Hello and Welcome to TSF.

If you haven't already, please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Not all slowness issues are due to malware. Is your lag in startup, shutdown, opening applications, or browsing?

------------------------------------------------------

Please download aswMBR.exe to your desktop.

• Double-click aswMBR.exe to run it.
• When prompted to download the latest Avast! virus definitions, please choose No
• Click the Scan button to start scan.
• Wait until it says, 'Scan finished successfully'. (Note - do not select any Fix at this time)
• Click Save log, and save it to your desktop.
• Click Exit.
• Please post the contents of that log, aswMBR.txt, in your next reply.

There shall also be a file on your desktop named MBR.dat. Right-click that file and select Send To > Compressed (zipped) folder. Please attach that zipped file in your next reply.

------------------------------------------------------

When you run this tool, remember to choose 'Skip' not 'Cure' if it finds something. We just want a scan, not a fix.

Download tdsskiller.exe and Save it to your Desktop.

Double-click tdsskiller.exe and click 'Run'

Click Change parameters then under 'Additional options' check the 'Detect TDLFS file system' > OK.

Click 'Start scan'.

If no infection is found, click 'Close' and let me know.

If an infection is found, select 'Skip' from the dropdown menu under 'Cure' then click 'Continue' > 'Close' > 'Close'.

It will produce a log here > C:\TDSSKiller.2.7.38.0_date_time_log.txt

Please navigate to the file, double-click to open it, and copy/paste the contents in your next reply.

------------------------------------------------------

 

