ai3643 Posted September 7, 2012 ID:594601 Share Posted September 7, 2012 Hey I leave my PC running pretty much 24/7 and every now and then in the Morning I see the Malware popup saying it dected a Trojan in the SYSWOW64. Its usually a .DLL file, and I always hit the quarentine, but within a week it shows up again, but just another Randomfilename.DLL in the systemWOW64 folder. After the file name is says Trojan.BHO. I run the Malware after the quarentine, but it doesnt dectect anything else.I'm running Windows 7 64bit.~JeremyHere are the 2 text files I read in a sticky to run and post along with this info..DDS (Ver_2011-08-26.01) - NTFSAMD64Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_32Run by The Welch's at 16:18:48 on 2012-09-07Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.24524.19931 [GMT -7:00].AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC}.============== Running Processes ===============.C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Program Files\Webroot\WRSA.exeC:\Windows\system32\nvvsvc.exeC:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeC:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exeC:\Windows\system32\svchost.exe -k RPCSSC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Program Files\IDT\WDM\STacSV64.exeC:\Windows\system32\svchost.exe -k LocalServiceC:\Program Files\NVIDIA Corporation\Display\nvxdsync.exeC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k NetworkServiceC:\Windows\SYSTEM32\WISPTIS.EXEC:\Windows\System32\spoolsv.exeC:\Windows\system32\taskhost.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\SYSTEM32\WISPTIS.EXEC:\Program Files\Webroot\WRSA.exeC:\Program Files\Common Files\microsoft shared\ink\TabTip.exeC:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exeC:\Windows\system32\Dwm.exeC:\Program Files\SUPERAntiSpyware\SASCORE64.EXEC:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exeC:\Windows\Explorer.EXEC:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonationC:\Windows\SysWOW64\nlssrv32.exeC:\Program Files\Soluto\SolutoService.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\system32\svchost.exe -k LocalSystemNetworkRestrictedC:\Program Files\Tablet\Pen\Pen_Tablet.exeC:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exeC:\Program Files\Tablet\Pen\Pen_TabletUser.exeC:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exeC:\Program Files\IDT\WDM\sttray64.exeC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeC:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exeC:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files\Tablet\Pen\Pen_Tablet.exeC:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exeC:\Windows\System32\svchost.exe -k secsvcsC:\Windows\system32\SearchIndexer.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Windows\system32\WUDFHost.exeC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exeC:\Users\The Welch's\Desktop\nvidiaInspector.exeC:\Windows\system32\wuauclt.exeC:\Program Files\Core Temp\Core Temp.exeC:\Program Files (x86)\GPU-Z\GPU-Z.exeC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exeC:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exeC:\Windows\system32\taskmgr.exeC:\Users\The Welch's\Desktop\Downloads\RogueKiller.exeC:\Windows\system32\SearchProtocolHost.exeC:\Windows\system32\SearchFilterHost.exeC:\Windows\SysWOW64\cmd.exeC:\Windows\system32\conhost.exeC:\Windows\SysWOW64\cscript.exeC:\Windows\system32\wbem\wmiprvse.exe.============== Pseudo HJT Report ===============.uStart Page =uInternet Settings,ProxyOverride = *.localBHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dllBHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO: Windows Live ID Sign-in Helper: {39af1227-1a37-7b76-03a8-79907179628d} - C:\Windows\SysWow64\dhhcpcsvc.dllBHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLLBHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dllBHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllBHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllBHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLLBHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dllBHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllTB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll{555d4d79-4bd2-4094-a395-cfc534424a05}uRun: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exemRun: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exemRun: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exemRun: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ulmRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbyloginmRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttrayStartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\WDDMST~1.LNK - C:\Program Files (x86)\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exeuPolicies-explorer: NoDevMgrUpdate = 0 (0x0)uPolicies-explorer: NoDFSTab = 0 (0x0)uPolicies-explorer: NoEncryptOnMove = 0 (0x0)uPolicies-explorer: NoResolveTrack = 0 (0x0)uPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)mPolicies-explorer: NoDevMgrUpdate = 0 (0x0)mPolicies-explorer: NoDFSTab = 0 (0x0)mPolicies-explorer: NoEncryptOnMove = 0 (0x0)mPolicies-explorer: NoResolveTrack = 0 (0x0)mPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)mPolicies-system: EnableLUA = 0 (0x0)mPolicies-system: EnableUIADesktopToggle = 0 (0x0)mPolicies-system: PromptOnSecureDesktop = 0 (0x0)mPolicies-system: EnableLinkedConnections = 1 (0x1)dPolicies-explorer: DisableLocalMachineRun = 0 (0x0)dPolicies-explorer: DisableLocalMachineRunOnce = 0 (0x0)dPolicies-explorer: DisableCurrentUserRun = 0 (0x0)dPolicies-explorer: DisableCurrentUserRunOnce = 0 (0x0)dPolicies-explorer: NoFile = 0 (0x0)dPolicies-explorer: HideClock = 0 (0x0)dPolicies-explorer: NoDevMgrUpdate = 0 (0x0)dPolicies-explorer: NoDFSTab = 0 (0x0)dPolicies-explorer: NoEncryptOnMove = 0 (0x0)dPolicies-explorer: NoResolveTrack = 0 (0x0)dPolicies-explorer: NoStartMenuSubFolders = 0 (0x0)IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dllIE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dllIE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllLSP: %SYSTEMROOT%\system32\BfLLR.dllDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cabDPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cabTCP: DhcpNameServer = 192.168.1.1TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00} : DhcpNameServer = 192.168.1.1TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\14E64627F69646455647865627 : DhcpNameServer = 192.168.2.254TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\2375942554133343 : DhcpNameServer = 192.168.1.254TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\458656027556C6368637 : DhcpNameServer = 192.168.1.1TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\458656027556C636867237 : DhcpNameServer = 192.168.1.1TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\7457563747E456470457D636 : DhcpNameServer = 8.8.8.8 128.196.128.234 128.196.128.233TCP: Interfaces\{9CDB83BD-BA21-4687-B96A-DC4F84F3CC00}\A5F6D6269656 : DhcpNameServer = 75.75.75.75 75.75.76.76TCP: Interfaces\{C31B2830-BFBE-4822-855D-929EF77D8ED8} : DhcpNameServer = 192.168.1.1Filter: AutorunsDisabled\text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLLFilter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLLHandler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllHandler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLLSEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLLBHO-X64: ContributeBHO Class: {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dllBHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllBHO-X64: AcroIEHelperStub - No FileBHO-X64: Windows Live ID Sign-in Helper: {39AF1227-1A37-7B76-03A8-79907179628D} - C:\Windows\SysWow64\dhhcpcsvc.dllBHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLLBHO-X64: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dllBHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllBHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllBHO-X64: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dllBHO-X64: SkypeIEPluginBHO - No FileBHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLLBHO-X64: URLRedirectionBHO - No FileBHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dllBHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllBHO-X64: SmartSelect - No FileTB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllEB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No FilemRun-x64: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exemRun-x64: [AlienwareOn-ScreenDisplay] C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exemRun-x64: [WRSVC] "C:\Program Files\Webroot\WRSA.exe" -ulmRun-x64: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbyloginmRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttraySEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL.================= FIREFOX ===================.FF - ProfilePath - C:\Users\The Welch's\AppData\Roaming\Mozilla\Firefox\Profiles\h4graeg6.default-1343169283270\FF - prefs.js: browser.startup.homepage - www.google.comFF - plugin: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\npBrowserPlugin.dllFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLLFF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLLFF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dllFF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dllFF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dllFF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dllFF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dllFF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dllFF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dllFF - plugin: C:\Windows\SysWOW64\npdeployJava1.dllFF - plugin: C:\Windows\SysWOW64\npmproxy.dll.============= SERVICES / DRIVERS ===============.R0 EMSC;COMPAL Embedded System Control;C:\Windows\System32\drivers\EMSC.sys [2009-6-26 13680]R0 NBVol;Nero Backup Volume Filter Driver;C:\Windows\system32\DRIVERS\NBVol.sys --> C:\Windows\system32\DRIVERS\NBVol.sys [?]R0 NBVolUp;Nero Backup Volume Upper Filter Driver;C:\Windows\system32\DRIVERS\NBVolUp.sys --> C:\Windows\system32\DRIVERS\NBVolUp.sys [?]R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\system32\DRIVERS\stdcfltn.sys --> C:\Windows\system32\DRIVERS\stdcfltn.sys [?]R0 WRkrn;WRkrn;C:\Windows\system32\drivers\WRkrn.sys --> C:\Windows\system32\drivers\WRkrn.sys [?]R1 BfLwf;Bigfoot Networks Bandwidth Control;C:\Windows\system32\DRIVERS\bflwfx64.sys --> C:\Windows\system32\DRIVERS\bflwfx64.sys [?]R1 nvkflt;nvkflt;C:\Windows\system32\DRIVERS\nvkflt.sys --> C:\Windows\system32\DRIVERS\nvkflt.sys [?]R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2011-8-11 140672]R2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2012-2-1 490496]R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-2-1 13336]R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-5-9 654408]R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\nlssrv32.exe [2012-6-23 66560]R2 SolutoService;Soluto PCGenome Core Service;C:\Program Files\Soluto\SolutoService.exe [2012-4-24 584224]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-5-15 382272]R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2012-3-27 6583160]R2 WDDMService;WDDMService;C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-3-9 288768]R2 WDFME;WD File Management Engine;C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-3-9 1066896]R2 WDSC;WD File Management Shadow Engine;C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-3-9 491920]R2 WRSVC;WRSVC;C:\Program Files\Webroot\WRSA.exe [2012-2-7 712104]R3 Acceler;Accelerometer Service;C:\Windows\system32\DRIVERS\Accelern.sys --> C:\Windows\system32\DRIVERS\Accelern.sys [?]R3 Ak27x64;Killer Wireless-N 1102 device driver;C:\Windows\system32\DRIVERS\Ak27x64.sys --> C:\Windows\system32\DRIVERS\Ak27x64.sys [?]R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\system32\DRIVERS\CtClsFlt.sys --> C:\Windows\system32\DRIVERS\CtClsFlt.sys [?]R3 HP8207_8307;HP-HP8207_8307;C:\Windows\system32\DRIVERS\HP8207_8307.sys --> C:\Windows\system32\DRIVERS\HP8207_8307.sys [?]R3 IntcDAud;Intel® Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]R3 MEIx64;Intel® Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\system32\DRIVERS\RtsPStor.sys --> C:\Windows\system32\DRIVERS\RtsPStor.sys [?]R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]R3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]S0 Soluto;Soluto;C:\Windows\system32\DRIVERS\Soluto.sys --> C:\Windows\system32\DRIVERS\Soluto.sys [?]S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]S2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-4-11 1262400]S3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-9 169312]S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-5-22 250056]S3 AlienFusionService;Alienware Fusion Service;C:\Program Files\Alienware\Command Center\AlienFusionService.exe [2011-3-22 15296]S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\system32\DRIVERS\motfilt.sys --> C:\Windows\system32\DRIVERS\motfilt.sys [?]S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\system32\drivers\btwampfl.sys --> C:\Windows\system32\drivers\btwampfl.sys [?]S3 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2012-8-29 130976]S3 Impcd;Impcd;C:\Windows\system32\drivers\Impcd.sys --> C:\Windows\system32\drivers\Impcd.sys [?]S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]S3 motandroidusb;Mot ADB Interface Driver;C:\Windows\system32\Drivers\motoandroid.sys --> C:\Windows\system32\Drivers\motoandroid.sys [?]S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\system32\DRIVERS\motccgp.sys --> C:\Windows\system32\DRIVERS\motccgp.sys [?]S3 motccgpfl;MotCcgpFlService;C:\Windows\system32\DRIVERS\motccgpfl.sys --> C:\Windows\system32\DRIVERS\motccgpfl.sys [?]S3 MotDev;Motorola Inc. USB Device;C:\Windows\system32\DRIVERS\motodrv.sys --> C:\Windows\system32\DRIVERS\motodrv.sys [?]S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\system32\DRIVERS\Motousbnet.sys --> C:\Windows\system32\DRIVERS\Motousbnet.sys [?]S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\system32\DRIVERS\motusbdevice.sys --> C:\Windows\system32\DRIVERS\motusbdevice.sys [?]S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-5-3 114144]S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]S3 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0;PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\AlienAutopsy\pcdsrvc_x64.pkms [2012-3-22 25072]S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]S3 SftService;SoftThinks Agent Service;C:\Program Files (x86)\AlienRespawn\SftService.exe [2012-2-1 1692480]S3 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-8-13 3064000]S3 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-3 160944]S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]S3 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2012-3-27 528760]S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]S4 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2012-3-23 89600]S4 HPHNDUSVC;HP Home Network Diagnostic Support Service;C:\Windows\system32\svchost.exe -k HPHNDUService [2009-7-13 20992]S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]S4 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]S4 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632].=============== File Associations ===============.inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %*txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1.=============== Created Last 30 ================.2012-09-07 11:35:33 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\offreg.dll2012-09-07 11:34:53 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\mpengine.dll2012-09-07 01:56:27 -------- d-----w- C:\Users\The Welch's\AppData\Roaming\Actual Tools2012-09-07 01:56:06 -------- d-----w- C:\Program Files (x86)\Actual Window Manager2012-09-06 18:12:07 -------- d-----w- C:\Windows\SysWow64\10632012-09-05 19:24:30 282696 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe2012-08-30 18:12:10 -------- d-----w- C:\Windows\SysWow64\10962012-08-30 00:06:06 -------- d-----w- C:\Users\The Welch's\AppData\Local\IsolatedStorage2012-08-30 00:06:06 -------- d-----w- C:\Users\The Welch's\AppData\Local\Futuremark_Corporation2012-08-30 00:02:35 -------- d-----w- C:\Program Files (x86)\Futuremark2012-08-30 00:02:19 -------- d-----w- C:\Program Files\Futuremark2012-08-29 22:44:08 -------- d-----w- C:\Program Files (x86)\PerformanceTest2012-08-23 18:12:04 -------- d-----w- C:\Windows\SysWow64\30282012-08-21 02:53:04 -------- d-----w- C:\Program Files (x86)\GPU-Z2012-08-16 18:12:04 -------- d-----w- C:\Windows\SysWow64\206120622012-08-15 14:30:17 -------- d-----w- C:\ProgramData\Blizzard Entertainment2012-08-15 14:30:17 -------- d-----w- C:\Program Files (x86)\Diablo III2012-08-15 14:30:17 -------- d-----w- C:\Program Files (x86)\Common Files\Blizzard Entertainment2012-08-13 00:44:28 -------- d-----w- C:\Users\The Welch's\AppData\Local\Western_Digital2012-08-13 00:43:51 -------- d-----w- C:\Program Files\WDCSAM2012-08-13 00:39:01 -------- d-----w- C:\ProgramData\Western Digital2012-08-13 00:38:34 -------- d-----w- C:\Program Files (x86)\Western Digital2012-08-13 00:38:31 -------- d-----w- C:\Program Files\Western Digital2012-08-13 00:37:52 -------- d-----w- C:\Users\The Welch's\AppData\Local\Western Digital2012-08-09 18:12:11 -------- d-----w- C:\Windows\SysWow64\10942012-08-09 02:47:21 -------- d-----w- C:\Users\The Welch's\AppData\Roaming\SUPERAntiSpyware.com2012-08-09 02:47:18 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com2012-08-09 02:47:18 -------- d-----w- C:\Program Files\SUPERAntiSpyware.==================== Find3M ====================.2012-09-05 19:24:16 282696 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr2012-09-05 19:24:10 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe2012-08-29 14:24:55 149752 ----a-w- C:\Windows\SysWow64\WRusr.dll2012-08-29 14:24:55 110160 ----a-w- C:\Windows\System32\drivers\WRkrn.sys2012-08-29 14:24:55 102896 ----a-w- C:\Windows\System32\WRusr.dll2012-08-14 20:11:10 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl2012-08-14 20:11:10 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe2012-08-14 20:11:03 9826504 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe2012-07-03 20:46:44 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys2012-06-12 03:08:36 3148800 ----a-w- C:\Windows\System32\win32k.sys.============= FINISH: 16:19:39.20 ===============Then the other Text file is here.UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH IT.DDS (Ver_2011-08-26.01).Microsoft Windows 7 UltimateBoot Device: \Device\HarddiskVolume2Install Date: 2/7/2012 11:18:53 PMSystem Uptime: 9/7/2012 3:26:21 AM (13 hours ago).Motherboard: Alienware | | M17xR3Processor: Intel® Core i7-2860QM CPU @ 2.50GHz | CPU1 | 2501/1333mhz.==== Disk Partitions =========================.C: is FIXED (NTFS) - 456 GiB total, 227.543 GiB free.D: is FIXED (NTFS) - 466 GiB total, 288.705 GiB free.E: is FIXED (NTFS) - 2794 GiB total, 1995.181 GiB free.F: is CDROM ()G: is RemovableH: is FIXED (NTFS) - 1863 GiB total, 586.829 GiB free..==== Disabled Device Manager Items =============.Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318}Description: Photosmart Premium C309g-mDevice ID: ROOT\MULTIFUNCTION\0000Manufacturer: HPName: Photosmart Premium C309g-mPNP Device ID: ROOT\MULTIFUNCTION\0000Service:.==== System Restore Points ===================.RP172: 8/28/2012 6:14:15 AM - Scheduled CheckpointRP173: 8/29/2012 5:51:16 AM - Windows UpdateRP174: 8/29/2012 3:41:08 PM - Installed DirectXRP175: 8/29/2012 5:01:50 PM - Installed 3DMark 11RP176: 9/4/2012 2:13:35 AM - Windows UpdateRP177: 9/7/2012 4:34:02 AM - Windows Update.==== Installed Programs ======================.3DMark 113herosoft iPod to Computer Transfer4Videosoft HD Converter 5.0.84Videosoft MKV Video Converter4Videosoft Video Converter Platinum 5.0.18ACID Pro 7.0Adobe Acrobat X Pro - English, Français, DeutschAdobe AIRAdobe Content ViewerAdobe Creative Suite 5.5 Master CollectionAdobe Dreamweaver CS6Adobe Flash Player 11 ActiveXAdobe Flash Player 11 PluginAdobe Help ManagerAdobe Photoshop CS6Adobe Photoshop Elements 8.0Adobe Photoshop.com Inspiration BrowserAdobe Premiere Pro CS6 Functional ContentAdobe Reader 9.1.2Adobe StoryAdobe Widget BrowserAdvanced Audio FX EngineAge of Empires IIIAKVIS SketchAlienRespawnAlienRespawn - Support SoftwareAlienware M17x ManualAlienware On-Screen DisplayApple Application SupportApple Software UpdateAstroburn LiteAvery TemplateBamboo DockBamboo Tablets TutorialBanctec Service AgreementBigfoot Networks Killer Network ManagerBitTorrentBufferChmC309g-mcalibreCheat Engine 6.2Command CenterDefinition Update for Microsoft Office 2010 (KB982726) 32-Bit EditionDestinationsDeviceDiscoveryDiablo IIIDirectX 9 RuntimeDVDFab 8.1.5.9 (20/01/2012) QtEA Download ManagerEMSCFINAL FANTASY XIVFrapsFreeArc 0.666Futuremark SystemInfoHDR Efex ProHigh-Definition Video PlaybackHP Photo CreationsHPPhotoGadgethpWLPGInstallerIDT AudioIntegrated Webcam Live! CentralIntel® Processor GraphicsIntel® Rapid Storage TechnologyIP CameraJava Auto UpdaterJava 6 Update 32LucisArt 3 ED/SEMalwarebytes Anti-Malware version 1.62.0.1300Microsoft Games for Windows - LIVE RedistributableMicrosoft Games for Windows MarketplaceMicrosoft Office 2010 Service Pack 1 (SP1)Microsoft Office Access MUI (English) 2010Microsoft Office Access Setup Metadata MUI (English) 2010Microsoft Office Excel MUI (English) 2010Microsoft Office Groove MUI (English) 2010Microsoft Office InfoPath MUI (English) 2010Microsoft Office OneNote MUI (English) 2010Microsoft Office Outlook MUI (English) 2010Microsoft Office PowerPoint MUI (English) 2010Microsoft Office Professional Plus 2010Microsoft Office Proof (English) 2010Microsoft Office Proof (French) 2010Microsoft Office Proof (Spanish) 2010Microsoft Office Proofing (English) 2010Microsoft Office Publisher MUI (English) 2010Microsoft Office Shared MUI (English) 2010Microsoft Office Shared Setup Metadata MUI (English) 2010Microsoft Office Word MUI (English) 2010Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219Microsoft_VC80_ATL_x86Microsoft_VC80_CRT_x86Microsoft_VC80_MFC_x86Microsoft_VC80_MFCLOC_x86Microsoft_VC90_ATL_x86Microsoft_VC90_CRT_x86Microsoft_VC90_MFC_x86Microsoft_VC90_MFCLOC_x86Mozilla Firefox 15.0.1 (x86 en-US)Mozilla Maintenance ServiceMSXML 4.0 SP2 (KB954430)MSXML 4.0 SP2 (KB973688)MysticalNero 11Nero 11 Disc Menus BasicNero 11 Effects BasicNero 11 Image SamplesNero 11 Kwik Themes BasicNero 11 PiP Effects BasicNero Audio Pack 1Nero BackItUp 11Nero BackItUp 11 Help (CHM)Nero Burning ROM 11Nero Burning ROM 11 Help (CHM)Nero ControlCenter 11Nero ControlCenter 11 Help (CHM)Nero Core Components 11Nero CoverDesigner 11Nero CoverDesigner 11 Help (CHM)Nero Express 11Nero Express 11 Help (CHM)Nero Kwik MediaNero Kwik Media Help (CHM)Nero Recode 11Nero Recode 11 Help (CHM)Nero RescueAgent 11Nero RescueAgent 11 Help (CHM)Nero SoundTrax 11Nero SoundTrax 11 Help (CHM)Nero UpdateNero Video 11Nero Video 11 Help (CHM)Nero WaveEditor 11Nero WaveEditor 11 Help (CHM)nero.prerequisites.msiNVIDIA PhysXNVIDIA Stereoscopic 3D DriverPDF Settings CS5PDF Settings CS6Perfect Photo Suite 5.5.1Perfect Resize 7PhotoShowExpressPortraiture Plug-inPS_AIO_06_C309g-m_SW_MinPxMergeModuleQuickTimeRageRAR Password Unlocker 4.2.0.0Rosetta Stone Version 3Roxio Activation ModuleRoxio BackOnTrackRoxio BurnRoxio Creator StarterRoxio Express Labeler 3RSDLiteScanSecurity Update for Microsoft .NET Framework 4 Client Profile (KB2518870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)Security Update for Microsoft .NET Framework 4 Extended (KB2487367)Security Update for Microsoft .NET Framework 4 Extended (KB2656351)Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit EditionSecurity Update for Microsoft InfoPath 2010 (KB2553431) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553091)Security Update for Microsoft Office 2010 (KB2553096)Security Update for Microsoft Office 2010 (KB2553371) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2553447) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2589320) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598039) 32-Bit EditionSecurity Update for Microsoft Office 2010 (KB2598243) 32-Bit EditionSecurity Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit EditionSecurity Update for Microsoft SharePoint Workspace 2010 (KB2566445)Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit EditionSkype Click to CallSkype™ 5.10Sonic CinePlayer Decoder PackSpeechRedistSplashtop StreamerStatusSteamTechPowerUp GPU-ZThe Walking Dead © 3 version 1Tom Clancy's Ghost Recon Future SoldierToolboxTopaz Adjust 5Topaz Adjust 5 (64-bit)Topaz B&W EffectsTopaz B&W Effects (64-bit)Topaz Clean 3Topaz Clean 3 (64-bit)Topaz DeJpeg 4Topaz DeJpeg 4 (64-bit)Topaz DeNoise 5Topaz DeNoise 5 (64-bit)Topaz Detail 2Topaz Detail 2 (64-bit)Topaz Fusion Express 2Topaz Fusion Express 2 (64-bit)Topaz InFocusTopaz InFocus (64-bit)Topaz Lens EffectsTopaz Lens Effects (64-bit)Topaz ReMask 3Topaz ReMask 3 (64-bit)Topaz Simplify 3Topaz Simplify 3 (64-bit)Topaz Star EffectsTopaz Star Effects (64-bit)TrayAppTriblerUbisoft Game LauncherUpdate for Microsoft .NET Framework 4 Client Profile (KB2468871)Update for Microsoft .NET Framework 4 Client Profile (KB2533523)Update for Microsoft .NET Framework 4 Extended (KB2468871)Update for Microsoft .NET Framework 4 Extended (KB2533523)Update for Microsoft Office 2010 (KB2494150)Update for Microsoft Office 2010 (KB2553065)Update for Microsoft Office 2010 (KB2553092)Update for Microsoft Office 2010 (KB2553181) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553267) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553270) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2553310) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2566458)Update for Microsoft Office 2010 (KB2596964) 32-Bit EditionUpdate for Microsoft Office 2010 (KB2597091) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2553290) 32-Bit EditionUpdate for Microsoft OneNote 2010 (KB2589345) 32-Bit EditionUpdate for Microsoft Outlook 2010 (KB2553248) 32-Bit EditionUpdate for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit EditionVLC media player 2.0.0WebRegWebroot SecureAnywhereWebTablet FB PluginWebTablet IE PluginWebTablet Netscape Pluginwelcome.==== Event Viewer Messages From Past Week ========.9/7/2012 3:33:36 PM, Error: Service Control Manager [7034] - The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).9/7/2012 3:29:15 AM, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).9/7/2012 3:29:15 AM, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.9/7/2012 3:27:13 AM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Soluto9/6/2012 6:54:05 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WDFME service..==== End Of File =========================== Link to post Share on other sites More sharing options...
