain - ok 16:59:10.0358 6360 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 16:59:10.0394 6360 TabletInputService - ok 16:59:10.0886 6360 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe 16:59:10.0957 6360 TabletServicePen - ok 16:59:11.0018 6360 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 16:59:11.0053 6360 TapiSrv - ok 16:59:11.0106 6360 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 16:59:11.0131 6360 TBS - ok 16:59:11.0329 6360 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 16:59:11.0355 6360 Tcpip - ok 16:59:11.0455 6360 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 16:59:11.0482 6360 TCPIP6 - ok 16:59:11.0496 6360 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 16:59:11.0533 6360 tcpipreg - ok 16:59:11.0555 6360 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 16:59:11.0564 6360 TDPIPE - ok 16:59:11.0612 6360 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 16:59:11.0643 6360 TDTCP - ok 16:59:11.0649 6360 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 16:59:11.0673 6360 tdx - ok 16:59:11.0704 6360 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 16:59:11.0712 6360 TermDD - ok 16:59:11.0810 6360 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 16:59:11.0838 6360 TermService - ok 16:59:11.0881 6360 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 16:59:11.0900 6360 Themes - ok 16:59:11.0951 6360 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 16:59:11.0975 6360 THREADORDER - ok 16:59:12.0093 6360 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe 16:59:12.0117 6360 TouchServicePen - ok 16:59:12.0172 6360 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 16:59:12.0197 6360 TrkWks - ok 16:59:12.0221 6360 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 16:59:12.0268 6360 TrustedInstaller - ok 16:59:12.0277 6360 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 16:59:12.0316 6360 tssecsrv - ok 16:59:12.0352 6360 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 16:59:12.0360 6360 TsUsbFlt - ok 16:59:12.0379 6360 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 16:59:12.0407 6360 TsUsbGD - ok 16:59:12.0409 6360 tsusbhub - ok 16:59:12.0448 6360 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 16:59:12.0472 6360 tunnel - ok 16:59:12.0490 6360 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 16:59:12.0497 6360 uagp35 - ok 16:59:12.0544 6360 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 16:59:12.0588 6360 udfs - ok 16:59:12.0613 6360 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 16:59:12.0624 6360 UI0Detect - ok 16:59:12.0645 6360 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 16:59:12.0653 6360 uliagpkx - ok 16:59:12.0675 6360 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 16:59:12.0707 6360 umbus - ok 16:59:12.0732 6360 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 16:59:12.0763 6360 UmPass - ok 16:59:12.0875 6360 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 16:59:12.0910 6360 UmRdpService - ok 16:59:12.0987 6360 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 16:59:13.0023 6360 upnphost - ok 16:59:13.0092 6360 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 16:59:13.0129 6360 USBAAPL64 - ok 16:59:13.0150 6360 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 16:59:13.0159 6360 usbccgp - ok 16:59:13.0203 6360 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 16:59:13.0214 6360 usbcir - ok 16:59:13.0218 6360 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 16:59:13.0227 6360 usbehci - ok 16:59:13.0280 6360 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 16:59:13.0311 6360 usbhub - ok 16:59:13.0329 6360 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 16:59:13.0359 6360 usbohci - ok 16:59:13.0375 6360 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 16:59:13.0411 6360 usbprint - ok 16:59:13.0521 6360 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 16:59:13.0532 6360 usbscan - ok 16:59:13.0548 6360 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 16:59:13.0577 6360 USBSTOR - ok 16:59:13.0592 6360 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 16:59:13.0601 6360 usbuhci - ok 16:59:13.0651 6360 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 16:59:13.0663 6360 usbvideo - ok 16:59:13.0687 6360 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 16:59:13.0711 6360 UxSms - ok 16:59:13.0714 6360 