thank you for your help and your quick responds .
here are the logs that you requested.
=====================================================
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 10:09:34
-----------------------------
10:09:34.844 OS Version: Windows x64 6.0.6002 Service Pack 2
10:09:34.844 Number of processors: 1 586 0x170A
10:09:34.844 ComputerName: CARRION-PC UserName:
10:09:34.891 Initialze error C0000034 - driver not loaded
10:11:17.851 Service scanning
10:11:18.506 Modules scanning
10:11:18.506 Disk 0 trace - called modules:
10:11:18.506
10:11:18.506 Scan finished successfully
10:11:52.140 The log file has been saved successfully to "C:\Users\Lauren Carrion\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 10:19:01
-----------------------------
10:19:01.055 OS Version: Windows x64 6.0.6002 Service Pack 2
10:19:01.055 Number of processors: 1 586 0x170A
10:19:01.055 ComputerName:
10:19:02.630 Initialize success
10:19:05.937 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:19:05.937 Disk 0 Vendor: ST950032 0002 Size: 476940MB BusType: 3
10:19:05.953 Disk 0 MBR read successfully
10:19:05.969 Disk 0 MBR scan
10:19:05.969 Disk 0 unknown MBR code
10:19:05.969 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 12001 MB offset 63
10:19:05.984 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 464937 MB offset 24579450
10:19:06.015 Disk 0 scanning C:\Windows\system32\drivers
10:19:18.620 Service scanning
10:19:47.262 Modules scanning
10:19:47.262 Disk 0 trace - called modules:
10:19:47.293 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys iaStor.sys hal.dll
10:19:47.293 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004f732c0]
10:19:47.309 3 CLASSPNP.SYS[fffffa60011cdc33] -> nt!IofCallDriver -> [0xfffffa80040ca4d0]
10:19:47.309 5 acpi.sys[fffffa60008f2fde] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004b42050]
10:19:47.324 Scan finished successfully
10:20:16.793 Disk 0 MBR has been saved successfully to "C:\Users\Lauren Carrion\Desktop\MBR.dat"
10:20:16.808 The log file has been saved successfully to "C:\Users\Lauren Carrion\Desktop\aswMBR.txt"
===============================================================
10:22:00.0023 4164 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
10:22:00.0506 4164 ============================================================
10:22:00.0506 4164 Current date / time: 2012/06/07 10:22:00.0506
10:22:00.0506 4164 SystemInfo:
10:22:00.0506 4164
10:22:00.0506 4164 OS Version: 6.0.6002 ServicePack: 2.0
10:22:00.0506 4164 Product type: Workstation
10:22:00.0506 4164 ComputerName: CARRION-PC
10:22:00.0506 4164 UserName: Lauren Carrion
10:22:00.0506 4164 Windows directory: C:\Windows
10:22:00.0506 4164 System windows directory: C:\Windows
10:22:00.0506 4164 Running under WOW64
10:22:00.0506 4164 Processor architecture: Intel x64
10:22:00.0506 4164 Number of processors: 1
10:22:00.0506 4164 Page size: 0x1000
10:22:00.0506 4164 Boot type: Normal boot
10:22:00.0506 4164 ============================================================
10:22:01.0786 4164 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:22:01.0801 4164 ============================================================
10:22:01.0801 4164 \Device\Harddisk0\DR0:
10:22:01.0801 4164 MBR partitions:
10:22:01.0801 4164 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x38C14AB6
10:22:01.0801 4164 ============================================================
10:22:01.0832 4164 C: <-> \Device\Harddisk0\DR0\Partition0
10:22:01.0832 4164 ============================================================
10:22:01.0832 4164 Initialize success
10:22:01.0832 4164 ============================================================
10:22:20.0568 4792 ============================================================
10:22:20.0568 4792 Scan started
10:22:20.0568 4792 Mode: Manual; TDLFS;
10:22:20.0568 4792 ============================================================
10:22:20.0927 4792 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:22:20.0942 4792 !SASCORE - ok
10:22:21.0161 4792 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
10:22:21.0176 4792 ACPI - ok
10:22:21.0254 4792 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
10:22:21.0254 4792 adfs - ok
10:22:21.0348 4792 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
10:22:21.0379 4792 adp94xx - ok
10:22:21.0442 4792 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
10:22:21.0442 4792 adpahci - ok
10:22:21.0473 4792 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
10:22:21.0473 4792 adpu160m - ok
10:22:21.0520 4792 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
10:22:21.0520 4792 adpu320 - ok
10:22:21.0660 4792 ADSMService (c0bf554d2277f7a4c735d475ade2e3b2) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
10:22:21.0660 4792 ADSMService - ok
10:22:21.0691 4792 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
10:22:21.0691 4792 AeLookupSvc - ok
10:22:21.0800 4792 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
10:22:21.0816 4792 AFD - ok
10:22:21.0894 4792 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
10:22:21.0894 4792 agp440 - ok
10:22:21.0956 4792 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
10:22:21.0956 4792 aic78xx - ok
10:22:22.0253 4792 Akamai (c775d704feb2b600a5bf7b0b088546af) c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll
10:22:22.0300 4792 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll. md5: c775d704feb2b600a5bf7b0b088546af
10:22:22.0315 4792 Akamai ( HiddenFile.Multi.Generic ) - warning
10:22:22.0315 4792 Akamai - detected HiddenFile.Multi.Generic (1)
10:22:22.0409 4792 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
10:22:22.0409 4792 ALG - ok
10:22:22.0518 4792 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
10:22:22.0518 4792 aliide - ok
10:22:22.0549 4792 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
10:22:22.0549 4792 amdide - ok
10:22:22.0612 4792 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
10:22:22.0612 4792 AmdK8 - ok
10:22:22.0705 4792 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
10:22:22.0814 4792 Appinfo - ok
10:22:23.0017 4792 Apple Mobile Device (70d7be78061126dd0c3accdb7e129017) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:22:23.0080 4792 Apple Mobile Device - ok
10:22:23.0158 4792 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
10:22:23.0173 4792 arc - ok
10:22:23.0204 4792 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
10:22:23.0220 4792 arcsas - ok
10:22:23.0298 4792 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
10:22:23.0329 4792 AsDsm - ok
10:22:23.0423 4792 ASLDRService (eb1807795cd3eeaa3288b4a30de254e8) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
10:22:23.0423 4792 ASLDRService - ok
10:22:23.0532 4792 ASMMAP64 (2db34edd17d3a8da7105a19c95a3dd68) C:\Program Files\ATKGFNEX\ASMMAP64.sys
10:22:23.0532 4792 ASMMAP64 - ok
10:22:23.0594 4792 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
10:22:23.0594 4792 AsyncMac - ok
10:22:23.0626 4792 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
10:22:23.0626 4792 atapi - ok
10:22:23.0672 4792 ATKGFNEXSrv (7c157574a181b19b9dcf5f339e25337e) C:\Program Files\ATKGFNEX\GFNEXSrv.exe
10:22:23.0672 4792 ATKGFNEXSrv - ok
10:22:23.0766 4792 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
10:22:23.0797 4792 AudioEndpointBuilder - ok
10:22:23.0828 4792 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
10:22:23.0828 4792 AudioSrv - ok
10:22:24.0109 4792 AVP (a2b790f9a751f24f17967f9a5574186d) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
10:22:24.0109 4792 AVP - ok
10:22:24.0125 4792 Beep - ok
10:22:24.0250 4792 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
10:22:24.0281 4792 BFE - ok
10:22:24.0406 4792 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\system32\qmgr.dll
10:22:24.0452 4792 BITS - ok
10:22:24.0515 4792 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
10:22:24.0515 4792 blbdrive - ok
10:22:24.0624 4792 Bonjour Service (673cf4f6bb1fbe09331b526802fbb892) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
10:22:24.0655 4792 Bonjour Service - ok
10:22:24.0718 4792 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
10:22:24.0718 4792 bowser - ok
10:22:24.0780 4792 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
10:22:24.0796 4792 BrFiltLo - ok
10:22:24.0811 4792 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
10:22:24.0827 4792 BrFiltUp - ok
10:22:24.0889 4792 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
10:22:24.0889 4792 Browser - ok
10:22:24.0967 4792 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
10:22:24.0967 4792 Brserid - ok
10:22:24.0983 4792 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
10:22:24.0983 4792 BrSerWdm - ok
10:22:25.0014 4792 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
10:22:25.0014 4792 BrUsbMdm - ok
10:22:25.0030 4792 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
10:22:25.0030 4792 BrUsbSer - ok
10:22:25.0061 4792 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
10:22:25.0061 4792 BTHMODEM - ok
10:22:25.0108 4792 catchme - ok
10:22:25.0170 4792 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
10:22:25.0186 4792 cdfs - ok
10:22:25.0264 4792 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
10:22:25.0264 4792 cdrom - ok
10:22:25.0342 4792 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
10:22:25.0342 4792 CertPropSvc - ok
10:22:25.0373 4792 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
10:22:25.0388 4792 circlass - ok
10:22:25.0451 4792 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
10:22:25.0513 4792 CLFS - ok
10:22:25.0607 4792 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:22:25.0622 4792 clr_optimization_v2.0.50727_32 - ok
10:22:25.0669 4792 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:22:25.0685 4792 clr_optimization_v2.0.50727_64 - ok
10:22:25.0794 4792 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:22:25.0825 4792 clr_optimization_v4.0.30319_32 - ok
10:22:25.0872 4792 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:22:25.0903 4792 clr_optimization_v4.0.30319_64 - ok
10:22:25.0966 4792 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
10:22:25.0966 4792 CmBatt - ok
10:22:25.0997 4792 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
10:22:25.0997 4792 cmdide - ok
10:22:26.0028 4792 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
10:22:26.0028 4792 Compbatt - ok
10:22:26.0044 4792 COMSysApp - ok
10:22:26.0059 4792 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
10:22:26.0059 4792 crcdisk - ok
10:22:26.0122 4792 CRFILTER (64beed6775c22b0362fa9ded3f8124a1) C:\Windows\system32\DRIVERS\CRFILTER.sys
10:22:26.0122 4792 CRFILTER - ok
10:22:26.0184 4792 CryptSvc (18918613e63f387cde4d95ca7d49dcf7) C:\Windows\system32\cryptsvc.dll
10:22:26.0200 4792 CryptSvc - ok
10:22:26.0278 4792 CSCrySec (ab1201f8de199e764da9a32abf71049c) C:\Windows\system32\DRIVERS\CSCrySec.sys
10:22:26.0278 4792 CSCrySec - ok
10:22:26.0480 4792 CSObjectsSrv (6e5b42219f1fe4a3d087d9d501e343d5) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
10:22:26.0496 4792 CSObjectsSrv - ok
10:22:26.0574 4792 CSVirtualDiskDrv (a6eed705bb510fa6b0f9f097165a3395) C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys
10:22:26.0574 4792 CSVirtualDiskDrv - ok
10:22:26.0668 4792 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
10:22:26.0714 4792 DcomLaunch - ok
10:22:26.0792 4792 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
10:22:26.0792 4792 DfsC - ok
10:22:26.0995 4792 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
10:22:27.0104 4792 DFSR - ok
10:22:27.0292 4792 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
10:22:27.0323 4792 Dhcp - ok
10:22:27.0385 4792 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
10:22:27.0385 4792 disk - ok
10:22:27.0463 4792 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
10:22:27.0463 4792 Dnscache - ok
10:22:27.0526 4792 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
10:22:27.0541 4792 dot3svc - ok
10:22:27.0635 4792 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
10:22:27.0650 4792 DPS - ok
10:22:27.0713 4792 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
10:22:27.0713 4792 drmkaud - ok
10:22:27.0791 4792 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
10:22:27.0822 4792 DXGKrnl - ok
10:22:27.0853 4792 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
10:22:27.0853 4792 E1G60 - ok
10:22:27.0931 4792 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
10:22:27.0931 4792 EapHost - ok
10:22:28.0025 4792 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
10:22:28.0025 4792 Ecache - ok
10:22:28.0087 4792 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
10:22:28.0103 4792 ehRecvr - ok
10:22:28.0150 4792 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
10:22:28.0150 4792 ehSched - ok
10:22:28.0212 4792 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
10:22:28.0228 4792 ehstart - ok
10:22:28.0290 4792 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
10:22:28.0306 4792 elxstor - ok
10:22:28.0368 4792 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
10:22:28.0399 4792 EMDMgmt - ok
10:22:28.0415 4792 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
10:22:28.0415 4792 ErrDev - ok
10:22:28.0508 4792 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
10:22:28.0524 4792 EventSystem - ok
10:22:28.0649 4792 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
10:22:28.0696 4792 exfat - ok
10:22:28.0758 4792 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
10:22:28.0758 4792 fastfat - ok
10:22:28.0852 4792 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
10:22:28.0852 4792 fdc - ok
10:22:28.0883 4792 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
10:22:28.0883 4792 fdPHost - ok
10:22:28.0914 4792 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
10:22:28.0914 4792 FDResPub - ok
10:22:28.0945 4792 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
10:22:28.0945 4792 FileInfo - ok
10:22:28.0976 4792 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
10:22:28.0976 4792 Filetrace - ok
10:22:29.0008 4792 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:22:29.0008 4792 flpydisk - ok
10:22:29.0070 4792 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
10:22:29.0070 4792 FltMgr - ok
10:22:29.0257 4792 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
10:22:29.0304 4792 FontCache - ok
10:22:29.0382 4792 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:22:29.0382 4792 FontCache3.0.0.0 - ok
10:22:29.0507 4792 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
10:22:29.0507 4792 fssfltr - ok
10:22:29.0678 4792 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:22:29.0710 4792 fsssvc - ok
10:22:29.0866 4792 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
10:22:29.0866 4792 Fs_Rec - ok
10:22:29.0897 4792 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
10:22:29.0897 4792 gagp30kx - ok
10:22:29.0944 4792 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:22:29.0944 4792 GEARAspiWDM - ok
10:22:30.0068 4792 getPlusHelper (ce8f5b65d6cfe435fb9bf875eda99d55) C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll
10:22:30.0068 4792 getPlusHelper - ok
10:22:30.0146 4792 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
10:22:30.0162 4792 gpsvc - ok
10:22:30.0318 4792 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:22:30.0318 4792 gupdate - ok
10:22:30.0349 4792 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:22:30.0349 4792 gupdatem - ok
10:22:30.0412 4792 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
10:22:30.0427 4792 HdAudAddService - ok
10:22:30.0521 4792 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:22:30.0583 4792 HDAudBus - ok
10:22:30.0614 4792 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
10:22:30.0614 4792 HidBth - ok
10:22:30.0646 4792 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
10:22:30.0661 4792 HidIr - ok
10:22:30.0708 4792 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\System32\hidserv.dll
10:22:30.0708 4792 hidserv - ok
10:22:30.0770 4792 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
10:22:30.0802 4792 HidUsb - ok
10:22:30.0848 4792 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
10:22:30.0848 4792 hkmsvc - ok
10:22:30.0926 4792 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
10:22:30.0926 4792 HpCISSs - ok
10:22:31.0004 4792 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
10:22:31.0020 4792 HTTP - ok
10:22:31.0051 4792 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
10:22:31.0051 4792 i2omp - ok
10:22:31.0114 4792 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
10:22:31.0114 4792 i8042prt - ok
10:22:31.0176 4792 iaStor (1adaa4f16073fd0c7270f451fd024e97) C:\Windows\system32\DRIVERS\iaStor.sys
10:22:31.0176 4792 iaStor - ok
10:22:31.0238 4792 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
10:22:31.0254 4792 iaStorV - ok
10:22:31.0379 4792 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:22:31.0426 4792 idsvc - ok
10:22:31.0441 4792 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
10:22:31.0441 4792 iirsp - ok
10:22:31.0535 4792 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
10:22:31.0550 4792 IKEEXT - ok
10:22:31.0722 4792 IntcAzAudAddService (5e7092c34f6a5d28c5a3d5570b5622f9) C:\Windows\system32\drivers\RTKVHD64.sys
10:22:31.0769 4792 IntcAzAudAddService - ok
10:22:31.0909 4792 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
10:22:31.0909 4792 intelide - ok
10:22:31.0925 4792 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
10:22:31.0940 4792 intelppm - ok
10:22:31.0972 4792 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
10:22:31.0972 4792 IPBusEnum - ok
10:22:32.0018 4792 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:22:32.0018 4792 IpFilterDriver - ok
10:22:32.0081 4792 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
10:22:32.0096 4792 iphlpsvc - ok
10:22:32.0096 4792 IpInIp - ok
10:22:32.0143 4792 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
10:22:32.0159 4792 IPMIDRV - ok
10:22:32.0174 4792 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
10:22:32.0190 4792 IPNAT - ok
10:22:32.0299 4792 iPod Service (f0eac938ecc1b2764d04ce16f8627e56) C:\Program Files\iPod\bin\iPodService.exe
10:22:32.0346 4792 iPod Service - ok
10:22:32.0393 4792 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
10:22:32.0393 4792 IRENUM - ok
10:22:32.0440 4792 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
10:22:32.0440 4792 isapnp - ok
10:22:32.0518 4792 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
10:22:32.0518 4792 iScsiPrt - ok
10:22:32.0549 4792 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
10:22:32.0549 4792 iteatapi - ok
10:22:32.0611 4792 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
10:22:32.0611 4792 iteraid - ok
10:22:32.0642 4792 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
10:22:32.0642 4792 kbdclass - ok
10:22:32.0658 4792 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
10:22:32.0658 4792 kbdhid - ok
10:22:32.0705 4792 kbfiltr (6cc3a43b3c898bc360a89b75c128b05d) C:\Windows\system32\DRIVERS\kbfiltr.sys
10:22:32.0705 4792 kbfiltr - ok
10:22:32.0767 4792 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:32.0767 4792 KeyIso - ok
10:22:32.0845 4792 kl1 (db449f50e5141458eb58e64ffac4863f) C:\Windows\system32\DRIVERS\kl1.sys
10:22:32.0892 4792 kl1 - ok
10:22:32.0970 4792 KLBG (87200a8afe40532baa4d2b24a7ba0eea) C:\Windows\system32\DRIVERS\klbg.sys
10:22:32.0970 4792 KLBG - ok
10:22:33.0079 4792 KLIF (34d49307217b20e5a845b7db50cdd4fa) C:\Windows\system32\DRIVERS\klif.sys
10:22:33.0095 4792 KLIF - ok
10:22:33.0142 4792 KLIM6 (630f22545379437737cf4172f09fe449) C:\Windows\system32\DRIVERS\klim6.sys
10:22:33.0142 4792 KLIM6 - ok
10:22:33.0173 4792 klmouflt (786791291939abb11f6d0f040da23912) C:\Windows\system32\DRIVERS\klmouflt.sys
10:22:33.0173 4792 klmouflt - ok
10:22:33.0235 4792 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
10:22:33.0251 4792 KSecDD - ok
10:22:33.0298 4792 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
10:22:33.0298 4792 ksthunk - ok
10:22:33.0360 4792 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
10:22:33.0391 4792 KtmRm - ok
10:22:33.0469 4792 L1C (3dd81da6a200edcc2ce939702f6afc1c) C:\Windows\system32\DRIVERS\L1C60x64.sys
10:22:33.0469 4792 L1C - ok
10:22:33.0532 4792 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\System32\srvsvc.dll
10:22:33.0547 4792 LanmanServer - ok
10:22:33.0625 4792 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
10:22:33.0656 4792 LanmanWorkstation - ok
10:22:33.0734 4792 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
10:22:33.0734 4792 LightScribeService - ok
10:22:33.0766 4792 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
10:22:33.0766 4792 lltdio - ok
10:22:33.0812 4792 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
10:22:33.0844 4792 lltdsvc - ok
10:22:33.0890 4792 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
10:22:33.0906 4792 lmhosts - ok
10:22:33.0953 4792 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
10:22:33.0953 4792 LSI_FC - ok
10:22:33.0984 4792 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
10:22:34.0015 4792 LSI_SAS - ok
10:22:34.0062 4792 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
10:22:34.0062 4792 LSI_SCSI - ok
10:22:34.0093 4792 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
10:22:34.0109 4792 luafv - ok
10:22:34.0171 4792 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
10:22:34.0171 4792 Mcx2Svc - ok
10:22:34.0202 4792 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
10:22:34.0202 4792 megasas - ok
10:22:34.0249 4792 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
10:22:34.0280 4792 MegaSR - ok
10:22:34.0343 4792 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
10:22:34.0358 4792 MMCSS - ok
10:22:34.0452 4792 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
10:22:34.0452 4792 Modem - ok
10:22:34.0530 4792 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
10:22:34.0546 4792 monitor - ok
10:22:34.0702 4792 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
10:22:34.0702 4792 mouclass - ok
10:22:34.0733 4792 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
10:22:34.0748 4792 mouhid - ok
10:22:34.0920 4792 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
10:22:34.0936 4792 MountMgr - ok
10:22:35.0060 4792 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
10:22:35.0092 4792 mpio - ok
10:22:35.0279 4792 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
10:22:35.0294 4792 mpsdrv - ok
10:22:36.0137 4792 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
10:22:36.0230 4792 MpsSvc - ok
10:22:36.0324 4792 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
10:22:36.0324 4792 Mraid35x - ok
10:22:36.0589 4792 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
10:22:36.0589 4792 MRxDAV - ok
10:22:36.0808 4792 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:22:36.0823 4792 mrxsmb - ok
10:22:37.0260 4792 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:22:37.0276 4792 mrxsmb10 - ok
10:22:37.0494 4792 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:22:37.0494 4792 mrxsmb20 - ok
10:22:37.0619 4792 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
10:22:37.0666 4792 msahci - ok
10:22:37.0915 4792 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
10:22:37.0915 4792 msdsm - ok
10:22:38.0258 4792 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
10:22:38.0305 4792 MSDTC - ok
10:22:38.0446 4792 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