MrCharlie Posted September 7, 2012 ID:594602 Share Posted September 7, 2012 Welcome to the forum.Please remove any usb or external drives from the computer before you run this scan!Please download and run RogueKiller to your desktop.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.Click Scan to scan the system. When the scan completes > Close out the program > Don't Fix anything!Don't run any other options, they're not all bad!!!!!!!Post back the report which should be located on your desktop.MrC Link to post Share on other sites More sharing options...
ai3643 Posted September 7, 2012 Author ID:594612 Share Posted September 7, 2012 RogueKiller V8.0.2 [08/31/2012] by Tigzymail: tigzyRK<at>gmail<dot>comFeedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/Blog: http://tigzyrk.blogspot.comOperating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal modeUser : The Welch's [Admin rights]Mode : Scan -- Date : 09/07/2012 15:37:16¤¤¤ Bad processes : 0 ¤¤¤¤¤¤ Registry Entries : 9 ¤¤¤[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND[HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> FOUND[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND[HJ] HKLM\[...]\Wow6432Node\System : EnableLUA (0) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND¤¤¤ Particular Files / Folders: ¤¤¤¤¤¤ Driver : [NOT LOADED] ¤¤¤¤¤¤ Infection : ¤¤¤¤¤¤ HOSTS File: ¤¤¤--> C:\Windows\system32\drivers\etc\hosts127.0.0.1 localhost127.0.0.1 license.superantispyware.com ¤¤¤ MBR Check: ¤¤¤+++++ PhysicalDrive0: ST95005620AS +++++--- User ---[MBR] 7d77cd332a64ead9242413058cb8c97a[bSP] 6920931370a7c66de51052a0654346d6 : Windows Vista MBR CodePartition table:0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 9968 Mo2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20496384 | Size: 466928 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive1: ST9500420AS +++++--- User ---[MBR] f1f693ed8aeeb19b3f41d8425e046b38[bSP] c994a27445a1a509a14cfe5e6f683f89 : Windows Vista MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive3: WD My Book 1140 USB Device +++++--- User ---[MBR] 826c768e1d647d67f8545950a13d16a5[bSP] 717dd44c70d9301a3f6f6f49130ee44d : Windows XP MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907696 MoUser = LL1 ... OK!Error reading LL2 MBR!+++++ PhysicalDrive4: SanDisk Cruzer Glide USB Device +++++--- User ---[MBR] 33a0f33fb7e7f518f64aedcb9dad35b0[bSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknownPartition table:0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 32 | Size: 7633 MoUser = LL1 ... OK!Error reading LL2 MBR!Finished : << RKreport[1].txt >>RKreport[1].txt Link to post Share on other sites More sharing options...
ai3643 Posted September 7, 2012 Author ID:594614 Share Posted September 7, 2012 opps let me unplug externals! Link to post Share on other sites More sharing options...
ai3643 Posted September 7, 2012 Author ID:594617 Share Posted September 7, 2012 RogueKiller V8.0.2 [08/31/2012] by Tigzymail: tigzyRK<at>gmail<dot>comFeedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/Blog: http://tigzyrk.blogspot.comOperating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal modeUser : The Welch's [Admin rights]Mode : Scan -- Date : 09/07/2012 16:51:08¤¤¤ Bad processes : 0 ¤¤¤¤¤¤ Registry Entries : 9 ¤¤¤[HJPOL] HKCU\[...]\System : disableregistrytools (0) -> FOUND[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> FOUND[HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND[HJ] HKLM\[...]\Wow6432Node\System : ConsentPromptBehaviorAdmin (0) -> FOUND[HJ] HKLM\[...]\System : EnableLUA (0) -> FOUND[HJ] HKLM\[...]\Wow6432Node\System : EnableLUA (0) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND¤¤¤ Particular Files / Folders: ¤¤¤¤¤¤ Driver : [NOT LOADED] ¤¤¤¤¤¤ Infection : ¤¤¤¤¤¤ HOSTS File: ¤¤¤--> C:\Windows\system32\drivers\etc\hosts127.0.0.1 localhost127.0.0.1 license.superantispyware.com ¤¤¤ MBR Check: ¤¤¤+++++ PhysicalDrive0: ST95005620AS +++++--- User ---[MBR] 7d77cd332a64ead9242413058cb8c97a[bSP] 6920931370a7c66de51052a0654346d6 : Windows Vista MBR CodePartition table:0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 9968 Mo2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 20496384 | Size: 466928 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive1: ST9500420AS +++++--- User ---[MBR] f1f693ed8aeeb19b3f41d8425e046b38[bSP] c994a27445a1a509a14cfe5e6f683f89 : Windows Vista MBR CodePartition table:0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 476937 MoUser = LL1 ... OK!User = LL2 ... OK!+++++ PhysicalDrive4: SanDisk Cruzer Glide USB Device +++++--- User ---[MBR] 33a0f33fb7e7f518f64aedcb9dad35b0[bSP] df4f83c1f72e36823a12b0dfc7617313 : MBR Code unknownPartition table:0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 32 | Size: 7633 MoUser = LL1 ... OK!Error reading LL2 MBR!Finished : << RKreport[1].txt >>RKreport[1].txtALso I just got done running a AVG scan and they found the C:\windows\syswow64\sdbinnst.exe being a trojan horse dropper.Generic6.BHPB and removed it. I wonder if that was the offender Link to post Share on other sites More sharing options...
MrCharlie Posted September 7, 2012 ID:594619 Share Posted September 7, 2012 ALso I just got done running a AVG scan and they found the C:\windows\syswow64\sdbinnst.exe being a trojan horse dropper.Generic6.BHPB and removed it. I wonder if that was the offender Could be, I think we should run some scans though.~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~Please read the directions carefully so you don't end up deleting something that is good!!Please download and run TDSSKiller to your desktop as outlined below:Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.-------------------------Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.------------------------Click the Start Scan button.-----------------------If a suspicious object is detected, the default action will be Skip, click on ContinueIf you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please chooseSkip and click on Continue----------------------If malicious objects are found, they will show in the Scan results and offer three (3) options.Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.--------------------A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.-------------------Here's a summary of what to do if you would like to print it out:If a suspicious object is detected, the default action will be Skip, click on ContinueIf you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please chooseSkip and click on ContinueIf malicious objects are found, they will show in the Scan results and offer three (3) options.Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.MrC QuoteMultiQuote Link to post Share on other sites More sharing options...
ai3643 Posted September 8, 2012 Author ID:594622 Share Posted September 8, 2012 Never saw Cure as a option, so I went with Skip Heres the text file16:58:11.0647 2672 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:4816:58:12.0558 2672 ============================================================16:58:12.0558 2672 Current date / time: 2012/09/07 16:58:12.055816:58:12.0558 2672 SystemInfo:16:58:12.0558 2672 16:58:12.0558 2672 OS Version: 6.1.7601 ServicePack: 1.016:58:12.0558 2672 Product type: Workstation16:58:12.0559 2672 ComputerName: THEWELCHS-PC16:58:12.0559 2672 UserName: The Welch's16:58:12.0559 2672 Windows directory: C:\Windows16:58:12.0559 2672 System windows directory: C:\Windows16:58:12.0559 2672 Running under WOW6416:58:12.0559 2672 Processor architecture: Intel x6416:58:12.0559 2672 Number of processors: 816:58:12.0559 2672 Page size: 0x100016:58:12.0559 2672 Boot type: Normal boot16:58:12.0559 2672 ============================================================16:58:16.0597 2672 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004016:58:16.0810 2672 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004016:58:16.0879 2672 Drive \Device\Harddisk4\DR4 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'16:58:16.0881 2672 ============================================================16:58:16.0881 2672 \Device\Harddisk0\DR0:16:58:16.0881 2672 MBR partitions:16:58:16.0881 2672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x137800016:58:16.0881 2672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x138C000, BlocksNum 0x38FF800016:58:16.0881 2672 \Device\Harddisk1\DR1:16:58:16.0893 2672 MBR partitions:16:58:16.0893 2672 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A38480016:58:16.0893 2672 \Device\Harddisk4\DR4:16:58:16.0894 2672 MBR partitions:16:58:16.0894 2672 \Device\Harddisk4\DR4\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE016:58:16.0894 2672 ============================================================16:58:16.0917 2672 C: <-> \Device\Harddisk0\DR0\Partition216:58:16.0986 2672 D: <-> \Device\Harddisk1\DR1\Partition116:58:16.0987 2672 ============================================================16:58:16.0987 2672 Initialize success16:58:16.0987 2672 ============================================================16:58:32.0251 6360 ============================================================16:58:32.0251 6360 Scan started16:58:32.0251 6360 Mode: Manual; SigCheck; TDLFS;16:58:32.0251 6360 ============================================================16:58:33.0357 6360 ================ Scan system memory ========================16:58:33.0357 6360 System memory - ok16:58:33.0357 6360 ================ Scan services =============================16:58:33.0436 6360 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE16:58:33.0493 6360 !SASCORE - ok16:58:33.0742 6360 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys16:58:33.0766 6360 1394ohci - ok16:58:33.0797 6360 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys16:58:33.0810 6360 Acceler - ok16:58:33.0851 6360 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys16:58:33.0862 6360 ACPI - ok16:58:33.0904 6360 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys16:58:33.0925 6360 AcpiPmi - ok16:58:34.0133 6360 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe16:58:34.0141 6360 AdobeActiveFileMonitor8.0 - ok16:58:34.0503 6360 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe16:58:34.0512 6360 AdobeFlashPlayerUpdateSvc - ok16:58:34.0608 6360 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys16:58:34.0621 6360 adp94xx - ok16:58:34.0649 6360 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys16:58:34.0660 6360 adpahci - ok16:58:34.0684 6360 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys16:58:34.0693 6360 adpu320 - ok16:58:34.0715 6360 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll16:58:34.0760 6360 AeLookupSvc - ok16:58:34.0898 6360 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe16:58:34.0927 6360 AESTFilters - ok16:58:35.0040 6360 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys16:58:35.0053 6360 AFD - ok16:58:35.0098 6360 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys16:58:35.0107 6360 agp440 - ok16:58:35.0299 6360 [ 9725E7266CC9ABC475CA3762CECA6444 ] Ak27x64 C:\Windows\system32\DRIVERS\Ak27x64.sys16:58:35.0334 6360 Ak27x64 - ok16:58:35.0392 6360 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe16:58:35.0432 6360 ALG - ok16:58:35.0585 6360 [ 73FD38C98996FA971BAD46376610FA67 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe16:58:35.0592 6360 AlienFusionService - ok16:58:35.0652 6360 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys16:58:35.0660 6360 aliide - ok16:58:35.0854 6360 ALSysIO - ok16:58:35.0900 6360 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys16:58:35.0908 6360 amdide - ok16:58:35.0910 6360 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys16:58:35.0944 6360 AmdK8 - ok16:58:35.0947 6360 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys16:58:35.0970 6360 AmdPPM - ok16:58:35.0975 6360 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys16:58:35.0984 6360 amdsata - ok16:58:36.0012 6360 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys16:58:36.0022 6360 amdsbs - ok16:58:36.0042 6360 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys16:58:36.0050 6360 amdxata - ok16:58:36.0124 6360 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys16:58:36.0166 6360 AppID - ok16:58:36.0208 6360 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll16:58:36.0232 6360 AppIDSvc - ok16:58:36.0315 6360 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll16:58:36.0339 6360 Appinfo - ok16:58:36.0528 6360 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe16:58:36.0535 6360 Apple Mobile Device - ok16:58:36.0660 6360 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll16:58:36.0686 6360 AppMgmt - ok16:58:36.0728 6360 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys16:58:36.0736 6360 arc - ok16:58:36.0754 6360 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys16:58:36.0763 6360 arcsas - ok16:58:36.0898 6360 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe16:58:36.0905 6360 aspnet_state - ok16:58:36.0932 6360 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys16:58:36.0979 6360 AsyncMac - ok16:58:37.0009 6360 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys16:58:37.0017 6360 atapi - ok16:58:37.0072 6360 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll16:58:37.0100 6360 AudioEndpointBuilder - ok16:58:37.0108 6360 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll16:58:37.0137 6360 AudioSrv - ok16:58:37.0221 6360 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys16:58:37.0228 6360 Avgfwfd - ok16:58:37.0497 6360 [ 0CA0F4F13CDB30C488E069E88040DB07 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe16:58:37.0519 6360 avgfws - ok16:58:37.0947 6360 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe16:58:38.0019 6360 AVGIDSAgent - ok16:58:38.0073 6360 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys16:58:38.0083 6360 AVGIDSDriver - ok16:58:38.0100 6360 [ D19F5C2C2BA0962DD4437EC020858FA3 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys16:58:38.0110 6360 AVGIDSHA - ok16:58:38.0134 6360 [ B5C6EC8D0FC00BD291994926C5888FD3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys16:58:38.0144 6360 Avgldx64 - ok16:58:38.0237 6360 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys16:58:38.0247 6360 Avgloga - ok16:58:38.0263 6360 [ 91FEFBFF54E30A339F21F784983C9F6A ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys16:58:38.0271 6360 Avgmfx64 - ok16:58:38.0386 6360 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys16:58:38.0394 6360 Avgrkx64 - ok16:58:38.0429 6360 [ ECBE71E3AF3E146453EF9623A245E6E0 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys16:58:38.0439 6360 Avgtdia - ok16:58:38.0470 6360 [ E827B1156B85345929DBF16E12C02880 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys16:58:38.0479 6360 avgtp - ok16:58:38.0522 6360 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe16:58:38.0531 6360 avgwd - ok16:58:38.0592 6360 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll16:58:38.0620 6360 AxInstSV - ok16:58:38.0702 6360 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys16:58:38.0733 6360 b06bdrv - ok16:58:38.0806 6360 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys16:58:38.0839 6360 b57nd60a - ok16:58:38.0916 6360 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll16:58:38.0927 6360 BDESVC - ok16:58:38.0930 6360 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys16:58:38.0964 6360 Beep - ok16:58:39.0069 6360 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll16:58:39.0119 6360 BFE - ok16:58:39.0138 6360 [ B6CB0C7A0EA9DEE5B7DB2DF0CF2A6625 ] BfLwf C:\Windows\system32\DRIVERS\bflwfx64.sys16:58:39.0145 6360 BfLwf - ok16:58:39.0351 6360 [ 0CB778BD8DEA06787C33B5577029802C ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe16:58:39.0358 6360 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - warning16:58:39.0358 6360 Bigfoot Networks Killer Service - detected UnsignedFile.Multi.Generic (1)16:58:39.0389 6360 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll16:58:39.0442 6360 BITS - ok16:58:39.0458 6360 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys16:58:39.0484 6360 blbdrive - ok16:58:39.0640 6360 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe16:58:39.0651 6360 Bonjour Service - ok16:58:39.0715 6360 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys16:58:39.0745 6360 bowser - ok16:58:39.0749 6360 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys16:58:39.0776 6360 BrFiltLo - ok16:58:39.0778 6360 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys16:58:39.0797 6360 BrFiltUp - ok16:58:39.0882 6360 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys16:58:39.0906 6360 BridgeMP - ok16:58:39.0975 6360 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll16:58:40.0025 6360 Browser - ok16:58:40.0079 6360 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys16:58:40.0090 6360 Brserid - ok16:58:40.0094 6360 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys16:58:40.0121 6360 BrSerWdm - ok16:58:40.0143 6360 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys16:58:40.0154 6360 BrUsbMdm - ok16:58:40.0158 6360 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys16:58:40.0188 6360 BrUsbSer - ok16:58:40.0256 6360 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys16:58:40.0287 6360 BTCFilterService - ok16:58:40.0327 6360 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys16:58:40.0353 6360 BthEnum - ok16:58:40.0360 6360 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys16:58:40.0394 6360 BTHMODEM - ok16:58:40.0399 6360 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys16:58:40.0423 6360 BthPan - ok16:58:40.0453 6360 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys16:58:40.0480 6360 BTHPORT - ok16:58:40.0592 6360 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll16:58:40.0646 6360 bthserv - ok16:58:40.0662 6360 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys16:58:40.0695 6360 BTHUSB - ok16:58:40.0715 6360 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys16:58:40.0726 6360 btwampfl - ok16:58:40.0743 6360 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys16:58:40.0751 6360 btwavdt - ok16:58:40.0764 6360 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\drivers\btwrchid.sys16:58:40.0771 6360 btwrchid - ok16:58:40.0897 6360 catchme - ok16:58:40.0926 6360 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys16:58:40.0968 6360 cdfs - ok16:58:41.0017 6360 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys16:58:41.0045 6360 cdrom - ok16:58:41.0100 6360 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll16:58:41.0139 6360 CertPropSvc - ok16:58:41.0207 6360 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys16:58:41.0218 6360 circlass - ok16:58:41.0270 6360 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys16:58:41.0281 6360 CLFS - ok16:58:41.0386 6360 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe16:58:41.0394 6360 clr_optimization_v2.0.50727_32 - ok16:58:41.0465 6360 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe16:58:41.0472 6360 clr_optimization_v2.0.50727_64 - ok16:58:41.0633 6360 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe16:58:41.0641 6360 clr_optimization_v4.0.30319_32 - ok16:58:41.0724 6360 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe16:58:41.0732 6360 clr_optimization_v4.0.30319_64 - ok16:58:41.0774 6360 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys16:58:41.0809 6360 CmBatt - ok16:58:41.0829 6360 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys16:58:41.0836 6360 cmdide - ok16:58:41.0892 6360 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys16:58:41.0908 6360 CNG - ok16:58:41.0949 6360 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys16:58:41.0956 6360 Compbatt - ok16:58:41.0978 6360 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys16:58:41.0990 6360 CompositeBus - ok16:58:42.0008 6360 COMSysApp - ok16:58:42.0326 6360 cpuz135 - ok16:58:42.0329 6360 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys16:58:42.0337 6360 crcdisk - ok16:58:42.0378 6360 Crypkey License - ok16:58:42.0496 6360 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll16:58:42.0519 6360 CryptSvc - ok16:58:42.0595 6360 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys16:58:42.0607 6360 CSC - ok16:58:42.0673 6360 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll16:58:42.0691 6360 CscService - ok16:58:42.0714 6360 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys16:58:42.0735 6360 CtClsFlt - ok16:58:42.0806 6360 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll16:58:42.0857 6360 DcomLaunch - ok16:58:42.0926 6360 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll16:58:42.0971 6360 defragsvc - ok16:58:42.0999 6360 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys16:58:43.0023 6360 DfsC - ok16:58:43.0062 6360 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll16:58:43.0101 6360 Dhcp - ok16:58:43.0106 6360 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys16:58:43.0137 6360 discache - ok16:58:43.0160 6360 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys16:58:43.0168 6360 Disk - ok16:58:43.0192 6360 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll16:58:43.0211 6360 Dnscache - ok16:58:43.0241 6360 