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 16:59:13.0723 6360 VaultSvc - ok 16:59:13.0741 6360 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 16:59:13.0748 6360 vdrvroot - ok 16:59:13.0776 6360 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 16:59:13.0805 6360 vds - ok 16:59:13.0819 6360 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 16:59:13.0829 6360 vga - ok 16:59:13.0832 6360 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 16:59:13.0872 6360 VgaSave - ok 16:59:13.0885 6360 VGPU - ok 16:59:13.0892 6360 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 16:59:13.0902 6360 vhdmp - ok 16:59:13.0946 6360 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 16:59:13.0954 6360 viaide - ok 16:59:13.0959 6360 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 16:59:13.0967 6360 volmgr - ok 16:59:13.0987 6360 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 16:59:13.0997 6360 volmgrx - ok 16:59:14.0057 6360 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 16:59:14.0067 6360 volsnap - ok 16:59:14.0088 6360 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 16:59:14.0097 6360 vsmraid - ok 16:59:14.0192 6360 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 16:59:14.0277 6360 VSS - ok 16:59:14.0418 6360 [ 52591834B0FA3293D35FD407FC230F7D ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe 16:59:14.0431 6360 vToolbarUpdater12.2.6 - ok 16:59:14.0456 6360 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 16:59:14.0467 6360 vwifibus - ok 16:59:14.0470 6360 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 16:59:14.0482 6360 vwififlt - ok 16:59:14.0499 6360 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 16:59:14.0511 6360 vwifimp - ok 16:59:14.0612 6360 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 16:59:14.0669 6360 W32Time - ok 16:59:14.0689 6360 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys 16:59:14.0696 6360 wacommousefilter - ok 16:59:14.0716 6360 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 16:59:14.0725 6360 WacomPen - ok 16:59:14.0819 6360 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys 16:59:14.0826 6360 wacomvhid - ok 16:59:14.0851 6360 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 16:59:14.0889 6360 WANARP - ok 16:59:14.0904 6360 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 16:59:14.0927 6360 Wanarpv6 - ok 16:59:15.0031 6360 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 16:59:15.0053 6360 WatAdminSvc - ok 16:59:15.0219 6360 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 16:59:15.0272 6360 wbengine - ok 16:59:15.0298 6360 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 16:59:15.0313 6360 WbioSrvc - ok 16:59:15.0362 6360 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 16:59:15.0395 6360 wcncsvc - ok 16:59:15.0399 6360 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 16:59:15.0408 6360 WcsPlugInService - ok 16:59:15.0437 6360 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 16:59:15.0445 6360 Wd - ok 16:59:15.0463 6360 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys 16:59:15.0472 6360 WDC_SAM - ok 16:59:15.0594 6360 [ E6050FE6B60FA91188B8ABDB5B1E339F ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe 16:59:15.0599 6360 WDDMService ( UnsignedFile.Multi.Generic ) - warning 16:59:15.0599 6360 WDDMService - detected UnsignedFile.Multi.Generic (1) 16:59:15.0658 6360 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 16:59:15.0672 6360 Wdf01000 - ok 16:59:15.0817 6360 [ B83D5071B32A70BEBDB3330BFA7ACB80 ] WDFME C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe 16:59:15.0834 6360 WDFME - ok 16:59:15.0872 6360 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 16:59:15.0903 6360 WdiServiceHost - ok 16:59:15.0905 6360 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 16:59:15.0918 6360 WdiSystemHost - ok 16:59:15.0983 6360 [ 517DE2C5568CBA6B2A24A557AC60C30B ] WDSC C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe 16:59:15.0994 6360 WDSC - ok 16:59:16.0018 6360 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 16:59:16.0033 6360 WebClient - ok 16:59:16.0055 6360 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 16:59:16.0108 6360 Wecsvc - ok 16:59:16.0120 6360 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 16:59:16.0144 6360 wercplsupport - ok 16:59:16.0184 6360 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 16:59:16.0224 