10:22:38.0446 4792 Msfs - ok
10:22:38.0508 4792 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
10:22:38.0524 4792 msisadrv - ok
10:22:38.0586 4792 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
10:22:38.0602 4792 MSiSCSI - ok
10:22:38.0602 4792 msiserver - ok
10:22:38.0664 4792 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
10:22:38.0664 4792 MSKSSRV - ok
10:22:38.0680 4792 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
10:22:38.0680 4792 MSPCLOCK - ok
10:22:38.0711 4792 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
10:22:38.0711 4792 MSPQM - ok
10:22:38.0804 4792 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
10:22:38.0820 4792 MsRPC - ok
10:22:38.0851 4792 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
10:22:38.0851 4792 mssmbios - ok
10:22:38.0914 4792 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
10:22:38.0914 4792 MSTEE - ok
10:22:38.0945 4792 MTsensor (18dfcb4bd7d41eef345292cf0be76e6a) C:\Windows\system32\DRIVERS\ATK64AMD.sys
10:22:38.0945 4792 MTsensor - ok
10:22:39.0007 4792 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
10:22:39.0007 4792 Mup - ok
10:22:39.0054 4792 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
10:22:39.0070 4792 napagent - ok
10:22:39.0148 4792 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
10:22:39.0148 4792 NativeWifiP - ok
10:22:39.0257 4792 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
10:22:39.0304 4792 NDIS - ok
10:22:39.0319 4792 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
10:22:39.0382 4792 NdisTapi - ok
10:22:39.0397 4792 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
10:22:39.0413 4792 Ndisuio - ok
10:22:39.0460 4792 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
10:22:39.0460 4792 NdisWan - ok
10:22:39.0491 4792 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
10:22:39.0491 4792 NDProxy - ok
10:22:39.0522 4792 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
10:22:39.0522 4792 NetBIOS - ok
10:22:39.0584 4792 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
10:22:39.0584 4792 netbt - ok
10:22:39.0631 4792 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:39.0647 4792 Netlogon - ok
10:22:39.0694 4792 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
10:22:39.0709 4792 Netman - ok
10:22:39.0756 4792 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
10:22:39.0772 4792 netprofm - ok
10:22:39.0865 4792 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:22:39.0881 4792 NetTcpPortSharing - ok
10:22:40.0177 4792 NETw5v64 (263796d4f50df61c0c7ca86f746b5767) C:\Windows\system32\DRIVERS\NETw5v64.sys
10:22:40.0302 4792 NETw5v64 - ok
10:22:40.0536 4792 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
10:22:40.0536 4792 nfrd960 - ok
10:22:40.0583 4792 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
10:22:40.0598 4792 NlaSvc - ok
10:22:40.0739 4792 nosGetPlusHelper (431ada51e9d032f533548688ce5a2a24) C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
10:22:40.0754 4792 nosGetPlusHelper - ok
10:22:40.0801 4792 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
10:22:40.0801 4792 Npfs - ok
10:22:40.0832 4792 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
10:22:40.0848 4792 nsi - ok
10:22:40.0879 4792 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
10:22:40.0879 4792 nsiproxy - ok
10:22:41.0020 4792 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
10:22:41.0051 4792 Ntfs - ok
10:22:41.0144 4792 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
10:22:41.0144 4792 Null - ok
10:22:41.0753 4792 nvlddmkm (8be75ca9af6fd88a64ff08e087ef884c) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:22:42.0018 4792 nvlddmkm - ok
10:22:42.0158 4792 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
10:22:42.0158 4792 nvraid - ok
10:22:42.0190 4792 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
10:22:42.0190 4792 nvstor - ok
10:22:42.0252 4792 nvsvc (5bf769a7dd2b874471eaa2347a53bbfd) C:\Windows\system32\nvvsvc.exe
10:22:42.0268 4792 nvsvc - ok
10:22:42.0314 4792 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
10:22:42.0314 4792 nv_agp - ok
10:22:42.0330 4792 NwlnkFlt - ok
10:22:42.0346 4792 NwlnkFwd - ok
10:22:42.0486 4792 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:22:42.0533 4792 odserv - ok
10:22:42.0580 4792 ohci1394 (1b30103fde512915a9214b108b6e7a9c) C:\Windows\system32\DRIVERS\ohci1394.sys
10:22:42.0611 4792 ohci1394 - ok
10:22:42.0720 4792 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:22:42.0720 4792 ose - ok
10:22:42.0814 4792 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:42.0860 4792 p2pimsvc - ok
10:22:42.0876 4792 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:42.0892 4792 p2psvc - ok
10:22:42.0938 4792 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
10:22:42.0954 4792 Parport - ok
10:22:43.0001 4792 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
10:22:43.0001 4792 partmgr - ok
10:22:43.0032 4792 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
10:22:43.0048 4792 PcaSvc - ok
10:22:43.0094 4792 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
10:22:43.0110 4792 pci - ok
10:22:43.0204 4792 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
10:22:43.0219 4792 pciide - ok
10:22:43.0282 4792 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
10:22:43.0297 4792 pcmcia - ok
10:22:43.0375 4792 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
10:22:43.0406 4792 PEAUTH - ok
10:22:43.0484 4792 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
10:22:43.0484 4792 PerfHost - ok
10:22:43.0594 4792 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
10:22:43.0640 4792 pla - ok
10:22:43.0765 4792 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
10:22:43.0796 4792 PlugPlay - ok
10:22:43.0890 4792 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:43.0890 4792 PNRPAutoReg - ok
10:22:43.0921 4792 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:43.0921 4792 PNRPsvc - ok
10:22:44.0015 4792 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
10:22:44.0046 4792 PolicyAgent - ok
10:22:44.0124 4792 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
10:22:44.0124 4792 PptpMiniport - ok
10:22:44.0171 4792 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
10:22:44.0171 4792 Processor - ok
10:22:44.0233 4792 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
10:22:44.0249 4792 ProfSvc - ok
10:22:44.0311 4792 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:44.0311 4792 ProtectedStorage - ok
10:22:44.0327 4792 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
10:22:44.0342 4792 PSched - ok
10:22:44.0420 4792 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
10:22:44.0483 4792 ql2300 - ok
10:22:44.0561 4792 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
10:22:44.0561 4792 ql40xx - ok
10:22:44.0608 4792 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
10:22:44.0639 4792 QWAVE - ok
10:22:44.0670 4792 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
10:22:44.0670 4792 QWAVEdrv - ok
10:22:44.0701 4792 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
10:22:44.0701 4792 RasAcd - ok
10:22:44.0732 4792 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
10:22:44.0810 4792 RasAuto - ok
10:22:44.0873 4792 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:22:44.0873 4792 Rasl2tp - ok
10:22:44.0951 4792 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
10:22:44.0966 4792 RasMan - ok
10:22:45.0013 4792 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
10:22:45.0029 4792 RasPppoe - ok
10:22:45.0091 4792 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
10:22:45.0091 4792 RasSstp - ok
10:22:45.0169 4792 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
10:22:45.0185 4792 rdbss - ok
10:22:45.0232 4792 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:22:45.0232 4792 RDPCDD - ok
10:22:45.0278 4792 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
10:22:45.0310 4792 rdpdr - ok
10:22:45.0325 4792 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
10:22:45.0325 4792 RDPENCDD - ok
10:22:45.0403 4792 RDPWD (5c141fc457f1ac833664789235aca673) C:\Windows\system32\drivers\RDPWD.sys
10:22:45.0403 4792 RDPWD - ok
10:22:45.0450 4792 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
10:22:45.0450 4792 RemoteAccess - ok
10:22:45.0497 4792 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
10:22:45.0528 4792 RemoteRegistry - ok
10:22:45.0559 4792 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
10:22:45.0559 4792 RpcLocator - ok
10:22:45.0637 4792 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
10:22:45.0653 4792 RpcSs - ok
10:22:45.0684 4792 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
10:22:45.0684 4792 rspndr - ok
10:22:45.0731 4792 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:45.0746 4792 SamSs - ok
10:22:45.0871 4792 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:22:45.0871 4792 SASDIFSV - ok
10:22:45.0887 4792 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:22:45.0887 4792 SASKUTIL - ok
10:22:45.0934 4792 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
10:22:45.0934 4792 sbp2port - ok
10:22:45.0980 4792 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
10:22:45.0996 4792 SCardSvr - ok
10:22:46.0090 4792 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
10:22:46.0136 4792 Schedule - ok
10:22:46.0183 4792 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
10:22:46.0183 4792 SCPolicySvc - ok
10:22:46.0261 4792 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
10:22:46.0261 4792 sdbus - ok
10:22:46.0308 4792 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
10:22:46.0324 4792 SDRSVC - ok
10:22:46.0339 4792 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:22:46.0355 4792 secdrv - ok
10:22:46.0370 4792 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
10:22:46.0370 4792 seclogon - ok
10:22:46.0402 4792 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\system32\sens.dll
10:22:46.0417 4792 SENS - ok
10:22:46.0464 4792 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
10:22:46.0464 4792 Serenum - ok
10:22:46.0495 4792 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
10:22:46.0495 4792 Serial - ok
10:22:46.0526 4792 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
10:22:46.0526 4792 sermouse - ok
10:22:46.0589 4792 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
10:22:46.0604 4792 SessionEnv - ok
10:22:46.0651 4792 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
10:22:46.0651 4792 sffdisk - ok
10:22:46.0667 4792 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
10:22:46.0682 4792 sffp_mmc - ok
10:22:46.0698 4792 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
10:22:46.0698 4792 sffp_sd - ok
10:22:46.0729 4792 sfloppy (40567781f0785c4a69411d1b40da8987) C:\Windows\system32\DRIVERS\sfloppy.sys
10:22:46.0729 4792 sfloppy - ok
10:22:46.0760 4792 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
10:22:46.0792 4792 SharedAccess - ok
10:22:46.0854 4792 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
10:22:46.0948 4792 ShellHWDetection - ok
10:22:46.0979 4792 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
10:22:46.0979 4792 SiSRaid2 - ok
10:22:47.0010 4792 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
10:22:47.0026 4792 SiSRaid4 - ok
10:22:47.0104 4792 SkypeUpdate (17eab7852ff9f15fbaab4e95efc0b812) C:\Program Files (x86)\Skype\Updater\Updater.exe
10:22:47.0104 4792 SkypeUpdate - ok
10:22:47.0291 4792 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
10:22:47.0353 4792 slsvc - ok
10:22:47.0478 4792 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
10:22:47.0494 4792 SLUINotify - ok
10:22:47.0556 4792 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
10:22:47.0572 4792 Smb - ok
10:22:47.0603 4792 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
10:22:47.0618 4792 SNMPTRAP - ok
10:22:47.0774 4792 SNP2UVC (783a998f4b00dadfe8fbce5f1b867242) C:\Windows\system32\DRIVERS\snp2uvc.sys
10:22:47.0837 4792 SNP2UVC - ok
10:22:47.0977 4792 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
10:22:47.0977 4792 spldr - ok
10:22:48.0040 4792 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
10:22:48.0071 4792 Spooler - ok
10:22:48.0164 4792 SRS_PremiumSound_Service (0038ecf6da52b3851846a1f1a4ea7246) C:\Windows\system32\drivers\srs_PremiumSound_amd64.sys
10:22:48.0180 4792 SRS_PremiumSound_Service - ok
10:22:48.0398 4792 SRS_VolSync_Service (568a5929dfe3a7468fafd9a2145fcd73) C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
10:22:48.0414 4792 SRS_VolSync_Service - ok
10:22:48.0476 4792 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
10:22:48.0508 4792 srv - ok
10:22:48.0554 4792 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
10:22:48.0570 4792 srv2 - ok
10:22:48.0601 4792 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
10:22:48.0617 4792 srvnet - ok
10:22:48.0648 4792 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
10:22:48.0664 4792 SSDPSRV - ok
10:22:48.0742 4792 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
10:22:48.0757 4792 SstpSvc - ok
10:22:48.0835 4792 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
10:22:48.0866 4792 stisvc - ok
10:22:48.0898 4792 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
10:22:48.0898 4792 swenum - ok
10:22:48.0991 4792 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
10:22:49.0054 4792 swprv - ok
10:22:49.0069 4792 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
10:22:49.0069 4792 Symc8xx - ok
10:22:49.0100 4792 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
10:22:49.0100 4792 Sym_hi - ok
10:22:49.0132 4792 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
10:22:49.0147 4792 Sym_u3 - ok
10:22:49.0225 4792 SynTP (5d8d008ae896a24e1c6e028e1de1fa5e) C:\Windows\system32\DRIVERS\SynTP.sys
10:22:49.0225 4792 SynTP - ok
10:22:49.0319 4792 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
10:22:49.0366 4792 SysMain - ok
10:22:49.0397 4792 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
10:22:49.0412 4792 TabletInputService - ok
10:22:49.0475 4792 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
10:22:49.0506 4792 TapiSrv - ok
10:22:49.0522 4792 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
10:22:49.0537 4792 TBS - ok
10:22:49.0678 4792 Tcpip (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\drivers\tcpip.sys
10:22:49.0771 4792 Tcpip - ok
10:22:49.0802 4792 Tcpip6 (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\DRIVERS\tcpip.sys
10:22:49.0818 4792 Tcpip6 - ok
10:22:49.0896 4792 tcpipreg (fd8fde859e38e40a20085ebb0c22b416) C:\Windows\system32\drivers\tcpipreg.sys
10:22:49.0927 4792 tcpipreg - ok
10:22:49.0958 4792 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
10:22:49.0974 4792 TDPIPE - ok
10:22:49.0990 4792 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
10:22:50.0005 4792 TDTCP - ok
10:22:50.0099 4792 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
10:22:50.0099 4792 tdx - ok
10:22:50.0146 4792 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
10:22:50.0161 4792 TermDD - ok
10:22:50.0208 4792 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
10:22:50.0239 4792 TermService - ok
10:22:50.0302 4792 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
10:22:50.0302 4792 Themes - ok
10:22:50.0333 4792 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
10:22:50.0348 4792 THREADORDER - ok
10:22:50.0380 4792 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
10:22:50.0395 4792 TrkWks - ok
10:22:50.0458 4792 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
10:22:50.0458 4792 TrustedInstaller - ok
10:22:50.0504 4792 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:22:50.0504 4792 tssecsrv - ok
10:22:50.0520 4792 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
10:22:50.0536 4792 tunmp - ok
10:22:50.0614 4792 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
10:22:50.0614 4792 tunnel - ok
10:22:50.0660 4792 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
10:22:50.0660 4792 uagp35 - ok
10:22:50.0723 4792 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
10:22:50.0738 4792 udfs - ok
10:22:50.0770 4792 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
10:22:50.0785 4792 UI0Detect - ok
10:22:50.0832 4792 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
10:22:50.0832 4792 uliagpkx - ok
10:22:50.0879 4792 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
10:22:50.0910 4792 uliahci - ok
10:22:50.0941 4792 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
10:22:50.0972 4792 UlSata - ok
10:22:50.0988 4792 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
10:22:51.0004 4792 ulsata2 - ok
10:22:51.0050 4792 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
10:22:51.0050 4792 umbus - ok
10:22:51.0097 4792 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
10:22:51.0191 4792 upnphost - ok
10:22:51.0238 4792 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
10:22:51.0253 4792 USBAAPL64 - ok
10:22:51.0284 4792 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
10:22:51.0300 4792 usbccgp - ok
10:22:51.0347 4792 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
10:22:51.0347 4792 usbcir - ok
10:22:51.0425 4792 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
10:22:51.0425 4792 usbehci - ok
10:22:51.0487 4792 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
10:22:51.0503 4792 usbhub - ok
10:22:51.0550 4792 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
10:22:51.0565 4792 usbohci - ok
10:22:51.0612 4792 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
10:22:51.0612 4792 usbprint - ok
10:22:51.0643 4792 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:22:51.0643 4792 USBSTOR - ok
10:22:51.0674 4792 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
10:22:51.0674 4792 usbuhci - ok
10:22:51.0752 4792 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
10:22:51.0768 4792 usbvideo - ok
10:22:51.0815 4792 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
10:22:51.0815 4792 UxSms - ok
10:22:51.0893 4792 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
10:22:51.0924 4792 vds - ok
10:22:51.0955 4792 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
10:22:51.0955 4792 vga - ok
10:22:51.0986 4792 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
10:22:51.0986 4792 VgaSave - ok
10:22:52.0018 4792 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
10:22:52.0018 4792 viaide - ok
10:22:52.0111 4792 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
10:22:52.0111 4792 volmgr - ok
10:22:52.0174 4792 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
10:22:52.0220 4792 volmgrx - ok
10:22:52.0283 4792 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
10:22:52.0314 4792 volsnap - ok
10:22:52.0361 4792 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
10:22:52.0361 4792 vsmraid - ok
10:22:52.0454 4792 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
10:22:52.0501 4792 VSS - ok
10:22:52.0564 4792 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
10:22:52.0579 4792 W32Time - ok
10:22:52.0657 4792 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
10:22:52.0657 4792 WacomPen - ok
10:22:52.0704 4792 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
10:22:52.0704 4792 Wanarp - ok
10:22:52.0720 4792 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
10:22:52.0720 4792 Wanarpv6 - ok
10:22:52.0798 4792 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
10:22:52.0829 4792 wcncsvc - ok
10:22:52.0860 4792 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
10:22:52.0876 4792 WcsPlugInService - ok
10:22:52.0907 4792 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
10:22:52.0922 4792 Wd - ok
10:22:52.0985 4792 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
10:22:53.0032 4792 Wdf01000 - ok
10:22:53.0063 4792 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
10:22:53.0078 4792 WdiServiceHost - ok
10:22:53.0094 4792 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
10:22:53.0094 4792 WdiSystemHost - ok
10:22:53.0156 4792 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
10:22:53.0188 4792 WebClient - ok
10:22:53.0328 4792 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
10:22:53.0344 4792 Wecsvc - ok
10:22:53.0437 4792 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
10:22:53.0453 4792 wercplsupport - ok
10:22:53.0484 4792 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
10:22:53.0500 4792 WerSvc - ok
10:22:53.0578 4792 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
10:22:53.0593 4792 WimFltr - ok
10:22:53.0640 4792 WinDefend - ok
10:22:53.0656 4792 WinHttpAutoProxySvc - ok
10:22:53.0718 4792 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
10:22:53.0765 4792 Winmgmt - ok
10:22:53.0921 4792 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
10:22:53.0983 4792 WinRM - ok
10:22:54.0139 4792 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
10:22:54.0186 4792 Wlansvc - ok
10:22:54.0451 4792 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:22:54.0514 4792 wlidsvc - ok
10:22:54.0638 4792 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:22:54.0638 4792 WmiAcpi - ok
10:22:54.0732 4792 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
10:22:54.0748 4792 wmiApSrv - ok
10:22:54.0794 4792 WMPNetworkSvc - ok
10:22:54.0826 4792 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
10:22:54.0841 4792 WPCSvc - ok
10:22:54.0888 4792 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
10:22:54.0919 4792 WPDBusEnum - ok
10:22:54.0966 4792 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
10:22:54.0982 4792 WpdUsb - ok
10:22:55.0169 4792 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:22:55.0247 4792 WPFFontCache_v0400 - ok
10:22:55.0294 4792 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
10:22:55.0294 4792 ws2ifsl - ok
10:22:55.0340 4792 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\system32\wscsvc.dll
10:22:55.0403 4792 wscsvc - ok
10:22:55.0418 4792 WSearch - ok
10:22:55.0574 4792 wuauserv (fb3796754fe00f0bdc87a36f164a5f4d) C:\Windows\system32\wuaueng.dll
10:22:55.0684 4792 wuauserv - ok
10:22:55.0840 4792 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:22:55.0855 4792 WUDFRd - ok
10:22:55.0886 4792 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
10:22:55.0918 4792 wudfsvc - ok
10:22:55.0980 4792 yukonx64 (07f7285220307aafb755d890295f0f9a) C:\Windows\system32\DRIVERS\yk60x64.sys
10:22:55.0996 4792 yukonx64 - ok
10:22:56.0089 4792 ZTEusbmdm6k (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
10:22:56.0089 4792 ZTEusbmdm6k - ok
10:22:56.0152 4792 ZTEusbnmea (c9ada887bf326d8413e81fe80b1be7eb) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
10:22:56.0152 4792 ZTEusbnmea - ok
10:22:56.0198 4792 ZTEusbser6k (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
10:22:56.0214 4792 ZTEusbser6k - ok
10:22:56.0354 4792 MBR (0x1B8) (64b1e91c5c6c2157642651010728f90f) \Device\Harddisk0\DR0
10:22:56.0713 4792 \Device\Harddisk0\DR0 - ok
10:22:56.0776 4792 Boot (0x1200) (b90ccafb1f6ef8633e7737333eca131c) \Device\Harddisk0\DR0\Partition0
10:22:56.0776 4792 \Device\Harddisk0\DR0\Partition0 - ok
10:22:56.0791 4792 ============================================================
10:22:56.0791 4792 Scan finished
10:22:56.0791 4792 ============================================================
10:22:56.0807 3228 Detected object count: 1
10:22:56.0807 3228 Actual detected object count: 1
10:25:50.0684 3228 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
10:25:50.0684 3228 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
10:26:05.0364 4896 Deinitialize success