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll16:58:43.0268 6360 dot3svc - ok16:58:43.0328 6360 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys16:58:43.0340 6360 Dot4 - ok16:58:43.0396 6360 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys16:58:43.0429 6360 Dot4Print - ok16:58:43.0444 6360 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys16:58:43.0469 6360 dot4usb - ok16:58:43.0522 6360 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll16:58:43.0569 6360 DPS - ok16:58:43.0611 6360 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys16:58:43.0623 6360 drmkaud - ok16:58:43.0699 6360 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys16:58:43.0719 6360 DXGKrnl - ok16:58:43.0746 6360 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll16:58:43.0771 6360 EapHost - ok16:58:43.0922 6360 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys16:58:43.0954 6360 ebdrv - ok16:58:43.0971 6360 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe16:58:43.0980 6360 EFS - ok16:58:44.0068 6360 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe16:58:44.0099 6360 ehRecvr - ok16:58:44.0130 6360 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe16:58:44.0140 6360 ehSched - ok16:58:44.0170 6360 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys16:58:44.0183 6360 elxstor - ok16:58:44.0203 6360 [ E47D9D7E6E53892FC97282482F4AE307 ] EMSC C:\Windows\system32\DRIVERS\EMSC.SYS16:58:44.0209 6360 EMSC - ok16:58:44.0221 6360 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys16:58:44.0243 6360 ErrDev - ok16:58:44.0347 6360 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll16:58:44.0391 6360 EventSystem - ok16:58:44.0438 6360 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys16:58:44.0462 6360 exfat - ok16:58:44.0471 6360 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys16:58:44.0505 6360 fastfat - ok16:58:44.0603 6360 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe16:58:44.0635 6360 Fax - ok16:58:44.0680 6360 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys16:58:44.0715 6360 fdc - ok16:58:44.0744 6360 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll16:58:44.0775 6360 fdPHost - ok16:58:44.0778 6360 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll16:58:44.0818 6360 FDResPub - ok16:58:44.0840 6360 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys16:58:44.0849 6360 FileInfo - ok16:58:44.0872 6360 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys16:58:44.0917 6360 Filetrace - ok16:58:45.0001 6360 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe16:58:45.0016 6360 FLEXnet Licensing Service - ok16:58:45.0034 6360 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys16:58:45.0043 6360 flpydisk - ok16:58:45.0058 6360 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys16:58:45.0068 6360 FltMgr - ok16:58:45.0131 6360 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll16:58:45.0148 6360 FontCache - ok16:58:45.0258 6360 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe16:58:45.0266 6360 FontCache3.0.0.0 - ok16:58:45.0275 6360 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys16:58:45.0284 6360 FsDepends - ok16:58:45.0304 6360 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys16:58:45.0312 6360 Fs_Rec - ok16:58:45.0403 6360 [ 79B4CDE2B69ED8BA4011859780A66A4D ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe16:58:45.0410 6360 Futuremark SystemInfo Service - ok16:58:45.0438 6360 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys16:58:45.0450 6360 fvevol - ok16:58:45.0471 6360 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys16:58:45.0479 6360 gagp30kx - ok16:58:45.0517 6360 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys16:58:45.0524 6360 GEARAspiWDM - ok16:58:45.0606 6360 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll16:58:45.0635 6360 gpsvc - ok16:58:45.0867 6360 GPU-Z - ok16:58:45.0904 6360 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys16:58:45.0929 6360 hcw85cir - ok16:58:45.0943 6360 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys16:58:45.0966 6360 HDAudBus - ok16:58:45.0969 6360 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys16:58:45.0995 6360 HidBatt - ok16:58:46.0007 6360 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys16:58:46.0036 6360 HidBth - ok16:58:46.0076 6360 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys16:58:46.0087 6360 HidIr - ok16:58:46.0110 6360 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll16:58:46.0135 6360 hidserv - ok16:58:46.0183 6360 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys16:58:46.0192 6360 HidUsb - ok16:58:46.0242 6360 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll16:58:46.0285 6360 hkmsvc - ok16:58:46.0327 6360 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll16:58:46.0357 6360 HomeGroupListener - ok16:58:46.0384 6360 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll16:58:46.0394 6360 HomeGroupProvider - ok16:58:46.0427 6360 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys16:58:46.0434 6360 HP8207_8307 - ok16:58:46.0451 6360 HPHNDUSVC - ok16:58:46.0739 6360 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll16:58:46.0769 6360 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning16:58:46.0769 6360 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)16:58:46.0969 6360 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll16:58:46.0990 6360 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning16:58:46.0990 6360 hpqddsvc - detected UnsignedFile.Multi.Generic (1)16:58:47.0027 6360 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys16:58:47.0035 6360 HpSAMD - ok16:58:47.0224 6360 [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL16:58:47.0251 6360 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning16:58:47.0251 6360 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)16:58:47.0318 6360 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys16:58:47.0366 6360 HTTP - ok16:58:47.0370 6360 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys16:58:47.0377 6360 hwpolicy - ok16:58:47.0421 6360 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys16:58:47.0431 6360 i8042prt - ok16:58:47.0446 6360 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys16:58:47.0458 6360 iaStor - ok16:58:47.0609 6360 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe16:58:47.0616 6360 IAStorDataMgrSvc - ok16:58:47.0706 6360 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys16:58:47.0718 6360 iaStorV - ok16:58:47.0816 6360 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe16:58:47.0846 6360 IDriverT ( UnsignedFile.Multi.Generic ) - warning16:58:47.0846 6360 IDriverT - detected UnsignedFile.Multi.Generic (1)16:58:47.0937 6360 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe16:58:47.0952 6360 idsvc - ok16:58:48.0601 6360 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys16:58:48.0705 6360 igfx - ok16:58:48.0724 6360 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys16:58:48.0732 6360 iirsp - ok16:58:48.0833 6360 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll16:58:48.0881 6360 IKEEXT - ok16:58:48.0901 6360 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys16:58:48.0917 6360 Impcd - ok16:58:48.0964 6360 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys16:58:48.0973 6360 IntcDAud - ok16:58:49.0044 6360 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys16:58:49.0051 6360 intelide - ok16:58:49.0072 6360 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys16:58:49.0104 6360 intelppm - ok16:58:49.0108 6360 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll16:58:49.0147 6360 IPBusEnum - ok16:58:49.0150 6360 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys16:58:49.0174 6360 IpFilterDriver - ok16:58:49.0264 6360 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll16:58:49.0292 6360 iphlpsvc - ok16:58:49.0311 6360 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys16:58:49.0344 6360 IPMIDRV - ok16:58:49.0347 6360 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys16:58:49.0382 6360 IPNAT - ok16:58:49.0554 6360 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe16:58:49.0571 6360 iPod Service - ok16:58:49.0644 6360 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys16:58:49.0657 6360 IRENUM - ok16:58:49.0685 6360 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys16:58:49.0693 6360 isapnp - ok16:58:49.0703 6360 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys16:58:49.0716 6360 iScsiPrt - ok16:58:49.0737 6360 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys16:58:49.0749 6360 kbdclass - ok16:58:49.0767 6360 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys16:58:49.0780 6360 kbdhid - ok16:58:49.0783 6360 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe16:58:49.0798 6360 KeyIso - ok16:58:49.0815 6360 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys16:58:49.0828 6360 KSecDD - ok16:58:49.0834 6360 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys16:58:49.0847 6360 KSecPkg - ok16:58:49.0851 6360 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys16:58:49.0878 6360 ksthunk - ok16:58:49.0908 6360 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll16:58:49.0951 6360 KtmRm - ok16:58:49.0997 6360 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys16:58:50.0008 6360 L1C - ok16:58:50.0109 6360 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll16:58:50.0153 6360 LanmanServer - ok16:58:50.0210 6360 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll16:58:50.0309 6360 LanmanWorkstation - ok16:58:50.0353 6360 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys16:58:50.0377 6360 lltdio - ok16:58:50.0426 6360 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll16:58:50.0468 6360 lltdsvc - ok16:58:50.0513 6360 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll16:58:50.0538 6360 lmhosts - ok16:58:50.0566 6360 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys16:58:50.0574 6360 LSI_FC - ok16:58:50.0600 6360 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys16:58:50.0609 6360 LSI_SAS - ok16:58:50.0626 6360 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys16:58:50.0634 6360 LSI_SAS2 - ok16:58:50.0637 6360 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys16:58:50.0646 6360 LSI_SCSI - ok16:58:50.0667 6360 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys16:58:50.0691 6360 luafv - ok16:58:50.0825 6360 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys16:58:50.0833 6360 MBAMProtector - ok16:58:50.0996 6360 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe16:58:51.0009 6360 MBAMService - ok16:58:51.0063 6360 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll16:58:51.0073 6360 Mcx2Svc - ok16:58:51.0086 6360 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys16:58:51.0093 6360 megasas - ok16:58:51.0118 6360 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys16:58:51.0129 6360 MegaSR - ok16:58:51.0164 6360 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys16:58:51.0171 6360 MEIx64 - ok16:58:51.0291 6360 Microsoft SharePoint Workspace Audit Service - ok16:58:51.0344 6360 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll16:58:51.0389 6360 MMCSS - ok16:58:51.0405 6360 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys16:58:51.0453 6360 Modem - ok16:58:51.0506 6360 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys16:58:51.0538 6360 monitor - ok16:58:51.0608 6360 [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb C:\Windows\system32\Drivers\motoandroid.sys16:58:51.0620 6360 motandroidusb - ok16:58:51.0757 6360 [ C94A2EA3FDFA5D650884926B710B7DB1 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys16:58:51.0796 6360 motccgp - ok16:58:51.0817 6360 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys16:58:51.0849 6360 motccgpfl - ok16:58:51.0941 6360 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys16:58:51.0970 6360 MotDev - ok16:58:52.0058 6360 [ 060F0EF84F430802DF3788F3DCFD009C ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys16:58:52.0069 6360 motmodem - ok16:58:52.0170 6360 [ EBD05F60CAFC5BBA2602B8D7101082D3 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys16:58:52.0202 6360 MotoSwitchService - ok16:58:52.0247 6360 [ 87701078C3F720AC7A028E937994CC49 ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys16:58:52.0278 6360 Motousbnet - ok16:58:52.0470 6360 [ 4244E427CDA5F6485E74461B5B48A7B6 ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys16:58:52.0502 6360 motusbdevice - ok16:58:52.0549 6360 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys16:58:52.0557 6360 mouclass - ok16:58:52.0579 6360 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys16:58:54.0263 6360 mouhid - ok16:58:54.0304 6360 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys16:58:54.0312 6360 mountmgr - ok16:58:54.0456 6360 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe16:58:54.0465 6360 MozillaMaintenance - ok16:58:54.0501 6360 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys16:58:54.0511 6360 mpio - ok16:58:54.0598 6360 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys16:58:54.0622 6360 mpsdrv - ok16:58:54.0732 6360 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll16:58:54.0780 6360 MpsSvc - ok16:58:54.0795 6360 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys16:58:54.0808 6360 MRxDAV - ok16:58:54.0852 6360 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys16:58:54.0891 6360 mrxsmb - ok16:58:54.0928 6360 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys16:58:54.0938 6360 mrxsmb10 - ok16:58:54.0944 6360 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys16:58:54.0953 6360 mrxsmb20 - ok16:58:54.0959 6360 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys16:58:54.0967 6360 msahci - ok16:58:55.0025 6360 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys16:58:55.0034 6360 msdsm - ok16:58:55.0089 6360 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe16:58:55.0144 6360 MSDTC - ok16:58:55.0149 6360 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys16:58:55.0173 6360 Msfs - ok16:58:55.0243 6360 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys16:58:55.0269 6360 mshidkmdf - ok16:58:55.0274 6360 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys16:58:55.0282 6360 msisadrv - ok16:58:55.0324 6360 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll16:58:55.0397 6360 MSiSCSI - ok16:58:55.0399 6360 msiserver - ok16:58:55.0456 6360 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys16:58:55.0526 6360 MSKSSRV - ok16:58:55.0569 6360 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys16:58:55.0615 6360 MSPCLOCK - ok16:58:55.0658 6360 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys16:58:55.0707 6360 MSPQM - ok16:58:55.0761 6360 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys16:58:55.0773 6360 MsRPC - ok16:58:55.0777 6360 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys16:58:55.0785 6360 mssmbios - ok16:58:55.0805 6360 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys16:58:55.0828 6360 MSTEE - ok16:58:55.0848 6360 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys16:58:55.0857 6360 MTConfig - ok16:58:55.0861 6360 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys16:58:55.0870 6360 Mup - ok16:58:55.0919 6360 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll16:58:55.0958 6360 napagent - ok16:58:55.0997 6360 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys16:58:56.0011 6360 NativeWifiP - ok16:58:56.0313 6360 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe16:58:56.0326 6360 NAUpdate - ok16:58:56.0401 6360 [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys16:58:56.0408 6360 NBVol - ok16:58:56.0411 6360 [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys16:58:56.0418 6360 NBVolUp - ok16:58:56.0533 6360 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys16:58:56.0550 6360 NDIS - ok16:58:56.0601 6360 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys16:58:56.0645 6360 NdisCap - ok16:58:56.0660 6360 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys16:58:56.0684 6360 NdisTapi - ok16:58:56.0770 6360 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys16:58:56.0820 6360 Ndisuio - ok16:58:56.0837 6360 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys16:58:56.0890 6360 NdisWan - ok16:58:56.0894 6360 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys16:58:56.0917 6360 NDProxy - ok16:58:56.0954 6360 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll16:58:56.0973 6360 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning16:58:56.0973 6360 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)16:58:56.0997 6360 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys16:58:57.0022 6360 NetBIOS - ok16:58:57.0031 6360 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys16:58:57.0055 6360 NetBT - ok16:58:57.0075 6360 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe16:58:57.0084 6360 Netlogon - ok16:58:57.0137 6360 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll16:58:57.0186 6360 Netman - ok16:58:57.0253 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe16:58:57.0261 6360 NetMsmqActivator - ok16:58:57.0270 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe16:58:57.0278 6360 NetPipeActivator - ok16:58:57.0364 6360 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll16:58:57.0402 6360 netprofm - ok16:58:57.0443 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe16:58:57.0451 6360 NetTcpActivator - ok16:58:57.0454 6360 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe16:58:57.0461 6360 NetTcpPortSharing - ok16:58:57.0479 6360 [ 2263727032E9B19231A706046B8C82D3 ] NetworkX C:\Windows\system32\ckldrv.sys16:58:57.0491 6360 NetworkX - ok16:58:57.0534 6360 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys16:58:57.0543 6360 nfrd960 - ok16:58:57.0643 6360 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll16:58:57.0669 6360 NlaSvc - ok16:58:57.0820 6360 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe16:58:57.0826 6360 nlsX86cc - ok16:58:57.0831 6360 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys16:58:57.0855 6360 Npfs - ok16:58:57.0873 6360 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll16:58:57.0897 6360 nsi - ok16:58:57.0900 6360 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys16:58:57.0944 6360 nsiproxy - ok16:58:58.0110 6360 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys16:58:58.0134 6360 Ntfs - ok16:58:58.0138 6360 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys16:58:58.0161 6360 Null - ok16:58:58.0188 6360 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys16:58:58.0196 6360 nusb3hub - ok16:58:58.0236 6360 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys16:58:58.0264 6360 nusb3xhc - ok16:58:58.0344 6360 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys16:58:58.0353 6360 NVHDA - ok16:58:58.0428 6360 [ F8219CD9792008144A19691B17EA2993 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys16:58:58.0438 6360 nvkflt - ok16:58:59.0310 6360 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys16:58:59.0460 6360 nvlddmkm - ok16:58:59.0486 6360 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys16:58:59.0494 6360 nvpciflt - ok16:58:59.0541 6360 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys16:58:59.0550 6360 nvraid - ok16:58:59.0574 6360 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys16:58:59.0583 6360 nvstor - ok16:58:59.0733 6360 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] NVSvc C:\Windows\system32\nvvsvc.exe16:58:59.0750 6360 NVSvc - ok16:58:59.0828 6360 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe16:58:59.0847 6360 nvUpdatusService - ok16:58:59.0893 6360 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys16:58:59.0902 6360 nv_agp - ok16:58:59.0922 6360 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys16:58:59.0944 6360 ohci1394 - ok16:59:00.0056 6360 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE16:59:00.0064 6360 ose - ok16:59:00.0437 6360 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE16:59:00.0492 6360 osppsvc - ok16:59:00.0542 6360 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll16:59:00.0572 6360 p2pimsvc - ok16:59:00.0628 6360 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll16:59:00.0641 6360 p2psvc - ok16:59:00.0661 6360 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys16:59:00.0670 6360 Parport - ok16:59:00.0676 6360 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys16:59:00.0684 6360 partmgr - ok16:59:00.0706 6360 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll16:59:00.0742 6360 PcaSvc - ok16:59:00.0943 6360 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 c:\program files\alienautopsy\pcdsrvc_x64.pkms16:59:00.0951 6360 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - ok16:59:00.0958 6360 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys16:59:00.0967 6360 pci - ok16:59:00.0999 6360 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys16:59:01.0007 6360 pciide - ok16:59:01.0014 6360 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys16:59:01.0024 6360 pcmcia - ok16:59:01.0028 6360 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys16:59:01.0036 6360 pcw - ok16:59:01.0068 6360 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys16:59:01.0108 6360 PEAUTH - ok16:59:01.0323 6360 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll16:59:01.0372 6360 PeerDistSvc - ok16:59:01.0419 6360 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe16:59:01.0455 6360 PerfHost - ok16:59:01.0549 6360 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll16:59:01.0624 6360 pla - ok16:59:01.0713 6360 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll16:59:01.0725 6360 PlugPlay - ok16:59:01.0760 6360 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll16:59:01.0770 6360 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning16:59:01.0770 6360 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)16:59:01.0803 6360 PnkBstrA - ok16:59:01.0816 6360 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll16:59:01.0825 6360 PNRPAutoReg - ok16:59:01.0868 6360 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll16:59:01.0879 6360 PNRPsvc - ok16:59:01.0928 6360 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll16:59:01.0970 6360 PolicyAgent - ok16:59:02.0022 6360 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll16:59:02.0033 6360 Power - ok16:59:02.0083 6360 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys16:59:02.0129 6360 PptpMiniport - ok16:59:02.0140 6360 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys16:59:02.0167 6360 Processor - ok16:59:02.0184 6360 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll16:59:02.0227 6360 ProfSvc - ok16:59:02.0231 6360 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe16:59:02.0240 6360 ProtectedStorage - ok16:59:02.0263 6360 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys16:59:02.0288 6360 Psched - ok16:59:02.0306 6360 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys16:59:02.0314 6360 PxHlpa64 - ok16:59:02.0448 6360 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys16:59:02.0471 6360 ql2300 - ok16:59:02.0484 6360 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys16:59:02.0493 6360 ql40xx - ok16:59:02.0551 6360 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll16:59:02.0565 6360 QWAVE - ok16:59:02.0580 6360 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys16:59:02.0616 6360 QWAVEdrv - ok16:59:02.0618 6360 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys16:59:02.0653 6360 RasAcd - ok16:59:02.0674 6360 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys16:59:02.0698 6360 RasAgileVpn - ok16:59:02.0719 6360 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll16:59:02.0768 6360 RasAuto - ok16:59:02.0775 6360 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys16:59:02.0813 6360 Rasl2tp - ok16:59:02.0868 6360 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll16:59:02.0909 6360 RasMan - ok16:59:02.0914 6360 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys16:59:02.0963 6360 RasPppoe - ok16:59:02.0979 6360 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys16:59:03.0023 6360 RasSstp - ok16:59:03.0042 6360 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys16:59:03.0067 6360 rdbss - ok16:59:03.0071 6360 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys16:59:03.0093 6360 rdpbus - ok16:59:03.0109 6360 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys16:59:03.0134 6360 RDPCDD - ok16:59:03.0174 6360 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys16:59:03.0184 6360 RDPDR - ok16:59:03.0187 6360 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys16:59:03.0228 6360 RDPENCDD - ok16:59:03.0247 6360 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys16:59:03.0271 6360 RDPREFMP - ok16:59:03.0358 6360 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys16:59:03.0384 6360 RdpVideoMiniport - ok16:59:03.0431 6360 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys16:59:03.0442 6360 RDPWD - ok16:59:03.0484 6360 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys16:59:03.0494 6360 rdyboost - ok16:59:03.0533 6360 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll16:59:03.0566 6360 RemoteAccess - ok16:59:03.0592 6360 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll16:59:03.0617 6360 RemoteRegistry - ok16:59:03.0643 6360 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys16:59:03.0682 6360 RFCOMM - ok16:59:03.0904 6360 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe16:59:03.0922 6360 RoxMediaDB12OEM - ok16:59:03.0972 6360 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe16:59:03.0981 6360 RoxWatch12 - ok16:59:03.0986 6360 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll16:59:04.0010 6360 RpcEptMapper - ok16:59:04.0029 6360 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe16:59:04.0038 6360 RpcLocator - ok16:59:04.0060 6360 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll16:59:04.0087 6360 RpcSs - ok16:59:04.0149 6360 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys16:59:04.0159 6360 RSPCIESTOR - ok16:59:04.0195 6360 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys16:59:04.0238 6360 rspndr - ok16:59:04.0241 6360 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe16:59:04.0250 6360 SamSs - ok16:59:04.0282 6360 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS16:59:04.0289 6360 SASDIFSV - ok16:59:04.0370 6360 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS16:59:04.0377 6360 SASKUTIL - ok16:59:04.0397 6360 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys16:59:04.0405 6360 sbp2port - ok16:59:04.0428 6360 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll16:59:04.0454 6360 SCardSvr - ok16:59:04.0458 6360 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys16:59:04.0504 6360 scfilter - ok16:59:04.0581 6360 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll16:59:04.0630 6360 Schedule - ok16:59:04.0645 6360 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll16:59:04.0668 6360 SCPolicySvc - ok16:59:04.0691 6360 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys16:59:04.0723 6360 sdbus - ok16:59:04.0763 6360 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll16:59:04.0795 6360 SDRSVC - ok16:59:04.0846 6360 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys16:59:04.0870 6360 secdrv - ok16:59:04.0887 6360 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll16:59:04.0910 6360 seclogon - ok16:59:04.0955 6360 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll16:59:05.0006 6360 SENS - ok16:59:05.0039 6360 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll16:59:05.0069 6360 SensrSvc - ok16:59:05.0115 6360 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys16:59:05.0150 6360 Serenum - ok16:59:05.0157 6360 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys16:59:05.0182 6360 Serial - ok16:59:05.0236 6360 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys16:59:05.0245 6360 sermouse - ok16:59:05.0265 6360 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll16:59:05.0308 6360 SessionEnv - ok16:59:05.0337 6360 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys16:59:05.0348 6360 sffdisk - ok16:59:05.0379 6360 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys16:59:05.0390 6360 sffp_mmc - ok16:59:05.0393 6360 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys16:59:05.0418 6360 sffp_sd - ok16:59:05.0470 6360 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys16:59:05.0502 6360 sfloppy - ok16:59:05.0772 6360 [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService C:\Program Files (x86)\AlienRespawn\sftservice.EXE16:59:05.0795 6360 SftService - ok16:59:05.0852 6360 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll16:59:05.0897 6360 SharedAccess - ok16:59:05.0941 6360 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll16:59:05.0980 6360 ShellHWDetection - ok16:59:06.0024 6360 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys16:59:06.0033 6360 SiSRaid2 - ok16:59:06.0058 6360 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys16:59:06.0070 6360 SiSRaid4 - ok16:59:06.0562 6360 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe16:59:06.0602 6360 Skype C2C Service - ok16:59:06.0682 6360 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe16:59:06.0693 6360 SkypeUpdate - ok16:59:06.0738 6360 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys16:59:06.0765 6360 Smb - ok16:59:06.0791 6360 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe16:59:06.0817 6360 SNMPTRAP - ok16:59:06.0948 6360 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys16:59:06.0960 6360 Soluto - ok16:59:07.0106 6360 [ ED8397986BE35C11BFB321636D6991EE ] SolutoService C:\Program Files\Soluto\SolutoService.exe16:59:07.0121 6360 SolutoService - ok16:59:07.0133 6360 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys16:59:07.0144 6360 spldr - ok16:59:07.0169 6360 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe16:59:07.0200 6360 Spooler - ok16:59:07.0445 6360 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe16:59:07.0497 6360 sppsvc - ok16:59:07.0550 6360 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll16:59:07.0578 6360 sppuinotify - ok16:59:07.0630 6360 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys16:59:07.0663 6360 srv - ok16:59:07.0693 6360 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys16:59:07.0724 6360 srv2 - ok16:59:07.0738 6360 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys16:59:07.0748 6360 srvnet - ok16:59:07.0822 6360 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll16:59:07.0864 6360 SSDPSRV - ok16:59:07.0869 6360 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll16:59:07.0893 6360 SstpSvc - ok16:59:07.0970 6360 [ E82994866A370A480607637F28B82835 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe16:59:07.0980 6360 STacSV - ok16:59:08.0030 6360 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys16:59:08.0037 6360 stdcfltn - ok16:59:08.0092 6360 Steam Client Service - ok16:59:08.0319 6360 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe16:59:08.0331 6360 Stereo Service - ok16:59:08.0356 6360 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys16:59:08.0364 6360 stexstor - ok16:59:08.0538 6360 [ 3AD0ED8B19CD76D2254DE5FB298E3C26 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys16:59:08.0568 6360 STHDA - ok16:59:08.0713 6360 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys16:59:08.0769 6360 StillCam - ok16:59:08.0873 6360 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll16:59:08.0889 6360 stisvc - ok16:59:09.0084 6360 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe16:59:09.0091 6360 stllssvr - ok16:59:09.0120 6360 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys16:59:09.0128 6360 swenum - ok16:59:09.0494 6360 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe16:59:09.0527 6360 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning16:59:09.0527 6360 SwitchBoard - detected UnsignedFile.Multi.Generic (1)16:59:09.0683 6360 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll16:59:10.0017 6360 swprv - ok16:59:10.0019 6360 Synth3dVsc - ok16:59:10.0133 6360 [ D8205430CFD64FDB7D691D3BB74FD18F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys16:59:10.0153 6360 SynTP - ok16:59:10.0291 6360 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll16:59:10.0331 6360 SysMain - ok16:59:10.0358 6360 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll16:59:10.0394 6360 TabletInputService - ok16:59:10.0886 6360 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe16:59:10.0957 6360 TabletServicePen - ok16:59:11.0018 6360 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll16:59:11.0053 6360 TapiSrv - ok16:59:11.0106 6360 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll16:59:11.0131 6360 TBS - ok16:59:11.0329 6360 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys16:59:11.0355 6360 Tcpip - ok16:59:11.0455 6360 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys16:59:11.0482 6360 TCPIP6 - ok16:59:11.0496 6360 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys16:59:11.0533 6360 tcpipreg - ok16:59:11.0555 6360 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys16:59:11.0564 6360 TDPIPE - ok16:59:11.0612 6360 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys16:59:11.0643 6360 TDTCP - ok16:59:11.0649 6360 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys16:59:11.0673 6360 tdx - ok16:59:11.0704 6360 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys16:59:11.0712 6360 TermDD - ok16:59:11.0810 6360 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll16:59:11.0838 6360 TermService - ok16:59:11.0881 6360 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll16:59:11.0900 6360 Themes - ok16:59:11.0951 6360 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll16:59:11.0975 6360 THREADORDER - ok16:59:12.0093 6360 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe16:59:12.0117 6360 TouchServicePen - ok16:59:12.0172 6360 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll16:59:12.0197 6360 TrkWks - ok16:59:12.0221 6360 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe16:59:12.0268 6360 TrustedInstaller - ok16:59:12.0277 6360 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys16:59:12.0316 6360 tssecsrv - ok16:59:12.0352 6360 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys16:59:12.0360 6360 TsUsbFlt - ok16:59:12.0379 6360 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys16:59:12.0407 6360 TsUsbGD - ok16:59:12.0409 6360 tsusbhub - ok16:59:12.0448 6360 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys16:59:12.0472 6360 tunnel - ok16:59:12.0490 6360 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys16:59:12.0497 6360 uagp35 - ok16:59:12.0544 6360 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys16:59:12.0588 6360 udfs - ok16:59:12.0613 6360 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe16:59:12.0624 6360 UI0Detect - ok16:59:12.0645 6360 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys16:59:12.0653 6360 uliagpkx - ok16:59:12.0675 6360 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys16:59:12.0707 6360 umbus - ok16:59:12.0732 6360 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys16:59:12.0763 6360 UmPass - ok16:59:12.0875 6360 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll16:59:12.0910 6360 UmRdpService - ok16:59:12.0987 6360 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll16:59:13.0023 6360 upnphost - ok16:59:13.0092 6360 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys16:59:13.0129 6360 USBAAPL64 - ok16:59:13.0150 6360 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys16:59:13.0159 6360 usbccgp - ok16:59:13.0203 6360 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys16:59:13.0214 6360 usbcir - ok16:59:13.0218 6360 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys16:59:13.0227 6360 usbehci - ok16:59:13.0280 6360 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys16:59:13.0311 6360 usbhub - ok16:59:13.0329 6360 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys16:59:13.0359 6360 usbohci - ok16:59:13.0375 6360 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys16:59:13.0411 6360 usbprint - ok16:59:13.0521 6360 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys16:59:13.0532 6360 usbscan - ok16:59:13.0548 6360 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS16:59:13.0577 6360 USBSTOR - ok16:59:13.0592 6360 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys16:59:13.0601 6360 usbuhci - ok16:59:13.0651 6360 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys16:59:13.0663 6360 usbvideo - ok16:59:13.0687 6360 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll16:59:13.0711 6360 UxSms - ok16:59:13.0714 6360 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe16:59:13.0723 6360 VaultSvc - ok16:59:13.0741 6360 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys16:59:13.0748 6360 vdrvroot - ok16:59:13.0776 6360 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe16:59:13.0805 6360 vds - ok16:59:13.0819 6360 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys16:59:13.0829 6360 vga - ok16:59:13.0832 6360 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys16:59:13.0872 6360 VgaSave - ok16:59:13.0885 6360 VGPU - ok16:59:13.0892 6360 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys16:59:13.0902 6360 vhdmp - ok16:59:13.0946 6360 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys16:59:13.0954 6360 viaide - ok16:59:13.0959 6360 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys16:59:13.0967 6360 volmgr - ok16:59:13.0987 6360 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys16:59:13.0997 6360 volmgrx - ok16:59:14.0057 6360 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys16:59:14.0067 6360 volsnap - ok16:59:14.0088 6360 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys16:59:14.0097 6360 vsmraid - ok16:59:14.0192 6360 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe16:59:14.0277 6360 VSS - ok16:59:14.0418 6360 [ 52591834B0FA3293D35FD407FC230F7D ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe16:59:14.0431 6360 vToolbarUpdater12.2.6 - ok16:59:14.0456 6360 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys16:59:14.0467 6360 vwifibus - ok16:59:14.0470 6360 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys16:59:14.0482 6360 vwififlt - ok16:59:14.0499 6360 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys16:59:14.0511 6360 vwifimp - ok16:59:14.0612 6360 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll16:59:14.0669 6360 W32Time - ok16:59:14.0689 6360 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys16:59:14.0696 6360 wacommousefilter - ok16:59:14.0716 6360 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys16:59:14.0725 6360 WacomPen - ok16:59:14.0819 6360 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys16:59:14.0826 6360 wacomvhid - ok16:59:14.0851 6360 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys16:59:14.0889 6360 WANARP - ok16:59:14.0904 6360 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys16:59:14.0927 6360 Wanarpv6 - ok16:59:15.0031 6360 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe16:59:15.0053 6360 WatAdminSvc - ok16:59:15.0219 6360 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe16:59:15.0272 6360 wbengine - ok16:59:15.0298 6360 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll16:59:15.0313 6360 WbioSrvc - ok16:59:15.0362 6360 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll16:59:15.0395 6360 wcncsvc - ok16:59:15.0399 6360 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll16:59:15.0408 6360 WcsPlugInService - ok16:59:15.0437 6360 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys16:59:15.0445 6360 Wd - ok16:59:15.0463 6360 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys16:59:15.0472 6360 WDC_SAM - ok16:59:15.0594 6360 [ E6050FE6B60FA91188B8ABDB5B1E339F ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe16:59:15.0599 6360 WDDMService ( UnsignedFile.Multi.Generic ) - warning16:59:15.0599 6360 WDDMService - detected UnsignedFile.Multi.Generic (1)16:59:15.0658 6360 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys16:59:15.0672 6360 Wdf01000 - ok16:59:15.0817 6360 [ B83D5071B32A70BEBDB3330BFA7ACB80 ] WDFME C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe16:59:15.0834 6360 WDFME - ok16:59:15.0872 6360 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll16:59:15.0903 6360 WdiServiceHost - ok16:59:15.0905 6360 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll16:59:15.0918 6360 WdiSystemHost - ok16:59:15.0983 6360 [ 517DE2C5568CBA6B2A24A557AC60C30B ] WDSC C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe16:59:15.0994 6360 WDSC - ok16:59:16.0018 6360 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll16:59:16.0033 6360 WebClient - ok16:59:16.0055 6360 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll16:59:16.0108 6360 Wecsvc - ok16:59:16.0120 6360 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll16:59:16.0144 6360 wercplsupport - ok16:59:16.0184 6360 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll16:59:16.0224 6360 WerSvc - ok16:59:16.0242 6360 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys16:59:16.0265 6360 WfpLwf - ok16:59:16.0343 6360 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys16:59:16.0351 6360 WimFltr - ok16:59:16.0369 6360 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys16:59:16.0376 6360 WIMMount - ok16:59:16.0396 6360 WinDefend - ok16:59:16.0401 6360 WinHttpAutoProxySvc - ok16:59:16.0463 6360 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll16:59:16.0488 6360 Winmgmt - ok16:59:16.0628 6360 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll16:59:16.0702 6360 WinRM - ok16:59:16.0768 6360 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys16:59:16.0779 6360 WinUsb - ok16:59:16.0905 6360 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll16:59:16.0923 6360 Wlansvc - ok16:59:17.0159 6360 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE16:59:17.0188 6360 wlidsvc - ok16:59:17.0211 6360 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys16:59:17.0220 6360 WmiAcpi - ok16:59:17.0256 6360 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe Link to post Share on other sites More sharing options...
ai3643 Posted September 8, 2012 Author ID:594624 Share Posted September 8, 2012 That last post is about half the log, im trying to figuare out how to upload the .txt file Link to post Share on other sites More sharing options...