6360 WerSvc - ok 16:59:16.0242 6360 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 16:59:16.0265 6360 WfpLwf - ok 16:59:16.0343 6360 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 16:59:16.0351 6360 WimFltr - ok 16:59:16.0369 6360 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 16:59:16.0376 6360 WIMMount - ok 16:59:16.0396 6360 WinDefend - ok 16:59:16.0401 6360 WinHttpAutoProxySvc - ok 16:59:16.0463 6360 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 16:59:16.0488 6360 Winmgmt - ok 16:59:16.0628 6360 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 16:59:16.0702 6360 WinRM - ok 16:59:16.0768 6360 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 16:59:16.0779 6360 WinUsb - ok 16:59:16.0905 6360 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 16:59:16.0923 6360 Wlansvc - ok 16:59:17.0159 6360 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 16:59:17.0188 6360 wlidsvc - ok 16:59:17.0211 6360 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 16:59:17.0220 6360 WmiAcpi - ok 16:59:17.0256 6360 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
  6. RogueKiller V8.0.2 [08/31/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : The Welch's [Admin rights] Mode : Scan -- Date : 09/07/2012 16:51:08 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 9 ¤¤¤ [HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND [HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND [HJ] HKLM\[...]\Wow6432Node\System : EnableLUA (0) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 license.superantispyware.com ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: ST95005620AS +++++ --- User --- [MBR] 7d77cd332a64ead9242413058cb8c97a [bSP] 6920931370a7c66de51052a0654346d6 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo 1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 9968 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20496384 | Size: 466928 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: ST9500420AS +++++ --- User --- [MBR] f1f693ed8aeeb19b3f41d8425e046b38 [bSP] c994a27445a1a509a14cfe5e6f683f89 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 476937 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive4: SanDisk Cruzer Glide USB Device +++++ --- User --- [MBR] 33a0f33fb7e7f518f64aedcb9dad35b0 [bSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown Partition table: 0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 32 | Size: 7633 Mo User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[1].txt >> RKreport[1].txt ALso I just got done running a AVG scan and they found the C:\windows\syswow64\sdbinnst.exe being a trojan horse dropper.Generic6.BHPB and removed it. I wonder if that was the offender
  7. RogueKiller V8.0.2 [08/31/2012] by Tigzy mail: tigzyRK<at>gmail<dot>com Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : The Welch's [Admin rights] Mode : Scan -- Date : 09/07/2012 15:37:16 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 9 ¤¤¤ [HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND [HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND [HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND [HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> FOUND [HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND [HJ] HKLM\[...]\Wow6432Node\System : EnableLUA (0) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 license.superantispyware.com ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: ST95005620AS +++++ --- User --- [MBR] 7d77cd332a64ead9242413058cb8c97a [bSP] 6920931370a7c66de51052a0654346d6 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo 1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 9968 Mo 2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20496384 | Size: 466928 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: ST9500420AS +++++ --- User --- [MBR] f1f693ed8aeeb19b3f41d8425e046b38 [bSP] c994a27445a1a509a14cfe5e6f683f89 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 476937 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive3: WD My Book 1140 USB Device +++++ --- User --- [MBR] 826c768e1d647d67f8545950a13d16a5 [bSP] 717dd44c70d9301a3f6f6f49130ee44d : Windows XP MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907696 Mo User = LL1 ... OK! Error reading LL2 MBR! +++++ PhysicalDrive4: SanDisk Cruzer Glide USB Device +++++ --- User --- [MBR] 33a0f33fb7e7f518f64aedcb9dad35b0 [bSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknown Partition table: 0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 32 | Size: 7633 Mo User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[1].txt >> RKreport[1].txt