 

Hello celabella. You didn't answer my question about your lag issue.

------------------------------------------------------

If there are any personal files, pics, etc. on your computer you cannot live without, back them up now just as a precaution.

Emergency Backup Procedure - Tech Support Forum

------------------------------------------------------

Please download ComboFix and Save it to your Desktop.

**Note: It is important that it is saved directly to your desktop**

------------------------------------------------------

Disable your antivirus and antispyware applications, usually via a right-click on the System Tray icon. They may otherwise interfere with ComboFix.

Get help here

Open Notepad and copy/paste all the text in the codebox below into Notepad:

ClearJavaCache::

DDS::
uInternet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local>

Save this Notepad file as CFScript.txt to your Desktop and then close the file.

Referring to the picture above, drag CFScript onto ComboFix

Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.

When finished, it shall produce a log for you. Please post that log, C:\ComboFix.txt, in your next reply.

Please re-enable your antivirus before posting the ComboFix.txt log.

If you get an 'Illegal operation attempted on a Registry key which has been marked for deletion' error message, please reboot your machine.

------------------------------------------------------

 

oh sorry yes there is a lag
i boot up the laptop get black screen then the progress microsoft line then a black screen about 3 sec i get the windows logo then black screen then sign on to enter password., start typing and then i get black screen like a flicker and then i can type again and log into windows

 

also i notice that when i there's also a lag on the response time when clicking on applications .
i will do what you say with the combo fix ...and will post log in a bit thank you.. so much really am trying to fix this since i have a paper due

 

You're welcome. Post the log when you are able.

 

ComboFix 12-06-07.03 - Lauren Carrion 06/07/2012 16:44:25.2.1 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.4060.2184 [GMT -4:00]
Running from: c:\users\Lauren Carrion\Desktop\ComboFix.exe
Command switches used :: c:\users\Lauren Carrion\Desktop\CFScript.txt
AV: Kaspersky PURE *Disabled/Updated* {56547CC9-C9B2-849D-8FEF-A496150D6A06}
FW: Kaspersky PURE *Disabled* {6E6FFDEC-83DD-85C5-A4B0-0DA3EBDE2D7D}
SP: Kaspersky PURE *Disabled/Updated* {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-05-07 to 2012-06-07 )))))))))))))))))))))))))))))))
.
.
2012-06-07 21:03 . 2012-06-07 21:08 -------- d-----w- c:\users\Lauren Carrion\AppData\Local\temp
2012-06-07 21:03 . 2012-06-07 21:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-07 16:37 . 2009-03-09 14:29 53248 ----a-w- c:\windows\SysWow64\LogonStart.dll
2012-06-07 12:42 . 2012-06-07 12:42 -------- d-----w- c:\users\Lauren Carrion\AppData\Local\Apple
2012-06-07 12:27 . 2009-12-14 16:44 85048 ----a-w- c:\windows\system32\drivers\CSCrySec.sys
2012-06-07 12:27 . 2009-12-14 16:44 66104 ----a-w- c:\windows\system32\drivers\CSVirtualDiskDrv.sys
2012-06-07 12:25 . 2012-06-07 12:25 -------- d-----w- c:\program files (x86)\Common Files\InfoWatch
2012-06-07 04:46 . 2010-04-06 08:34 345984 ----a-w- c:\windows\system32\drivers\netio.sys
2012-06-06 17:31 . 2012-06-06 17:31 -------- d-----w- c:\users\Lauren Carrion\AppData\Roaming\SUPERAntiSpyware.com
2012-06-06 17:29 . 2012-06-06 17:31 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-06-06 17:29 . 2012-06-06 17:29 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-06-05 19:07 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7DB671F7-7816-4B1D-BE8D-00561AB119B9}\mpengine.dll
2012-06-01 17:23 . 2012-06-01 17:23 -------- d-----w- c:\users\Lauren Carrion\AppData\Roaming\Malwarebytes
2012-06-01 17:21 . 2012-06-01 17:21 -------- d-----w- c:\programdata\Malwarebytes
2012-05-09 22:17 . 2012-03-30 12:45 1422720 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-05-09 22:17 . 2012-03-29 14:22 40448 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-05-09 22:14 . 2012-03-20 23:34 72576 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-05-09 22:13 . 2012-04-03 08:22 4699520 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-09 22:13 . 2012-04-02 13:59 2766848 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-16 20:34 . 2012-03-16 20:34 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-03-16 20:34 . 2012-03-16 20:34 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-03-16 20:34 . 2012-03-16 20:34 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-03-16 20:34 . 2012-03-16 20:34 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-03-16 20:34 . 2012-03-16 20:34 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-03-16 20:34 . 2012-03-16 20:34 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-03-16 20:34 . 2012-03-16 20:34 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-03-16 20:34 . 2012-03-16 20:34 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-03-16 20:34 . 2012-03-16 20:34 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-03-16 20:34 . 2012-03-16 20:34 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-03-16 20:34 . 2012-03-16 20:34 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-03-16 20:34 . 2012-03-16 20:34 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-03-16 20:34 . 2012-03-16 20:34 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-03-16 20:34 . 2012-03-16 20:34 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-03-16 20:34 . 2012-03-16 20:34 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-03-16 20:33 . 2012-03-16 20:33 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-03-16 20:33 . 2012-03-16 20:33 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-03-16 20:32 . 2012-03-16 20:32 222208 ----a-w- c:\windows\system32\msls31.dll
2012-03-16 20:32 . 2012-03-16 20:32 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-03-16 20:32 . 2012-03-16 20:32 12288 ----a-w- c:\windows\system32\mshta.exe
2012-03-16 20:32 . 2012-03-16 20:32 114176 ----a-w- c:\windows\system32\admparse.dll
2012-03-16 20:32 . 2012-03-16 20:32 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-03-16 20:32 . 2012-03-16 20:32 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-03-16 20:32 . 2012-03-16 20:32 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-03-16 20:32 . 2012-03-16 20:32 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-03-16 20:32 . 2012-03-16 20:32 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-03-16 20:32 . 2012-03-16 20:32 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-03-16 20:32 . 2012-03-16 20:32 448512 ----a-w- c:\windows\system32\html.iec
2012-03-16 20:32 . 2012-03-16 20:32 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-03-16 20:32 . 2012-03-16 20:32 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-03-16 20:32 . 2012-03-16 20:32 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-03-16 20:32 . 2012-03-16 20:32 160256 ----a-w- c:\windows\system32\wextract.exe
2012-03-16 20:32 . 2012-03-16 20:32 603648 ----a-w- c:\windows\system32\vbscript.dll
2012-03-16 20:32 . 2012-03-16 20:32 173056 ----a-w- c:\windows\system32\ieUnatt.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\KAVOverlayIcon]
@="{dd230880-495a-11d1-b064-008048ec2fc5}"
[HKEY_CLASSES_ROOT\CLSID\{dd230880-495a-11d1-b064-008048ec2fc5}]
2010-10-02 02:05 129624 ----a-w- c:\program files (x86)\Kaspersky Lab\Kaspersky PURE\shellex.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SRS Premium Sound"="c:\program files\SRS Labs\SRS Premium Sound\SRSPremiumSoundBig_Small.exe" [2009-04-07 3728632]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 138240]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2008-07-19 104936]
"P2Go_Menu"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2008-08-18 98304]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-03-04 8392704]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-04-20 159744]
"ADSMTray"="c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe" [2008-04-01 266240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-09-08 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-09-24 421160]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-08-31 40368]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe" [2010-10-02 348760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~2\KASPER~1\KASPER~2\mzvkbd3.dll c:\progra~2\KASPER~1\KASPER~2\sbhook.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
getPlusHelper REG_MULTI_SZ getPlusHelper
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
Akamai REG_MULTI_SZ Akamai
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 17:14 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2012-06-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-16 02:40]
.
2012-06-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-16 02:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\KAVOverlayIcon]
@="{dd230880-495a-11d1-b064-008048ec2fc5}"
[HKEY_CLASSES_ROOT\CLSID\{dd230880-495a-11d1-b064-008048ec2fc5}]
2010-10-02 02:06 170584 ----a-w- c:\program files (x86)\Kaspersky Lab\Kaspersky PURE\x64\ShellEx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-04-26 153624]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-04-26 225816]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-04-26 200216]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-04-26 16225824]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-04-14 7714336]
"Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-04-14 1833504]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-11-26 1645352]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-04-03 320512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_Dlls"=0x1
"AppInit_DLLs"=c:\progra~2\KASPER~1\KASPER~2\x64\kloehk.dll c:\progra~2\KASPER~1\KASPER~2\x64\sbhook64.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.scbwi.org/Pages.aspx/Who-We-Are---What-We-Do
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=ASUS&bmod=ASUS
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-Akamai NetSession Interface - c:\users\Lauren Carrion\AppData\Local\Akamai\netsession_win.exe
AddRemove-Akamai - c:\users\Lauren Carrion\AppData\Local\Akamai\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe
c:\program files (x86)\ASUS\ATK Hotkey\Atouch64.exe
c:\program files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Hotkey\KBFiltr.exe
c:\program files (x86)\ASUS\ATK Hotkey\WDC.exe
.
**************************************************************************
.
Completion time: 2012-06-07 17:16:05 - machine was rebooted
ComboFix-quarantined-files.txt 2012-06-07 21:16
ComboFix2.txt 2012-06-05 18:15
.
Pre-Run: 354,863,501,312 bytes free
Post-Run: 355,046,240,256 bytes free
.
- - End Of File - - 96EC70F505D50D0E298C48077F65B465