ai3643 Posted September 8, 2012 Author ID:594626 Share Posted September 8, 2012 17:07:23.0755 1848 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:4817:07:25.0235 1848 ============================================================17:07:25.0235 1848 Current date / time: 2012/09/07 17:07:25.023517:07:25.0235 1848 SystemInfo:17:07:25.0235 1848 17:07:25.0235 1848 OS Version: 6.1.7601 ServicePack: 1.017:07:25.0235 1848 Product type: Workstation17:07:25.0236 1848 ComputerName: THEWELCHS-PC17:07:25.0236 1848 UserName: The Welch's17:07:25.0236 1848 Windows directory: C:\Windows17:07:25.0236 1848 System windows directory: C:\Windows17:07:25.0236 1848 Running under WOW6417:07:25.0236 1848 Processor architecture: Intel x6417:07:25.0236 1848 Number of processors: 817:07:25.0236 1848 Page size: 0x100017:07:25.0236 1848 Boot type: Normal boot17:07:25.0236 1848 ============================================================17:07:25.0673 1848 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004017:07:25.0674 1848 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004017:07:25.0679 1848 Drive \Device\Harddisk4\DR4 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'17:07:25.0681 1848 ============================================================17:07:25.0681 1848 \Device\Harddisk0\DR0:17:07:25.0681 1848 MBR partitions:17:07:25.0681 1848 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x137800017:07:25.0681 1848 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x138C000, BlocksNum 0x38FF800017:07:25.0681 1848 \Device\Harddisk1\DR1:17:07:25.0681 1848 MBR partitions:17:07:25.0681 1848 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A38480017:07:25.0681 1848 \Device\Harddisk4\DR4:17:07:25.0682 1848 MBR partitions:17:07:25.0682 1848 \Device\Harddisk4\DR4\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE017:07:25.0682 1848 ============================================================17:07:25.0685 1848 C: <-> \Device\Harddisk0\DR0\Partition217:07:25.0936 1848 D: <-> \Device\Harddisk1\DR1\Partition117:07:25.0936 1848 ============================================================17:07:25.0936 1848 Initialize success17:07:25.0936 1848 ============================================================17:07:30.0686 5916 ============================================================17:07:30.0686 5916 Scan started17:07:30.0686 5916 Mode: Manual; SigCheck; TDLFS;17:07:30.0686 5916 ============================================================17:07:31.0653 5916 ================ Scan system memory ========================17:07:31.0653 5916 System memory - ok17:07:31.0654 5916 ================ Scan services =============================17:07:31.0815 5916 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE17:07:31.0858 5916 !SASCORE - ok17:07:32.0113 5916 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys17:07:32.0127 5916 1394ohci - ok17:07:32.0143 5916 [ 7A505465BBB1EB8B5AD4D76E8749383B ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys17:07:32.0156 5916 Acceler - ok17:07:32.0172 5916 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys17:07:32.0183 5916 ACPI - ok17:07:32.0186 5916 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys17:07:32.0196 5916 AcpiPmi - ok17:07:32.0414 5916 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe17:07:32.0421 5916 AdobeActiveFileMonitor8.0 - ok17:07:32.0733 5916 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe17:07:32.0742 5916 AdobeFlashPlayerUpdateSvc - ok17:07:32.0813 5916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys17:07:32.0826 5916 adp94xx - ok17:07:32.0871 5916 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys17:07:32.0882 5916 adpahci - ok17:07:32.0886 5916 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys17:07:32.0896 5916 adpu320 - ok17:07:32.0922 5916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll17:07:32.0947 5916 AeLookupSvc - ok17:07:33.0102 5916 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe17:07:33.0111 5916 AESTFilters - ok17:07:33.0178 5916 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys17:07:33.0191 5916 AFD - ok17:07:33.0230 5916 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys17:07:33.0238 5916 agp440 - ok17:07:33.0388 5916 [ 9725E7266CC9ABC475CA3762CECA6444 ] Ak27x64 C:\Windows\system32\DRIVERS\Ak27x64.sys17:07:33.0428 5916 Ak27x64 - ok17:07:33.0466 5916 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe17:07:33.0476 5916 ALG - ok17:07:33.0584 5916 [ 73FD38C98996FA971BAD46376610FA67 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe17:07:33.0594 5916 AlienFusionService - ok17:07:33.0646 5916 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys17:07:33.0657 5916 aliide - ok17:07:33.0855 5916 ALSysIO - ok17:07:33.0858 5916 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys17:07:33.0870 5916 amdide - ok17:07:33.0884 5916 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys17:07:33.0896 5916 AmdK8 - ok17:07:33.0899 5916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys17:07:33.0912 5916 AmdPPM - ok17:07:33.0918 5916 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys17:07:33.0930 5916 amdsata - ok17:07:33.0959 5916 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys17:07:33.0971 5916 amdsbs - ok17:07:33.0984 5916 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys17:07:33.0995 5916 amdxata - ok17:07:34.0057 5916 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys17:07:34.0084 5916 AppID - ok17:07:34.0100 5916 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll17:07:34.0123 5916 AppIDSvc - ok17:07:34.0149 5916 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll17:07:34.0173 5916 Appinfo - ok17:07:34.0304 5916 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe17:07:34.0311 5916 Apple Mobile Device - ok17:07:34.0418 5916 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll17:07:34.0429 5916 AppMgmt - ok17:07:34.0433 5916 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys17:07:34.0443 5916 arc - ok17:07:34.0447 5916 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys17:07:34.0456 5916 arcsas - ok17:07:34.0642 5916 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe17:07:34.0650 5916 aspnet_state - ok17:07:34.0675 5916 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys17:07:34.0701 5916 AsyncMac - ok17:07:34.0725 5916 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys17:07:34.0733 5916 atapi - ok17:07:34.0851 5916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll17:07:34.0867 5916 AudioEndpointBuilder - ok17:07:34.0883 5916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll17:07:34.0914 5916 AudioSrv - ok17:07:35.0007 5916 [ 96B4456F1DCA4EDA506ED31C7D2D6B05 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys17:07:35.0023 5916 Avgfwfd - ok17:07:35.0241 5916 [ 0CA0F4F13CDB30C488E069E88040DB07 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe17:07:35.0273 5916 avgfws - ok17:07:35.0725 5916 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe17:07:35.0787 5916 AVGIDSAgent - ok17:07:35.0834 5916 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys17:07:35.0850 5916 AVGIDSDriver - ok17:07:35.0865 5916 [ D19F5C2C2BA0962DD4437EC020858FA3 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys17:07:35.0881 5916 AVGIDSHA - ok17:07:35.0897 5916 [ B5C6EC8D0FC00BD291994926C5888FD3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys17:07:35.0912 5916 Avgldx64 - ok17:07:36.0021 5916 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys17:07:36.0021 5916 Avgloga - ok17:07:36.0053 5916 [ 91FEFBFF54E30A339F21F784983C9F6A ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys17:07:36.0053 5916 Avgmfx64 - ok17:07:36.0147 5916 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys17:07:36.0163 5916 Avgrkx64 - ok17:07:36.0194 5916 [ ECBE71E3AF3E146453EF9623A245E6E0 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys17:07:36.0210 5916 Avgtdia - ok17:07:36.0241 5916 [ E827B1156B85345929DBF16E12C02880 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys17:07:36.0256 5916 avgtp - ok17:07:36.0303 5916 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe17:07:36.0319 5916 avgwd - ok17:07:36.0366 5916 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll17:07:36.0366 5916 AxInstSV - ok17:07:36.0428 5916 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys17:07:36.0428 5916 b06bdrv - ok17:07:36.0459 5916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys17:07:36.0475 5916 b57nd60a - ok17:07:36.0506 5916 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll17:07:36.0522 5916 BDESVC - ok17:07:36.0522 5916 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys17:07:36.0553 5916 Beep - ok17:07:36.0678 5916 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll17:07:36.0709 5916 BFE - ok17:07:36.0724 5916 [ B6CB0C7A0EA9DEE5B7DB2DF0CF2A6625 ] BfLwf C:\Windows\system32\DRIVERS\bflwfx64.sys17:07:36.0740 5916 BfLwf - ok17:07:36.0896 5916 [ 0CB778BD8DEA06787C33B5577029802C ] Bigfoot Networks Killer Service C:\Program Files\Bigfoot Networks\Killer Network Manager\BFNService.exe17:07:36.0912 5916 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - warning17:07:36.0912 5916 Bigfoot Networks Killer Service - detected UnsignedFile.Multi.Generic (1)17:07:36.0974 5916 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll17:07:37.0005 5916 BITS - ok17:07:37.0021 5916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys17:07:37.0036 5916 blbdrive - ok17:07:37.0146 5916 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe17:07:37.0161 5916 Bonjour Service - ok17:07:37.0208 5916 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys17:07:37.0224 5916 bowser - ok17:07:37.0239 5916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys17:07:37.0255 5916 BrFiltLo - ok17:07:37.0255 5916 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys17:07:37.0270 5916 BrFiltUp - ok17:07:37.0364 5916 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys17:07:37.0395 5916 BridgeMP - ok17:07:37.0411 5916 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll17:07:37.0442 5916 Browser - ok17:07:37.0473 5916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys17:07:37.0489 5916 Brserid - ok17:07:37.0489 5916 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys17:07:37.0504 5916 BrSerWdm - ok17:07:37.0504 5916 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys17:07:37.0520 5916 BrUsbMdm - ok17:07:37.0551 5916 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys17:07:37.0551 5916 BrUsbSer - ok17:07:37.0660 5916 [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys17:07:37.0660 5916 BTCFilterService - ok17:07:37.0692 5916 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys17:07:37.0707 5916 BthEnum - ok17:07:37.0723 5916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys17:07:37.0738 5916 BTHMODEM - ok17:07:37.0738 5916 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys17:07:37.0754 5916 BthPan - ok17:07:37.0785 5916 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys17:07:37.0801 5916 BTHPORT - ok17:07:37.0879 5916 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll17:07:37.0910 5916 bthserv - ok17:07:37.0941 5916 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys17:07:37.0941 5916 BTHUSB - ok17:07:37.0988 5916 [ 7A2CE8C1BF4DAA1F2766E21E9CA11078 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys17:07:38.0004 5916 btwampfl - ok17:07:38.0004 5916 [ D895DC213EDBDA5FCC53AAD1F1E0E63B ] btwavdt C:\Windows\system32\drivers\btwavdt.sys17:07:38.0019 5916 btwavdt - ok17:07:38.0035 5916 [ 6D7AA2BDE0135599C5F230D69DB3B420 ] btwrchid C:\Windows\system32\drivers\btwrchid.sys17:07:38.0050 5916 btwrchid - ok17:07:38.0128 5916 catchme - ok17:07:38.0175 5916 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys17:07:38.0206 5916 cdfs - ok17:07:38.0222 5916 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys17:07:38.0222 5916 cdrom - ok17:07:38.0253 5916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll17:07:38.0284 5916 CertPropSvc - ok17:07:38.0316 5916 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys17:07:38.0331 5916 circlass - ok17:07:38.0362 5916 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys17:07:38.0378 5916 CLFS - ok17:07:38.0955 5916 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe17:07:38.0955 5916 clr_optimization_v2.0.50727_32 - ok17:07:39.0018 5916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe17:07:39.0018 5916 clr_optimization_v2.0.50727_64 - ok17:07:39.0127 5916 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe17:07:39.0127 5916 clr_optimization_v4.0.30319_32 - ok17:07:39.0142 5916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe17:07:39.0158 5916 clr_optimization_v4.0.30319_64 - ok17:07:39.0174 5916 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys17:07:39.0189 5916 CmBatt - ok17:07:39.0205 5916 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys17:07:39.0205 5916 cmdide - ok17:07:39.0252 5916 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys17:07:39.0267 5916 CNG - ok17:07:39.0283 5916 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys17:07:39.0283 5916 Compbatt - ok17:07:39.0298 5916 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys17:07:39.0314 5916 CompositeBus - ok17:07:39.0330 5916 COMSysApp - ok17:07:39.0626 5916 cpuz135 - ok17:07:39.0626 5916 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys17:07:39.0642 5916 crcdisk - ok17:07:39.0657 5916 Crypkey License - ok17:07:39.0735 5916 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll17:07:39.0751 5916 CryptSvc - ok17:07:39.0829 5916 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys17:07:39.0844 5916 CSC - ok17:07:39.0876 5916 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll17:07:39.0891 5916 CscService - ok17:07:39.0922 5916 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys17:07:39.0938 5916 CtClsFlt - ok17:07:40.0000 5916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll17:07:40.0032 5916 DcomLaunch - ok17:07:40.0110 5916 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll17:07:40.0141 5916 defragsvc - ok17:07:40.0172 5916 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys17:07:40.0188 5916 DfsC - ok17:07:40.0266 5916 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll17:07:40.0297 5916 Dhcp - ok17:07:40.0297 5916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys17:07:40.0328 5916 discache - ok17:07:40.0390 5916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys17:07:40.0390 5916 Disk - ok17:07:40.0422 5916 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll17:07:40.0422 5916 Dnscache - ok17:07:40.0453 5916 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll17:07:40.0468 5916 dot3svc - ok17:07:40.0515 5916 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys17:07:40.0515 5916 Dot4 - ok17:07:40.0593 5916 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys17:07:40.0593 5916 Dot4Print - ok17:07:40.0609 5916 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys17:07:40.0624 5916 dot4usb - ok17:07:40.0640 5916 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll17:07:40.0656 5916 DPS - ok17:07:40.0702 5916 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys17:07:40.0718 5916 drmkaud - ok17:07:40.0812 5916 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys17:07:40.0827 5916 DXGKrnl - ok17:07:40.0874 5916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll17:07:40.0890 5916 EapHost - ok17:07:41.0046 5916 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys17:07:41.0077 5916 ebdrv - ok17:07:41.0092 5916 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe17:07:41.0092 5916 EFS - ok17:07:41.0202 5916 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe17:07:41.0217 5916 ehRecvr - ok17:07:41.0233 5916 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe17:07:41.0248 5916 ehSched - ok17:07:41.0264 5916 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys17:07:41.0280 5916 elxstor - ok17:07:41.0311 5916 [ E47D9D7E6E53892FC97282482F4AE307 ] EMSC C:\Windows\system32\DRIVERS\EMSC.SYS17:07:41.0311 5916 EMSC - ok17:07:41.0326 5916 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys17:07:41.0342 5916 ErrDev - ok17:07:41.0389 5916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll17:07:41.0420 5916 EventSystem - ok17:07:41.0451 5916 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys17:07:41.0482 5916 exfat - ok17:07:41.0482 5916 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys17:07:41.0514 5916 fastfat - ok17:07:41.0623 5916 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe17:07:41.0638 5916 Fax - ok17:07:41.0670 5916 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys17:07:41.0670 5916 fdc - ok17:07:41.0716 5916 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll17:07:41.0748 5916 fdPHost - ok17:07:41.0748 5916 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll17:07:41.0779 5916 FDResPub - ok17:07:41.0779 5916 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys17:07:41.0779 5916 FileInfo - ok17:07:41.0810 5916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys17:07:41.0841 5916 Filetrace - ok17:07:41.0935 5916 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe17:07:41.0950 5916 FLEXnet Licensing Service - ok17:07:41.0966 5916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys17:07:41.0966 5916 flpydisk - ok17:07:41.0997 5916 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys17:07:42.0013 5916 FltMgr - ok17:07:42.0138 5916 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll17:07:42.0169 5916 FontCache - ok17:07:42.0325 5916 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe17:07:42.0325 5916 FontCache3.0.0.0 - ok17:07:42.0356 5916 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys17:07:42.0372 5916 FsDepends - ok17:07:42.0372 5916 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys17:07:42.0387 5916 Fs_Rec - ok17:07:42.0465 5916 [ 79B4CDE2B69ED8BA4011859780A66A4D ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe17:07:42.0465 5916 Futuremark SystemInfo Service - ok17:07:42.0481 5916 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys17:07:42.0496 5916 fvevol - ok17:07:42.0528 5916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys17:07:42.0543 5916 gagp30kx - ok17:07:42.0574 5916 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys17:07:42.0590 5916 GEARAspiWDM - ok17:07:42.0637 5916 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll17:07:42.0668 5916 gpsvc - ok17:07:42.0777 5916 GPU-Z - ok17:07:42.0793 5916 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys17:07:42.0793 5916 hcw85cir - ok17:07:42.0808 5916 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys17:07:42.0824 5916 HDAudBus - ok17:07:42.0824 5916 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys17:07:42.0840 5916 HidBatt - ok17:07:42.0840 5916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys17:07:42.0855 5916 HidBth - ok17:07:42.0855 5916 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys17:07:42.0871 5916 HidIr - ok17:07:42.0902 5916 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll17:07:42.0918 5916 hidserv - ok17:07:42.0949 5916 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys17:07:42.0949 5916 HidUsb - ok17:07:42.0980 5916 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll17:07:43.0011 5916 hkmsvc - ok17:07:43.0042 5916 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll17:07:43.0042 5916 HomeGroupListener - ok17:07:43.0058 5916 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll17:07:43.0074 5916 HomeGroupProvider - ok17:07:43.0074 5916 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys17:07:43.0089 5916 HP8207_8307 - ok17:07:43.0089 5916 HPHNDUSVC - ok17:07:43.0230 5916 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll17:07:43.0230 5916 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning17:07:43.0230 5916 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)17:07:43.0276 5916 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll17:07:43.0276 5916 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning17:07:43.0276 5916 hpqddsvc - detected UnsignedFile.Multi.Generic (1)17:07:43.0339 5916 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys17:07:43.0339 5916 HpSAMD - ok17:07:43.0448 5916 [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL17:07:43.0448 5916 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning17:07:43.0448 5916 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)17:07:43.0479 5916 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys17:07:43.0510 5916 HTTP - ok17:07:43.0526 5916 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys17:07:43.0526 5916 hwpolicy - ok17:07:43.0620 5916 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys17:07:43.0635 5916 i8042prt - ok17:07:43.0651 5916 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys17:07:43.0666 5916 iaStor - ok17:07:43.0729 5916 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe17:07:43.0744 5916 IAStorDataMgrSvc - ok17:07:43.0760 5916 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys17:07:43.0776 5916 iaStorV - ok17:07:43.0822 5916 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe17:07:43.0822 5916 IDriverT ( UnsignedFile.Multi.Generic ) - warning17:07:43.0822 5916 IDriverT - detected UnsignedFile.Multi.Generic (1)17:07:43.0916 5916 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe17:07:43.0932 5916 idsvc - ok17:07:44.0540 5916 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys17:07:44.0634 5916 igfx - ok17:07:44.0665 5916 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys17:07:44.0680 5916 iirsp - ok17:07:44.0743 5916 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll17:07:44.0774 5916 IKEEXT - ok17:07:44.0790 5916 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys17:07:44.0805 5916 Impcd - ok17:07:44.0852 5916 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys17:07:44.0868 5916 IntcDAud - ok17:07:44.0883 5916 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys17:07:44.0883 5916 intelide - ok17:07:44.0914 5916 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys17:07:44.0914 5916 intelppm - ok17:07:44.0946 5916 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll17:07:44.0961 5916 IPBusEnum - ok17:07:44.0961 5916 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys17:07:44.0992 5916 IpFilterDriver - ok17:07:45.0008 5916 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll17:07:45.0039 5916 iphlpsvc - ok17:07:45.0055 5916 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys17:07:45.0070 5916 IPMIDRV - ok17:07:45.0086 5916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys17:07:45.0117 5916 IPNAT - ok17:07:45.0258 5916 