  8. Hey I leave my PC running pretty much 24/7 and every now and then in the Morning I see the Malware popup saying it dected a Trojan in the SYSWOW64. Its usually a .DLL file, and I always hit the quarentine, but within a week it shows up again, but just another Randomfilename.DLL in the systemWOW64 folder. After the file name is says Trojan.BHO. I run the Malware after the quarentine, but it doesnt dectect anything else. I'm running Windows 7 64bit. ~Jeremy Here are the 2 text files I read in a sticky to run and post along with this info. . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_32 Run by The Welch's at 16:18:48 on 2012-09-07 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.24524.19931 [GMT -7:00] . AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Program Files\Webroot\WRSA.exe C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Program Files\IDT\WDM\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\System32\spoolsv.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\SYSTEM32\WISPTIS.EXE C:\Program Files\Webroot\WRSA.exe C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\Windows\system32\Dwm.exe C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\SysWOW64\nlssrv32.exe C:\Program Files\Soluto\SolutoService.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe C:\Program Files\Tablet\Pen\Pen_TabletUser.exe C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe C:\Program Files\IDT\WDM\sttray64.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\SearchIndexer.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\WUDFHost.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Users\The Welch's\Desktop\nvidiaInspector.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Core Temp\Core Temp.exe C:\Program Files (x86)\GPU-Z\GPU-Z.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Windows\system32\taskmgr.exe C:\Users\The Welch's\Desktop\Downloads\RogueKiller.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = uInternet Settings,ProxyOverride = *.local BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: Windows Live ID Sign-in Helper: {39af1227-1a37-7b76-03a8-79907179628d} - C:\Windows\SysWow64\dhhcpcsvc.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll {555d4d79-4bd2-4094-a395-cfc534424a05} uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe mRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe mRun: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ul mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WDDMST~1.LNK - C:\Program Files (x86)\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe uPolicies-explorer: NoDevMgrUpdate = 0 (0x0) uPolicies-explorer: NoDFSTab = 0 (0x0) uPolicies-explorer: NoEncryptOnMove = 0 (0x0) uPolicies-explorer: NoResolveTrack = 0 (0x0) uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0) mPolicies-explorer: NoDevMgrUpdate = 0 (0x0) mPolicies-explorer: NoDFSTab = 0 (0x0) mPolicies-explorer: NoEncryptOnMove = 0 (0x0) mPolicies-explorer: NoResolveTrack = 0 (0x0) mPolicies-explorer: NoStartMenuSubFolders = 0 (0x0) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) mPolicies-system: EnableLinkedConnections = 1 (0x1) dPolicies-explorer: DisableLocalMachineRun = 0 (0x0) dPolicies-explorer: DisableLocalMachineRunOnce = 0 (0x0) dPolicies-explorer: DisableCurrentUserRun = 0 (0x0) dPolicies-explorer: DisableCurrentUserRunOnce = 0 (0x0) dPolicies-explorer: NoFile = 0 (0x0) dPolicies-explorer: HideClock = 0 (0x0) dPolicies-explorer: NoDevMgrUpdate = 0 (0x0) dPolicies-explorer: NoDFSTab = 0 (0x0) dPolicies-explorer: NoEncryptOnMove = 0 (0x0) dPolicies-explorer: NoResolveTrack = 0 (0x0) dPolicies-explorer: NoStartMenuSubFolders = 0 (0x0) IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll LSP: %SYSTEMROOT%\system32\BfLLR.