 

Hello again, celabella. Still not seeing anything. We'll do an online scan to look for remnants.

------------------------------------------------------

• Launch Malwarebytes' Anti-Malware
• Under the Update tab, click Check for Updates
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select Perform quick scan, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is checked, and click Remove Selected.
• When completed, a log will open in Notepad and you may be prompted to Restart your computer.(See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy/Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

------------------------------------------------------

Uninstall the following via the Programs and Features Panel (Start->(Settings)->Control Panel->Programs->Programs and Features):

Java(TM) 6 Update 18

These are all outdated, and security risks by having them installed still. Reboot your computer once all those Java components are removed.

Going forward, Java will overwrite existing installs, so removing older versions should not be required after this.

Go here and follow the prompts to install the latest Java > java.com: Java + You

• After the install is complete, go back to your Control Panel and click the Java icon. (looks like a coffee cup)
  • On the General tab, under Temporary Internet Files, click the Settings button.
  • Next, click on the Delete Files button.
  • There are two options in the window to clear the cache - Leave BOTH Checked
    • Applications and Applets
    • Trace and Log Files
  • Click OK on Delete Temporary Files Window.
    Note: This deletes ALL the Downloaded Applications and Applets from the CACHE
  • Click OK to leave the Temporary Files Window.
  • Click OK to leave the Java Control Panel.

------------------------------------------------------

Please run this online scan to help look for remnants. Ensure your external and/or USB drives are inserted during the scan.

In Microsoft Windows Vista/Win7, you must open the Web browser via a right-click using the Run as Administrator command.

Go here and click 'ESET Online Scanner'.

• If you are not using Internet Explorer, double-click esetsmartinstaller_enu.exe to install it, then click 'Run'.
• Turn off the real-time scanner of any existing antivirus program while performing the online scan.
• Tick the box next to YES, I accept the Terms of Use.
• Click Start
• If using Internet Explorer, allow the ActiveX control to install when asked.
• Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
• Click on Advanced Settings and ensure these options are ticked:
  • Scan for potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth Technology
• Next to 'Current scan targets: Operating memory, Local drives', click the Change.. button.
• Tick all the boxes that correspond to your external/inserted drives.
• Click Start
• Wait for the scan to finish.
• When the scan is done, if it shows a screen that says "Threats found!", click "List of found threats", and then click "Export to text file..."
• Save that text file to your desktop, and then copy/paste the contents in your next reply.

------------------------------------------------------

Please post the following in your next reply:

MBAM log
ESET report

 

i have ran malwarebytes and nothing came up,this the log that i got i will run it again if u like. i also ran the eset online scanner and didn't get anything

 

Hello again, celabella. It appears your problem is beyond malware.

Let's try one more thing. Run aswMBR again, this time allow it to download the latest Avast! virus definitions:

• Double-click aswMBR.exe to run it.
• When prompted to download the latest Avast! virus definitions, please choose Yes
• Click the Scan button to start scan.
• Wait until it says, 'Scan finished successfully'. (Note - do not select any Fix at this time)
• Click Save log, and save it to your desktop.
• Click Exit.
• Please post the contents of that log, aswMBR.txt, in your next reply.

------------------------------------------------------

 

good morning,
just wanted to let you know that i ran this already and posted the log earlier along with the tdskiller log


will post again
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 10:09:34
-----------------------------
10:09:34.844 OS Version: Windows x64 6.0.6002 Service Pack 2
10:09:34.844 Number of processors: 1 586 0x170A
10:09:34.844 ComputerName: CARRION-PC UserName:
10:09:34.891 Initialze error C0000034 - driver not loaded
10:11:17.851 Service scanning
10:11:18.506 Modules scanning
10:11:18.506 Disk 0 trace - called modules:
10:11:18.506
10:11:18.506 Scan finished successfully
10:11:52.140 The log file has been saved successfully to "C:\Users\Lauren Carrion\Desktop\aswMBR.txt"

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-07 10:19:01
-----------------------------
10:19:01.055 OS Version: Windows x64 6.0.6002 Service Pack 2
10:19:01.055 Number of processors: 1 586 0x170A
10:19:01.055 ComputerName:
10:19:02.630 Initialize success
10:19:05.937 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:19:05.937 Disk 0 Vendor: ST950032 0002 Size: 476940MB BusType: 3
10:19:05.953 Disk 0 MBR read successfully
10:19:05.969 Disk 0 MBR scan
10:19:05.969 Disk 0 unknown MBR code
10:19:05.969 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 12001 MB offset 63
10:19:05.984 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 464937 MB offset 24579450
10:19:06.015 Disk 0 scanning C:\Windows\system32\drivers
10:19:18.620 Service scanning
10:19:47.262 Modules scanning
10:19:47.262 Disk 0 trace - called modules:
10:19:47.293 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys iaStor.sys hal.dll
10:19:47.293 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004f732c0]
10:19:47.309 3 CLASSPNP.SYS[fffffa60011cdc33] -> nt!IofCallDriver -> [0xfffffa80040ca4d0]
10:19:47.309 5 acpi.sys[fffffa60008f2fde] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004b42050]
10:19:47.324 Scan finished successfully
10:20:16.793 Disk 0 MBR has been saved successfully to "C:\Users\Lauren Carrion\Desktop\MBR.dat"
10:20:16.808 The log file has been saved successfully to "C:\Users\Lauren Carrion\Desktop\aswMBR.txt"
===============================================================
10:22:00.0023 4164 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
10:22:00.0506 4164 ============================================================
10:22:00.0506 4164 Current date / time: 2012/06/07 10:22:00.0506
10:22:00.0506 4164 SystemInfo:
10:22:00.0506 4164
10:22:00.0506 4164 OS Version: 6.0.6002 ServicePack: 2.0
10:22:00.0506 4164 Product type: Workstation
10:22:00.0506 4164 ComputerName: CARRION-PC
10:22:00.0506 4164 UserName: Lauren Carrion
10:22:00.0506 4164 Windows directory: C:\Windows
10:22:00.0506 4164 System windows directory: C:\Windows
10:22:00.0506 4164 Running under WOW64
10:22:00.0506 4164 Processor architecture: Intel x64
10:22:00.0506 4164 Number of processors: 1
10:22:00.0506 4164 Page size: 0x1000
10:22:00.0506 4164 Boot type: Normal boot
10:22:00.0506 4164 ============================================================
10:22:01.0786 4164 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:22:01.0801 4164 ============================================================
10:22:01.0801 4164 \Device\Harddisk0\DR0:
10:22:01.0801 4164 MBR partitions:
10:22:01.0801 4164 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1770D7A, BlocksNum 0x38C14AB6
10:22:01.0801 4164 ============================================================
10:22:01.0832 4164 C: <-> \Device\Harddisk0\DR0\Partition0
10:22:01.0832 4164 ============================================================
10:22:01.0832 4164 Initialize success
10:22:01.0832 4164 ============================================================
10:22:20.0568 4792 ============================================================
10:22:20.0568 4792 Scan started
10:22:20.0568 4792 Mode: Manual; TDLFS;
10:22:20.0568 4792 ============================================================
10:22:20.0927 4792 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:22:20.0942 4792 !SASCORE - ok
10:22:21.0161 4792 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
10:22:21.0176 4792 ACPI - ok
10:22:21.0254 4792 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
10:22:21.0254 4792 adfs - ok
10:22:21.0348 4792 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
10:22:21.0379 4792 adp94xx - ok
10:22:21.0442 4792 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
10:22:21.0442 4792 adpahci - ok
10:22:21.0473 4792 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
10:22:21.0473 4792 adpu160m - ok
10:22:21.0520 4792 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
10:22:21.0520 4792 adpu320 - ok
10:22:21.0660 4792 ADSMService (c0bf554d2277f7a4c735d475ade2e3b2) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
10:22:21.0660 4792 ADSMService - ok
10:22:21.0691 4792 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
10:22:21.0691 4792 AeLookupSvc - ok
10:22:21.0800 4792 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
10:22:21.0816 4792 AFD - ok
10:22:21.0894 4792 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
10:22:21.0894 4792 agp440 - ok
10:22:21.0956 4792 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
10:22:21.0956 4792 aic78xx - ok
10:22:22.0253 4792 Akamai (c775d704feb2b600a5bf7b0b088546af) c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll
10:22:22.0300 4792 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll. md5: c775d704feb2b600a5bf7b0b088546af
10:22:22.0315 4792 Akamai ( HiddenFile.Multi.Generic ) - warning
10:22:22.0315 4792 Akamai - detected HiddenFile.Multi.Generic (1)
10:22:22.0409 4792 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
10:22:22.0409 4792 ALG - ok
10:22:22.0518 4792 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
10:22:22.0518 4792 aliide - ok
10:22:22.0549 4792 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
10:22:22.0549 4792 amdide - ok
10:22:22.0612 4792 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
10:22:22.0612 4792 AmdK8 - ok
10:22:22.0705 4792 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
10:22:22.0814 4792 Appinfo - ok
10:22:23.0017 4792 Apple Mobile Device (70d7be78061126dd0c3accdb7e129017) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:22:23.0080 4792 Apple Mobile Device - ok
10:22:23.0158 4792 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
10:22:23.0173 4792 arc - ok
10:22:23.0204 4792 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
10:22:23.0220 4792 arcsas - ok
10:22:23.0298 4792 AsDsm (88fbc8bebfd38566235eaa5e4dbc4e05) C:\Windows\system32\drivers\AsDsm.sys
10:22:23.0329 4792 AsDsm - ok
10:22:23.0423 4792 ASLDRService (eb1807795cd3eeaa3288b4a30de254e8) C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
10:22:23.0423 4792 ASLDRService - ok
10:22:23.0532 4792 ASMMAP64 (2db34edd17d3a8da7105a19c95a3dd68) C:\Program Files\ATKGFNEX\ASMMAP64.sys
10:22:23.0532 4792 ASMMAP64 - ok
10:22:23.0594 4792 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
10:22:23.0594 4792 AsyncMac - ok
10:22:23.0626 4792 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
10:22:23.0626 4792 atapi - ok
10:22:23.0672 4792 ATKGFNEXSrv (7c157574a181b19b9dcf5f339e25337e) C:\Program Files\ATKGFNEX\GFNEXSrv.exe
10:22:23.0672 4792 ATKGFNEXSrv - ok
10:22:23.0766 4792 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
10:22:23.0797 4792 AudioEndpointBuilder - ok
10:22:23.0828 4792 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
10:22:23.0828 4792 AudioSrv - ok
10:22:24.0109 4792 AVP (a2b790f9a751f24f17967f9a5574186d) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
10:22:24.0109 4792 AVP - ok
10:22:24.0125 4792 Beep - ok
10:22:24.0250 4792 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
10:22:24.0281 4792 BFE - ok
10:22:24.0406 4792 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\system32\qmgr.dll
10:22:24.0452 4792 BITS - ok
10:22:24.0515 4792 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
10:22:24.0515 4792 blbdrive - ok
10:22:24.0624 4792 Bonjour Service (673cf4f6bb1fbe09331b526802fbb892) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
10:22:24.0655 4792 Bonjour Service - ok
10:22:24.0718 4792 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
10:22:24.0718 4792 bowser - ok
10:22:24.0780 4792 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
10:22:24.0796 4792 BrFiltLo - ok
10:22:24.0811 4792 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
10:22:24.0827 4792 BrFiltUp - ok
10:22:24.0889 4792 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
10:22:24.0889 4792 Browser - ok
10:22:24.0967 4792 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
10:22:24.0967 4792 Brserid - ok
10:22:24.0983 4792 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
10:22:24.0983 4792 BrSerWdm - ok
10:22:25.0014 4792 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
10:22:25.0014 4792 BrUsbMdm - ok
10:22:25.0030 4792 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
10:22:25.0030 4792 BrUsbSer - ok
10:22:25.0061 4792 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
10:22:25.0061 4792 BTHMODEM - ok
10:22:25.0108 4792 catchme - ok
10:22:25.0170 4792 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
10:22:25.0186 4792 cdfs - ok
10:22:25.0264 4792 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
10:22:25.0264 4792 cdrom - ok
10:22:25.0342 4792 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
10:22:25.0342 4792 CertPropSvc - ok
10:22:25.0373 4792 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
10:22:25.0388 4792 circlass - ok
10:22:25.0451 4792 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
10:22:25.0513 4792 CLFS - ok
10:22:25.0607 4792 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:22:25.0622 4792 clr_optimization_v2.0.50727_32 - ok
10:22:25.0669 4792 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:22:25.0685 4792 clr_optimization_v2.0.50727_64 - ok
10:22:25.0794 4792 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:22:25.0825 4792 clr_optimization_v4.0.30319_32 - ok
10:22:25.0872 4792 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:22:25.0903 4792 clr_optimization_v4.0.30319_64 - ok
10:22:25.0966 4792 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
10:22:25.0966 4792 CmBatt - ok
10:22:25.0997 4792 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
10:22:25.0997 4792 cmdide - ok
10:22:26.0028 4792 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
10:22:26.0028 4792 Compbatt - ok
10:22:26.0044 4792 COMSysApp - ok
10:22:26.0059 4792 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
10:22:26.0059 4792 crcdisk - ok
10:22:26.0122 4792 CRFILTER (64beed6775c22b0362fa9ded3f8124a1) C:\Windows\system32\DRIVERS\CRFILTER.sys
10:22:26.0122 4792 CRFILTER - ok
10:22:26.0184 4792 CryptSvc (18918613e63f387cde4d95ca7d49dcf7) C:\Windows\system32\cryptsvc.dll
10:22:26.0200 4792 CryptSvc - ok
10:22:26.0278 4792 CSCrySec (ab1201f8de199e764da9a32abf71049c) C:\Windows\system32\DRIVERS\CSCrySec.sys
10:22:26.0278 4792 CSCrySec - ok
10:22:26.0480 4792 CSObjectsSrv (6e5b42219f1fe4a3d087d9d501e343d5) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
10:22:26.0496 4792 CSObjectsSrv - ok
10:22:26.0574 4792 CSVirtualDiskDrv (a6eed705bb510fa6b0f9f097165a3395) C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys
10:22:26.0574 4792 CSVirtualDiskDrv - ok
10:22:26.0668 4792 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
10:22:26.0714 4792 DcomLaunch - ok
10:22:26.0792 4792 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
10:22:26.0792 4792 DfsC - ok
10:22:26.0995 4792 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
10:22:27.0104 4792 DFSR - ok
10:22:27.0292 4792 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
10:22:27.0323 4792 Dhcp - ok
10:22:27.0385 4792 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
10:22:27.0385 4792 disk - ok
10:22:27.0463 4792 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
10:22:27.0463 4792 Dnscache - ok
10:22:27.0526 4792 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
10:22:27.0541 4792 dot3svc - ok
10:22:27.0635 4792 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
10:22:27.0650 4792 DPS - ok
10:22:27.0713 4792 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
10:22:27.0713 4792 drmkaud - ok
10:22:27.0791 4792 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
10:22:27.0822 4792 DXGKrnl - ok
10:22:27.0853 4792 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
10:22:27.0853 4792 E1G60 - ok
10:22:27.0931 4792 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
10:22:27.0931 4792 EapHost - ok
10:22:28.0025 4792 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
10:22:28.0025 4792 Ecache - ok
10:22:28.0087 4792 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
10:22:28.0103 4792 ehRecvr - ok
10:22:28.0150 4792 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
10:22:28.0150 4792 ehSched - ok
10:22:28.0212 4792 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
10:22:28.0228 4792 ehstart - ok
10:22:28.0290 4792 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
10:22:28.0306 4792 elxstor - ok
10:22:28.0368 4792 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
10:22:28.0399 4792 EMDMgmt - ok
10:22:28.0415 4792 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
10:22:28.0415 4792 ErrDev - ok
10:22:28.0508 4792 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
10:22:28.0524 4792 EventSystem - ok
10:22:28.0649 4792 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
10:22:28.0696 4792 exfat - ok
10:22:28.0758 4792 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
10:22:28.0758 4792 fastfat - ok
10:22:28.0852 4792 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
10:22:28.0852 4792 fdc - ok
10:22:28.0883 4792 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
10:22:28.0883 4792 fdPHost - ok
10:22:28.0914 4792 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
10:22:28.0914 4792 FDResPub - ok
10:22:28.0945 4792 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
10:22:28.0945 4792 FileInfo - ok
10:22:28.0976 4792 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
10:22:28.0976 4792 Filetrace - ok
10:22:29.0008 4792 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:22:29.0008 4792 flpydisk - ok
10:22:29.0070 4792 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
10:22:29.0070 4792 FltMgr - ok
10:22:29.0257 4792 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
10:22:29.0304 4792 FontCache - ok
10:22:29.0382 4792 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:22:29.0382 4792 FontCache3.0.0.0 - ok
10:22:29.0507 4792 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
10:22:29.0507 4792 fssfltr - ok
10:22:29.0678 4792 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:22:29.0710 4792 fsssvc - ok
10:22:29.0866 4792 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
10:22:29.0866 4792 Fs_Rec - ok
10:22:29.0897 4792 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
10:22:29.0897 4792 gagp30kx - ok
10:22:29.0944 4792 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:22:29.0944 4792 GEARAspiWDM - ok
10:22:30.0068 4792 getPlusHelper (ce8f5b65d6cfe435fb9bf875eda99d55) C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll
10:22:30.0068 4792 getPlusHelper - ok
10:22:30.0146 4792 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
10:22:30.0162 4792 gpsvc - ok
10:22:30.0318 4792 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:22:30.0318 4792 gupdate - ok
10:22:30.0349 4792 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:22:30.0349 4792 gupdatem - ok
10:22:30.0412 4792 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
10:22:30.0427 4792 HdAudAddService - ok
10:22:30.0521 4792 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:22:30.0583 4792 HDAudBus - ok
10:22:30.0614 4792 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
10:22:30.0614 4792 HidBth - ok
10:22:30.0646 4792 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
10:22:30.0661 4792 HidIr - ok
10:22:30.0708 4792 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\System32\hidserv.dll
10:22:30.0708 4792 hidserv - ok
10:22:30.0770 4792 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
10:22:30.0802 4792 HidUsb - ok
10:22:30.0848 4792 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
10:22:30.0848 4792 hkmsvc - ok
10:22:30.0926 4792 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
10:22:30.0926 4792 HpCISSs - ok
10:22:31.0004 4792 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
10:22:31.0020 4792 HTTP - ok
10:22:31.0051 4792 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
10:22:31.0051 4792 i2omp - ok
10:22:31.0114 4792 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
10:22:31.0114 4792 i8042prt - ok
10:22:31.0176 4792 iaStor (1adaa4f16073fd0c7270f451fd024e97) C:\Windows\system32\DRIVERS\iaStor.sys
10:22:31.0176 4792 iaStor - ok
10:22:31.0238 4792 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
10:22:31.0254 4792 iaStorV - ok
10:22:31.0379 4792 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:22:31.0426 4792 idsvc - ok
10:22:31.0441 4792 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
10:22:31.0441 4792 iirsp - ok
10:22:31.0535 4792 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
10:22:31.0550 4792 IKEEXT - ok
10:22:31.0722 4792 IntcAzAudAddService (5e7092c34f6a5d28c5a3d5570b5622f9) C:\Windows\system32\drivers\RTKVHD64.sys
10:22:31.0769 4792 IntcAzAudAddService - ok
10:22:31.0909 4792 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
10:22:31.0909 4792 intelide - ok
10:22:31.0925 4792 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
10:22:31.0940 4792 intelppm - ok
10:22:31.0972 4792 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
10:22:31.0972 4792 IPBusEnum - ok
10:22:32.0018 4792 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:22:32.0018 4792 IpFilterDriver - ok
10:22:32.0081 4792 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
10:22:32.0096 4792 iphlpsvc - ok
10:22:32.0096 4792 IpInIp - ok
10:22:32.0143 4792 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
10:22:32.0159 4792 IPMIDRV - ok
10:22:32.0174 4792 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
10:22:32.0190 4792 IPNAT - ok
10:22:32.0299 4792 iPod Service (f0eac938ecc1b2764d04ce16f8627e56) C:\Program Files\iPod\bin\iPodService.exe
10:22:32.0346 4792 iPod Service - ok
10:22:32.0393 4792 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
10:22:32.0393 4792 IRENUM - ok
10:22:32.0440 4792 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
10:22:32.0440 4792 isapnp - ok
10:22:32.0518 4792 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
10:22:32.0518 4792 iScsiPrt - ok
10:22:32.0549 4792 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
10:22:32.0549 4792 iteatapi - ok
10:22:32.0611 4792 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
10:22:32.0611 4792 iteraid - ok
10:22:32.0642 4792 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
10:22:32.0642 4792 kbdclass - ok
10:22:32.0658 4792 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
10:22:32.0658 4792 kbdhid - ok
10:22:32.0705 4792 kbfiltr (6cc3a43b3c898bc360a89b75c128b05d) C:\Windows\system32\DRIVERS\kbfiltr.sys
10:22:32.0705 4792 kbfiltr - ok
10:22:32.0767 4792 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:32.0767 4792 KeyIso - ok
10:22:32.0845 4792 kl1 (db449f50e5141458eb58e64ffac4863f) C:\Windows\system32\DRIVERS\kl1.sys
10:22:32.0892 4792 kl1 - ok
10:22:32.0970 4792 KLBG (87200a8afe40532baa4d2b24a7ba0eea) C:\Windows\system32\DRIVERS\klbg.sys
10:22:32.0970 4792 KLBG - ok
10:22:33.0079 4792 KLIF (34d49307217b20e5a845b7db50cdd4fa) C:\Windows\system32\DRIVERS\klif.sys
10:22:33.0095 4792 KLIF - ok
10:22:33.0142 4792 KLIM6 (630f22545379437737cf4172f09fe449) C:\Windows\system32\DRIVERS\klim6.sys
10:22:33.0142 4792 KLIM6 - ok
10:22:33.0173 4792 klmouflt (786791291939abb11f6d0f040da23912) C:\Windows\system32\DRIVERS\klmouflt.sys
10:22:33.0173 4792 klmouflt - ok
10:22:33.0235 4792 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
10:22:33.0251 4792 KSecDD - ok
10:22:33.0298 4792 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
10:22:33.0298 4792 ksthunk - ok
10:22:33.0360 4792 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
10:22:33.0391 4792 KtmRm - ok
10:22:33.0469 4792 L1C (3dd81da6a200edcc2ce939702f6afc1c) C:\Windows\system32\DRIVERS\L1C60x64.sys
10:22:33.0469 4792 L1C - ok
10:22:33.0532 4792 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\System32\srvsvc.dll
10:22:33.0547 4792 LanmanServer - ok
10:22:33.0625 4792 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
10:22:33.0656 4792 LanmanWorkstation - ok
10:22:33.0734 4792 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
10:22:33.0734 4792 LightScribeService - ok
10:22:33.0766 4792 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
10:22:33.0766 4792 lltdio - ok
10:22:33.0812 4792 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
10:22:33.0844 4792 lltdsvc - ok
10:22:33.0890 4792 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
10:22:33.0906 4792 lmhosts - ok
10:22:33.0953 4792 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
10:22:33.0953 4792 LSI_FC - ok
10:22:33.0984 4792 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
10:22:34.0015 4792 LSI_SAS - ok
10:22:34.0062 4792 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
10:22:34.0062 4792 LSI_SCSI - ok
10:22:34.0093 4792 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
10:22:34.0109 4792 luafv - ok
10:22:34.0171 4792 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
10:22:34.0171 4792 Mcx2Svc - ok
10:22:34.0202 4792 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
10:22:34.0202 4792 megasas - ok
10:22:34.0249 4792 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
10:22:34.0280 4792 MegaSR - ok
10:22:34.0343 4792 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
10:22:34.0358 4792 MMCSS - ok
10:22:34.0452 4792 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
10:22:34.0452 4792 Modem - ok
10:22:34.0530 4792 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
10:22:34.0546 4792 monitor - ok
10:22:34.0702 4792 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
10:22:34.0702 4792 mouclass - ok
10:22:34.0733 4792 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
10:22:34.0748 4792 mouhid - ok
10:22:34.0920 4792 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
10:22:34.0936 4792 MountMgr - ok
10:22:35.0060 4792 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
10:22:35.0092 4792 mpio - ok
10:22:35.0279 4792 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
10:22:35.0294 4792 mpsdrv - ok
10:22:36.0137 4792 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
10:22:36.0230 4792 MpsSvc - ok
10:22:36.0324 4792 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
10:22:36.0324 4792 Mraid35x - ok
10:22:36.0589 4792 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
10:22:36.0589 4792 MRxDAV - ok
10:22:36.0808 4792 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:22:36.0823 4792 mrxsmb - ok
10:22:37.0260 4792 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:22:37.0276 4792 mrxsmb10 - ok
10:22:37.0494 4792 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:22:37.0494 4792 mrxsmb20 - ok
10:22:37.0619 4792 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
10:22:37.0666 4792 msahci - ok
10:22:37.0915 4792 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
10:22:37.0915 4792 msdsm - ok
10:22:38.0258 4792 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
10:22:38.0305 4792 MSDTC - ok
10:22:38.0446 4792 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
10:22:38.0446 4792 Msfs - ok
10:22:38.0508 4792 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
10:22:38.0524 4792 msisadrv - ok
10:22:38.0586 4792 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
10:22:38.0602 4792 MSiSCSI - ok
10:22:38.0602 4792 msiserver - ok
10:22:38.0664 4792 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
10:22:38.0664 4792 MSKSSRV - ok
10:22:38.0680 4792 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
10:22:38.0680 4792 MSPCLOCK - ok
10:22:38.0711 4792 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
10:22:38.0711 4792 MSPQM - ok
10:22:38.0804 4792 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
10:22:38.0820 4792 MsRPC - ok
10:22:38.0851 4792 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
10:22:38.0851 4792 mssmbios - ok
10:22:38.0914 4792 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
10:22:38.0914 4792 MSTEE - ok
10:22:38.0945 4792 MTsensor (18dfcb4bd7d41eef345292cf0be76e6a) C:\Windows\system32\DRIVERS\ATK64AMD.sys
10:22:38.0945 4792 MTsensor - ok
10:22:39.0007 4792 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
10:22:39.0007 4792 Mup - ok
10:22:39.0054 4792 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
10:22:39.0070 4792 napagent - ok
10:22:39.0148 4792 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
10:22:39.0148 4792 NativeWifiP - ok
10:22:39.0257 4792 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
10:22:39.0304 4792 NDIS - ok
10:22:39.0319 4792 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
10:22:39.0382 4792 NdisTapi - ok
10:22:39.0397 4792 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
10:22:39.0413 4792 Ndisuio - ok
10:22:39.0460 4792 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
10:22:39.0460 4792 NdisWan - ok
10:22:39.0491 4792 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
10:22:39.0491 4792 NDProxy - ok
10:22:39.0522 4792 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
10:22:39.0522 4792 NetBIOS - ok
10:22:39.0584 4792 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
10:22:39.0584 4792 netbt - ok
10:22:39.0631 4792 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:39.0647 4792 Netlogon - ok
10:22:39.0694 4792 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
10:22:39.0709 4792 Netman - ok
10:22:39.0756 4792 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
10:22:39.0772 4792 netprofm - ok
10:22:39.0865 4792 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:22:39.0881 4792 NetTcpPortSharing - ok
10:22:40.0177 4792 NETw5v64 (263796d4f50df61c0c7ca86f746b5767) C:\Windows\system32\DRIVERS\NETw5v64.sys
10:22:40.0302 4792 NETw5v64 - ok
10:22:40.0536 4792 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
10:22:40.0536 4792 nfrd960 - ok
10:22:40.0583 4792 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
10:22:40.0598 4792 NlaSvc - ok
10:22:40.0739 4792 nosGetPlusHelper (431ada51e9d032f533548688ce5a2a24) C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
10:22:40.0754 4792 nosGetPlusHelper - ok
10:22:40.0801 4792 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
10:22:40.0801 4792 Npfs - ok
10:22:40.0832 4792 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
10:22:40.0848 4792 nsi - ok
10:22:40.0879 4792 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
10:22:40.0879 4792 nsiproxy - ok
10:22:41.0020 4792 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
10:22:41.0051 4792 Ntfs - ok
10:22:41.0144 4792 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
10:22:41.0144 4792 Null - ok
10:22:41.0753 4792 nvlddmkm (8be75ca9af6fd88a64ff08e087ef884c) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:22:42.0018 4792 nvlddmkm - ok
10:22:42.0158 4792 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
10:22:42.0158 4792 nvraid - ok
10:22:42.0190 4792 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
10:22:42.0190 4792 nvstor - ok
10:22:42.0252 4792 nvsvc (5bf769a7dd2b874471eaa2347a53bbfd) C:\Windows\system32\nvvsvc.exe
10:22:42.0268 4792 nvsvc - ok
10:22:42.0314 4792 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
10:22:42.0314 4792 nv_agp - ok
10:22:42.0330 4792 NwlnkFlt - ok
10:22:42.0346 4792 NwlnkFwd - ok
10:22:42.0486 4792 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:22:42.0533 4792 odserv - ok
10:22:42.0580 4792 ohci1394 (1b30103fde512915a9214b108b6e7a9c) C:\Windows\system32\DRIVERS\ohci1394.sys
10:22:42.0611 4792 ohci1394 - ok
10:22:42.0720 4792 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:22:42.0720 4792 ose - ok
10:22:42.0814 4792 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:42.0860 4792 p2pimsvc - ok
10:22:42.0876 4792 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:42.0892 4792 p2psvc - ok
10:22:42.0938 4792 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
10:22:42.0954 4792 Parport - ok
10:22:43.0001 4792 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
10:22:43.0001 4792 partmgr - ok
10:22:43.0032 4792 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
10:22:43.0048 4792 PcaSvc - ok
10:22:43.0094 4792 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
10:22:43.0110 4792 pci - ok
10:22:43.0204 4792 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
10:22:43.0219 4792 pciide - ok
10:22:43.0282 4792 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
10:22:43.0297 4792 pcmcia - ok
10:22:43.0375 4792 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
10:22:43.0406 4792 PEAUTH - ok
10:22:43.0484 4792 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
10:22:43.0484 4792 PerfHost - ok
10:22:43.0594 4792 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
10:22:43.0640 4792 pla - ok
10:22:43.0765 4792 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
10:22:43.0796 4792 PlugPlay - ok
10:22:43.0890 4792 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:43.0890 4792 PNRPAutoReg - ok
10:22:43.0921 4792 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
10:22:43.0921 4792 PNRPsvc - ok
10:22:44.0015 4792 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
10:22:44.0046 4792 PolicyAgent - ok
10:22:44.0124 4792 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
10:22:44.0124 4792 PptpMiniport - ok
10:22:44.0171 4792 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
10:22:44.0171 4792 Processor - ok
10:22:44.0233 4792 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
10:22:44.0249 4792 ProfSvc - ok
10:22:44.0311 4792 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:44.0311 4792 ProtectedStorage - ok
10:22:44.0327 4792 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
10:22:44.0342 4792 PSched - ok
10:22:44.0420 4792 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
10:22:44.0483 4792 ql2300 - ok
10:22:44.0561 4792 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
10:22:44.0561 4792 ql40xx - ok
10:22:44.0608 4792 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
10:22:44.0639 4792 QWAVE - ok
10:22:44.0670 4792 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
10:22:44.0670 4792 QWAVEdrv - ok
10:22:44.0701 4792 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
10:22:44.0701 4792 RasAcd - ok
10:22:44.0732 4792 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
10:22:44.0810 4792 RasAuto - ok
10:22:44.0873 4792 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:22:44.0873 4792 Rasl2tp - ok
10:22:44.0951 4792 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
10:22:44.0966 4792 RasMan - ok
10:22:45.0013 4792 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
10:22:45.0029 4792 RasPppoe - ok
10:22:45.0091 4792 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
10:22:45.0091 4792 RasSstp - ok
10:22:45.0169 4792 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
10:22:45.0185 4792 rdbss - ok
10:22:45.0232 4792 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:22:45.0232 4792 RDPCDD - ok
10:22:45.0278 4792 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
10:22:45.0310 4792 rdpdr - ok
10:22:45.0325 4792 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
10:22:45.0325 4792 RDPENCDD - ok
10:22:45.0403 4792 RDPWD (5c141fc457f1ac833664789235aca673) C:\Windows\system32\drivers\RDPWD.sys
10:22:45.0403 4792 RDPWD - ok
10:22:45.0450 4792 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
10:22:45.0450 4792 RemoteAccess - ok
10:22:45.0497 4792 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
10:22:45.0528 4792 RemoteRegistry - ok
10:22:45.0559 4792 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
10:22:45.0559 4792 RpcLocator - ok
10:22:45.0637 4792 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
10:22:45.0653 4792 RpcSs - ok
10:22:45.0684 4792 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
10:22:45.0684 4792 rspndr - ok
10:22:45.0731 4792 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
10:22:45.0746 4792 SamSs - ok
10:22:45.0871 4792 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:22:45.0871 4792 SASDIFSV - ok
10:22:45.0887 4792 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:22:45.0887 4792 SASKUTIL - ok
10:22:45.0934 4792 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
10:22:45.0934 4792 sbp2port - ok
10:22:45.0980 4792 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
10:22:45.0996 4792 SCardSvr - ok
10:22:46.0090 4792 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
10:22:46.0136 4792 Schedule - ok
10:22:46.0183 4792 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
10:22:46.0183 4792 SCPolicySvc - ok
10:22:46.0261 4792 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
10:22:46.0261 4792 sdbus - ok
10:22:46.0308 4792 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
10:22:46.0324 4792 SDRSVC - ok
10:22:46.0339 4792 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:22:46.0355 4792 secdrv - ok
10:22:46.0370 4792 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
10:22:46.0370 4792 seclogon - ok
10:22:46.0402 4792 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\system32\sens.dll
10:22:46.0417 4792 SENS - ok
10:22:46.0464 4792 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
10:22:46.0464 4792 Serenum - ok
10:22:46.0495 4792 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
10:22:46.0495 4792 Serial - ok
10:22:46.0526 4792 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
10:22:46.0526 4792 sermouse - ok
10:22:46.0589 4792 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
10:22:46.0604 4792 SessionEnv - ok
10:22:46.0651 4792 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
10:22:46.0651 4792 sffdisk - ok
10:22:46.0667 4792 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
10:22:46.0682 4792 sffp_mmc - ok
10:22:46.0698 4792 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
10:22:46.0698 4792 sffp_sd - ok
10:22:46.0729 4792 sfloppy (40567781f0785c4a69411d1b40da8987) C:\Windows\system32\DRIVERS\sfloppy.sys
10:22:46.0729 4792 sfloppy - ok
10:22:46.0760 4792 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
10:22:46.0792 4792 SharedAccess - ok
10:22:46.0854 4792 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
10:22:46.0948 4792 ShellHWDetection - ok
10:22:46.0979 4792 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
10:22:46.0979 4792 SiSRaid2 - ok
10:22:47.0010 4792 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
10:22:47.0026 4792 SiSRaid4 - ok
10:22:47.0104 4792 SkypeUpdate (17eab7852ff9f15fbaab4e95efc0b812) C:\Program Files (x86)\Skype\Updater\Updater.exe
10:22:47.0104 4792 SkypeUpdate - ok
10:22:47.0291 4792 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
10:22:47.0353 4792 slsvc - ok
10:22:47.0478 4792 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
10:22:47.0494 4792 SLUINotify - ok
10:22:47.0556 4792 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
10:22:47.0572 4792 Smb - ok
10:22:47.0603 4792 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
10:22:47.0618 4792 SNMPTRAP - ok
10:22:47.0774 4792 SNP2UVC (783a998f4b00dadfe8fbce5f1b867242) C:\Windows\system32\DRIVERS\snp2uvc.sys
10:22:47.0837 4792 SNP2UVC - ok
10:22:47.0977 4792 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
10:22:47.0977 4792 spldr - ok
10:22:48.0040 4792 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
10:22:48.0071 4792 Spooler - ok
10:22:48.0164 4792 SRS_PremiumSound_Service (0038ecf6da52b3851846a1f1a4ea7246) C:\Windows\system32\drivers\srs_PremiumSound_amd64.sys
10:22:48.0180 4792 SRS_PremiumSound_Service - ok
10:22:48.0398 4792 SRS_VolSync_Service (568a5929dfe3a7468fafd9a2145fcd73) C:\Program Files\SRS Labs\SRS Premium Sound\SRS_VolSync.exe
10:22:48.0414 4792 SRS_VolSync_Service - ok
10:22:48.0476 4792 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
10:22:48.0508 4792 srv - ok
10:22:48.0554 4792 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
10:22:48.0570 4792 srv2 - ok
10:22:48.0601 4792 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
10:22:48.0617 4792 srvnet - ok
10:22:48.0648 4792 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
10:22:48.0664 4792 SSDPSRV - ok
10:22:48.0742 4792 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
10:22:48.0757 4792 SstpSvc - ok
10:22:48.0835 4792 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
10:22:48.0866 4792 stisvc - ok
10:22:48.0898 4792 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
10:22:48.0898 4792 swenum - ok
10:22:48.0991 4792 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
10:22:49.0054 4792 swprv - ok
10:22:49.0069 4792 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
10:22:49.0069 4792 Symc8xx - ok
10:22:49.0100 4792 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
10:22:49.0100 4792 Sym_hi - ok
10:22:49.0132 4792 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
10:22:49.0147 4792 Sym_u3 - ok
10:22:49.0225 4792 SynTP (5d8d008ae896a24e1c6e028e1de1fa5e) C:\Windows\system32\DRIVERS\SynTP.sys
10:22:49.0225 4792 SynTP - ok
10:22:49.0319 4792 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
10:22:49.0366 4792 SysMain - ok
10:22:49.0397 4792 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
10:22:49.0412 4792 TabletInputService - ok
10:22:49.0475 4792 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
10:22:49.0506 4792 TapiSrv - ok
10:22:49.0522 4792 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
10:22:49.0537 4792 TBS - ok
10:22:49.0678 4792 Tcpip (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\drivers\tcpip.sys
10:22:49.0771 4792 Tcpip - ok
10:22:49.0802 4792 Tcpip6 (ac8d5728e6ad6a7c4819d9a67008337a) C:\Windows\system32\DRIVERS\tcpip.sys
10:22:49.0818 4792 Tcpip6 - ok
10:22:49.0896 4792 tcpipreg (fd8fde859e38e40a20085ebb0c22b416) C:\Windows\system32\drivers\tcpipreg.sys
10:22:49.0927 4792 tcpipreg - ok
10:22:49.0958 4792 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
10:22:49.0974 4792 TDPIPE - ok
10:22:49.0990 4792 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
10:22:50.0005 4792 TDTCP - ok
10:22:50.0099 4792 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
10:22:50.0099 4792 tdx - ok
10:22:50.0146 4792 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
10:22:50.0161 4792 TermDD - ok
10:22:50.0208 4792 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
10:22:50.0239 4792 TermService - ok
10:22:50.0302 4792 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
10:22:50.0302 4792 Themes - ok
10:22:50.0333 4792 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
10:22:50.0348 4792 THREADORDER - ok
10:22:50.0380 4792 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
10:22:50.0395 4792 TrkWks - ok
10:22:50.0458 4792 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
10:22:50.0458 4792 TrustedInstaller - ok
10:22:50.0504 4792 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:22:50.0504 4792 tssecsrv - ok
10:22:50.0520 4792 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
10:22:50.0536 4792 tunmp - ok
10:22:50.0614 4792 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
10:22:50.0614 4792 tunnel - ok
10:22:50.0660 4792 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
10:22:50.0660 4792 uagp35 - ok
10:22:50.0723 4792 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
10:22:50.0738 4792 udfs - ok
10:22:50.0770 4792 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
10:22:50.0785 4792 UI0Detect - ok
10:22:50.0832 4792 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
10:22:50.0832 4792 uliagpkx - ok
10:22:50.0879 4792 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
10:22:50.0910 4792 uliahci - ok
10:22:50.0941 4792 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
10:22:50.0972 4792 UlSata - ok
10:22:50.0988 4792 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
10:22:51.0004 4792 ulsata2 - ok
10:22:51.0050 4792 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
10:22:51.0050 4792 umbus - ok
10:22:51.0097 4792 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
10:22:51.0191 4792 upnphost - ok
10:22:51.0238 4792 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys
10:22:51.0253 4792 USBAAPL64 - ok
10:22:51.0284 4792 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
10:22:51.0300 4792 usbccgp - ok
10:22:51.0347 4792 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
10:22:51.0347 4792 usbcir - ok
10:22:51.0425 4792 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
10:22:51.0425 4792 usbehci - ok
10:22:51.0487 4792 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
10:22:51.0503 4792 usbhub - ok
10:22:51.0550 4792 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
10:22:51.0565 4792 usbohci - ok
10:22:51.0612 4792 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
10:22:51.0612 4792 usbprint - ok
10:22:51.0643 4792 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:22:51.0643 4792 USBSTOR - ok
10:22:51.0674 4792 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
10:22:51.0674 4792 usbuhci - ok
10:22:51.0752 4792 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
10:22:51.0768 4792 usbvideo - ok
10:22:51.0815 4792 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
10:22:51.0815 4792 UxSms - ok
10:22:51.0893 4792 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
10:22:51.0924 4792 vds - ok
10:22:51.0955 4792 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
10:22:51.0955 4792 vga - ok
10:22:51.0986 4792 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
10:22:51.0986 4792 VgaSave - ok
10:22:52.0018 4792 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
10:22:52.0018 4792 viaide - ok
10:22:52.0111 4792 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
10:22:52.0111 4792 volmgr - ok
10:22:52.0174 4792 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
10:22:52.0220 4792 volmgrx - ok
10:22:52.0283 4792 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
10:22:52.0314 4792 volsnap - ok
10:22:52.0361 4792 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
10:22:52.0361 4792 vsmraid - ok
10:22:52.0454 4792 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
10:22:52.0501 4792 VSS - ok
10:22:52.0564 4792 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
10:22:52.0579 4792 W32Time - ok
10:22:52.0657 4792 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
10:22:52.0657 4792 WacomPen - ok
10:22:52.0704 4792 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
10:22:52.0704 4792 Wanarp - ok
10:22:52.0720 4792 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
10:22:52.0720 4792 Wanarpv6 - ok
10:22:52.0798 4792 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
10:22:52.0829 4792 wcncsvc - ok
10:22:52.0860 4792 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
10:22:52.0876 4792 WcsPlugInService - ok
10:22:52.0907 4792 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
10:22:52.0922 4792 Wd - ok
10:22:52.0985 4792 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
10:22:53.0032 4792 Wdf01000 - ok
10:22:53.0063 4792 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
10:22:53.0078 4792 WdiServiceHost - ok
10:22:53.0094 4792 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
10:22:53.0094 4792 WdiSystemHost - ok
10:22:53.0156 4792 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
10:22:53.0188 4792 WebClient - ok
10:22:53.0328 4792 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
10:22:53.0344 4792 Wecsvc - ok
10:22:53.0437 4792 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
10:22:53.0453 4792 wercplsupport - ok
10:22:53.0484 4792 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
10:22:53.0500 4792 WerSvc - ok
10:22:53.0578 4792 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
10:22:53.0593 4792 WimFltr - ok
10:22:53.0640 4792 WinDefend - ok
10:22:53.0656 4792 WinHttpAutoProxySvc - ok
10:22:53.0718 4792 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
10:22:53.0765 4792 Winmgmt - ok
10:22:53.0921 4792 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
10:22:53.0983 4792 WinRM - ok
10:22:54.0139 4792 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
10:22:54.0186 4792 Wlansvc - ok
10:22:54.0451 4792 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:22:54.0514 4792 wlidsvc - ok
10:22:54.0638 4792 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:22:54.0638 4792 WmiAcpi - ok
10:22:54.0732 4792 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
10:22:54.0748 4792 wmiApSrv - ok
10:22:54.0794 4792 WMPNetworkSvc - ok
10:22:54.0826 4792 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
10:22:54.0841 4792 WPCSvc - ok
10:22:54.0888 4792 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
10:22:54.0919 4792 WPDBusEnum - ok
10:22:54.0966 4792 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
10:22:54.0982 4792 WpdUsb - ok
10:22:55.0169 4792 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:22:55.0247 4792 WPFFontCache_v0400 - ok
10:22:55.0294 4792 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
10:22:55.0294 4792 ws2ifsl - ok
10:22:55.0340 4792 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\system32\wscsvc.dll
10:22:55.0403 4792 wscsvc - ok
10:22:55.0418 4792 WSearch - ok
10:22:55.0574 4792 wuauserv (fb3796754fe00f0bdc87a36f164a5f4d) C:\Windows\system32\wuaueng.dll
10:22:55.0684 4792 wuauserv - ok
10:22:55.0840 4792 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:22:55.0855 4792 WUDFRd - ok
10:22:55.0886 4792 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
10:22:55.0918 4792 wudfsvc - ok
10:22:55.0980 4792 yukonx64 (07f7285220307aafb755d890295f0f9a) C:\Windows\system32\DRIVERS\yk60x64.sys
10:22:55.0996 4792 yukonx64 - ok
10:22:56.0089 4792 ZTEusbmdm6k (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
10:22:56.0089 4792 ZTEusbmdm6k - ok
10:22:56.0152 4792 ZTEusbnmea (c9ada887bf326d8413e81fe80b1be7eb) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
10:22:56.0152 4792 ZTEusbnmea - ok
10:22:56.0198 4792 ZTEusbser6k (31db70a61814e4f33181d48190d46845) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
10:22:56.0214 4792 ZTEusbser6k - ok
10:22:56.0354 4792 MBR (0x1B8) (64b1e91c5c6c2157642651010728f90f) \Device\Harddisk0\DR0
10:22:56.0713 4792 \Device\Harddisk0\DR0 - ok
10:22:56.0776 4792 Boot (0x1200) (b90ccafb1f6ef8633e7737333eca131c) \Device\Harddisk0\DR0\Partition0
10:22:56.0776 4792 \Device\Harddisk0\DR0\Partition0 - ok
10:22:56.0791 4792 ============================================================
10:22:56.0791 4792 Scan finished
10:22:56.0791 4792 ============================================================
10:22:56.0807 3228 Detected object count: 1
10:22:56.0807 3228 Actual detected object count: 1
10:25:50.0684 3228 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
10:25:50.0684 3228 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
10:26:05.0364 4896 Deinitialize success

 

Hello again, celabella. The directions were slightly different though.

When running aswMBR again, did you choose Yes when prompted to download the latest Avast! virus definitions?

------------------------------------------------------

initial problem __ computer ran very slow and was unbearable to navigate around

When you say unbearable to navigate around, do you simply mean slow, or were you being redirected?

------------------------------------------------------

 

Still with us, celabella? I generally unsubscribe from threads after 3 days of inactivity. If you do not reply within 24 hours, this thread will be closed.

------------------------------------------------------

 

Due to lack of response, this topic will now be closed. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

IMPORTANT - Read This Before Posting For Malware Removal Help

------------------------------------------------------