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe17:07:45.0273 5916 iPod Service - ok17:07:45.0304 5916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys17:07:45.0320 5916 IRENUM - ok17:07:45.0336 5916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys17:07:45.0336 5916 isapnp - ok17:07:45.0351 5916 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys17:07:45.0367 5916 iScsiPrt - ok17:07:45.0382 5916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys17:07:45.0398 5916 kbdclass - ok17:07:45.0398 5916 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys17:07:45.0398 5916 kbdhid - ok17:07:45.0414 5916 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe17:07:45.0414 5916 KeyIso - ok17:07:45.0445 5916 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys17:07:45.0445 5916 KSecDD - ok17:07:45.0460 5916 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys17:07:45.0460 5916 KSecPkg - ok17:07:45.0460 5916 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys17:07:45.0492 5916 ksthunk - ok17:07:45.0538 5916 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll17:07:45.0570 5916 KtmRm - ok17:07:45.0616 5916 [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys17:07:45.0616 5916 L1C - ok17:07:45.0741 5916 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll17:07:45.0772 5916 LanmanServer - ok17:07:45.0788 5916 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll17:07:45.0819 5916 LanmanWorkstation - ok17:07:45.0850 5916 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys17:07:45.0866 5916 lltdio - ok17:07:45.0897 5916 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll17:07:45.0913 5916 lltdsvc - ok17:07:45.0944 5916 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll17:07:45.0960 5916 lmhosts - ok17:07:46.0006 5916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys17:07:46.0022 5916 LSI_FC - ok17:07:46.0053 5916 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys17:07:46.0053 5916 LSI_SAS - ok17:07:46.0053 5916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys17:07:46.0069 5916 LSI_SAS2 - ok17:07:46.0069 5916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys17:07:46.0084 5916 LSI_SCSI - ok17:07:46.0100 5916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys17:07:46.0131 5916 luafv - ok17:07:46.0240 5916 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys17:07:46.0256 5916 MBAMProtector - ok17:07:46.0428 5916 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe17:07:46.0443 5916 MBAMService - ok17:07:46.0459 5916 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll17:07:46.0459 5916 Mcx2Svc - ok17:07:46.0474 5916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys17:07:46.0474 5916 megasas - ok17:07:46.0521 5916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys17:07:46.0537 5916 MegaSR - ok17:07:46.0568 5916 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys17:07:46.0568 5916 MEIx64 - ok17:07:46.0584 5916 Microsoft SharePoint Workspace Audit Service - ok17:07:46.0584 5916 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll17:07:46.0615 5916 MMCSS - ok17:07:46.0615 5916 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys17:07:46.0646 5916 Modem - ok17:07:46.0677 5916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys17:07:46.0677 5916 monitor - ok17:07:46.0724 5916 [ D69F1E9A944A5F46A494AF901ED41118 ] motandroidusb C:\Windows\system32\Drivers\motoandroid.sys17:07:46.0724 5916 motandroidusb - ok17:07:46.0849 5916 [ C94A2EA3FDFA5D650884926B710B7DB1 ] motccgp C:\Windows\system32\DRIVERS\motccgp.sys17:07:46.0849 5916 motccgp - ok17:07:46.0864 5916 [ D51E009BAEDA07EBC107D49D224C2414 ] motccgpfl C:\Windows\system32\DRIVERS\motccgpfl.sys17:07:46.0880 5916 motccgpfl - ok17:07:46.0896 5916 [ 3CC500C9B0E4D476802D277353CB2C89 ] MotDev C:\Windows\system32\DRIVERS\motodrv.sys17:07:46.0896 5916 MotDev - ok17:07:46.0942 5916 [ 060F0EF84F430802DF3788F3DCFD009C ] motmodem C:\Windows\system32\DRIVERS\motmodem.sys17:07:46.0942 5916 motmodem - ok17:07:46.0989 5916 [ EBD05F60CAFC5BBA2602B8D7101082D3 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys17:07:46.0989 5916 MotoSwitchService - ok17:07:47.0020 5916 [ 87701078C3F720AC7A028E937994CC49 ] Motousbnet C:\Windows\system32\DRIVERS\Motousbnet.sys17:07:47.0036 5916 Motousbnet - ok17:07:47.0114 5916 [ 4244E427CDA5F6485E74461B5B48A7B6 ] motusbdevice C:\Windows\system32\DRIVERS\motusbdevice.sys17:07:47.0130 5916 motusbdevice - ok17:07:47.0161 5916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys17:07:47.0176 5916 mouclass - ok17:07:47.0192 5916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys17:07:47.0208 5916 mouhid - ok17:07:47.0223 5916 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys17:07:47.0239 5916 mountmgr - ok17:07:47.0332 5916 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe17:07:47.0332 5916 MozillaMaintenance - ok17:07:47.0348 5916 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys17:07:47.0364 5916 mpio - ok17:07:47.0379 5916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys17:07:47.0410 5916 mpsdrv - ok17:07:47.0535 5916 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll17:07:47.0566 5916 MpsSvc - ok17:07:47.0598 5916 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys17:07:47.0613 5916 MRxDAV - ok17:07:47.0660 5916 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys17:07:47.0660 5916 mrxsmb - ok17:07:47.0707 5916 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys17:07:47.0707 5916 mrxsmb10 - ok17:07:47.0722 5916 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys17:07:47.0722 5916 mrxsmb20 - ok17:07:47.0738 5916 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys17:07:47.0738 5916 msahci - ok17:07:47.0769 5916 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys17:07:47.0769 5916 msdsm - ok17:07:47.0800 5916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe17:07:47.0816 5916 MSDTC - ok17:07:47.0816 5916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys17:07:47.0863 5916 Msfs - ok17:07:47.0878 5916 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys17:07:47.0910 5916 mshidkmdf - ok17:07:47.0925 5916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys17:07:47.0925 5916 msisadrv - ok17:07:47.0941 5916 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll17:07:47.0972 5916 MSiSCSI - ok17:07:47.0972 5916 msiserver - ok17:07:48.0019 5916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys17:07:48.0034 5916 MSKSSRV - ok17:07:48.0050 5916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys17:07:48.0081 5916 MSPCLOCK - ok17:07:48.0097 5916 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys17:07:48.0128 5916 MSPQM - ok17:07:48.0144 5916 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys17:07:48.0159 5916 MsRPC - ok17:07:48.0175 5916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys17:07:48.0190 5916 mssmbios - ok17:07:48.0206 5916 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys17:07:48.0237 5916 MSTEE - ok17:07:48.0253 5916 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys17:07:48.0268 5916 MTConfig - ok17:07:48.0268 5916 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys17:07:48.0284 5916 Mup - ok17:07:48.0362 5916 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll17:07:48.0393 5916 napagent - ok17:07:48.0440 5916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys17:07:48.0456 5916 NativeWifiP - ok17:07:48.0705 5916 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe17:07:48.0721 5916 NAUpdate - ok17:07:48.0736 5916 [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys17:07:48.0752 5916 NBVol - ok17:07:48.0752 5916 [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys17:07:48.0752 5916 NBVolUp - ok17:07:48.0877 5916 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys17:07:48.0892 5916 NDIS - ok17:07:48.0924 5916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys17:07:48.0955 5916 NdisCap - ok17:07:48.0986 5916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys17:07:49.0002 5916 NdisTapi - ok17:07:49.0017 5916 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys17:07:49.0048 5916 Ndisuio - ok17:07:49.0080 5916 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys17:07:49.0095 5916 NdisWan - ok17:07:49.0095 5916 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys17:07:49.0126 5916 NDProxy - ok17:07:49.0189 5916 [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll17:07:49.0189 5916 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning17:07:49.0189 5916 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)17:07:49.0220 5916 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys17:07:49.0251 5916 NetBIOS - ok17:07:49.0267 5916 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys17:07:49.0298 5916 NetBT - ok17:07:49.0298 5916 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe17:07:49.0314 5916 Netlogon - ok17:07:49.0345 5916 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll17:07:49.0376 5916 Netman - ok17:07:49.0407 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe17:07:49.0423 5916 NetMsmqActivator - ok17:07:49.0423 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe17:07:49.0438 5916 NetPipeActivator - ok17:07:49.0470 5916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll17:07:49.0501 5916 netprofm - ok17:07:49.0501 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe17:07:49.0501 5916 NetTcpActivator - ok17:07:49.0516 5916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe17:07:49.0516 5916 NetTcpPortSharing - ok17:07:49.0548 5916 [ 2263727032E9B19231A706046B8C82D3 ] NetworkX C:\Windows\system32\ckldrv.sys17:07:49.0548 5916 NetworkX - ok17:07:49.0594 5916 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys17:07:49.0594 5916 nfrd960 - ok17:07:49.0641 5916 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll17:07:49.0672 5916 NlaSvc - ok17:07:49.0813 5916 [ B1EF4686961986DFFB7FE8F18E6FCB5B ] nlsX86cc C:\Windows\SysWOW64\nlssrv32.exe17:07:49.0813 5916 nlsX86cc - ok17:07:49.0813 5916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys17:07:49.0844 5916 Npfs - ok17:07:49.0844 5916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll17:07:49.0875 5916 nsi - ok17:07:49.0875 5916 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys17:07:49.0906 5916 nsiproxy - ok17:07:49.0984 5916 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys17:07:50.0016 5916 Ntfs - ok17:07:50.0016 5916 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys17:07:50.0047 5916 Null - ok17:07:50.0047 5916 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys17:07:50.0062 5916 nusb3hub - ok17:07:50.0094 5916 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys17:07:50.0094 5916 nusb3xhc - ok17:07:50.0187 5916 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys17:07:50.0203 5916 NVHDA - ok17:07:50.0265 5916 [ F8219CD9792008144A19691B17EA2993 ] nvkflt C:\Windows\system32\DRIVERS\nvkflt.sys17:07:50.0281 5916 nvkflt - ok17:07:50.0998 5916 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys17:07:51.0154 5916 nvlddmkm - ok17:07:51.0186 5916 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys17:07:51.0186 5916 nvpciflt - ok17:07:51.0217 5916 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys17:07:51.0217 5916 nvraid - ok17:07:51.0264 5916 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys17:07:51.0264 5916 nvstor - ok17:07:51.0326 5916 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] NVSvc C:\Windows\system32\nvvsvc.exe17:07:51.0342 5916 NVSvc - ok17:07:51.0498 5916 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe17:07:51.0513 5916 nvUpdatusService - ok17:07:51.0560 5916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys17:07:51.0560 5916 nv_agp - ok17:07:51.0576 5916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys17:07:51.0591 5916 ohci1394 - ok17:07:51.0669 5916 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE17:07:51.0685 5916 ose - ok17:07:52.0122 5916 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE17:07:52.0184 5916 osppsvc - ok17:07:52.0200 5916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll17:07:52.0215 5916 p2pimsvc - ok17:07:52.0262 5916 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll17:07:52.0278 5916 p2psvc - ok17:07:52.0309 5916 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys17:07:52.0309 5916 Parport - ok17:07:52.0340 5916 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys17:07:52.0340 5916 partmgr - ok17:07:52.0371 5916 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll17:07:52.0371 5916 PcaSvc - ok17:07:52.0512 5916 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 c:\program files\alienautopsy\pcdsrvc_x64.pkms17:07:52.0512 5916 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - ok17:07:52.0527 5916 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys17:07:52.0543 5916 pci - ok17:07:52.0558 5916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys17:07:52.0558 5916 pciide - ok17:07:52.0574 5916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys17:07:52.0590 5916 pcmcia - ok17:07:52.0590 5916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys17:07:52.0590 5916 pcw - ok17:07:52.0652 5916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys17:07:52.0683 5916 PEAUTH - ok17:07:52.0902 5916 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll17:07:52.0917 5916 PeerDistSvc - ok17:07:52.0948 5916 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe17:07:52.0964 5916 PerfHost - ok17:07:53.0089 5916 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll17:07:53.0120 5916 pla - ok17:07:53.0198 5916 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll17:07:53.0214 5916 PlugPlay - ok17:07:53.0229 5916 [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll17:07:53.0245 5916 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning17:07:53.0245 5916 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)17:07:53.0307 5916 PnkBstrA - ok17:07:53.0323 5916 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll17:07:53.0338 5916 PNRPAutoReg - ok17:07:53.0370 5916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll17:07:53.0385 5916 PNRPsvc - ok17:07:53.0432 5916 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll17:07:53.0463 5916 PolicyAgent - ok17:07:53.0510 5916 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll17:07:53.0510 5916 Power - ok17:07:53.0557 5916 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys17:07:53.0572 5916 PptpMiniport - ok17:07:53.0604 5916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys17:07:53.0604 5916 Processor - ok17:07:53.0619 5916 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll17:07:53.0650 5916 ProfSvc - ok17:07:53.0650 5916 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe17:07:53.0666 5916 ProtectedStorage - ok17:07:53.0697 5916 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys17:07:53.0713 5916 Psched - ok17:07:53.0728 5916 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys17:07:53.0744 5916 PxHlpa64 - ok17:07:53.0884 5916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys17:07:53.0900 5916 ql2300 - ok17:07:53.0900 5916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys17:07:53.0916 5916 ql40xx - ok17:07:53.0931 5916 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll17:07:53.0947 5916 QWAVE - ok17:07:53.0978 5916 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys17:07:53.0994 5916 QWAVEdrv - ok17:07:53.0994 5916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys17:07:54.0009 5916 RasAcd - ok17:07:54.0040 5916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys17:07:54.0056 5916 RasAgileVpn - ok17:07:54.0072 5916 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll17:07:54.0103 5916 RasAuto - ok17:07:54.0103 5916 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys17:07:54.0134 5916 Rasl2tp - ok17:07:54.0165 5916 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll17:07:54.0181 5916 RasMan - ok17:07:54.0196 5916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys17:07:54.0212 5916 RasPppoe - ok17:07:54.0228 5916 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys17:07:54.0259 5916 RasSstp - ok17:07:54.0274 5916 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys17:07:54.0306 5916 rdbss - ok17:07:54.0306 5916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys17:07:54.0321 5916 rdpbus - ok17:07:54.0321 5916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys17:07:54.0352 5916 RDPCDD - ok17:07:54.0415 5916 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys17:07:54.0415 5916 RDPDR - ok17:07:54.0430 5916 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys17:07:54.0462 5916 RDPENCDD - ok17:07:54.0462 5916 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys17:07:54.0493 5916 RDPREFMP - ok17:07:54.0555 5916 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys17:07:54.0555 5916 RdpVideoMiniport - ok17:07:54.0586 5916 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys17:07:54.0602 5916 RDPWD - ok17:07:54.0633 5916 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys17:07:54.0649 5916 rdyboost - ok17:07:54.0696 5916 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll17:07:54.0727 5916 RemoteAccess - ok17:07:54.0758 5916 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll17:07:54.0774 5916 RemoteRegistry - ok17:07:54.0789 5916 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys17:07:54.0805 5916 RFCOMM - ok17:07:54.0961 5916 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe17:07:54.0976 5916 RoxMediaDB12OEM - ok17:07:55.0008 5916 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe17:07:55.0008 5916 RoxWatch12 - ok17:07:55.0023 5916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll17:07:55.0039 5916 RpcEptMapper - ok17:07:55.0054 5916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe17:07:55.0070 5916 RpcLocator - ok17:07:55.0148 5916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll17:07:55.0179 5916 RpcSs - ok17:07:55.0226 5916 [ 9D21618E7A3B2C75CF1A2ECBBE723730 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys17:07:55.0242 5916 RSPCIESTOR - ok17:07:55.0273 5916 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys17:07:55.0288 5916 rspndr - ok17:07:55.0288 5916 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe17:07:55.0304 5916 SamSs - ok17:07:55.0366 5916 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS17:07:55.0382 5916 SASDIFSV - ok17:07:55.0413 5916 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS17:07:55.0429 5916 SASKUTIL - ok17:07:55.0429 5916 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys17:07:55.0444 5916 sbp2port - ok17:07:55.0460 5916 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll17:07:55.0491 5916 SCardSvr - ok17:07:55.0491 5916 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys17:07:55.0522 5916 scfilter - ok17:07:55.0585 5916 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll17:07:55.0616 5916 Schedule - ok17:07:55.0647 5916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll17:07:55.0663 5916 SCPolicySvc - ok17:07:56.0381 5916 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys17:07:56.0381 5916 sdbus - ok17:07:56.0396 5916 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll17:07:56.0412 5916 SDRSVC - ok17:07:56.0443 5916 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys17:07:56.0459 5916 secdrv - ok17:07:56.0474 5916 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll17:07:56.0505 5916 seclogon - ok17:07:56.0521 5916 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll17:07:56.0552 5916 SENS - ok17:07:56.0583 5916 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll17:07:56.0599 5916 SensrSvc - ok17:07:56.0615 5916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys17:07:56.0615 5916 Serenum - ok17:07:56.0630 5916 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys17:07:56.0646 5916 Serial - ok17:07:56.0661 5916 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys17:07:56.0677 5916 sermouse - ok17:07:56.0693 5916 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll17:07:56.0724 5916 SessionEnv - ok17:07:56.0739 5916 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys17:07:56.0755 5916 sffdisk - ok17:07:56.0755 5916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys17:07:56.0771 5916 sffp_mmc - ok17:07:56.0771 5916 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys17:07:56.0786 5916 sffp_sd - ok17:07:56.0802 5916 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys17:07:56.0817 5916 sfloppy - ok17:07:56.0911 5916 [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService C:\Program Files (x86)\AlienRespawn\sftservice.EXE17:07:56.0942 5916 SftService - ok17:07:56.0973 5916 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll17:07:57.0005 5916 SharedAccess - ok17:07:57.0051 5916 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll17:07:57.0083 5916 ShellHWDetection - ok17:07:57.0083 5916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys17:07:57.0098 5916 SiSRaid2 - ok17:07:57.0098 5916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys17:07:57.0114 5916 SiSRaid4 - ok17:07:57.0441 5916 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe17:07:57.0488 5916 Skype C2C Service - ok17:07:57.0582 5916 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe17:07:57.0597 5916 SkypeUpdate - ok17:07:57.0629 5916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys17:07:57.0660 5916 Smb - ok17:07:57.0675 5916 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe17:07:57.0675 5916 SNMPTRAP - ok17:07:57.0738 5916 [ F9369327409492097B0BB7CE86BD29DE ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys17:07:57.0753 5916 Soluto - ok17:07:57.0800 5916 [ ED8397986BE35C11BFB321636D6991EE ] SolutoService C:\Program Files\Soluto\SolutoService.exe17:07:57.0800 5916 SolutoService - ok17:07:57.0816 5916 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys17:07:57.0831 5916 spldr - ok17:07:57.0909 5916 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe17:07:57.0941 5916 Spooler - ok17:07:58.0175 5916 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe17:07:58.0221 5916 sppsvc - ok17:07:58.0221 5916 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll17:07:58.0253 5916 sppuinotify - ok17:07:58.0284 5916 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys17:07:58.0299 5916 srv - ok17:07:58.0331 5916 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys17:07:58.0331 5916 srv2 - ok17:07:58.0362 5916 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys17:07:58.0362 5916 srvnet - ok17:07:58.0409 5916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll17:07:58.0440 5916 SSDPSRV - ok17:07:58.0440 