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00} : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\14E64627F69646455647865627 : DhcpNameServer = 192.168.2.254 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\2375942554133343 : DhcpNameServer = 192.168.1.254 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\458656027556C6368637 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\458656027556C636867237 : DhcpNameServer = 192.168.1.1 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\7457563747E456470457D636 : DhcpNameServer = 8.8.8.8 128.196.128.234 128.196.128.233 TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\A5F6D6269656 : DhcpNameServer = 75.75.75.75 75.75.76.76 TCP: Interfaces\{C31B2830-BFBE-4822-855D-929EF77D8ED8} : DhcpNameServer = 192.168.1.1 Filter: AutorunsDisabled\text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL BHO-X64: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO-X64: AcroIEHelperStub - No File BHO-X64: Windows Live ID Sign-in Helper: {39AF1227-1A37-7B76-03A8-79907179628D} - C:\Windows\SysWow64\dhhcpcsvc.dll BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL BHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll BHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll BHO-X64: SkypeIEPluginBHO - No File BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL BHO-X64: URLRedirectionBHO - No File BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll BHO-X64: SmartSelect - No File TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File mRun-x64: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe mRun-x64: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe mRun-x64: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ul mRun-x64: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\The Welch's\AppData\Roaming\Mozilla\Firefox\Profiles\h4graeg6.default-1343169283270\ FF - prefs.js: browser.startup.homepage - www.google.com FF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dll FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll . ============= SERVICES / DRIVERS =============== . R0 EMSC;COMPAL Embedded System Control;C:\Windows\System32\drivers\EMSC.sys [2009-6-26 13680] R0 NBVol;Nero Backup Volume Filter Driver;C:\Windows\system32\DRIVERS\NBVol.sys --> C:\Windows\system32\DRIVERS\NBVol.sys [?] R0 NBVolUp;Nero Backup Volume Upper Filter Driver;C:\Windows\system32\DRIVERS\NBVolUp.sys --> C:\Windows\system32\DRIVERS\NBVolUp.sys [?] R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?] R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?] R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdcfltn.sys --> C:\Windows\system32\DRIVERS\stdcfltn.sys [?] R0 WRkrn;WRkrn;C:\Windows\system32\drivers\WRkrn.sys --> C:\Windows\system32\drivers\WRkrn.sys [?] R1 BfLwf;Bigfoot Networks Bandwidth Control;C:\Windows\system32\DRIVERS\bflwfx64.sys --> C:\Windows\system32\DRIVERS\bflwfx64.sys [?] R1 nvkflt;nvkflt;C:\Windows\system32\DRIVERS\nvkflt.sys --> C:\Windows\system32\DRIVERS\nvkflt.sys [?] R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928] R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2011-8-11 140672] R2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2012-2-1 490496] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-2-1 13336] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-5-9 654408] R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\nlssrv32.exe [2012-6-23 66560] R2 SolutoService;Soluto PCGenome Core Service;C:\Program Files\Soluto\SolutoService.exe [2012-4-24 584224] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272] R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2012-3-27 6583160] R2 WDDMService;WDDMService;C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-3-9 288768] R2 WDFME;WD File Management Engine;C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-3-9 1066896] R2 WDSC;WD File Management Shadow Engine;C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-3-9 491920] R2 WRSVC;WRSVC;C:\Program Files\Webroot\WRSA.exe [2012-2-7 712104] R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Accelern.sys --> C:\Windows\system32\DRIVERS\Accelern.sys [?] R3 Ak27x64;Killer Wireless-N 1102 device driver;C:\Windows\system32\DRIVERS\Ak27x64.sys --> C:\Windows\system32\DRIVERS\Ak27x64.sys [?] R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?] R3 HP8207_8307;HP-HP8207_8307;C:\Windows\system32\DRIVERS\HP8207_8307.sys --> C:\Windows\system32\DRIVERS\HP8207_8307.sys [?] R3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 MEIx64;Intel® Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?] R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?] R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?] R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\system32\DRIVERS\RtsPStor.sys --> C:\Windows\system32\DRIVERS\RtsPStor.sys [?] R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?] R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?] S0 Soluto;Soluto;C:\Windows\system32\DRIVERS\Soluto.sys --> C:\Windows\system32\DRIVERS\Soluto.sys [?] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-4-11 1262400] S3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-22 250056] S3 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2011-3-22 15296] S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\system32\DRIVERS\motfilt.sys --> C:\Windows\system32\DRIVERS\motfilt.sys [?] S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\system32\drivers\btwampfl.sys --> C:\Windows\system32\drivers\btwampfl.sys [?] S3 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-8-29 130976] S3 Impcd;Impcd;C:\Windows\system32\drivers\Impcd.sys --> C:\Windows\system32\drivers\Impcd.sys [?] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880] S3 motandroidusb;Mot ADB Interface Driver;C:\Windows\system32\Drivers\motoandroid.sys --> C:\Windows\system32\Drivers\motoandroid.sys [?] S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\system32\DRIVERS\motccgp.sys --> C:\Windows\system32\DRIVERS\motccgp.sys [?] S3 motccgpfl;MotCcgpFlService;C:\Windows\system32\DRIVERS\motccgpfl.sys --> C:\Windows\system32\DRIVERS\motccgpfl.sys [?] S3 MotDev;Motorola Inc. USB Device;C:\Windows\system32\DRIVERS\motodrv.sys --> C:\Windows\system32\DRIVERS\motodrv.sys [?] S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\system32\DRIVERS\Motousbnet.sys --> C:\Windows\system32\DRIVERS\Motousbnet.sys [?] S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\system32\DRIVERS\motusbdevice.sys --> C:\Windows\system32\DRIVERS\motusbdevice.sys [?] S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-3 114144] S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184] S3 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0;PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\AlienAutopsy\pcdsrvc_x64.pkms [2012-3-22 25072] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?] S3 SftService;SoftThinks Agent Service;C:\Program Files (x86)\AlienRespawn\SftService.exe [2012-2-1 1692480] S3 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-8-13 3064000] S3 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-3 160944] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2012-3-27 528760] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?] S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?] S4 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-3-23 89600] S4 HPHNDUSVC;HP Home Network Diagnostic Support Service;C:\Windows\system32\svchost.exe -k HPHNDUService [2009-7-13 20992] S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400] S4 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656] S4 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632] . =============== File Associations =============== . inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1 JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %* txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1 . =============== Created Last 30 ================ . 2012-09-07 11:35:33 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\offreg.dll 2012-09-07 11:34:53 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\mpengine.dll 2012-09-07 01:56:27 -------- d-----w- C:\Users\The Welch's\AppData\Roaming\Actual Tools 2012-09-07 01:56:06 -------- d-----w- C:\Program Files (x86)\Actual Window Manager 2012-09-06 18:12:07 -------- d-----w- C:\Windows\SysWow64\1063 2012-09-05 19:24:30 282696 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2012-08-30 18:12:10 -------- d-----w- C:\Windows\SysWow64\1096 2012-08-30 00:06:06 -------- d-----w- C:\Users\The Welch's\AppData\Local\IsolatedStorage 2012-08-30 00:06:06 -------- d-----w- C:\Users\The Welch's\AppData\Local\Futuremark_Corporation 2012-08-30 00:02:35 -------- d-----w- C:\Program Files (x86)\Futuremark 2012-08-30 00:02:19 -------- d-----w- C:\Program Files\Futuremark 2012-08-29 22:44:08 -------- d-----w- C:\Program Files (x86)\PerformanceTest 2012-08-23 18:12:04 -------- d-----w- C:\Windows\SysWow64\3028 2012-08-21 02:53:04 -------- d-----w- C:\Program Files (x86)\GPU-Z 2012-08-16 18:12:04 -------- d-----w- C:\Windows\SysWow64\20612062 2012-08-15 14:30:17 -------- d-----w- C:\ProgramData\Blizzard