5916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll17:07:58.0471 5916 SstpSvc - ok17:07:58.0627 5916 [ E82994866A370A480607637F28B82835 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe17:07:58.0643 5916 STacSV - ok17:07:58.0658 5916 [ 92E7F6666633D2DD91D527503DAA7BE0 ] stdcfltn C:\Windows\system32\DRIVERS\stdcfltn.sys17:07:58.0658 5916 stdcfltn - ok17:07:58.0705 5916 Steam Client Service - ok17:07:58.0861 5916 [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe17:07:58.0877 5916 Stereo Service - ok17:07:58.0892 5916 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys17:07:58.0892 5916 stexstor - ok17:07:58.0939 5916 [ 3AD0ED8B19CD76D2254DE5FB298E3C26 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys17:07:58.0939 5916 STHDA - ok17:07:58.0970 5916 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys17:07:58.0986 5916 StillCam - ok17:07:59.0017 5916 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll17:07:59.0033 5916 stisvc - ok17:07:59.0079 5916 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe17:07:59.0079 5916 stllssvr - ok17:07:59.0095 5916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys17:07:59.0111 5916 swenum - ok17:07:59.0282 5916 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe17:07:59.0298 5916 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning17:07:59.0298 5916 SwitchBoard - detected UnsignedFile.Multi.Generic (1)17:07:59.0376 5916 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll17:07:59.0407 5916 swprv - ok17:07:59.0423 5916 Synth3dVsc - ok17:07:59.0547 5916 [ D8205430CFD64FDB7D691D3BB74FD18F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys17:07:59.0563 5916 SynTP - ok17:07:59.0703 5916 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll17:07:59.0719 5916 SysMain - ok17:07:59.0735 5916 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll17:07:59.0750 5916 TabletInputService - ok17:08:00.0312 5916 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe17:08:00.0390 5916 TabletServicePen - ok17:08:00.0437 5916 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll17:08:00.0468 5916 TapiSrv - ok17:08:00.0483 5916 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll17:08:00.0515 5916 TBS - ok17:08:00.0655 5916 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys17:08:00.0686 5916 Tcpip - ok17:08:00.0717 5916 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys17:08:00.0733 5916 TCPIP6 - ok17:08:00.0764 5916 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys17:08:00.0780 5916 tcpipreg - ok17:08:00.0795 5916 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys17:08:00.0811 5916 TDPIPE - ok17:08:00.0842 5916 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys17:08:00.0858 5916 TDTCP - ok17:08:00.0858 5916 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys17:08:00.0889 5916 tdx - ok17:08:00.0889 5916 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys17:08:00.0905 5916 TermDD - ok17:08:00.0920 5916 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll17:08:00.0951 5916 TermService - ok17:08:00.0998 5916 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll17:08:01.0014 5916 Themes - ok17:08:01.0014 5916 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll17:08:01.0045 5916 THREADORDER - ok17:08:01.0185 5916 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe17:08:01.0201 5916 TouchServicePen - ok17:08:01.0217 5916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll17:08:01.0248 5916 TrkWks - ok17:08:01.0295 5916 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe17:08:01.0310 5916 TrustedInstaller - ok17:08:01.0326 5916 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys17:08:01.0341 5916 tssecsrv - ok17:08:01.0388 5916 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys17:08:01.0404 5916 TsUsbFlt - ok17:08:01.0419 5916 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys17:08:01.0435 5916 TsUsbGD - ok17:08:01.0435 5916 tsusbhub - ok17:08:01.0451 5916 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys17:08:01.0466 5916 tunnel - ok17:08:01.0482 5916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys17:08:01.0482 5916 uagp35 - ok17:08:01.0529 5916 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys17:08:01.0560 5916 udfs - ok17:08:01.0575 5916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe17:08:01.0591 5916 UI0Detect - ok17:08:01.0622 5916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys17:08:01.0622 5916 uliagpkx - ok17:08:01.0638 5916 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys17:08:01.0638 5916 umbus - ok17:08:01.0638 5916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys17:08:01.0653 5916 UmPass - ok17:08:01.0716 5916 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll17:08:01.0731 5916 UmRdpService - ok17:08:01.0747 5916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll17:08:01.0778 5916 upnphost - ok17:08:01.0794 5916 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys17:08:01.0809 5916 USBAAPL64 - ok17:08:01.0825 5916 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys17:08:01.0825 5916 usbccgp - ok17:08:01.0841 5916 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys17:08:01.0856 5916 usbcir - ok17:08:01.0856 5916 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys17:08:01.0872 5916 usbehci - ok17:08:01.0903 5916 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys17:08:01.0903 5916 usbhub - ok17:08:01.0919 5916 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys17:08:01.0934 5916 usbohci - ok17:08:01.0950 5916 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys17:08:01.0965 5916 usbprint - ok17:08:01.0997 5916 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys17:08:01.0997 5916 usbscan - ok17:08:02.0012 5916 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS17:08:02.0028 5916 USBSTOR - ok17:08:02.0043 5916 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys17:08:02.0059 5916 usbuhci - ok17:08:02.0075 5916 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys17:08:02.0090 5916 usbvideo - ok17:08:02.0090 5916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll17:08:02.0121 5916 UxSms - ok17:08:02.0121 5916 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe17:08:02.0137 5916 VaultSvc - ok17:08:02.0153 5916 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys17:08:02.0168 5916 vdrvroot - ok17:08:02.0199 5916 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe17:08:02.0231 5916 vds - ok17:08:02.0246 5916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys17:08:02.0262 5916 vga - ok17:08:02.0262 5916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys17:08:02.0277 5916 VgaSave - ok17:08:02.0293 5916 VGPU - ok17:08:02.0293 5916 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys17:08:02.0309 5916 vhdmp - ok17:08:02.0309 5916 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys17:08:02.0324 5916 viaide - ok17:08:02.0324 5916 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys17:08:02.0340 5916 volmgr - ok17:08:02.0371 5916 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys17:08:02.0387 5916 volmgrx - ok17:08:02.0402 5916 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys17:08:02.0402 5916 volsnap - ok17:08:02.0433 5916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys17:08:02.0449 5916 vsmraid - ok17:08:02.0480 5916 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe17:08:02.0511 5916 VSS - ok17:08:02.0621 5916 [ 52591834B0FA3293D35FD407FC230F7D ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe17:08:02.0621 5916 vToolbarUpdater12.2.6 - ok17:08:02.0636 5916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys17:08:02.0636 5916 vwifibus - ok17:08:02.0652 5916 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys17:08:02.0652 5916 vwififlt - ok17:08:02.0667 5916 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys17:08:02.0667 5916 vwifimp - ok17:08:02.0730 5916 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll17:08:02.0761 5916 W32Time - ok17:08:02.0948 5916 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys17:08:02.0964 5916 wacommousefilter - ok17:08:02.0964 5916 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys17:08:02.0979 5916 WacomPen - ok17:08:03.0026 5916 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys17:08:03.0026 5916 wacomvhid - ok17:08:03.0042 5916 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys17:08:03.0073 5916 WANARP - ok17:08:03.0073 5916 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys17:08:03.0104 5916 Wanarpv6 - ok17:08:03.0151 5916 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe17:08:03.0182 5916 WatAdminSvc - ok17:08:03.0213 5916 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe17:08:03.0229 5916 wbengine - ok17:08:03.0276 5916 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll17:08:03.0291 5916 WbioSrvc - ok17:08:03.0307 5916 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll17:08:03.0323 5916 wcncsvc - ok17:08:03.0323 5916 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll17:08:03.0338 5916 WcsPlugInService - ok17:08:03.0338 5916 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys17:08:03.0338 5916 Wd - ok17:08:03.0338 5916 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys17:08:03.0354 5916 WDC_SAM - ok17:08:03.0432 5916 [ E6050FE6B60FA91188B8ABDB5B1E339F ] WDDMService C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe17:08:03.0432 5916 WDDMService ( UnsignedFile.Multi.Generic ) - warning17:08:03.0432 5916 WDDMService - detected UnsignedFile.Multi.Generic (1)17:08:03.0463 5916 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys17:08:03.0479 5916 Wdf01000 - ok17:08:03.0572 5916 [ B83D5071B32A70BEBDB3330BFA7ACB80 ] WDFME C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe17:08:03.0603 5916 WDFME - ok17:08:03.0681 5916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll17:08:03.0697 5916 WdiServiceHost - ok17:08:03.0697 5916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll17:08:03.0713 5916 WdiSystemHost - ok17:08:03.0744 5916 [ 517DE2C5568CBA6B2A24A557AC60C30B ] WDSC C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe17:08:03.0759 5916 WDSC - ok17:08:03.0775 5916 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll17:08:03.0775 5916 WebClient - ok17:08:03.0791 5916 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll17:08:03.0806 5916 Wecsvc - ok17:08:03.0822 5916 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll17:08:03.0853 5916 wercplsupport - ok17:08:03.0884 5916 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll17:08:03.0900 5916 WerSvc - ok17:08:03.0900 5916 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys17:08:03.0931 5916 WfpLwf - ok17:08:03.0962 5916 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys17:08:03.0962 5916 WimFltr - ok17:08:03.0993 5916 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys17:08:03.0993 5916 WIMMount - ok17:08:04.0025 5916 WinDefend - ok17:08:04.0025 5916 WinHttpAutoProxySvc - ok17:08:04.0056 5916 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll17:08:04.0087 5916 Winmgmt - ok17:08:04.0134 5916 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll17:08:04.0196 5916 WinRM - ok17:08:04.0259 5916 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys17:08:04.0259 5916 WinUsb - ok17:08:04.0305 5916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll17:08:04.0337 5916 Wlansvc - ok17:08:04.0524 5916 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE17:08:04.0555 5916 wlidsvc - ok17:08:04.0555 5916 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys17:08:04.0571 5916 WmiAcpi - ok17:08:04.0586 5916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe17:08:04.0602 5916 wmiApSrv - ok17:08:04.0617 5916 WMPNetworkSvc - ok17:08:04.0617 5916 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll17:08:04.0633 5916 WPCSvc - ok17:08:04.0649 5916 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll17:08:04.0664 5916 WPDBusEnum - ok17:08:04.0680 5916 [ D0BA650BD00C346B0B860F6CEC275296 ] WRkrn C:\Windows\system32\drivers\WRkrn.sys17:08:04.0695 5916 WRkrn - ok17:08:04.0742 5916 [ 198434E71A01A170EDA6C73A812B540D ] WRSVC C:\Program Files\Webroot\WRSA.exe17:08:04.0758 5916 WRSVC - ok17:08:04.0758 5916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys17:08:04.0789 5916 ws2ifsl - ok17:08:04.0805 5916 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll17:08:04.0820 5916 wscsvc - ok17:08:04.0820 5916 WSearch - ok17:08:04.0976 5916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll17:08:05.0007 5916 wuauserv - ok17:08:05.0023 5916 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys17:08:05.0054 5916 WudfPf - ok17:08:05.0085 5916 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys17:08:05.0101 5916 WUDFRd - ok17:08:05.0132 5916 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll17:08:05.0148 5916 wudfsvc - ok17:08:05.0179 5916 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll17:08:05.0195 5916 WwanSvc - ok17:08:05.0210 5916 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys17:08:05.0210 5916 xusb21 - ok17:08:05.0319 5916 ================ Scan global ===============================17:08:05.0319 5916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll17:08:05.0397 5916 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll17:08:05.0397 5916 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll17:08:05.0413 5916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll17:08:05.0460 5916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe17:08:05.0460 5916 [Global] - ok17:08:05.0460 5916 ================ Scan MBR ==================================17:08:05.0475 5916 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR017:08:06.0146 5916 \Device\Harddisk0\DR0 - ok17:08:06.0146 5916 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR117:08:06.0193 5916 \Device\Harddisk1\DR1 - ok17:08:06.0209 5916 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR417:08:06.0302 5916 \Device\Harddisk4\DR4 - ok17:08:06.0302 5916 ================ Scan VBR ==================================17:08:06.0318 5916 [ 67E7BE0179EF85BB07615A3E3E538E1A ] \Device\Harddisk0\DR0\Partition117:08:06.0318 5916 \Device\Harddisk0\DR0\Partition1 - ok17:08:06.0318 5916 [ 44904C0F281407A95FDDF18B78F6532A ] \Device\Harddisk0\DR0\Partition217:08:06.0318 5916 \Device\Harddisk0\DR0\Partition2 - ok17:08:06.0318 5916 [ AD70A3F884CDB14FB3A3EECF2C14D53A ] \Device\Harddisk1\DR1\Partition117:08:06.0318 5916 \Device\Harddisk1\DR1\Partition1 - ok17:08:06.0349 5916 [ 34E3D9EBFD8265009819D5F35D18518E ] \Device\Harddisk4\DR4\Partition117:08:06.0349 5916 \Device\Harddisk4\DR4\Partition1 - ok17:08:06.0349 5916 ============================================================17:08:06.0349 5916 Scan finished17:08:06.0349 5916 ============================================================17:08:06.0365 6280 Detected object count: 917:08:06.0365 6280 Actual detected object count: 917:08:47.0861 6280 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 Bigfoot Networks Killer Service ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0861 6280 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0861 6280 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0861 6280 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0861 6280 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0861 6280 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0861 6280 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0876 6280 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0876 6280 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0876 6280 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0876 6280 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:47.0876 6280 WDDMService ( UnsignedFile.Multi.Generic ) - skipped by user17:08:47.0876 6280 WDDMService ( UnsignedFile.Multi.Generic ) - User select action: Skip17:08:52.0385 6412 Deinitialize success Link to post Share on other sites More sharing options...
MrCharlie Posted September 8, 2012 ID:594645 Share Posted September 8, 2012 OK that can was clean, lets run ComboFix...Please create a new system restore point before you run ComboFix.If after running ComboFix you can't connect to the internet, please use that system restore point and that will correct the problem.~~~~~~~~~~~~~~~~Please download and run ComboFix.The most important things to remember when running it is to disable all your malware programs and run Combofix from your desktop.Please visit this webpage for download links, and instructions for running ComboFixhttp://www.bleepingc...to-use-combofixEnsure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Information on disabling your malware programs can be found Here.Make sure you run ComboFix from your desktop. Give it at least 30-45 minutes to finish if needed.Please include the C:\ComboFix.txt in your next reply for further review.---------->NOTE<----------If you get the message Illegal operation attempted on registry key that has been marked for deletion after you run ComboFix....please reboot the computer, this should resolve the problem. You may have to do this several times if needed.MrC Link to post Share on other sites More sharing options...
ai3643 Posted September 8, 2012 Author ID:594658 Share Posted September 8, 2012 ComboFix 12-09-07.03 - The Welch's 09/07/2012 19:20:12.2.8 - x64Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.24524.20690 [GMT -7:00]Running from: c:\users\The Welch's\Desktop\Downloads\ComboFix.exeAV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401}FW: AVG Internet Security 2013 *Enabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC}SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}..((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))..c:\windows\SysWow64\20612062c:\windows\SysWow64\FlashPlayerInstaller.exe..((((((((((((((((((((((((( Files Created from 2012-08-08 to 2012-09-08 )))))))))))))))))))))))))))))))..2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\Public\AppData\Local\temp2012-09-08 02:28 . 2012-09-08 02:28 -------- d-----w- c:\users\Default\AppData\Local\temp2012-09-08 01:59 . 2012-09-08 02:15 -------- d-----w- c:\programdata\Spybot - Search & Destroy2012-09-08 01:59 . 2012-09-08 02:01 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy2012-09-07 23:34 . 2012-09-07 23:34 -------- d-----w- c:\users\The Welch's\AppData\Roaming\AVG20132012-09-07 23:33 . 2012-09-07 23:33 -------- d-----w- c:\users\The Welch's\AppData\Local\AVG Secure Search2012-09-07 23:33 . 2012-09-07 23:33 -------- d-----w- c:\users\The Welch's\AppData\Roaming\TuneUp Software2012-09-07 23:33 . 2012-09-07 23:33 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\program files (x86)\AVG Secure Search2012-09-07 23:32 . 2012-09-07 23:33 -------- d-----w- c:\programdata\AVG Secure Search2012-09-07 23:31 . 2012-09-07 23:51 -------- d-----w- c:\programdata\AVG20132012-09-07 23:31 . 2012-09-07 23:31 -------- d-----w- C:\$AVG2012-09-07 23:30 . 2012-09-07 23:30 -------- d-----w- c:\program files (x86)\AVG2012-09-07 23:20 . 2012-09-08 01:57 -------- d-----w- c:\programdata\MFAData2012-09-07 23:20 . 2012-09-07 23:51 -------- d-----w- c:\users\The Welch's\AppData\Local\Avg20132012-09-07 23:20 . 2012-09-07 23:20 -------- d--h--w- c:\programdata\Common Files2012-09-07 23:20 . 2012-09-07 23:20 -------- d-----w- c:\users\The Welch's\AppData\Local\MFAData2012-09-07 11:34 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B1C09FEE-47B8-4AA4-81E3-FDA91CB7FA29}\mpengine.dll2012-09-07 01:56 . 2012-09-07 01:56 -------- d-----w- c:\users\The Welch's\AppData\Roaming\Actual Tools2012-09-07 01:56 . 2012-09-07 10:26 -------- d-----w- c:\program files (x86)\Actual Window Manager2012-09-06 18:12 . 2012-09-06 18:12 -------- d-----w- c:\windows\SysWow64\10632012-09-05 19:24 . 2012-09-05 19:24 282696 ----a-w- c:\windows\SysWow64\PnkBstrB.exe2012-08-30 18:12 . 2012-09-06 18:12 -------- d-----w- c:\windows\SysWow64\10962012-08-30 00:06 . 2012-08-30 00:06 -------- d-----w- c:\users\The Welch's\AppData\Local\IsolatedStorage2012-08-30 00:06 . 2012-08-30 00:06 -------- d-----w- c:\users\The Welch's\AppData\Local\Futuremark_Corporation2012-08-30 00:02 . 2012-08-30 00:02 -------- d-----w- c:\program files (x86)\Futuremark2012-08-30 00:02 . 2012-08-30 00:02 -------- d-----w- c:\program files\Futuremark2012-08-29 22:44 . 2012-08-29 22:44 -------- d-----w- c:\program files (x86)\PerformanceTest2012-08-23 18:12 . 2012-08-30 18:12 -------- d-----w- c:\windows\SysWow64\30282012-08-21 02:53 . 2012-08-21 02:53 -------- d-----w- c:\program files (x86)\GPU-Z2012-08-15 14:30 . 2012-08-27 01:58 -------- d-----w- c:\program files (x86)\Diablo III2012-08-15 14:30 . 2012-08-15 14:30 -------- d-----w- c:\programdata\Blizzard Entertainment2012-08-15 14:30 . 2012-08-15 14:30 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment2012-08-13 23:40 . 2012-08-13 23:40 150880 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys2012-08-13 00:44 . 2012-08-13 00:44 -------- d-----w- c:\users\The Welch's\AppData\Local\Western_Digital2012-08-13 00:43 . 2012-08-13 00:43 -------- d-----w- c:\program files\DIFX2012-08-13 00:43 . 2012-08-13 00:43 -------- d-----w- c:\program files\WDCSAM2012-08-13 00:39 . 2012-08-13 00:39 -------- d-----w- c:\programdata\Western Digital2012-08-13 00:38 . 2012-08-13 00:38 -------- d-----w- c:\program files (x86)\Western Digital2012-08-13 00:38 . 2012-08-13 00:38 -------- d-----w- c:\program files\Western Digital2012-08-13 00:37 . 2012-08-13 00:37 -------- d-----w- c:\users\The Welch's\AppData\Local\Western Digital2012-08-10 11:52 . 2012-08-10 11:52 199520 ----a-w- c:\windows\system32\drivers\avgtdia.sys2012-08-10 11:52 . 2012-08-10 11:52 105312 ----a-w- c:\windows\system32\drivers\avgmfx64.sys2012-08-10 11:52 . 2012-08-10 11:52 40288 ----a-w- c:\windows\system32\drivers\avgrkx64.sys2012-08-09 20:56 . 2012-08-09 20:56 230240 ----a-w- c:\windows\system32\drivers\avgloga.sys2012-08-09 20:56 . 2012-08-09 20:56 60768 ----a-w- c:\windows\system32\drivers\avgidsha.sys2012-08-09 20:56 . 2012-08-09 20:56 175968 ----a-w- c:\windows\system32\drivers\avgldx64.sys2012-08-09 18:12 . 2012-08-16 18:12 -------- d-----w- c:\windows\SysWow64\10942012-08-09 02:47 . 2012-08-09 02:47 -------- d-----w- c:\users\The Welch's\AppData\Roaming\SUPERAntiSpyware.com2012-08-09 02:47 . 2012-09-08 01:59 -------- d-----w- c:\program files\SUPERAntiSpyware2012-08-09 02:47 . 2012-08-09 02:47 -------- d-----w- c:\programdata\SUPERAntiSpyware.com...(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2012-09-05 19:24 . 2012-07-26 00:15 282696 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr2012-09-05 19:24 . 2012-07-25 23:22 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe2012-08-29 14:24 . 