Entertainment 2012-08-15 14:30:17 -------- d-----w- C:\Program Files (x86)\Diablo III 2012-08-15 14:30:17 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment 2012-08-13 00:44:28 -------- d-----w- C:\Users\The Welch's\AppData\Local\Western_Digital 2012-08-13 00:43:51 -------- d-----w- C:\Program Files\WDCSAM 2012-08-13 00:39:01 -------- d-----w- C:\ProgramData\Western Digital 2012-08-13 00:38:34 -------- d-----w- C:\Program Files (x86)\Western Digital 2012-08-13 00:38:31 -------- d-----w- C:\Program Files\Western Digital 2012-08-13 00:37:52 -------- d-----w- C:\Users\The Welch's\AppData\Local\Western Digital 2012-08-09 18:12:11 -------- d-----w- C:\Windows\SysWow64\1094 2012-08-09 02:47:21 -------- d-----w- C:\Users\The Welch's\AppData\Roaming\SUPERAntiSpyware.com 2012-08-09 02:47:18 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com 2012-08-09 02:47:18 -------- d-----w- C:\Program Files\SUPERAntiSpyware . ==================== Find3M ==================== . 2012-09-05 19:24:16 282696 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr 2012-09-05 19:24:10 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe 2012-08-29 14:24:55 149752 ----a-w- C:\Windows\SysWow64\WRusr.dll 2012-08-29 14:24:55 110160 ----a-w- C:\Windows\System32\drivers\WRkrn.sys 2012-08-29 14:24:55 102896 ----a-w- C:\Windows\System32\WRusr.dll 2012-08-14 20:11:10 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2012-08-14 20:11:10 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe 2012-08-14 20:11:03 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe 2012-07-03 20:46:44 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys . ============= FINISH: 16:19:39.20 =============== Then the other Text file is here . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Ultimate Boot Device: \Device\HarddiskVolume2 Install Date: 2/7/2012 11:18:53 PM System Uptime: 9/7/2012 3:26:21 AM (13 hours ago) . Motherboard: Alienware | | M17xR3 Processor: Intel® Core i7-2860QM CPU @ 2.50GHz | CPU1 | 2501/1333mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 456 GiB total, 227.543 GiB free. D: is FIXED (NTFS) - 466 GiB total, 288.705 GiB free. E: is FIXED (NTFS) - 2794 GiB total, 1995.181 GiB free. F: is CDROM () G: is Removable H: is FIXED (NTFS) - 1863 GiB total, 586.829 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318} Description: Photosmart Premium C309g-m Device ID: ROOT\MULTIFUNCTION\0000 Manufacturer: HP Name: Photosmart Premium C309g-m PNP Device ID: ROOT\MULTIFUNCTION\0000 Service: . ==== System Restore Points =================== . RP172: 8/28/2012 6:14:15 AM - Scheduled Checkpoint RP173: 8/29/2012 5:51:16 AM - Windows Update RP174: 8/29/2012 3:41:08 PM - Installed DirectX RP175: 8/29/2012 5:01:50 PM - Installed 3DMark 11 RP176: 9/4/2012 2:13:35 AM - Windows Update RP177: 9/7/2012 4:34:02 AM - Windows Update . ==== Installed Programs ====================== . 3DMark 11 3herosoft iPod to Computer Transfer 4Videosoft HD Converter 5.0.8 4Videosoft MKV Video Converter 4Videosoft Video Converter Platinum 5.0.18 ACID Pro 7.0 Adobe Acrobat X Pro - English, Français, Deutsch Adobe AIR Adobe Content Viewer Adobe Creative Suite 5.5 Master Collection Adobe Dreamweaver CS6 Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Help Manager Adobe Photoshop CS6 Adobe Photoshop Elements 8.0 Adobe Photoshop.com Inspiration Browser Adobe Premiere Pro CS6 Functional Content Adobe Reader 9.1.2 Adobe Story Adobe Widget Browser Advanced Audio FX Engine Age of Empires III AKVIS Sketch AlienRespawn AlienRespawn - Support Software Alienware M17x Manual Alienware On-Screen Display Apple Application Support Apple Software Update Astroburn Lite Avery Template Bamboo Dock Bamboo Tablets Tutorial Banctec Service Agreement Bigfoot Networks Killer Network Manager BitTorrent BufferChm C309g-m calibre Cheat Engine 6.2 Command Center Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition Destinations DeviceDiscovery Diablo III DirectX 9 Runtime DVDFab 8.1.5.9 (20/01/2012) Qt EA Download Manager EMSC FINAL FANTASY XIV Fraps FreeArc 0.666 Futuremark SystemInfo HDR Efex Pro High-Definition Video Playback HP Photo Creations HPPhotoGadget hpWLPGInstaller IDT Audio Integrated Webcam Live! Central Intel® Processor Graphics Intel® Rapid Storage Technology IP Camera Java Auto Updater Java 6 Update 32 LucisArt 3 ED/SE Malwarebytes Anti-Malware version 1.62.0.1300 Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (English) 2010 Microsoft Office Access Setup Metadata MUI (English) 2010 Microsoft Office Excel MUI (English) 2010 Microsoft Office Groove MUI (English) 2010 Microsoft Office InfoPath MUI (English) 2010 Microsoft Office OneNote MUI (English) 2010 Microsoft Office Outlook MUI (English) 2010 Microsoft Office PowerPoint MUI (English) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (Spanish) 2010 Microsoft Office Proofing (English) 2010 Microsoft Office Publisher MUI (English) 2010 Microsoft Office Shared MUI (English) 2010 Microsoft Office Shared Setup Metadata MUI (English) 2010 Microsoft Office Word MUI (English) 2010 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_ATL_x86 Microsoft_VC80_CRT_x86 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFCLOC_x86 Microsoft_VC90_ATL_x86 Microsoft_VC90_CRT_x86 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFCLOC_x86 Mozilla Firefox 15.0.1 (x86 en-US) Mozilla Maintenance Service MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Mystical Nero 11 Nero 11 Disc Menus Basic Nero 11 Effects Basic Nero 11 Image Samples Nero 11 Kwik Themes Basic Nero 11 PiP Effects Basic Nero Audio Pack 1 Nero BackItUp 11 Nero BackItUp 11 Help (CHM) Nero Burning ROM 11 Nero Burning ROM 11 Help (CHM) Nero ControlCenter 11 Nero ControlCenter 11 Help (CHM) Nero Core Components 11 Nero CoverDesigner 11 Nero CoverDesigner 11 Help (CHM) Nero Express 11 Nero Express 11 Help (CHM) Nero Kwik Media Nero Kwik Media Help (CHM) Nero Recode 11 Nero Recode 11 Help (CHM) Nero RescueAgent 11 Nero RescueAgent 11 Help (CHM) Nero SoundTrax 11 Nero SoundTrax 11 Help (CHM) Nero Update Nero Video 11 Nero Video 11 Help (CHM) Nero WaveEditor 11 Nero WaveEditor 11 Help (CHM) nero.prerequisites.msi NVIDIA PhysX NVIDIA Stereoscopic 3D Driver PDF Settings CS5 PDF Settings CS6 Perfect Photo Suite 5.5.1 Perfect Resize 7 PhotoShowExpress Portraiture Plug-in PS_AIO_06_C309g-m_SW_Min PxMergeModule QuickTime Rage RAR Password Unlocker 4.2.0.0 Rosetta Stone Version 3 Roxio Activation Module Roxio BackOnTrack Roxio Burn Roxio Creator Starter Roxio Express Labeler 3 RSDLite Scan Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition Security Update for Microsoft InfoPath 2010 (KB2553431) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553091) Security Update for Microsoft Office 2010 (KB2553096) Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition Security Update for Microsoft SharePoint Workspace 2010 (KB2566445) Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition Skype Click to Call Skype™ 5.10 Sonic CinePlayer Decoder Pack SpeechRedist Splashtop Streamer Status Steam TechPowerUp GPU-Z The Walking Dead © 3 version 1 Tom Clancy's Ghost Recon Future Soldier Toolbox Topaz Adjust 5 Topaz Adjust 5 (64-bit) Topaz B&W Effects Topaz B&W Effects (64-bit) Topaz Clean 3 Topaz Clean 3 (64-bit) Topaz DeJpeg 4 Topaz DeJpeg 4 (64-bit) Topaz DeNoise 5 Topaz DeNoise 5 (64-bit) Topaz Detail 2 Topaz Detail 2 (64-bit) Topaz Fusion Express 2 Topaz Fusion Express 2 (64-bit) Topaz InFocus Topaz InFocus (64-bit) Topaz Lens Effects Topaz Lens Effects (64-bit) Topaz ReMask 3 Topaz ReMask 3 (64-bit) Topaz Simplify 3 Topaz Simplify 3 (64-bit) Topaz Star Effects Topaz Star Effects (64-bit) TrayApp Tribler Ubisoft Game Launcher Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft Office 2010 (KB2494150) Update for Microsoft Office 2010 (KB2553065) Update for Microsoft Office 2010 (KB2553092) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition Update for Microsoft Office 2010 (KB2566458) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition VLC media player 2.0.0 WebReg Webroot SecureAnywhere WebTablet FB Plugin WebTablet IE Plugin WebTablet Netscape Plugin welcome . ==== Event Viewer Messages From Past Week ======== . 9/7/2012 3:33:36 PM, Error: Service Control Manager [7034] - The PnkBstrA service terminated unexpectedly. It has done this 1 time(s). 9/7/2012 3:29:15 AM, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 9/7/2012 3:29:15 AM, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure. 9/7/2012 3:27:13 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Soluto 9/6/2012 6:54:05 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WDFME service. . ==== End Of File ===========================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.