2012-02-07 18:40 149752 ----a-w- c:\windows\SysWow64\WRusr.dll2012-08-29 14:24 . 2012-02-07 18:40 110160 ----a-w- c:\windows\system32\drivers\WRkrn.sys2012-08-29 14:24 . 2012-02-07 18:40 102896 ----a-w- c:\windows\system32\WRusr.dll2012-08-14 20:11 . 2012-05-23 00:35 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe2012-08-14 20:11 . 2012-02-01 14:40 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl2012-07-03 20:46 . 2012-05-09 23:05 24904 ----a-w- c:\windows\system32\drivers\mbam.sys2012-07-03 10:19 . 2012-02-18 13:13 59701280 ----a-w- c:\windows\system32\MRT.exe2012-06-12 03:08 . 2012-07-14 02:22 3148800 ----a-w- c:\windows\system32\win32k.sys..((((((((((((((((((((((((((((( SnapShot@2012-07-29_02.20.26 ))))))))))))))))))))))))))))))))))))))))).+ 2011-03-18 16:08 . 2011-03-18 16:08 29592 c:\windows\SysWOW64\speedfan.sys+ 2009-07-14 04:54 . 2012-09-06 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat- 2009-07-14 04:54 . 2012-07-27 17:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat- 2009-07-14 04:54 . 2012-07-27 17:11 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat+ 2009-07-14 04:54 . 2012-09-06 18:12 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat- 2009-07-14 04:54 . 2012-07-27 17:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat+ 2009-07-14 04:54 . 2012-09-06 18:12 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat+ 2010-11-21 03:09 . 2012-09-07 10:30 58740 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin+ 2009-07-14 05:10 . 2012-09-08 01:58 41748 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin+ 2012-02-07 19:28 . 2012-09-08 01:58 18262 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3534664107-3724608150-2471794589-1001_UserData.bin- 2009-07-14 05:30 . 2012-07-24 02:01 86016 c:\windows\system32\DriverStore\infpub.dat+ 2009-07-14 05:30 . 2012-09-07 23:31 86016 c:\windows\system32\DriverStore\infpub.dat+ 2009-02-13 18:02 . 2009-02-13 18:02 14464 c:\windows\system32\DriverStore\FileRepository\wdcsam.inf_amd64_neutral_8206e7d34f6b0583\wdcsam64.sys+ 2011-05-23 08:03 . 2011-05-23 08:03 48992 c:\windows\system32\DriverStore\FileRepository\avgfwfd6.inf_amd64_neutral_ae1e76d52507ef34\avgfwd6a.sys+ 2011-05-23 08:03 . 2011-05-23 08:03 48992 c:\windows\system32\drivers\avgfwd6a.sys- 2012-02-07 18:22 . 2012-07-27 22:01 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat+ 2012-02-07 18:22 . 2012-09-04 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat- 2012-02-07 18:22 . 2012-07-27 22:01 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat+ 2012-02-07 18:22 . 2012-09-04 15:48 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat- 2009-07-14 04:54 . 2012-07-27 22:01 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat+ 2009-07-14 04:54 . 2012-09-04 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat+ 2012-09-07 23:34 . 2012-09-01 02:01 85008 c:\windows\system32\config\systemprofile\AppData\Local\Avg2013\update\backup\sc.dat- 2009-07-14 04:46 . 2012-07-16 20:22 94576 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat+ 2009-07-14 04:46 . 2012-08-11 10:14 94576 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat+ 2012-08-08 14:54 . 2012-08-08 14:54 32256 c:\windows\Installer\6ed09f.msi+ 2012-09-06 18:12 . 2012-09-06 18:12 7044 c:\windows\SysWOW64\1063\inf1063.dat- 2012-03-08 17:08 . 2012-07-27 10:39 5312 c:\windows\system32\wdi\ERCQueuedResolutions.dat+ 2012-03-08 17:08 . 2012-09-07 00:22 5312 c:\windows\system32\wdi\ERCQueuedResolutions.dat- 2012-07-27 10:40 . 2012-07-27 10:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat+ 2012-09-07 10:26 . 2012-09-08 01:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat- 2012-07-27 10:40 . 2012-07-27 10:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat+ 2012-09-07 10:26 . 2012-09-08 01:54 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat+ 2012-08-14 20:11 . 2012-08-14 20:11 686792 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_Plugin.exe+ 2012-08-14 19:11 . 2012-08-14 19:11 686792 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe+ 2012-08-14 19:11 . 2012-08-14 19:11 466632 c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.dll- 2012-05-23 00:35 . 2012-07-27 17:11 250056 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe+ 2012-05-23 00:35 . 2012-08-14 20:11 250056 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe+ 2012-02-11 11:59 . 2012-08-28 16:51 390712 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin- 2009-07-14 02:36 . 2012-07-27 10:46 660318 c:\windows\system32\perfh009.dat+ 2009-07-14 02:36 . 2012-09-07 00:45 660318 c:\windows\system32\perfh009.dat+ 2009-07-14 02:36 . 2012-09-07 00:45 121214 c:\windows\system32\perfc009.dat- 2009-07-14 02:36 . 2012-07-27 10:46 121214 c:\windows\system32\perfc009.dat+ 2012-08-14 20:11 . 2012-08-14 20:11 417992 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_Plugin.exe+ 2012-08-14 19:11 . 2012-08-14 19:11 417992 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_ActiveX.exe+ 2012-08-14 19:11 . 2012-08-14 19:11 513224 c:\windows\system32\Macromed\Flash\FlashUtil64_11_3_300_271_ActiveX.dll+ 2009-07-14 05:30 . 2012-09-07 23:31 239616 c:\windows\system32\DriverStore\infstrng.dat- 2009-07-14 05:30 . 2012-07-24 02:01 239616 c:\windows\system32\DriverStore\infstrng.dat- 2009-07-14 05:30 . 2012-07-12 20:26 143360 c:\windows\system32\DriverStore\infstor.dat+ 2009-07-14 05:30 . 2012-09-07 23:31 143360 c:\windows\system32\DriverStore\infstor.dat+ 2012-09-07 23:34 . 2012-09-01 02:00 177496 c:\windows\system32\config\systemprofile\AppData\Local\Avg2013\update\backup\sb.dat- 2009-07-14 05:01 . 2012-07-27 10:39 564492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat+ 2009-07-14 05:01 . 2012-09-07 10:24 564492 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat+ 2012-08-11 17:17 . 2012-08-11 17:17 371272 c:\windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe- 2012-07-13 01:43 . 2012-07-13 01:43 371272 c:\windows\Installer\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}\SkypeIcon.exe+ 2012-08-13 00:38 . 2012-08-13 00:38 410598 c:\windows\Installer\{07179D37-D5FE-4373-90D9-A25B992EFB3E}\WDSmartWare.exe+ 2012-08-14 20:11 . 2012-08-14 20:11 9465032 c:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_271.dll+ 2012-08-14 20:11 . 2012-08-14 20:11 1536712 c:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe+ 2012-04-11 23:05 . 2012-09-07 10:24 9667440 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat- 2012-04-11 23:05 . 2012-07-27 10:39 9667440 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat+ 2011-03-09 18:31 . 2011-03-09 18:31 1090048 c:\windows\Installer\827b671.msi+ 2011-03-09 18:42 . 2011-03-09 18:42 9803264 c:\windows\Installer\827b665.msi+ 2012-09-07 23:21 . 2012-09-07 23:21 8540160 c:\windows\Installer\2ce139d.msi+ 2012-09-07 23:30 . 2012-09-07 23:30 2818048 c:\windows\Installer\2ce1399.msi+ 2012-08-14 20:11 . 2012-08-14 20:11 12315336 c:\windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll+ 2012-02-07 21:50 . 2012-09-07 10:24 50389984 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3534664107-3724608150-2471794589-1001-12288.dat+ 2012-08-22 11:16 . 2012-08-22 11:16 10141696 c:\windows\Installer\7ba79ae.msi+ 2012-09-07 23:30 . 2012-09-07 23:30 13074432 c:\windows\Installer\2ce1395.msi+ 2012-08-11 17:17 . 2012-08-11 17:17 19337216 c:\windows\Installer\16d4d46.msi.-- Snapshot reset to current date --.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shownREGEDIT4.[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]2012-09-07 23:32 2045536 ----a-w- c:\program files (x86)\AVG Secure Search\12.2.5.4\AVG Secure Search_toolbar.dll.[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.2.5.4\AVG Secure Search_toolbar.dll" [2012-09-07 2045536].[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}][HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1][HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj].[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-09-08 5663616]"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480].[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-09-14 283160]"AlienwareOn-ScreenDisplay"="c:\program files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe" [2011-09-03 1636208]"WRSVC"="c:\program files\Webroot\WRSA.exe" [2012-08-29 712104]"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312]"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-08-29 3039352]"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-09-07 950368].c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288].[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]"ConsentPromptBehaviorAdmin"= 0 (0x0)"ConsentPromptBehaviorUser"= 3 (0x3)"EnableLUA"= 0 (0x0)"EnableUIADesktopToggle"= 0 (0x0)"PromptOnSecureDesktop"= 0 (0x0)"EnableLinkedConnections"= 1 (0x1).[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]"NoDevMgrUpdate"= 0 (0x0)"NoDFSTab"= 0 (0x0)"NoEncryptOnMove"= 0 (0x0)"NoResolveTrack"= 0 (0x0)"NoStartMenuSubFolders"= 0 (0x0).[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]"NoDevMgrUpdate"= 0 (0x0)"NoDFSTab"= 0 (0x0)"NoEncryptOnMove"= 0 (0x0)"NoResolveTrack"= 0 (0x0)"NoStartMenuSubFolders"= 0 (0x0).[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]"DisableLocalMachineRun"= 0 (0x0)"DisableLocalMachineRunOnce"= 0 (0x0)"DisableCurrentUserRun"= 0 (0x0)"DisableCurrentUserRunOnce"= 0 (0x0)"NoFile"= 0 (0x0)"HideClock"= 0 (0x0)"NoDevMgrUpdate"= 0 (0x0)"NoDFSTab"= 0 (0x0)"NoEncryptOnMove"= 0 (0x0)"NoResolveTrack"= 0 (0x0)"NoStartMenuSubFolders"= 0 (0x0).[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2013\avgrsa.exe /sync /restart.[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]@="".R0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2012-04-25 54728]R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-08-20 5751928]R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]R2 WRSVC;WRSVC;c:\program files\Webroot\WRSA.exe [2012-08-29 712104]R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056]R3 AlienFusionService;Alienware Fusion Service;c:\program files\Alienware\Command Center\AlienFusionService.exe [2011-03-22 15296]R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys [2009-01-30 6144]R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-08-17 344616]R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-02 130976]R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-02-27 158976]R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [2009-07-10 31744]R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys [2011-04-04 21504]R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys [2009-01-30 9216]R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys [2009-05-08 53632]R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys [2010-04-01 26624]R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys [2011-05-12 11776]R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-07 114144]R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]R3 PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0;PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\alienautopsy\pcdsrvc_x64.pkms [2012-03-22 25072]R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992]R3 SftService;SoftThinks Agent Service;c:\program files (x86)\AlienRespawn\sftservice.EXE [2011-09-22 1692480]R3 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-08-13 3064000]R3 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-03 160944]R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]R3 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [2011-09-09 528760]R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-08 1255736]R4 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-03 89600]R4 HPHNDUSVC;HP Home Network Diagnostic Support Service;c:\windows\system32\svchost.exe [2009-07-14 27136]R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]R4 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-08-09 60768]S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-08-09 230240]S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-08-10 40288]S0 EMSC;COMPAL Embedded System Control;c:\windows\system32\DRIVERS\EMSC.SYS [2009-06-26 16752]S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys [2011-12-01 72240]S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys [2011-12-01 15920]S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992]S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616]S0 WRkrn;WRkrn;c:\windows\System32\drivers\WRkrn.sys [2012-08-29 110160]S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992]S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-08-13 150880]S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-08-09 175968]S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-08-10 105312]S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-08-10 199520]S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-09-07 31080]S1 BfLwf;Bigfoot Networks Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys [2012-02-01 75368]S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys [2012-05-15 249152]S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-09-08 140672]S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2012-08-20 1286392]S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-08-20 184304]S2 Bigfoot Networks Killer Service;Bigfoot Networks Killer Service;c:\program files\Bigfoot Networks\Killer Network Manager\BFNService.exe [2012-02-01 490496]S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-09-14 13336]S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\nlssrv32.exe [2012-03-29 66560]S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2012-04-25 584224]S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]S2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [2011-09-09 6583160]S2 vToolbarUpdater12.2.6;vToolbarUpdater12.2.6;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [2012-09-07 722528]S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys [2010-09-07 27760]S3 Ak27x64;Killer Wireless-N 1102 device driver;c:\windows\system32\DRIVERS\Ak27x64.sys [2012-02-01 2740328]S3 ALSysIO;ALSysIO;c:\users\THEWEL~1\AppData\Local\Temp\ALSysIO64.sys [x]S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096]S3 HP8207_8307;HP-HP8207_8307;c:\windows\system32\DRIVERS\HP8207_8307.sys [2010-02-05 15360]S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-11-30 76912]S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]S3 MEIx64;Intel® Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-03-04 82432]S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-03-04 181760]S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2012-04-18 188736]S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [2011-05-04 337512]S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2008-05-06 14464]..--- Other Services/Drivers In Memory ---.*Deregistered* - GPU-Z.[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]HPHNDUService REG_MULTI_SZ HPHNDUSVChpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc.Contents of the 'Scheduled Tasks' folder.2012-09-08 c:\windows\Tasks\Adobe Flash Player Updater.job- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-23 20:11].2012-04-11 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job- c:\program files\AlienAutopsy\uaclauncher.exe [2012-03-28 23:01].2012-09-07 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 01fedbbd-562a-4c63-b256-5c822c064caa.job- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52].2012-09-06 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task b6d1c9d7-60fe-4082-b64e-879bcfd3a065.job- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52].2012-04-11 c:\windows\Tasks\SystemToolsDailyTest.job- c:\program files\AlienAutopsy\uaclauncher.exe [2012-03-28 23:01]..--------- X64 Entries -----------..[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-13 416024]"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-03-17 1128448]"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392].[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]"AppInit_DLLs"=c:\windows\System32\nvinitx.dll.------- Supplementary Scan -------.uLocal Page = c:\windows\system32\blank.htmuStart Page =mLocal Page = c:\windows\SysWOW64\blank.htmuInternet Settings,ProxyOverride = *.localIE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105LSP: %SYSTEMROOT%\system32\BfLLR.dllTCP: DhcpNameServer = 192.168.1.1Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dllFF - ProfilePath - c:\users\The Welch's\AppData\Roaming\Mozilla\Firefox\Profiles\h4graeg6.default-1343169283270\FF - prefs.js: browser.search.selectedEngine - GoogleFF - prefs.js: browser.startup.homepage - www.google.com..------- File Associations -------.inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %*txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1.- - - - ORPHANS REMOVED - - - -.BHO-{39AF1227-1A37-7B76-03A8-79907179628D} - c:\windows\SysWow64\dhhcpcsvc.dllToolbar-Locked - (no file)...[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{0FF99CEB-15C9CE9E-06020101}_0]"ImagePath"="\??\c:\program files\alienautopsy\pcdsrvc_x64.pkms".--------------------- LOCKED REGISTRY KEYS ---------------------.[HKEY_USERS\S-1-5-21-3534664107-3724608150-2471794589-1001\Software\SecuROM\License information*]"datasecu"=hex:79,1b,66,4a,65,c4,d1,5e,35,51,b5,3b,d6,58,b6,74,6f,f2,e4,6a,3d, ba,69,5e,30,d1,18,4a,11,33,8f,6c,4c,b6,42,86,60,3c,46,37,37,31,e0,e2,34,b0,\"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]@Denied: (A 2) (Everyone)@="FlashBroker""LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]"Enabled"=dword:00000001.[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Shockwave Flash Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]@="0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]@="ShockwaveFlash.ShockwaveFlash.11".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="ShockwaveFlash.ShockwaveFlash".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]@Denied: (A 2) (Everyone)@="Macromedia Flash Factory Object".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx""ThreadingModel"="Apartment".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]@="FlashFactory.FlashFactory.1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]@="{D27CDB6B-AE6D-11cf-96B8-444553540000}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]@="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]@="FlashFactory.FlashFactory".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]@Denied: (A 2) (Everyone)@="IFlashBroker4".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]@="{00020424-0000-0000-C000-000000000046}".[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}""Version"="1.0".[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]@Denied: (A) (Everyone)"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}".[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]@Denied: (A) (Everyone).[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]"Key"="ActionsPane3""Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd".[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]@Denied: (A) (Users)@Denied: (A) (Everyone)@Allowed: (B 1 2 3 4 5) (S-1-5-20)"BlindDial"=dword:00000000.[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]@Denied: (Full) (Everyone).Completion time: 2012-09-07 19:29:50ComboFix-quarantined-files.txt 2012-09-08 02:29.Pre-Run: 242,046,398,464 bytes freePost-Run: 241,807,818,752 bytes free.- - End Of File - - B58690D460D974786DAF4FDE2A584D8F Link to post Share on other sites More sharing options...
MrCharlie Posted September 8, 2012 ID:594705 Share Posted September 8, 2012 Looks Good > clean out temp files:Download TFC to your desktopClose any open windows.Double click the TFC icon to run the programTFC will close all open programs itself in order to run,Click the Start button to begin the process.Allow TFC to run uninterrupted.The program should not take long to finish it's jobOnce its finished it should automatically reboot your machine,if it doesn't, manually reboot to ensure a complete clean~~~~~~~~~~~~~~~~~~~~Please Update and run a Quick Scan with MBAM, post the report.Make sure that everything is checked, and click Remove Selected.Please let me know how computer is running now, MrC Link to post Share on other sites More sharing options...
ai3643 Posted September 9, 2012 Author ID:595022 Share Posted September 9, 2012 Thank you very much for the help!!!! I am going to use the Maintance folder to make a Windows backup thats like 500GB+ in size in case of a huge problem down the road, and I figuare now would be a good backup time seeing how my pc is now clean. Is there a good backup program you would recommend? Im looking for something that would take a completly crashed PC and restore it and its contents to how it sits today. Anything like that on the market? Or is that what the windows backup is doing? Link to post Share on other sites More sharing options...
MrCharlie Posted September 9, 2012 ID:595023 Share Posted September 9, 2012 There are but I would ask in this part of the forum and you'll get a better answer:http://forums.malwar...php?showforum=6~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~A little clean up to do....Please Uninstall ComboFix: (if you used it)Press the Windows logo key + R to bring up the "run box"Copy and paste next command in the field:ComboFix /uninstallMake sure there's a space between Combofix and /Then hit enter.This will uninstall Combofix, delete its related folders and files, hide file extensions, hide the system/hidden files and clears System Restore cache and create new Restore point(If that doesn't work.....you can simply rename ComboFix.exe to Uninstall.exe and double click it to complete the uninstall)---------------------------------Please download OTL from one of the links below: (you may already have OTL on the system)http://oldtimer.geekstogo.com/OTL.exehttp://oldtimer.geekstogo.com/OTL.comhttp://www.itxassoci...T-Tools/OTL.exeSave it to your desktop.Run OTL and hit the CleanUp button. (This will cleanup the tools and logs used including itself)Any other programs or logs you can manually delete.IE: RogueKiller.exe, RKreport.txt, RK_Quarantine folder, C:\FRST, etc....-------------------------------Any questions...please post back.If you think I've helped you, please leave a comment > click on my avatar picture > click Profile Feed.Take a look at My Preventive Maintenance to avoid being infected again.Good Luck and Thanks for using the forum, MrC Link to post Share on other sites More sharing options...
Maurice Naggar Posted September 9, 2012 ID:595118 Share Posted September 9, 2012 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts