Solved Windows encounter critical problem and will shutdown in one minute when open outlook

Status
Not open for further replies.
K

kairel82

Posts: 20   +0
Hi...
my computer keep displaying this message when I open microsoft outlook and then shut down by itself after I minute.

I did browse the related topic but seem all the topic are for the specific computer.

your help is much appreciate.

for your info I'm running on windows 7 home
 
Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.04.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
imkhairil :: IMKHAIRIL-VAIO [administrator]

Protection: Enabled

10/4/2012 3:03:42 PM
mbam-log-2012-10-04 (15-03-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 199948
Time elapsed: 1 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-10-04 15:23:39
Windows 6.1.7601 Service Pack 1
Running: npv61q6l.exe


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\685d4381b50e
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\685d4381b50e (not active ControlSet)
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\Users\imkhairil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Intel\xae AT Service signup.lnk 1
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartPage\NewShortcuts@C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\xae AT Service signup.lnk 1

---- EOF - GMER 1.0.15 ----
 
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by imkhairil at 15:31:02 on 2012-10-04
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12190.9377 [GMT 8:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
SP: Kaspersky Internet Security *Enabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\conhost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Windows\System32\igfxtray.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
c:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\sqlservr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\imkhairil\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
c:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files\Sony\VAIO Care\VCPerfService.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
C:\Program Files\Sony\VAIO Care\VCService.exe
C:\Program Files\Sony\VAIO Care\VCAgent.exe
C:\Windows\System32\vds.exe
C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
C:\Program Files\Sony\VAIO Care\VCAdmin.exe
C:\Program Files\Sony\VAIO Improvement\vim.exe
C:\Program Files\Sony\VAIO Improvement\vim.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\x64\wmi64.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://sony.msn.com
uDefault_Page_URL = hxxp://sony.msn.com
mWinlogon: Userinit=userinit.exe
BHO: IDM integration (IDMIEHlprObj Class): {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Virtual Keyboard Plugin: {73455575-e40c-433c-9784-c78dc7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Safe Money Plugin: {9e6d0d23-3d72-4a94-ae1f-2d167624e3d9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: URL Advisor Plugin: {e33cf602-d945-461a-83f0-819f76a199f8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [Intel AT Service signup] c:\Program Files (x86)\Intel Corporation\Intel AT Service signup\IntelATServiceSignup.exe -launchonboot
mRun: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
StartupFolder: C:\Users\IMKHAI~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\imkhairil\AppData\Roaming\Dropbox\bin\Dropbox.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: NCapture for NVivo - C:\Program Files (x86)\QSR\NCapture\Internet Explorer\QSR.NCapture.IE.Resources.dll/101
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {0C4CC089-D306-440D-9772-464E226F6539} - {0BA14598-4178-4CE5-B1F1-B5C6408A3F2E} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {b9c5d5a9-2b89-427d-bb30-32f567eaa60d} - {b9c5d5a9-2b89-427d-bb30-32f567eaa60d} - mscoree.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_01-windows-i586.cab
TCP: DhcpNameServer = 203.121.16.85 8.8.8.8 8.8.4.4
TCP: Interfaces\{BA62980F-587C-420E-B123-FF9F035CBCD9} : DhcpNameServer = 203.121.16.85 8.8.8.8 8.8.4.4
TCP: Interfaces\{BA62980F-587C-420E-B123-FF9F035CBCD9}\3716279666168653930457E6966696 : DhcpNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO-X64: IDM Helper - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: Virtual Keyboard Plugin: {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
BHO-X64: VirtualKeyboardBrowserHelperObject - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Safe Money Plugin: {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
BHO-X64: Safe Money Plugin - No File
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
BHO-X64: URLRedirectionBHO - No File
BHO-X64: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO-X64: URL Advisor Plugin: {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
BHO-X64: link filter bho - No File
TB-X64: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun-x64: [Intel AT Service signup] c:\Program Files (x86)\Intel Corporation\Intel AT Service signup\IntelATServiceSignup.exe -launchonboot
mRun-x64: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun-x64: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
mRun-x64: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe"
mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
IE-X64: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\imkhairil\AppData\Roaming\Mozilla\Firefox\Profiles\bdsq50wb.default\
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll
FF - plugin: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;C:\Windows\system32\DRIVERS\iusb3hcs.sys --> C:\Windows\system32\DRIVERS\iusb3hcs.sys [?]
R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys --> C:\Windows\system32\DRIVERS\klim6.sys [?]
R1 kltdi;kltdi;C:\Windows\system32\DRIVERS\kltdi.sys --> C:\Windows\system32\DRIVERS\kltdi.sys [?]
R1 kneps;kneps;C:\Windows\system32\DRIVERS\kneps.sys --> C:\Windows\system32\DRIVERS\kneps.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-9-1 169624]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-1-10 659968]
R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [2012-5-31 218880]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-2-22 1014096]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2012-2-22 1104208]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-1-18 135952]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-10-1 13592]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-10-1 2429544]
R2 IDMWFP;IDMWFP;C:\Windows\system32\DRIVERS\idmwfp.sys --> C:\Windows\system32\DRIVERS\idmwfp.sys [?]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-3 628448]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-10-1 121344]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-10-1 161560]
R2 MSSQL$QSRNVIVO10;SQL Server (QSRNVIVO10);C:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\sqlservr.exe [2011-6-17 62111072]
R2 NOBU;Norton Online Backup;C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2011-11-3 4700824]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2012-2-22 473960]
R2 SampleCollector;VAIO Care Performance Service;C:\Program Files\Sony\VAIO Care\VCPerfService.exe [2011-12-1 260768]
R2 uCamMonitor;CamMonitor;C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe [2012-10-1 105024]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-10-1 363800]
R2 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2012-10-1 535688]
R2 VSNService;VSNService;C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2012-10-1 978056]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\system32\DRIVERS\AMPPAL.sys --> C:\Windows\system32\DRIVERS\AMPPAL.sys [?]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys --> C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [?]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2012-2-22 1304912]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\iusb3hub.sys --> C:\Windows\system32\DRIVERS\iusb3hub.sys [?]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;C:\Windows\system32\DRIVERS\iusb3xhc.sys --> C:\Windows\system32\DRIVERS\iusb3xhc.sys [?]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;C:\Windows\system32\DRIVERS\klkbdflt.sys --> C:\Windows\system32\DRIVERS\klkbdflt.sys [?]
R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\system32\DRIVERS\klmouflt.sys --> C:\Windows\system32\DRIVERS\klmouflt.sys [?]
R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\Netwsw00.sys --> C:\Windows\system32\DRIVERS\Netwsw00.sys [?]
R3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\system32\DRIVERS\SFEP.sys --> C:\Windows\system32\DRIVERS\SFEP.sys [?]
R3 VCService;VCService;C:\Program Files\Sony\VAIO Care\VCService.exe [2012-1-21 54432]
R3 VUAgent;VUAgent;C:\Program Files\Sony\VAIO Update Common\VUAgent.exe [2012-10-2 1259104]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-19 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-19 138576]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-1 250288]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\system32\DRIVERS\amppal.sys --> C:\Windows\system32\DRIVERS\amppal.sys [?]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-2 183560]
S3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\system32\DRIVERS\btmaux.sys --> C:\Windows\system32\DRIVERS\btmaux.sys [?]
S3 btmhsf;btmhsf;C:\Windows\system32\DRIVERS\btmhsf.sys --> C:\Windows\system32\DRIVERS\btmhsf.sys [?]
S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-3-19 276248]
S3 e1yexpress;Intel(R) Gigabit Network Connections Driver;C:\Windows\system32\DRIVERS\e1y60x64.sys --> C:\Windows\system32\DRIVERS\e1y60x64.sys [?]
S3 ibtfltcoex;ibtfltcoex;C:\Windows\system32\DRIVERS\iBtFltCoex.sys --> C:\Windows\system32\DRIVERS\iBtFltCoex.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-10-1 114144]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-2-26 273168]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\system32\DRIVERS\RtsPStor.sys --> C:\Windows\system32\DRIVERS\RtsPStor.sys [?]
S3 SOHCImp;VAIO Content Importer;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2012-1-7 138392]
S3 SOHDs;VAIO Device Searcher;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2012-1-7 74904]
S3 SpfService;VAIO Entertainment Common Service;C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-12-2 289952]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 VCFw;VAIO Content Folder Watcher;C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-12-30 960160]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-12-22 550128]
S3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2011-12-22 382720]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2011-8-27 101600]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2010-4-4 59744]
S4 RsFx0151;RsFx0151 Driver;C:\Windows\system32\DRIVERS\RsFx0151.sys --> C:\Windows\system32\DRIVERS\RsFx0151.sys [?]
S4 SQLAgent$QSRNVIVO10;SQL Server Agent (QSRNVIVO10);C:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\SQLAGENT.EXE [2011-6-17 431456]
.
=============== Created Last 30 ================
.
2012-10-04 07:03:03 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\Malwarebytes
2012-10-04 07:02:58 -------- d-----w- C:\ProgramData\Malwarebytes
2012-10-04 07:02:57 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-10-04 07:02:57 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-10-04 02:05:41 -------- d-----w- C:\Users\imkhairil\AppData\Local\Amos 7
2012-10-04 01:13:24 -------- d-----w- C:\Users\imkhairil\AppData\Local\Amos 16.0
2012-10-03 03:16:18 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A11F2C2-C79C-4714-9B72-B4775ED5B995}\offreg.dll
2012-10-03 03:05:28 -------- d-----w- C:\Windows\PCHEALTH
2012-10-03 03:03:54 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2012-10-03 01:01:45 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\Publish or Perish
2012-10-03 01:01:29 -------- d-----w- C:\ProgramData\Tarma Installer
2012-10-03 01:01:29 -------- d-----w- C:\Program Files (x86)\Harzing's Publish or Perish 3
2012-10-02 13:52:10 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
2012-10-02 13:52:09 -------- d-----w- C:\ProgramData\Kaspersky Lab
2012-10-02 13:52:03 85336 ----a-w- C:\Windows\System32\drivers\klflt.sys
2012-10-02 13:29:44 -------- d-----w- C:\Users\imkhairil\.spss
2012-10-02 13:23:10 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\QSR_International
2012-10-02 13:16:05 -------- d-----w- C:\Program Files (x86)\Common Files\Data Dynamics
2012-10-02 13:15:56 -------- d-----w- C:\Program Files (x86)\AMOS 16.0
2012-10-02 13:09:33 1024 ----a-w- C:\Windows\SysWow64\grcauth2.dll
2012-10-02 13:09:33 1024 ----a-w- C:\Windows\SysWow64\grcauth1.dll
2012-10-02 13:09:33 100 ----a-w- C:\Windows\SysWow64\prsgrc.dll
2012-10-02 13:08:36 -------- d-----w- C:\ProgramData\SPSS
2012-10-02 13:08:36 -------- d-----w- C:\Program Files (x86)\Common Files\SPSS
2012-10-02 13:08:35 -------- d-----w- C:\Program Files (x86)\SPSSInc
2012-10-02 12:50:09 -------- d-----w- C:\ProgramData\QSR
2012-10-02 12:50:09 -------- d-----w- C:\Program Files\QSR
2012-10-02 12:49:33 -------- d-----w- C:\Program Files (x86)\QSR
2012-10-02 12:46:25 47456 ----a-w- C:\Windows\SysWow64\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 12:46:24 77152 ----a-w- C:\Windows\System32\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 12:46:08 79200 ----a-w- C:\Windows\System32\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 12:46:08 73568 ----a-w- C:\Windows\SysWow64\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 12:45:34 -------- d-----w- C:\Windows\System32\RsFx
2012-10-02 12:43:59 -------- d-----w- C:\Windows\SysWow64\1033
2012-10-02 12:43:59 -------- d-----w- C:\Windows\System32\1033
2012-10-02 12:42:45 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server
2012-10-02 12:42:10 -------- d-----w- C:\Program Files\Microsoft SQL Server
2012-10-02 12:39:18 1024 ----a-w- C:\Windows\SysWow64\clauth2.dll
2012-10-02 12:39:18 1024 ----a-w- C:\Windows\SysWow64\clauth1.dll
2012-10-02 12:39:18 0 ----a-w- C:\Windows\SysWow64\ssprs.dll
2012-10-02 12:39:18 0 ----a-w- C:\Windows\SysWow64\serauth2.dll
2012-10-02 12:39:18 0 ----a-w- C:\Windows\SysWow64\serauth1.dll
2012-10-02 12:39:18 0 ----a-w- C:\Windows\SysWow64\nsprs.dll
2012-10-02 12:39:15 -------- d-----w- C:\ProgramData\SafeNet Sentinel
2012-10-02 12:38:54 205 ----a-w- C:\Windows\SysWow64\lsprst7.dll
2012-10-02 12:38:54 1025 ----a-w- C:\Windows\SysWow64\sysprs7.dll
2012-10-02 12:30:31 -------- d-----w- C:\Windows\SysWow64\Wat
2012-10-02 12:30:31 -------- d-----w- C:\Windows\System32\Wat
2012-10-02 12:17:25 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-10-02 12:17:23 9308616 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4A11F2C2-C79C-4714-9B72-B4775ED5B995}\mpengine.dll
2012-10-02 12:16:15 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-10-02 11:52:36 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2012-10-02 11:52:36 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2012-10-02 11:52:36 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-10-02 11:52:36 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-10-02 11:52:36 220672 ----a-w- C:\Windows\System32\wintrust.dll
2012-10-02 11:52:36 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
2012-10-02 11:52:36 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-10-02 11:44:56 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-10-02 11:42:47 466944 ----a-w- C:\Program Files\Common Files\System\ado\msadomd.dll
2012-10-02 11:42:47 258048 ----a-w- C:\Program Files\Common Files\System\msadc\msadco.dll
2012-10-02 11:42:47 1499136 ----a-w- C:\Program Files\Common Files\System\ado\msado15.dll
2012-10-02 11:42:47 1019904 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msado15.dll
2012-10-02 11:42:46 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-10-02 11:42:46 61440 ----a-w- C:\Program Files\Common Files\System\ado\msador15.dll
2012-10-02 11:42:46 57344 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msador15.dll
2012-10-02 11:42:46 495616 ----a-w- C:\Program Files\Common Files\System\ado\msadox.dll
2012-10-02 11:42:46 372736 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadox.dll
2012-10-02 11:42:46 352256 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msadomd.dll
2012-10-02 11:42:46 212992 ----a-w- C:\Program Files (x86)\Common Files\System\msadc\msadco.dll
2012-10-02 11:42:46 143360 ----a-w- C:\Program Files (x86)\Common Files\System\ado\msjro.dll
2012-10-02 11:42:46 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-10-02 11:41:44 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2012-10-02 11:41:44 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2012-10-02 11:41:44 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2012-10-02 11:32:16 -------- d-----w- C:\Update
2012-10-02 11:02:01 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-10-02 11:01:49 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-10-02 11:01:43 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-10-02 11:01:43 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-10-02 07:44:42 -------- d-----r- C:\Users\imkhairil\Dropbox
2012-10-02 07:43:35 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\Dropbox
2012-10-02 02:49:32 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\IDM
2012-10-02 02:49:32 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\DMCache
2012-10-02 02:49:28 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2012-10-01 05:45:42 -------- d-----w- C:\Program Files (x86)\Evernote
2012-10-01 05:45:35 -------- d-----w- C:\ProgramData\Evernote
2012-10-01 05:42:51 -------- d-----w- C:\Program Files (x86)\Microsoft
2012-10-01 05:41:06 -------- d-----w- C:\Windows\ar
2012-10-01 05:40:58 -------- d-----w- C:\Windows\en
2012-10-01 05:40:54 -------- d-----w- C:\ProgramData\Sony Corporation
2012-10-01 05:40:50 -------- d-----w- C:\Windows\th
2012-10-01 05:40:43 -------- d-----w- C:\Windows\vi
2012-10-01 05:40:20 -------- d-----w- C:\Program Files\Sony
2012-10-01 05:40:16 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-10-01 05:37:16 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2012-10-01 05:37:16 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2012-10-01 05:37:16 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2012-10-01 05:37:16 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2012-10-01 05:37:13 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2012-10-01 05:37:13 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2012-10-01 05:36:44 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bdc8d2741cd9f9603\DSETUP.dll
2012-10-01 05:36:44 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bdc8d2741cd9f9603\DXSETUP.exe
2012-10-01 05:36:44 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bdc8d2741cd9f9603\dsetup32.dll
2012-10-01 05:36:44 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\be0455b31cd9f9604\MeshBetaRemover.exe
2012-10-01 05:36:43 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bd9cb8bf1cd9f9602\DSETUP.dll
2012-10-01 05:36:43 6260088 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bd76e0b11cd9f9601\Silverlight.4.0.exe
2012-10-01 05:36:43 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bd9cb8bf1cd9f9602\DXSETUP.exe
2012-10-01 05:36:43 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\bd9cb8bf1cd9f9602\dsetup32.dll
2012-10-01 05:36:42 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2012-10-01 05:34:50 74703 ----a-w- C:\Windows\SysWow64\mfc45.dll
2012-10-01 05:34:50 69000 ----a-w- C:\Windows\System32\offreg.dll
2012-10-01 05:34:50 21176 ----a-w- C:\Windows\System32\iolorgdf64.exe
2012-10-01 05:34:50 -------- d-----w- C:\ProgramData\iolo
2012-10-01 05:33:40 -------- d-----w- C:\VAIO Sample Contents
2012-10-01 05:30:54 -------- d-----w- C:\ProgramData\Trend Micro
2012-10-01 05:28:57 5073256 ----a-w- C:\Windows\System32\d3dx9_35.dll
2012-10-01 05:28:02 -------- d-----w- C:\ProgramData\boost_interprocess
2012-10-01 05:28:01 -------- d-----w- C:\ProgramData\Symantec
2012-10-01 05:28:01 -------- d-----w- C:\Program Files (x86)\Symantec
2012-10-01 05:26:50 -------- d-----w- C:\Program Files (x86)\Sony Media Go Install
2012-10-01 05:26:34 -------- d-----w- C:\Program Files (x86)\Intel Corporation
2012-10-01 05:26:06 212480 ----a-w- C:\Windows\SysWow64\PCDLIB32.DLL
2012-10-01 05:26:03 55808 ----a-w- C:\Windows\system\ArcSoftKsUFilter.dll
2012-10-01 05:26:03 19968 ----a-w- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys
2012-10-01 05:26:02 245408 ----a-w- C:\Windows\SysWow64\unicows.dll
2012-10-01 05:24:06 -------- d-----w- C:\ProgramData\ArcSoft
2012-10-01 05:23:56 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-10-01 05:23:55 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-10-01 05:23:55 614532 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe
2012-10-01 05:23:55 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-10-01 05:23:55 176128 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-10-01 05:20:24 55856 ------w- C:\Windows\System32\drivers\PxHlpa64.sys
2012-10-01 05:20:24 10224 ------w- C:\Windows\System32\drivers\cdralw2k.sys
2012-10-01 05:20:24 10224 ------w- C:\Windows\System32\drivers\cdr4_xp.sys
2012-10-01 05:20:11 -------- d-----w- C:\Program Files (x86)\Common Files\Sonic Shared
2012-10-01 05:20:11 -------- d-----w- C:\Program Files (x86)\Common Files\PX Storage Engine
2012-10-01 05:17:55 73136 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-01 05:17:55 696240 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-10-01 05:15:59 -------- d-----w- C:\Documentation
2012-10-01 05:12:36 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2012-10-01 05:09:46 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
2012-10-01 05:07:50 -------- d-----w- C:\Program Files\Common Files\Sony Shared
2012-10-01 05:07:50 -------- d-----w- C:\Program Files (x86)\Common Files\Sony Shared
2012-10-01 05:06:06 -------- d-----w- C:\Program Files (x86)\Sony
2012-10-01 05:05:59 -------- d-----w- C:\Program Files (x86)\Sony Corporation
2012-10-01 05:05:09 -------- d--h--w- C:\Windows\System32\WLANProfiles
2012-10-01 05:04:44 -------- d-----w- C:\ProgramData\Roaming
2012-10-01 05:03:48 -------- d-----w- C:\Program Files (x86)\Cisco
2012-10-01 05:03:43 -------- d-----w- C:\ProgramData\Intel.sav
2012-10-01 05:03:11 41984 ----a-w- C:\Windows\System32\drivers\USB3Ver.dll
2012-10-01 05:02:41 -------- d-----w- C:\Program Files\Synaptics
2012-10-01 05:02:15 -------- d-----w- C:\Windows\SysWow64\sda
2012-10-01 05:02:12 9888872 ----a-w- C:\Windows\SysWow64\RtsPStorIcon.dll
2012-10-01 05:02:12 340072 ----a-w- C:\Windows\System32\drivers\RtsPStor.sys
2012-10-01 05:01:59 15128 ----a-w- C:\Windows\System32\drivers\IntelMEFWVer.dll
2012-10-01 05:01:41 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
2012-10-01 05:01:40 60184 ----a-w- C:\Windows\System32\drivers\HECIx64.sys
2012-10-01 05:01:20 -------- d-----w- C:\Program Files\Common Files\Intel
2012-10-01 05:01:19 -------- d-----w- C:\Program Files (x86)\Common Files\Intel
2012-10-01 04:57:51 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2012-10-01 04:57:48 -------- d-----w- C:\Intel
2012-10-01 04:53:16 -------- d-----w- C:\Windows\SysWow64\zh-CHT
2012-10-01 04:52:53 -------- d-----w- C:\Windows\SysWow64\drivers\zh-TW
2012-10-01 04:52:49 -------- d-----w- C:\Windows\SysWow64\wbem\zh-TW
2012-10-01 04:52:49 -------- d-----w- C:\Windows\SysWow64\wbem\zh-HK
2012-10-01 04:52:45 -------- d-----w- C:\Windows\zh-TW
2012-10-01 04:52:43 -------- d-----w- C:\Windows\System32\zh-CHT
2012-10-01 04:52:10 -------- d-----w- C:\Windows\System32\drivers\zh-TW
2012-10-01 04:52:10 -------- d-----w- C:\Windows\System32\drivers\UMDF\zh-TW
2012-10-01 04:52:09 -------- d-----w- C:\Windows\System32\drivers\zh-HK
2012-10-01 04:51:58 -------- d-----w- C:\Windows\System32\wbem\zh-TW
2012-10-01 04:51:55 -------- d-----w- C:\Windows\System32\wbem\zh-HK
2012-10-01 04:51:11 2048 ----a-w- C:\Windows\System32\drivers\zh-TW\usbrpm.sys.mui
2012-10-01 04:51:06 7680 ----a-w- C:\Windows\System32\drivers\zh-TW\fvevol.sys.mui
2012-10-01 04:51:02 492544 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\mshwcht.dll
2012-10-01 04:51:02 424448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\mshwcht.dll
2012-10-01 04:51:02 2560 ----a-w- C:\Windows\System32\drivers\zh-TW\qwavedrv.sys.mui
2012-10-01 04:51:02 2048 ----a-w- C:\Windows\System32\drivers\UMDF\zh-TW\WpdMtpDr.dll.mui
2012-10-01 04:51:02 15720448 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\mshwchtr.dll
2012-10-01 04:51:02 15720448 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\mshwchtr.dll
2012-10-01 04:32:55 -------- d-----w- C:\Users\imkhairil\AppData\Local\Macromedia
2012-10-01 02:48:04 -------- d-----w- C:\Users\imkhairil\AppData\Local\Adobe
2012-10-01 00:33:00 -------- d-----w- C:\Users\imkhairil\AppData\Local\Mozilla
2012-10-01 00:26:08 472576 ----a-w- C:\Windows\AutoKMS.exe
2012-10-01 00:22:23 -------- d-----w- C:\Users\imkhairil\AppData\Local\Microsoft Help
2012-09-30 14:54:31 -------- d-----w- C:\Users\imkhairil\AppData\Local\Sony Corporation
2012-09-30 14:52:42 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\iolo
2012-09-30 14:50:07 -------- d-----w- C:\Users\imkhairil\AppData\Roaming\Intel Corporation
2012-09-30 14:50:07 -------- d-----w- C:\Users\imkhairil\AppData\Local\Intel_Corporation
.
==================== Find3M ====================
.
2012-10-01 05:08:19 544656 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2012-10-01 05:08:09 627600 ----a-w- C:\Windows\System32\deployJava1.dll
2012-10-01 04:51:00 2560 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\qwavedrv.sys.mui
2012-10-01 04:50:57 13824 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\bfe.dll.mui
2012-10-01 04:50:57 10240 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\pacer.sys.mui
2012-10-01 04:50:50 2048 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\scfilter.sys.mui
2012-10-01 04:50:49 4608 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\ndiscap.sys.mui
2012-10-01 04:50:46 30208 ----a-w- C:\Windows\SysWow64\drivers\zh-TW\tcpip.sys.mui
2012-08-24 10:31:32 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-08-24 10:21:18 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-08-24 10:20:11 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-08-24 10:14:45 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-08-24 10:13:29 599040 ----a-w- C:\Windows\System32\vbscript.dll
2012-08-24 10:09:42 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-08-24 06:59:17 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-08-24 06:47:12 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2012-08-24 06:43:58 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-08-22 18:12:50 1913200 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-08-22 18:12:40 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2012-08-22 18:12:40 376688 ----a-w- C:\Windows\System32\drivers\netio.sys
2012-08-22 18:12:33 288624 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2012-08-21 21:01:00 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2012-08-02 17:58:52 574464 ----a-w- C:\Windows\System32\d3d10level9.dll
2012-08-02 16:57:20 490496 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
.
============= FINISH: 15:32:10.15 ===============
 
Hello, and welcome to TechSpot.


rulesx.png
Please see here for the board rules and other FAQ.

Please feel free to introduce yourself, after you follow the steps below to get started.

Information
  • From this point on, please do not make any more changes to your computer; such as install/uninstall programs, use special fix tools, delete files, edit the registry, etc. - unless advised by a malware removal helper.
  • Please do not ask for help elsewhere (in this site or other sites). Doing so can result in system changes, which may not show up in the logs you post.
  • If you have already asked for help somewhere, please post the link to the topic you were helped.
  • We try our best to reply quickly, but for any reason we do not reply in two days, please reply to this topic with the word BUMP!
  • Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal. Persist in this topic until its close, and your computer is declared clean.

Download Farbar Recovery Scan Tool and save it to a flash drive.


Please make sure to get the 64-bit version

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Choose your language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.
On the System Recovery Options menu you will get the following options:
    • Startup Repair
      System Restore
      Windows Complete PC Restore
      Windows Memory Diagnostic Tool
      Command Prompt
  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to the disclaimer.
  • Place a check next to List Drivers MD5 as well as the default check marks that are already there
  • Press Scan button. It will do its scan and save a log on your flash drive.
  • Close out of the message after that, then type in the text services.exe in to the "Search:" text box. Then, press the Search file(s) button, just as below:
    frst2.jpg

    When done searching, FRST makes a log, Search.txt, on the C:\ drive or on your flash drive.
  • Type exit in the Command Prompt window and reboot the computer normally
  • FRST will make a log (FRST.txt) on the flash drive and also the search.txt logfile, please copy and paste the logs in your reply.
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-10-2012 01
Ran by SYSTEM at 05-10-2012 08:14:34
Running from F:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
The current controlset is ControlSet001

==================== Registry (Whitelisted) ===================

HKLM\...\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SONYAPO [1158248 2012-02-24] (Realtek Semiconductor)
HKLM\...\Run: [BLEServicesCtrl] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [177936 2012-02-17] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp [11406608 2012-02-21] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2870032 2012-03-15] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [291608 2012-02-24] (Intel Corporation)
HKLM-x32\...\Run: [Intel AT Service signup] c:\Program Files (x86)\Intel Corporation\Intel AT Service signup\IntelATServiceSignup.exe -launchonboot [382976 2012-02-15] (Intel Corporation)
HKLM-x32\...\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [3151000 2011-11-02] (Symantec Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] c:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [693608 2012-02-21] (Sony Corporation)
HKLM-x32\...\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [218880 2012-05-31] (Kaspersky Lab ZAO)
HKU\imkhairil\...\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot [3491264 2012-06-21] (Tonec Inc.)
Tcpip\Parameters: [DhcpNameServer] 203.121.16.85 8.8.8.8 8.8.4.4
Startup: C:\Users\imkhairil\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> (No File)

==================== Services (Whitelisted) ===================

3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)
2 AVP; "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" -r [218880 2012-05-31] (Kaspersky Lab ZAO)
2 BTHSSecurityMgr; "C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe" [135952 2012-01-17] (Intel(R) Corporation)
2 Intel(R) Capability Licensing Service Interface; "C:\Program Files\Intel\iCLS Client\HeciServer.exe" [628448 2012-02-02] (Intel(R) Corporation)
2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [121344 2012-02-07] ()
2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
2 MBAMScheduler; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" [399432 2012-09-07] (Malwarebytes Corporation)
2 MBAMService; "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" [676936 2012-09-07] (Malwarebytes Corporation)
2 MSSQL$QSRNVIVO10; "C:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\sqlservr.exe" -sQSRNVIVO10 [62111072 2011-06-17] (Microsoft Corporation)
3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2012-02-26] ()
2 NOBU; "C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe" SERVICE [4700824 2011-11-02] (Symantec Corporation)
2 PMBDeviceInfoProvider; "C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe" [473960 2012-02-21] (Sony Corporation)
2 SampleCollector; "C:\Program Files\Sony\VAIO Care\VCPerfService.exe" "/service" "/sstates" "/sampleinterval=5000" "/procinterval=5" "/dllinterval=120" "/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1" "/counter=\Network Interface(*)\Bytes Total/sec:1" "/expandcounter=\Processor Information(*)\Processor Frequency:1" "&_" "/expandcounter=\Processor(*)\% Idle Time:1" "/expandcounter=\Processor(*)\% C1 Time:1" "/expandcounter=\Processor(*)\% C2 Time:1" "/expandcounter=\Processor(*)\%C3 &_ Time:1" "/expandcounter=\Processor(*)\% Processor Time:1" "/directory=C:\ProgramData\Sony Corporation\VAIO Care\inteldata" [260768 2011-11-30] (Sony Corporation)
4 SQLAgent$QSRNVIVO10; "C:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\SQLAGENT.EXE" -I QSRNVIVO10 [431456 2011-06-17] (Microsoft Corporation)
2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
2 ZeroConfigService; "C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe" [2669840 2012-02-26] (Intel® Corporation)

==================== Drivers (Whitelisted) =====================

3 ArcSoftKsUFilter; C:\Windows\System32\Drivers\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
0 iusb3hcs; C:\Windows\System32\Drivers\iusb3hcs.sys [16152 2012-02-24] (Intel Corporation)
3 iusb3hub; C:\Windows\System32\Drivers\iusb3hub.sys [356120 2012-02-24] (Intel Corporation)
3 iusb3xhc; C:\Windows\System32\Drivers\iusb3xhc.sys [787736 2012-02-24] (Intel Corporation)
0 KL1; C:\Windows\System32\Drivers\KL1.sys [458544 2012-04-12] (Kaspersky Lab ZAO)
1 KLIF; C:\Windows\System32\Drivers\KLIF.sys [640344 2012-05-28] (Kaspersky Lab)
1 KLIM6; C:\Windows\System32\Drivers\KLIM6.sys [30000 2012-03-27] (Kaspersky Lab ZAO)
3 klkbdflt; C:\Windows\System32\Drivers\klkbdflt.sys [29016 2012-05-25] (Kaspersky Lab)
3 klmouflt; C:\Windows\System32\Drivers\klmouflt.sys [27992 2012-05-25] (Kaspersky Lab)
1 kltdi; C:\Windows\System32\Drivers\kltdi.sys [54064 2012-05-12] (Kaspersky Lab)
1 kneps; C:\Windows\System32\Drivers\kneps.sys [172888 2012-05-23] (Kaspersky Lab)
3 MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [25928 2012-09-07] (Malwarebytes Corporation)
3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11471872 2012-02-20] (Intel Corporation)
4 RsFx0151; C:\Windows\System32\Drivers\RsFx0151.sys [313696 2011-06-17] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ====================
 
==================== One Month Created Files and Folders ========

2012-10-05 08:14 - 2012-10-05 08:14 - 00000000 ____D C:\FRST
2012-10-03 23:33 - 2012-10-03 23:33 - 00096803 ____A C:\Users\imkhairil\Desktop\Attach dds.txt
2012-10-03 23:32 - 2012-10-03 23:32 - 00041654 ____A C:\Users\imkhairil\Desktop\DDS.txt
2012-10-03 23:13 - 2012-10-03 23:23 - 00000973 ____A C:\Users\imkhairil\Desktop\GMER.log
2012-10-03 23:03 - 2012-10-03 23:03 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Malwarebytes
2012-10-03 23:02 - 2012-10-03 23:02 - 00001109 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2012-10-03 23:02 - 2012-10-03 23:02 - 00000000 ____D C:\Users\All Users\Malwarebytes
2012-10-03 23:02 - 2012-10-03 23:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-10-03 23:02 - 2012-09-07 01:04 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2012-10-03 23:01 - 2012-10-03 23:01 - 00607260 ____R (Swearware) C:\Users\imkhairil\Downloads\dds.com
2012-10-03 18:05 - 2012-10-03 19:10 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Amos 7
2012-10-03 17:57 - 2012-10-04 00:24 - 00000000 ____D C:\Users\imkhairil\Desktop\AMOS
2012-10-03 17:25 - 2012-10-03 17:25 - 00000931 ____A C:\Users\imkhairil\Desktop\Amos Graphics.lnk
2012-10-03 17:13 - 2012-10-03 23:56 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Amos 16.0
2012-10-02 19:05 - 2012-10-02 19:05 - 00000000 ____D C:\Windows\PCHEALTH
2012-10-02 19:04 - 2012-10-02 19:04 - 00000000 ____D C:\Program Files\Microsoft Office
2012-10-02 19:03 - 2012-10-02 19:03 - 00000000 __RHD C:\MSOCache
2012-10-02 19:03 - 2012-10-02 19:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2012-10-02 17:01 - 2012-10-03 00:08 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Publish or Perish
2012-10-02 17:01 - 2012-10-02 17:01 - 00000000 ____D C:\Program Files (x86)\Harzing's Publish or Perish 3
2012-10-02 16:08 - 2012-10-02 16:08 - 00002071 ____A C:\Users\imkhairil\Desktop\SPSS 16.0.lnk
2012-10-02 05:53 - 2012-10-02 05:53 - 00002340 ____A C:\Users\imkhairil\Desktop\Safe Money.lnk
2012-10-02 05:53 - 2012-10-02 05:52 - 00001146 ____A C:\Users\Public\Desktop\Kaspersky Internet Security 2013.lnk
2012-10-02 05:52 - 2012-10-04 16:05 - 00000000 ____D C:\Users\All Users\Kaspersky Lab
2012-10-02 05:52 - 2012-10-02 05:52 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2012-10-02 05:52 - 2012-05-28 23:55 - 00640344 ____A (Kaspersky Lab) C:\Windows\System32\Drivers\klif.sys
2012-10-02 05:52 - 2012-05-28 23:55 - 00085336 ____A (Kaspersky Lab) C:\Windows\System32\Drivers\klflt.sys
2012-10-02 05:29 - 2012-10-02 05:29 - 00000000 ____D C:\Users\imkhairil\.spss
2012-10-02 05:23 - 2012-10-02 05:23 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\QSR_International
2012-10-02 05:15 - 2012-10-02 05:21 - 00000000 ____D C:\Program Files (x86)\AMOS 16.0
2012-10-02 05:09 - 2012-10-03 17:17 - 00000114 ____A C:\Windows\SysWOW64\prsgrc.tgz
2012-10-02 05:09 - 2012-10-03 17:17 - 00000100 ____A C:\Windows\SysWOW64\prsgrc.dll
2012-10-02 05:09 - 2012-10-02 05:09 - 00001024 ____A C:\Windows\SysWOW64\grcauth2.dll
2012-10-02 05:09 - 2012-10-02 05:09 - 00001024 ____A C:\Windows\SysWOW64\grcauth1.dll
2012-10-02 05:09 - 2012-10-02 05:09 - 00000000 ____D C:\Users\imkhairil\Documents\SafeNet Sentinel
2012-10-02 05:08 - 2012-10-02 05:08 - 00000000 ____D C:\Users\All Users\SPSS
2012-10-02 05:08 - 2012-10-02 05:08 - 00000000 ____D C:\Program Files (x86)\SPSSInc
2012-10-02 05:06 - 2012-10-02 05:07 - 00000000 ____A C:\law.sp
2012-10-02 04:50 - 2012-10-02 04:50 - 00001924 ____A C:\Users\Public\Desktop\QSR NVivo 10.lnk
2012-10-02 04:50 - 2012-10-02 04:50 - 00000000 ____D C:\Users\Public\Documents\NVivo 10 Samples
2012-10-02 04:50 - 2012-10-02 04:50 - 00000000 ____D C:\Users\All Users\QSR
2012-10-02 04:50 - 2012-10-02 04:50 - 00000000 ____D C:\Program Files\QSR
2012-10-02 04:49 - 2012-10-02 04:49 - 00000000 ____D C:\Program Files (x86)\QSR
2012-10-02 04:46 - 2010-04-03 10:51 - 00073568 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 04:46 - 2010-04-03 10:51 - 00047456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 04:46 - 2010-04-03 09:57 - 00079200 ____A (Microsoft Corporation) C:\Windows\System32\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 04:46 - 2010-04-03 09:57 - 00077152 ____A (Microsoft Corporation) C:\Windows\System32\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 04:45 - 2012-10-02 04:45 - 00000000 ____D C:\Windows\System32\RsFx
2012-10-02 04:45 - 2012-10-02 04:45 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 9.0
2012-10-02 04:45 - 2012-10-02 04:45 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 9.0
2012-10-02 04:43 - 2012-10-02 04:43 - 00000000 ____D C:\Windows\SysWOW64\1033
2012-10-02 04:43 - 2012-10-02 04:43 - 00000000 ____D C:\Windows\System32\1033
2012-10-02 04:42 - 2012-10-02 04:45 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2012-10-02 04:42 - 2012-10-02 04:44 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2012-10-02 04:39 - 2012-10-03 17:17 - 00000014 ____A C:\Windows\SysWOW64\ssprs.tgz
2012-10-02 04:39 - 2012-10-02 04:39 - 00001024 ____A C:\Windows\SysWOW64\clauth2.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00001024 ____A C:\Windows\SysWOW64\clauth1.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____D C:\Users\All Users\SafeNet Sentinel
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\ssprs.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\serauth2.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\serauth1.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\nsprs.tgz
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\nsprs.dll
2012-10-02 04:38 - 2012-10-02 05:15 - 00000219 ____A C:\Windows\SysWOW64\lsprst7.tgz
2012-10-02 04:38 - 2012-10-02 05:15 - 00000205 ____A C:\Windows\SysWOW64\lsprst7.dll
2012-10-02 04:38 - 2012-10-02 05:15 - 00000016 ___AH C:\Windows\SysWOW64\servdat.slm
2012-10-02 04:38 - 2012-10-02 04:38 - 00001025 ____A C:\Windows\SysWOW64\sysprs7.tgz
2012-10-02 04:38 - 2012-10-02 04:38 - 00001025 ____A C:\Windows\SysWOW64\sysprs7.dll
2012-10-02 04:16 - 2012-10-02 04:30 - 00261862 ____A C:\Windows\msxml4-KB2721691-enu.LOG
2012-10-02 04:16 - 2012-07-06 12:07 - 00552960 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\bthport.sys
2012-10-02 04:01 - 2012-08-24 03:15 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-10-02 04:01 - 2012-08-24 02:39 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-10-02 04:01 - 2012-08-24 02:31 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-10-02 04:01 - 2012-08-24 02:22 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-10-02 04:01 - 2012-08-24 02:21 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-10-02 04:01 - 2012-08-24 02:20 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-10-02 04:01 - 2012-08-24 02:18 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-10-02 04:01 - 2012-08-24 02:17 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-10-02 04:01 - 2012-08-24 02:14 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-10-02 04:01 - 2012-08-24 02:14 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-10-02 04:01 - 2012-08-24 02:13 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-10-02 04:01 - 2012-08-24 02:12 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-10-02 04:01 - 2012-08-24 02:11 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-10-02 04:01 - 2012-08-24 02:10 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-10-02 04:01 - 2012-08-24 02:09 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-10-02 04:01 - 2012-08-24 02:04 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-10-02 04:01 - 2012-08-23 23:27 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-10-02 04:01 - 2012-08-23 23:03 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-10-02 04:01 - 2012-08-23 22:59 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-10-02 04:01 - 2012-08-23 22:51 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-10-02 04:01 - 2012-08-23 22:51 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-10-02 04:01 - 2012-08-23 22:51 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-10-02 04:01 - 2012-08-23 22:49 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-10-02 04:01 - 2012-08-23 22:48 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-10-02 04:01 - 2012-08-23 22:47 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-10-02 04:01 - 2012-08-23 22:47 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-10-02 04:01 - 2012-08-23 22:47 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-10-02 04:01 - 2012-08-23 22:45 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-10-02 04:01 - 2012-08-23 22:44 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-10-02 04:01 - 2012-08-23 22:44 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-10-02 04:01 - 2012-08-23 22:43 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-10-02 04:01 - 2012-08-23 22:40 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-10-02 03:57 - 2012-08-30 08:43 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-10-02 03:52 - 2012-02-29 22:46 - 00023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2012-10-02 03:52 - 2012-02-29 22:38 - 00220672 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-10-02 03:52 - 2012-02-29 22:33 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2012-10-02 03:52 - 2012-02-29 22:28 - 00005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll
2012-10-02 03:52 - 2012-02-29 21:37 - 00172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2012-10-02 03:52 - 2012-02-29 21:33 - 00159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2012-10-02 03:52 - 2012-02-29 21:29 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2012-10-02 03:45 - 2012-08-22 10:12 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-10-02 03:45 - 2012-08-22 10:12 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-10-02 03:45 - 2012-08-22 10:12 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-10-02 03:45 - 2012-08-22 10:12 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-10-02 03:45 - 2012-08-02 09:58 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-10-02 03:45 - 2012-08-02 08:57 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-10-02 03:45 - 2012-07-04 12:26 - 00041472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2012-10-02 03:45 - 2012-06-08 21:43 - 14172672 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll
2012-10-02 03:45 - 2012-06-08 20:41 - 12873728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2012-10-02 03:45 - 2012-06-05 22:06 - 02004480 ____A (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2012-10-02 03:45 - 2012-06-05 22:06 - 01881600 ____A (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2012-10-02 03:45 - 2012-06-05 21:05 - 01390080 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2012-10-02 03:45 - 2012-06-05 21:05 - 01236992 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2012-10-02 03:45 - 2012-06-01 21:50 - 00458704 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2012-10-02 03:45 - 2012-06-01 21:48 - 00151920 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2012-10-02 03:45 - 2012-06-01 21:48 - 00095600 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2012-10-02 03:45 - 2012-06-01 21:45 - 00340992 ____A (Microsoft Corporation) C:\Windows\System32\schannel.dll
2012-10-02 03:45 - 2012-06-01 21:44 - 00307200 ____A (Microsoft Corporation) C:\Windows\System32\ncrypt.dll
2012-10-02 03:45 - 2012-06-01 20:40 - 00225280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2012-10-02 03:45 - 2012-06-01 20:40 - 00022016 ____A (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2012-10-02 03:45 - 2012-06-01 20:39 - 00219136 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2012-10-02 03:45 - 2012-06-01 20:34 - 00096768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2012-10-02 03:45 - 2012-05-05 00:36 - 00503808 ____A (Microsoft Corporation) C:\Windows\System32\srcore.dll
2012-10-02 03:45 - 2012-05-04 23:46 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2012-10-02 03:45 - 2012-04-30 21:40 - 00209920 ____A (Microsoft Corporation) C:\Windows\System32\profsvc.dll
2012-10-02 03:45 - 2012-04-27 19:55 - 00210944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-10-02 03:45 - 2012-04-25 21:41 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-10-02 03:45 - 2012-04-25 21:41 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-10-02 03:45 - 2012-04-25 21:34 - 00009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2012-10-02 03:45 - 2012-04-23 21:37 - 01462272 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2012-10-02 03:45 - 2012-04-23 21:37 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2012-10-02 03:45 - 2012-04-23 21:37 - 00140288 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2012-10-02 03:45 - 2012-04-23 20:36 - 01158656 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2012-10-02 03:45 - 2012-04-23 20:36 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2012-10-02 03:45 - 2012-04-23 20:36 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2012-10-02 03:45 - 2012-03-02 22:35 - 01544704 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2012-10-02 03:45 - 2012-03-02 21:31 - 01077248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2012-10-02 03:45 - 2012-02-10 22:43 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2012-10-02 03:45 - 2012-02-10 22:36 - 00559104 ____A (Microsoft Corporation) C:\Windows\System32\spoolsv.exe
2012-10-02 03:45 - 2012-02-10 22:36 - 00067072 ____A (Microsoft Corporation) C:\Windows\splwow64.exe
2012-10-02 03:45 - 2012-02-10 21:43 - 00492032 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2012-10-02 03:45 - 2012-01-04 02:44 - 00509952 ____A (Microsoft Corporation) C:\Windows\System32\ntshrui.dll
2012-10-02 03:45 - 2012-01-04 00:58 - 00442880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2012-10-02 03:45 - 2011-12-29 22:26 - 00515584 ____A (Microsoft Corporation) C:\Windows\System32\timedate.cpl
2012-10-02 03:45 - 2011-12-29 21:27 - 00478720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2012-10-02 03:45 - 2011-04-08 22:58 - 00142336 ____A (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2012-10-02 03:45 - 2011-04-08 21:56 - 00123904 ____A (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2012-10-02 03:45 - 2011-03-12 04:08 - 01465344 ____A (Microsoft Corporation) C:\Windows\System32\XpsPrint.dll
2012-10-02 03:45 - 2011-03-12 03:23 - 00870912 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2012-10-02 03:45 - 2010-06-25 19:55 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2012-10-02 03:45 - 2010-06-25 19:24 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2012-10-02 03:44 - 2012-08-21 13:01 - 00245760 ____A (Microsoft Corporation) C:\Windows\System32\OxpsConverter.exe
2012-10-02 03:44 - 2012-07-18 10:15 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-10-02 03:44 - 2012-07-04 14:16 - 00073216 ____A (Microsoft Corporation) C:\Windows\System32\netapi32.dll
2012-10-02 03:44 - 2012-07-04 14:13 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\browser.dll
2012-10-02 03:44 - 2012-07-04 14:13 - 00059392 ____A (Microsoft Corporation) C:\Windows\System32\browcli.dll
2012-10-02 03:44 - 2012-07-04 13:16 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2012-10-02 03:44 - 2012-07-04 13:14 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2012-10-02 03:44 - 2012-05-13 21:26 - 00956928 ____A (Microsoft Corporation) C:\Windows\System32\localspl.dll
2012-10-02 03:44 - 2012-05-04 03:06 - 05559664 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-10-02 03:44 - 2012-05-04 02:03 - 03968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-10-02 03:44 - 2012-05-04 02:03 - 03913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-10-02 03:44 - 2012-04-07 04:31 - 03216384 ____A (Microsoft Corporation) C:\Windows\System32\msi.dll
2012-10-02 03:44 - 2012-04-07 03:26 - 02342400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2012-10-02 03:44 - 2012-03-16 23:58 - 00075120 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2012-10-02 03:44 - 2011-12-27 19:59 - 00498688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2012-10-02 03:44 - 2011-12-16 00:46 - 00634880 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2012-10-02 03:44 - 2011-12-15 23:52 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2012-10-02 03:42 - 2012-06-05 22:02 - 01133568 ____A (Microsoft Corporation) C:\Windows\System32\cdosys.dll
2012-10-02 03:42 - 2012-06-05 21:03 - 00805376 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2012-10-02 03:41 - 2012-02-16 22:38 - 01031680 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2012-10-02 03:41 - 2012-02-16 21:34 - 00826880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2012-10-02 03:41 - 2012-02-16 20:57 - 00023552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2012-10-02 03:32 - 2012-10-02 16:37 - 00000000 ____D C:\Update
2012-10-02 03:02 - 2012-06-02 14:19 - 02428952 ____A (Microsoft Corporation) C:\Windows\System32\wuaueng.dll
2012-10-02 03:02 - 2012-06-02 14:19 - 00057880 ____A (Microsoft Corporation) C:\Windows\System32\wuauclt.exe
2012-10-02 03:02 - 2012-06-02 14:19 - 00044056 ____A (Microsoft Corporation) C:\Windows\System32\wups2.dll
2012-10-02 03:02 - 2012-06-02 14:15 - 02622464 ____A (Microsoft Corporation) C:\Windows\System32\wucltux.dll
2012-10-02 03:01 - 2012-06-02 14:19 - 00701976 ____A (Microsoft Corporation) C:\Windows\System32\wuapi.dll
2012-10-02 03:01 - 2012-06-02 14:19 - 00038424 ____A (Microsoft Corporation) C:\Windows\System32\wups.dll
2012-10-02 03:01 - 2012-06-02 14:15 - 00099840 ____A (Microsoft Corporation) C:\Windows\System32\wudriver.dll
2012-10-02 03:01 - 2012-06-01 23:19 - 00186752 ____A (Microsoft Corporation) C:\Windows\System32\wuwebv.dll
2012-10-02 03:01 - 2012-06-01 23:15 - 00036864 ____A (Microsoft Corporation) C:\Windows\System32\wuapp.exe
2012-10-01 23:44 - 2012-10-04 16:05 - 00000000 ___RD C:\Users\imkhairil\Dropbox
2012-10-01 23:44 - 2012-10-01 23:44 - 00001005 ____A C:\Users\imkhairil\Desktop\Dropbox.lnk
2012-10-01 23:43 - 2012-10-04 16:05 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Dropbox
2012-10-01 18:49 - 2012-10-04 16:11 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\DMCache
2012-10-01 18:49 - 2012-10-04 00:29 - 00000000 ____D C:\Users\imkhairil\Downloads\Compressed
2012-10-01 18:49 - 2012-10-01 22:35 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\IDM
2012-10-01 18:49 - 2012-10-01 18:49 - 00000000 ____D C:\Users\imkhairil\Downloads\Video
2012-10-01 18:49 - 2012-10-01 18:49 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager
2012-09-30 22:30 - 2012-10-03 02:18 - 00006461 ____A C:\Windows\AutoKMS.log
2012-09-30 21:45 - 2012-10-02 19:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2012-09-30 21:45 - 2012-09-30 21:45 - 00000000 ____D C:\Users\All Users\Evernote
2012-09-30 21:45 - 2012-09-30 21:45 - 00000000 ____D C:\Program Files (x86)\Evernote
2012-09-30 21:41 - 2012-09-30 21:41 - 00000000 ____D C:\Windows\ar
2012-09-30 21:40 - 2012-09-30 21:46 - 00000000 ____D C:\Program Files\Sony
2012-09-30 21:40 - 2012-09-30 21:40 - 00000000 ____D C:\Windows\vi
2012-09-30 21:40 - 2012-09-30 21:40 - 00000000 ____D C:\Windows\th
2012-09-30 21:40 - 2012-09-30 21:40 - 00000000 ____D C:\Windows\en
2012-09-30 21:40 - 2012-09-30 21:40 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2012-09-30 21:40 - 2012-09-30 21:33 - 00000000 ____D C:\Users\All Users\Sony Corporation
2012-09-30 21:38 - 2012-09-30 21:41 - 00000000 ____D C:\Program Files (x86)\Windows Live
2012-09-30 21:37 - 2012-09-30 21:37 - 00000000 ____D C:\Program Files\Windows Live
2012-09-30 21:37 - 2009-09-04 16:44 - 00515416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2012-09-30 21:37 - 2009-09-04 16:44 - 00069464 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2012-09-30 21:37 - 2009-09-04 16:29 - 00523088 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_42.dll
2012-09-30 21:37 - 2009-09-04 16:29 - 00453456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2012-09-30 21:37 - 2006-11-29 12:06 - 04398360 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_32.dll
2012-09-30 21:37 - 2006-11-29 12:06 - 03426072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2012-09-30 21:36 - 2012-09-30 21:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2012-09-30 21:34 - 2012-09-30 21:34 - 00074703 ____A C:\Windows\SysWOW64\mfc45.dll
2012-09-30 21:34 - 2012-09-30 06:52 - 00000000 ____D C:\Users\All Users\iolo
2012-09-30 21:34 - 2012-01-18 22:40 - 00021176 ____A (iolo technologies, LLC) C:\Windows\System32\iolorgdf64.exe
2012-09-30 21:34 - 2011-11-30 17:49 - 00069000 ____A (Microsoft Corporation) C:\Windows\System32\offreg.dll
2012-09-30 21:33 - 2012-09-30 21:33 - 00000000 ____D C:\VAIO Sample Contents
2012-09-30 21:30 - 2012-10-02 05:48 - 00000258 _RASH C:\Users\All Users\ntuser.pol
2012-09-30 21:30 - 2012-09-30 20:25 - 00000000 ____D C:\Users\All Users\Trend Micro
2012-09-30 21:28 - 2012-10-04 16:04 - 00000000 ____D C:\Users\All Users\boost_interprocess
2012-09-30 21:28 - 2012-09-30 21:37 - 00000596 ____A C:\Windows\DirectX.log
2012-09-30 21:28 - 2012-09-30 21:28 - 00000000 ____D C:\Users\All Users\Symantec
2012-09-30 21:28 - 2012-09-30 21:28 - 00000000 ____D C:\Program Files (x86)\Symantec
2012-09-30 21:28 - 2007-07-19 17:14 - 05073256 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_35.dll
2012-09-30 21:28 - 2006-03-31 11:41 - 03927248 ____A (Microsoft Corporation) C:\Windows\System32\d3dx9_30.dll
2012-09-30 21:28 - 2006-03-31 11:40 - 02388176 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2012-09-30 21:26 - 2012-09-30 21:27 - 00000000 ____D C:\Program Files (x86)\Sony Media Go Install
2012-09-30 21:26 - 2012-09-30 21:26 - 00000000 ____D C:\Program Files (x86)\Intel Corporation
2012-09-30 21:26 - 2009-05-26 13:32 - 00019968 ____A (ArcSoft, Inc.) C:\Windows\System32\Drivers\ArcSoftKsUFilter.sys
2012-09-30 21:26 - 2005-04-27 15:36 - 00245408 ____A (Microsoft Corporation) C:\Windows\SysWOW64\unicows.dll
2012-09-30 21:26 - 1995-07-31 12:44 - 00212480 ____A (Eastman Kodak) C:\Windows\SysWOW64\PCDLIB32.DLL
2012-09-30 21:24 - 2012-09-30 21:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2012-09-30 21:24 - 2012-09-30 21:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2012-09-30 21:24 - 2012-09-30 21:24 - 00000000 ____D C:\Users\All Users\ArcSoft
2012-09-30 21:23 - 2012-09-30 21:26 - 00000000 ____D C:\Program Files (x86)\ArcSoft
2012-09-30 21:22 - 2012-09-30 21:22 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2012-09-30 21:22 - 2012-09-30 21:22 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2012-09-30 21:22 - 2012-09-30 21:22 - 00000000 ____D C:\Program Files\Common Files\Adobe
2012-09-30 21:20 - 2010-03-19 02:00 - 00055856 ____N (Sonic Solutions) C:\Windows\System32\Drivers\PxHlpa64.sys
2012-09-30 21:20 - 2009-10-20 02:00 - 00010224 ____N (Sonic Solutions) C:\Windows\System32\Drivers\cdralw2k.sys
2012-09-30 21:20 - 2009-10-20 02:00 - 00010224 ____N (Sonic Solutions) C:\Windows\System32\Drivers\cdr4_xp.sys
2012-09-30 21:19 - 2012-10-02 16:14 - 00000000 ____D C:\Users\All Users\Adobe
2012-09-30 21:19 - 2012-09-30 21:22 - 00000000 ____D C:\Program Files (x86)\Adobe
2012-09-30 21:17 - 2012-10-04 16:10 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-09-30 21:17 - 2012-09-30 21:17 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2012-09-30 21:17 - 2012-09-30 21:17 - 00000000 ____D C:\Windows\System32\Macromed
2012-09-30 21:17 - 2012-09-30 19:10 - 00696240 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-09-30 21:17 - 2012-09-30 19:10 - 00073136 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-09-30 21:15 - 2012-10-02 16:37 - 00000000 ____D C:\Documentation
2012-09-30 21:12 - 2012-09-30 21:12 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2012-09-30 21:11 - 2010-06-02 03:55 - 00527192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2012-09-30 21:11 - 2010-06-02 03:55 - 00518488 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_7.dll
2012-09-30 21:11 - 2010-06-02 03:55 - 00239960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2012-09-30 21:11 - 2010-06-02 03:55 - 00176984 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_7.dll
2012-09-30 21:11 - 2010-06-02 03:55 - 00077656 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_5.dll
2012-09-30 21:11 - 2010-06-02 03:55 - 00074072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 02526056 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 02401112 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 02106216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 01998168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 01907552 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 01868128 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 00511328 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 00470880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 00276832 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_43.dll
2012-09-30 21:11 - 2010-05-26 10:41 - 00248672 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2012-09-30 21:09 - 2012-09-30 21:09 - 00262144 ____A C:\Windows\ocsetup_install_OEMHelpCustomization.etl
2012-09-30 21:09 - 2012-09-30 21:09 - 00028728 ____A C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt
2012-09-30 21:08 - 2012-09-30 21:08 - 00627600 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2012-09-30 21:08 - 2012-09-30 21:08 - 00544656 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2012-09-30 21:08 - 2012-09-30 21:08 - 00252296 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00214408 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00188808 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00188808 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00173960 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00173960 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00000000 ____D C:\Windows\Sonysys
2012-09-30 21:08 - 2012-09-30 21:08 - 00000000 ____D C:\Users\All Users\Sun
2012-09-30 21:08 - 2012-09-30 21:08 - 00000000 ____D C:\Program Files\Java
2012-09-30 21:08 - 2012-09-30 21:08 - 00000000 ____D C:\Program Files (x86)\Java
2012-09-30 21:07 - 2012-09-30 21:10 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2012-09-30 21:07 - 2012-09-30 21:07 - 00016212 ____A C:\Windows\System32\results.xml
2012-09-30 21:06 - 2012-09-30 21:45 - 00000000 ____D C:\Program Files (x86)\Sony
2012-09-30 21:05 - 2012-09-30 21:05 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_AMPPAL_01009.Wdf
2012-09-30 21:05 - 2012-09-30 21:05 - 00000000 ____D C:\Program Files (x86)\Sony Corporation
2012-09-30 21:03 - 2012-09-30 21:03 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2012-09-30 21:03 - 2012-09-30 21:03 - 00000000 ____D C:\Users\All Users\Intel.sav
2012-09-30 21:03 - 2012-09-30 21:03 - 00000000 ____D C:\Program Files (x86)\Cisco
2012-09-30 21:03 - 2012-02-24 00:22 - 00041984 ____A (Intel Corporation) C:\Windows\System32\Drivers\USB3Ver.dll
2012-09-30 21:02 - 2012-09-30 21:02 - 00001348 ____A C:\Windows\Synaptics.log
2012-09-30 21:02 - 2012-09-30 21:02 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2012-09-30 21:02 - 2012-09-30 21:02 - 00000000 ____D C:\Windows\SysWOW64\sda
2012-09-30 21:02 - 2012-09-30 21:02 - 00000000 ____D C:\Program Files\Synaptics
2012-09-30 21:02 - 2012-02-13 08:12 - 09888872 ____A (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2012-09-30 21:02 - 2012-02-13 08:12 - 00340072 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RtsPStor.sys
2012-09-30 21:01 - 2012-09-30 21:46 - 00000000 ____D C:\Users\All Users\Intel
2012-09-30 21:01 - 2012-09-30 21:03 - 00000000 ____D C:\Program Files\Common Files\Intel
2012-09-30 21:01 - 2012-02-07 16:40 - 00015128 ____A C:\Windows\System32\Drivers\IntelMEFWVer.dll
2012-09-30 21:01 - 2011-11-10 00:04 - 00060184 ____A (Intel Corporation) C:\Windows\System32\Drivers\HECIx64.sys
2012-09-30 20:59 - 2012-10-02 03:34 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2012-09-30 20:59 - 2012-09-30 21:05 - 00000000 ____D C:\Program Files\Intel
2012-09-30 20:59 - 2012-09-30 21:02 - 00000000 ____D C:\Program Files (x86)\Realtek
2012-09-30 20:59 - 2012-09-30 20:59 - 00002197 ____A C:\RHDSetup.log
2012-09-30 20:59 - 2012-09-30 20:59 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2012-09-30 20:59 - 2012-09-30 20:59 - 00000000 ____D C:\Program Files\Realtek
2012-09-30 20:59 - 2012-02-24 01:28 - 01361336 ____A (TOSHIBA Corporation) C:\Windows\System32\tosade.dll
2012-09-30 20:59 - 2012-02-24 01:28 - 00836544 ____A (TOSHIBA Corporation) C:\Windows\System32\tadefxapo264.dll
2012-09-30 20:59 - 2012-02-24 01:28 - 00148416 ____A (TOSHIBA Corporation) C:\Windows\System32\tadefxapo.dll
2012-09-30 20:59 - 2012-02-24 01:28 - 00065944 ____A (TOSHIBA CORPORATION.) C:\Windows\System32\tepeqapo64.dll
2012-09-30 20:59 - 2012-02-24 01:23 - 02603864 ____A (Waves Audio Ltd.) C:\Windows\System32\WavesGUILib.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00518896 ____A (SRS Labs, Inc.) C:\Windows\System32\SRSTSX64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00331880 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtlCPAPI64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00221024 ____A (Synopsys, Inc.) C:\Windows\System32\SFNHK64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00220776 ____A (Sony Corporation) C:\Windows\System32\SFSS_APO.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00211184 ____A (SRS Labs, Inc.) C:\Windows\System32\SRSTSH64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00198896 ____A (SRS Labs, Inc.) C:\Windows\System32\SRSHP64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00155888 ____A (SRS Labs, Inc.) C:\Windows\System32\SRSWOW64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00081248 ____A (Synopsys, Inc.) C:\Windows\System32\SFCOM64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00078688 ____A (Synopsys, Inc.) C:\Windows\System32\SFAPO64.dll
2012-09-30 20:59 - 2012-02-24 01:22 - 00074064 ____A (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2012-09-30 20:59 - 2012-02-24 01:20 - 03846248 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkAPO64.dll
2012-09-30 20:59 - 2012-02-24 01:20 - 00823912 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkApi64.dll
2012-09-30 20:59 - 2012-02-24 01:20 - 00149608 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkCfg64.dll
2012-09-30 20:59 - 2012-02-24 01:20 - 00014952 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtkCoLDR64.dll
2012-09-30 20:59 - 2012-02-24 01:19 - 02652264 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RtPgEx64.dll
2012-09-30 20:59 - 2012-02-24 01:19 - 01247848 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RTCOM64.dll
2012-09-30 20:59 - 2012-02-24 01:18 - 04744808 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys
2012-09-30 20:59 - 2012-02-24 01:18 - 01560168 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RTSnMg64.cpl
2012-09-30 20:59 - 2012-02-24 01:17 - 02719744 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RCoRes64.dat
2012-09-30 20:59 - 2012-02-24 01:17 - 00375128 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEP64A.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00310104 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RP3DHT64.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00310104 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RP3DAA64.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00238448 ____A C:\Windows\System32\Drivers\RTAIODAT.DAT
2012-09-30 20:59 - 2012-02-24 01:17 - 00204120 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RTEED64A.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00101208 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEL64A.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00100968 ____A (Realtek Semiconductor Corp.) C:\Windows\System32\RCoInstII64.dll
2012-09-30 20:59 - 2012-02-24 01:17 - 00078680 ____A (Dolby Laboratories, Inc.) C:\Windows\System32\RTEEG64A.dll
2012-09-30 20:59 - 2012-02-24 01:12 - 03308376 ____A (Dolby Laboratories) C:\Windows\System32\R4EEP64A.dll
2012-09-30 20:59 - 2012-02-24 01:12 - 00136024 ____A (Dolby Laboratories) C:\Windows\System32\R4EEL64A.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 05996376 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioRealtek.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 01247576 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioRealtek264.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 00426328 ____A (Dolby Laboratories) C:\Windows\System32\R4EED64A.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 00334680 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxVolumeSDAPO.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 00118104 ____A (Dolby Laboratories) C:\Windows\System32\R4EEA64A.dll
2012-09-30 20:59 - 2012-02-24 01:11 - 00074072 ____A (Dolby Laboratories) C:\Windows\System32\R4EEG64A.dll
2012-09-30 20:59 - 2012-02-24 01:09 - 02131288 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioEQ.dll
2012-09-30 20:59 - 2012-02-24 01:08 - 00958296 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioAPOShell64.dll
2012-09-30 20:59 - 2012-02-24 01:08 - 00603984 ____A (Knowles Acoustics ) C:\Windows\System32\KAAPORT64.dll
2012-09-30 20:59 - 2012-02-24 01:08 - 00341336 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioAPO30.dll
2012-09-30 20:59 - 2012-02-24 01:08 - 00318808 ____A (Waves Audio Ltd.) C:\Windows\System32\MaxxAudioAPO20.dll
2012-09-30 20:59 - 2012-02-24 01:03 - 02528832 ____A (Fortemedia Corporation) C:\Windows\System32\FMAPO64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 01756264 ____A (DTS) C:\Windows\System32\DTSS2SpeakerDLL64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 00712296 ____A (DTS) C:\Windows\System32\DTSSymmetryDLL64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 00693352 ____A (DTS) C:\Windows\System32\DTSVoiceClarityDLL64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 00537456 ____A (DTS) C:\Windows\System32\DTSU2PLFX64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 00524656 ____A (DTS) C:\Windows\System32\DTSU2PGFX64.dll
2012-09-30 20:59 - 2012-02-24 01:01 - 00449392 ____A (DTS) C:\Windows\System32\DTSU2PREC64.dll
2012-09-30 20:59 - 2012-02-24 01:00 - 01568360 ____A (DTS) C:\Windows\System32\DTSS2HeadphoneDLL64.dll
2012-09-30 20:59 - 2012-02-24 01:00 - 00491112 ____A (DTS) C:\Windows\System32\DTSNeoPCDLL64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 01486952 ____A (DTS) C:\Windows\System32\DTSBoostDLL64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 00432744 ____A (DTS) C:\Windows\System32\DTSLimiterDLL64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 00428648 ____A (DTS) C:\Windows\System32\DTSGainCompensatorDLL64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 00242792 ____A (DTS) C:\Windows\System32\DTSLFXAPO64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 00242792 ____A (DTS) C:\Windows\System32\DTSGFXAPO64.dll
2012-09-30 20:59 - 2012-02-24 00:59 - 00241768 ____A (DTS) C:\Windows\System32\DTSGFXAPONS64.dll
2012-09-30 20:59 - 2012-02-24 00:58 - 00728680 ____A (DTS) C:\Windows\System32\DTSBassEnhancementDLL64.dll
2012-09-30 20:59 - 2012-02-24 00:57 - 00200800 ____A (Andrea Electronics Corporation) C:\Windows\System32\AERTAC64.dll
2012-09-30 20:59 - 2012-02-24 00:57 - 00108960 ____A (Andrea Electronics Corporation) C:\Windows\System32\AERTAR64.dll
2012-09-30 20:59 - 2012-02-24 00:17 - 01698408 ____A (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2012-09-30 20:58 - 2012-09-30 21:04 - 00028182 ____A C:\Windows\DPINST.LOG
2012-09-30 20:57 - 2012-09-30 21:03 - 00000000 ____D C:\Program Files (x86)\Intel
2012-09-30 20:57 - 2012-09-30 21:00 - 00000000 ____D C:\Intel
2012-09-30 20:57 - 2012-02-24 08:00 - 00053248 ____A (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2012-09-30 20:56 - 2011-11-04 21:32 - 00002048 ____A (Microsoft Corporation) C:\Windows\System32\tzres.dll
2012-09-30 20:56 - 2011-11-04 20:26 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2012-09-30 20:56 - 2011-03-10 22:41 - 01659776 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00410496 ____A (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00189824 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00166272 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00148352 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00107904 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2012-09-30 20:56 - 2011-03-10 22:41 - 00027008 ____A (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2012-09-30 20:56 - 2011-03-10 22:33 - 02565632 ____A (Microsoft Corporation) C:\Windows\System32\esent.dll
2012-09-30 20:56 - 2011-03-10 22:30 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\fsutil.exe
2012-09-30 20:56 - 2011-03-10 21:33 - 01699328 ____A (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2012-09-30 20:56 - 2011-03-10 21:31 - 00074240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2012-09-30 20:56 - 2011-03-10 20:37 - 00091648 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2012-09-30 20:54 - 2012-10-04 16:11 - 00478082 ____A C:\Windows\System32\prfh0404.dat
2012-09-30 20:54 - 2012-10-04 16:11 - 00143494 ____A C:\Windows\System32\prfc0404.dat
2012-09-30 20:54 - 2012-09-30 20:51 - 00117840 ____A C:\Windows\System32\prfi0404.dat
2012-09-30 20:54 - 2012-09-30 20:51 - 00031548 ____A C:\Windows\System32\prfd0404.dat
2012-09-30 20:53 - 2012-09-30 20:53 - 00000000 ____D C:\Windows\SysWOW64\zh-CHT
2012-09-30 20:52 - 2012-09-30 20:52 - 00000000 ____D C:\Windows\System32\zh-CHT
2012-09-30 20:52 - 2012-09-30 20:52 - 00000000 ____D C:\Windows\System32\Drivers\zh-HK
2012-09-30 20:50 - 2012-10-04 16:09 - 01204390 ____A C:\Windows\WindowsUpdate.log
2012-09-30 20:32 - 2012-09-30 20:32 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Macromedia
2012-09-30 20:27 - 2012-09-30 20:27 - 00000584 ____A C:\Windows\System32\TmInstall.log
2012-09-30 20:20 - 2012-10-01 16:30 - 165587197 ____A C:\Users\imkhairil\Downloads\kis13.0.1.4190EN_MY.zip
2012-09-30 18:48 - 2012-10-02 00:00 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Adobe
2012-09-30 18:32 - 2012-09-30 18:32 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2012-09-30 16:33 - 2012-09-30 16:33 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Mozilla
2012-09-30 16:33 - 2012-09-30 16:33 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Mozilla
2012-09-30 16:32 - 2012-09-30 16:32 - 17790056 ____A (Mozilla) C:\Users\imkhairil\Downloads\Firefox Setup 15.0.1.exe
2012-09-30 16:32 - 2012-09-30 16:32 - 00001130 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-09-30 16:32 - 2012-09-30 16:32 - 00000000 ____D C:\Users\All Users\Mozilla
2012-09-30 16:32 - 2012-09-30 16:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2012-09-30 16:32 - 2012-09-30 16:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-09-30 16:29 - 2012-10-02 00:00 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Adobe
2012-09-30 16:26 - 2012-09-30 16:26 - 00472576 ____A (Microsoft) C:\Windows\AutoKMS.exe
2012-09-30 16:22 - 2012-10-02 19:06 - 00000000 ____D C:\Users\All Users\Microsoft Help
2012-09-30 16:22 - 2012-09-30 16:22 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Microsoft Help
2012-09-30 06:54 - 2012-09-30 06:54 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Sony Corporation
2012-09-30 06:52 - 2012-09-30 06:54 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\iolo
2012-09-30 06:50 - 2012-10-02 19:29 - 00117944 ____A C:\Users\imkhairil\AppData\Local\GDIPFONTCACHEV1.DAT
2012-09-30 06:50 - 2012-09-30 06:50 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Intel Corporation
2012-09-30 06:50 - 2012-09-30 06:50 - 00000000 ____D C:\Users\imkhairil\AppData\Local\Intel_Corporation
2012-09-30 06:49 - 2012-10-03 19:47 - 00000000 ____D C:\Users\imkhairil\AppData\Local\VirtualStore
2012-09-30 06:49 - 2012-10-02 05:29 - 00000000 ____D C:\users\imkhairil
2012-09-30 06:49 - 2012-09-30 21:22 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Macromedia
2012-09-30 06:49 - 2012-09-30 16:29 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Sony Corporation
2012-09-30 06:49 - 2012-09-30 06:49 - 00000020 ___SH C:\Users\imkhairil\ntuser.ini
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 __RAH C:\Windows\SysWOW64\Drivers\104D_Sony_SVT13115FGS.mrk
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 __RAH C:\Windows\System32\Drivers\104D_Sony_SVT13115FGS.mrk
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 ____D C:\Windows\SysWOW64\VAIO Startup Setting Tool
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 ____D C:\Windows\pss
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 ____D C:\Users\imkhairil\AppData\Roaming\Intel
 
==================== 3 Months Modified Files ==================

2012-10-04 16:12 - 2012-09-30 20:50 - 01204390 ____A C:\Windows\WindowsUpdate.log
2012-10-04 16:12 - 2009-07-13 20:45 - 00020992 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-10-04 16:12 - 2009-07-13 20:45 - 00020992 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-10-04 16:11 - 2012-09-30 20:54 - 00478082 ____A C:\Windows\System32\prfh0404.dat
2012-10-04 16:11 - 2012-09-30 20:54 - 00143494 ____A C:\Windows\System32\prfc0404.dat
2012-10-04 16:11 - 2011-02-14 15:54 - 00460980 ____A C:\Windows\System32\prfh0804.dat
2012-10-04 16:11 - 2011-02-14 15:54 - 00148408 ____A C:\Windows\System32\prfc0804.dat
2012-10-04 16:11 - 2011-02-14 15:48 - 00766238 ____A C:\Windows\System32\perfh00C.dat
2012-10-04 16:11 - 2011-02-14 15:48 - 00555092 ____A C:\Windows\System32\perfh001.dat
2012-10-04 16:11 - 2011-02-14 15:48 - 00158298 ____A C:\Windows\System32\perfc00C.dat
2012-10-04 16:11 - 2011-02-14 15:48 - 00123144 ____A C:\Windows\System32\perfc001.dat
2012-10-04 16:11 - 2009-07-13 21:13 - 03690566 ____A C:\Windows\System32\PerfStringBackup.INI
2012-10-04 16:10 - 2012-09-30 21:17 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2012-10-04 16:04 - 2009-07-13 21:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2012-10-04 16:04 - 2009-07-13 20:51 - 00041047 ____A C:\Windows\setupact.log
2012-10-03 23:33 - 2012-10-03 23:33 - 00096803 ____A C:\Users\imkhairil\Desktop\Attach dds.txt
2012-10-03 23:32 - 2012-10-03 23:32 - 00041654 ____A C:\Users\imkhairil\Desktop\DDS.txt
2012-10-03 23:23 - 2012-10-03 23:13 - 00000973 ____A C:\Users\imkhairil\Desktop\GMER.log
2012-10-03 23:02 - 2012-10-03 23:02 - 00001109 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2012-10-03 23:01 - 2012-10-03 23:01 - 00607260 ____R (Swearware) C:\Users\imkhairil\Downloads\dds.com
2012-10-03 17:25 - 2012-10-03 17:25 - 00000931 ____A C:\Users\imkhairil\Desktop\Amos Graphics.lnk
2012-10-03 17:17 - 2012-10-02 05:09 - 00000114 ____A C:\Windows\SysWOW64\prsgrc.tgz
2012-10-03 17:17 - 2012-10-02 05:09 - 00000100 ____A C:\Windows\SysWOW64\prsgrc.dll
2012-10-03 17:17 - 2012-10-02 04:39 - 00000014 ____A C:\Windows\SysWOW64\ssprs.tgz
2012-10-03 02:18 - 2012-09-30 22:30 - 00006461 ____A C:\Windows\AutoKMS.log
2012-10-02 19:29 - 2012-09-30 06:50 - 00117944 ____A C:\Users\imkhairil\AppData\Local\GDIPFONTCACHEV1.DAT
2012-10-02 19:29 - 2009-07-13 20:45 - 00440888 ____A C:\Windows\System32\FNTCACHE.DAT
2012-10-02 19:04 - 2009-07-13 18:34 - 00000478 ____A C:\Windows\win.ini
2012-10-02 18:53 - 2010-11-20 19:47 - 00321790 ____A C:\Windows\PFRO.log
2012-10-02 16:08 - 2012-10-02 16:08 - 00002071 ____A C:\Users\imkhairil\Desktop\SPSS 16.0.lnk
2012-10-02 05:53 - 2012-10-02 05:53 - 00002340 ____A C:\Users\imkhairil\Desktop\Safe Money.lnk
2012-10-02 05:52 - 2012-10-02 05:53 - 00001146 ____A C:\Users\Public\Desktop\Kaspersky Internet Security 2013.lnk
2012-10-02 05:48 - 2012-09-30 21:30 - 00000258 _RASH C:\Users\All Users\ntuser.pol
2012-10-02 05:15 - 2012-10-02 04:38 - 00000219 ____A C:\Windows\SysWOW64\lsprst7.tgz
2012-10-02 05:15 - 2012-10-02 04:38 - 00000205 ____A C:\Windows\SysWOW64\lsprst7.dll
2012-10-02 05:15 - 2012-10-02 04:38 - 00000016 ___AH C:\Windows\SysWOW64\servdat.slm
2012-10-02 05:09 - 2012-10-02 05:09 - 00001024 ____A C:\Windows\SysWOW64\grcauth2.dll
2012-10-02 05:09 - 2012-10-02 05:09 - 00001024 ____A C:\Windows\SysWOW64\grcauth1.dll
2012-10-02 05:07 - 2012-10-02 05:06 - 00000000 ____A C:\law.sp
2012-10-02 04:50 - 2012-10-02 04:50 - 00001924 ____A C:\Users\Public\Desktop\QSR NVivo 10.lnk
2012-10-02 04:39 - 2012-10-02 04:39 - 00001024 ____A C:\Windows\SysWOW64\clauth2.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00001024 ____A C:\Windows\SysWOW64\clauth1.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\ssprs.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\serauth2.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\serauth1.dll
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\nsprs.tgz
2012-10-02 04:39 - 2012-10-02 04:39 - 00000000 ____A C:\Windows\SysWOW64\nsprs.dll
2012-10-02 04:38 - 2012-10-02 04:38 - 00001025 ____A C:\Windows\SysWOW64\sysprs7.tgz
2012-10-02 04:38 - 2012-10-02 04:38 - 00001025 ____A C:\Windows\SysWOW64\sysprs7.dll
2012-10-02 04:30 - 2012-10-02 04:16 - 00261862 ____A C:\Windows\msxml4-KB2721691-enu.LOG
2012-10-02 04:14 - 2011-02-14 16:47 - 03213454 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-10-01 23:44 - 2012-10-01 23:44 - 00001005 ____A C:\Users\imkhairil\Desktop\Dropbox.lnk
2012-10-01 16:30 - 2012-09-30 20:20 - 165587197 ____A C:\Users\imkhairil\Downloads\kis13.0.1.4190EN_MY.zip
2012-09-30 21:47 - 2009-07-13 20:46 - 00004059 ____A C:\Windows\DtcInstall.log
2012-09-30 21:45 - 2011-02-14 15:23 - 00002055 ____A C:\Windows\System32\snyinst.oem
2012-09-30 21:40 - 2009-07-13 21:38 - 00025600 __ASH C:\Windows\System32\config\BCD-Template.LOG
2012-09-30 21:40 - 2009-07-13 21:32 - 00028672 ____A C:\Windows\System32\config\BCD-Template
2012-09-30 21:37 - 2012-09-30 21:28 - 00000596 ____A C:\Windows\DirectX.log
2012-09-30 21:34 - 2012-09-30 21:34 - 00074703 ____A C:\Windows\SysWOW64\mfc45.dll
2012-09-30 21:24 - 2012-09-30 21:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2012-09-30 21:24 - 2012-09-30 21:24 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2012-09-30 21:09 - 2012-09-30 21:09 - 00262144 ____A C:\Windows\ocsetup_install_OEMHelpCustomization.etl
2012-09-30 21:09 - 2012-09-30 21:09 - 00028728 ____A C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt
2012-09-30 21:08 - 2012-09-30 21:08 - 00627600 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll
2012-09-30 21:08 - 2012-09-30 21:08 - 00544656 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2012-09-30 21:08 - 2012-09-30 21:08 - 00252296 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00214408 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00188808 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00188808 ____A (Oracle Corporation) C:\Windows\System32\java.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00173960 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2012-09-30 21:08 - 2012-09-30 21:08 - 00173960 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2012-09-30 21:08 - 2011-02-14 15:23 - 00000012 ____A C:\Windows\csup.txt
2012-09-30 21:07 - 2012-09-30 21:07 - 00016212 ____A C:\Windows\System32\results.xml
2012-09-30 21:05 - 2012-09-30 21:05 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_AMPPAL_01009.Wdf
2012-09-30 21:04 - 2012-09-30 20:58 - 00028182 ____A C:\Windows\DPINST.LOG
2012-09-30 21:03 - 2012-09-30 21:03 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2012-09-30 21:02 - 2012-09-30 21:02 - 00001348 ____A C:\Windows\Synaptics.log
2012-09-30 21:02 - 2012-09-30 21:02 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2012-09-30 20:59 - 2012-09-30 20:59 - 00002197 ____A C:\RHDSetup.log
2012-09-30 20:51 - 2012-09-30 20:54 - 00117840 ____A C:\Windows\System32\prfi0404.dat
2012-09-30 20:51 - 2012-09-30 20:54 - 00031548 ____A C:\Windows\System32\prfd0404.dat
2012-09-30 20:43 - 2011-02-14 15:27 - 00003652 ____A C:\Windows\TSSysprep.log
2012-09-30 20:27 - 2012-09-30 20:27 - 00000584 ____A C:\Windows\System32\TmInstall.log
2012-09-30 19:10 - 2012-09-30 21:17 - 00696240 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2012-09-30 19:10 - 2012-09-30 21:17 - 00073136 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-09-30 18:32 - 2012-09-30 18:32 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2012-09-30 16:32 - 2012-09-30 16:32 - 17790056 ____A (Mozilla) C:\Users\imkhairil\Downloads\Firefox Setup 15.0.1.exe
2012-09-30 16:32 - 2012-09-30 16:32 - 00001130 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-09-30 16:26 - 2012-09-30 16:26 - 00472576 ____A (Microsoft) C:\Windows\AutoKMS.exe
2012-09-30 06:49 - 2012-09-30 06:49 - 00000020 ___SH C:\Users\imkhairil\ntuser.ini
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 __RAH C:\Windows\SysWOW64\Drivers\104D_Sony_SVT13115FGS.mrk
2012-09-30 06:49 - 2012-09-30 06:49 - 00000000 __RAH C:\Windows\System32\Drivers\104D_Sony_SVT13115FGS.mrk
2012-09-07 01:04 - 2012-10-03 23:02 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2012-08-30 08:43 - 2012-10-02 03:57 - 64462936 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-08-24 03:15 - 2012-10-02 04:01 - 17810944 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-08-24 02:39 - 2012-10-02 04:01 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-08-24 02:31 - 2012-10-02 04:01 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-08-24 02:22 - 2012-10-02 04:01 - 01346048 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-08-24 02:21 - 2012-10-02 04:01 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-08-24 02:20 - 2012-10-02 04:01 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-08-24 02:18 - 2012-10-02 04:01 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-08-24 02:17 - 2012-10-02 04:01 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-08-24 02:14 - 2012-10-02 04:01 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-08-24 02:14 - 2012-10-02 04:01 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2012-08-24 02:13 - 2012-10-02 04:01 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2012-08-24 02:12 - 2012-10-02 04:01 - 02144768 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-08-24 02:11 - 2012-10-02 04:01 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-08-24 02:10 - 2012-10-02 04:01 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-08-24 02:09 - 2012-10-02 04:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-08-24 02:04 - 2012-10-02 04:01 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-08-23 23:27 - 2012-10-02 04:01 - 12319744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-08-23 23:03 - 2012-10-02 04:01 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-08-23 22:59 - 2012-10-02 04:01 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-08-23 22:51 - 2012-10-02 04:01 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-08-23 22:51 - 2012-10-02 04:01 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-08-23 22:51 - 2012-10-02 04:01 - 01103872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-08-23 22:49 - 2012-10-02 04:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-08-23 22:48 - 2012-10-02 04:01 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-08-23 22:47 - 2012-10-02 04:01 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-08-23 22:47 - 2012-10-02 04:01 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2012-08-23 22:47 - 2012-10-02 04:01 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2012-08-23 22:45 - 2012-10-02 04:01 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2012-08-23 22:44 - 2012-10-02 04:01 - 01793024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-08-23 22:44 - 2012-10-02 04:01 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-08-23 22:43 - 2012-10-02 04:01 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-08-23 22:40 - 2012-10-02 04:01 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-08-22 10:12 - 2012-10-02 03:45 - 01913200 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2012-08-22 10:12 - 2012-10-02 03:45 - 00950128 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2012-08-22 10:12 - 2012-10-02 03:45 - 00376688 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2012-08-22 10:12 - 2012-10-02 03:45 - 00288624 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2012-08-21 13:01 - 2012-10-02 03:44 - 00245760 ____A (Microsoft Corporation) C:\Windows\System32\OxpsConverter.exe
2012-08-02 09:58 - 2012-10-02 03:45 - 00574464 ____A (Microsoft Corporation) C:\Windows\System32\d3d10level9.dll
2012-08-02 08:57 - 2012-10-02 03:45 - 00490496 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2012-07-18 10:15 - 2012-10-02 03:44 - 03148800 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys


==================== Known DLLs (Whitelisted) =================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points =========================

Restore point made on: 2012-09-30 16:22:06
Restore point made on: 2012-10-02 03:01:35
Restore point made on: 2012-10-02 03:34:51
Restore point made on: 2012-10-02 03:35:25
Restore point made on: 2012-10-02 03:48:02
Restore point made on: 2012-10-02 04:30:18
Restore point made on: 2012-10-02 04:38:50
Restore point made on: 2012-10-02 04:49:58
Restore point made on: 2012-10-02 05:03:55
Restore point made on: 2012-10-02 05:08:28
Restore point made on: 2012-10-02 05:15:47

==================== Memory info ===========================

Percentage of memory in use: 8%
Total physical RAM: 12190.31 MB
Available physical RAM: 11107.84 MB
Total Pagefile: 12188.51 MB
Available Pagefile: 11098.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.89 MB

==================== Partitions =============================

1 Drive c: () (Fixed) (Total:450.73 GB) (Free:388.99 GB) NTFS
2 Drive e: (Recovery) (Fixed) (Total:14.69 GB) (Free:1.1 GB) NTFS ==>[System with boot components (obtained from reading drive)]
3 Drive f: (NANO PRO) (Removable) (Total:3.61 GB) (Free:2.94 GB) FAT32
4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
5 Drive y: (System Reserved) (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 465 GB 0 B
Disk 1 Online 11 GB 0 B
Disk 2 Online 3700 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Recovery 14 GB 1024 KB
Partition 2 Primary 350 MB 14 GB
Partition 3 Primary 450 GB 15 GB

==================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 E Recovery NTFS Partition 14 GB Healthy Hidden

=========================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 0 Y System Rese NTFS Partition 350 MB Healthy

=========================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C NTFS Partition 450 GB Healthy

=========================================================

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 11 GB 1024 KB

==================================================================================

Disk: 1
Partition 1
Type : 84
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 4 RAW Partition 11 GB Healthy Hidden

=========================================================

Partitions of Disk 2:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 3696 MB 4032 KB

==================================================================================

Disk: 2
Partition 1
Type : 0C
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 F NANO PRO FAT32 Removable 3696 MB Healthy

=========================================================

Last Boot: 2011-02-14 15:24

==================== End Of Log =============================
 
Farbar Recovery Scan Tool (x64) Version: 02-10-2012 01
Ran by SYSTEM at 2012-10-05 08:15:50
Running from F:\

================== Search: "services.exe" ===================

C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2009-07-13 15:19] - [2009-07-13 17:39] - 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

C:\Windows\System32\services.exe
[2009-07-13 15:19] - [2009-07-13 17:39] - 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

====== End Of Search ======
 
Nothing specific found in that log. Back to Normal Mode, please:
ComboFix scan

Please download ComboFix
combofix.gif
by sUBs
From BleepingComputer.com

Please save the file to your Desktop.

Important information about ComboFix


After the download:
  • Close any open browsers.
  • Very Important: Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results". Please visit here if you don't know how.
  • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
  • Please do not attempt to re-connect your machine back to the Internet until ComboFix has completely finished.
  • If there is no Internet connection after running ComboFix, then restart your computer to restore back your connection.
Running ComboFix:
  • Double click on ComboFix.exe & follow the prompts.
  • When ComboFix finishes, it will produce a report for you.
  • Please post the report, which will launch or be found at "C:\Combo-Fix.txt" in your next reply.
Troubleshooting ComboFix

Safe Mode:

If you still cannot get ComboFix to run, try booting into Safe Mode, and run it there.

(To boot into Safe Mode, tap F8 after BIOS, and just before the Windows
logo appears. A list of options will appear, select "Safe Mode.")

Re-downloading:

If this doesn't work either, try the same method (above method), but try to download it again, except name
ComboFix.exe to iexplore.exe, explorer.exe, or winlogon.exe.

Malware is known for blocking all "user" processes, except for its whitelist of system important processes such as iexplore.exe, explorer.exe, winlogon.exe.

NOTE: If you encounter a message "illegal operation attempted on registry key that has been marked for deletion" and no programs will run - please just reboot and that will resolve that error.
 
ComboFix 12-10-04.02 - imkhairil 10/07/2012 15:15:59.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.12190.9729 [GMT 8:00]
Running from: c:\users\imkhairil\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Outdated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\boost_interprocess\20121007145042.125599
c:\programdata\boost_interprocess\20121007145042.125599\Nobu64AgentService
c:\programdata\boost_interprocess\20121007145042.125599\Nobu64TrayIcon
c:\programdata\Roaming
c:\windows\SysWow64\lsprst7.dll
c:\windows\SysWow64\nsprs.dll
c:\windows\SysWow64\prsgrc.dll
c:\windows\SysWow64\serauth1.dll
c:\windows\SysWow64\serauth2.dll
c:\windows\SysWow64\ssprs.dll
.
.
((((((((((((((((((((((((( Files Created from 2012-09-07 to 2012-10-07 )))))))))))))))))))))))))))))))
.
.
2012-10-07 07:27 . 2012-10-07 07:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-07 07:14 . 2012-09-18 16:58 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{58DBA2CD-0EF8-401D-9423-76ACD485AEE5}\mpengine.dll
2012-10-07 00:04 . 2012-10-07 00:04 -------- d-----w- C:\Malwarebytes
2012-10-05 16:14 . 2012-10-05 16:14 -------- d-----w- C:\FRST
2012-10-04 07:02 . 2012-10-04 07:02 -------- d-----w- c:\programdata\Malwarebytes
2012-10-04 07:02 . 2012-10-04 07:02 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-10-04 07:02 . 2012-09-07 09:04 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-03 03:05 . 2012-10-03 03:05 -------- d-----w- c:\windows\PCHEALTH
2012-10-03 03:04 . 2012-10-03 03:04 -------- d-----w- c:\program files\Microsoft Office
2012-10-03 03:03 . 2012-10-03 03:03 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-10-03 03:03 . 2012-10-03 03:03 -------- d-----r- C:\MSOCache
2012-10-03 01:01 . 2012-10-03 01:01 -------- d-----w- c:\programdata\Tarma Installer
2012-10-03 01:01 . 2012-10-03 01:01 -------- d-----w- c:\program files (x86)\Harzing's Publish or Perish 3
2012-10-02 13:52 . 2012-10-02 13:52 -------- d-----w- c:\program files (x86)\Kaspersky Lab
2012-10-02 13:52 . 2012-10-07 06:50 -------- d-----w- c:\programdata\Kaspersky Lab
2012-10-02 13:52 . 2012-05-29 07:55 85336 ----a-w- c:\windows\system32\drivers\klflt.sys
2012-10-02 13:52 . 2012-05-29 07:55 640344 ----a-w- c:\windows\system32\drivers\klif.sys
2012-10-02 13:16 . 2012-10-02 13:16 -------- d-----w- c:\program files (x86)\Common Files\Data Dynamics
2012-10-02 13:15 . 2012-10-02 13:21 -------- d-----w- c:\program files (x86)\AMOS 16.0
2012-10-02 13:09 . 2012-10-02 13:09 1024 ----a-w- c:\windows\SysWow64\grcauth2.dll
2012-10-02 13:09 . 2012-10-02 13:09 1024 ----a-w- c:\windows\SysWow64\grcauth1.dll
2012-10-02 13:08 . 2012-10-02 13:08 -------- d-----w- c:\programdata\SPSS
2012-10-02 13:08 . 2012-10-02 13:08 -------- d-----w- c:\program files (x86)\Common Files\SPSS
2012-10-02 13:08 . 2012-10-02 13:08 -------- d-----w- c:\program files (x86)\SPSSInc
2012-10-02 12:50 . 2012-10-02 12:50 -------- d-----w- c:\programdata\QSR
2012-10-02 12:50 . 2012-10-02 12:50 -------- d-----w- c:\program files\QSR
2012-10-02 12:49 . 2012-10-02 12:49 -------- d-----w- c:\program files (x86)\QSR
2012-10-02 12:46 . 2010-04-03 18:51 47456 ----a-w- c:\windows\SysWow64\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 12:46 . 2010-04-03 17:57 77152 ----a-w- c:\windows\system32\perf-MSSQL10_50.QSRNVIVO10-sqlagtctr.dll
2012-10-02 12:46 . 2010-04-03 18:51 73568 ----a-w- c:\windows\SysWow64\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 12:46 . 2010-04-03 17:57 79200 ----a-w- c:\windows\system32\perf-MSSQL$QSRNVIVO10-sqlctr10.51.2500.0.dll
2012-10-02 12:45 . 2012-10-02 12:45 -------- d-----w- c:\windows\system32\RsFx
2012-10-02 12:45 . 2012-10-02 12:45 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2012-10-02 12:45 . 2012-10-02 12:45 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 9.0
2012-10-02 12:44 . 2012-10-02 12:44 -------- d-----w- c:\program files\Microsoft.NET
2012-10-02 12:43 . 2012-10-02 12:43 -------- d-----w- c:\windows\SysWow64\1033
2012-10-02 12:43 . 2012-10-02 12:43 -------- d-----w- c:\windows\system32\1033
2012-10-02 12:42 . 2012-10-02 12:44 -------- d-----w- c:\program files (x86)\Microsoft SQL Server
2012-10-02 12:42 . 2012-10-02 12:45 -------- d-----w- c:\program files\Microsoft SQL Server
2012-10-02 12:39 . 2012-10-02 12:39 1024 ----a-w- c:\windows\SysWow64\clauth2.dll
2012-10-02 12:39 . 2012-10-02 12:39 1024 ----a-w- c:\windows\SysWow64\clauth1.dll
2012-10-02 12:39 . 2012-10-02 12:39 -------- d-----w- c:\programdata\SafeNet Sentinel
2012-10-02 12:38 . 2012-10-02 12:38 1025 ----a-w- c:\windows\SysWow64\sysprs7.dll
2012-10-02 12:30 . 2012-10-02 12:30 -------- d-----w- c:\windows\SysWow64\Wat
2012-10-02 12:30 . 2012-10-02 12:30 -------- d-----w- c:\windows\system32\Wat
2012-10-02 12:16 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-10-02 11:57 . 2012-08-30 16:43 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-10-02 11:52 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-10-02 11:52 . 2012-03-01 06:38 220672 ----a-w- c:\windows\system32\wintrust.dll
2012-10-02 11:52 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-10-02 11:52 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-10-02 11:52 . 2012-03-01 05:37 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-10-02 11:52 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-10-02 11:52 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-10-02 11:44 . 2012-05-04 11:06 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-02 11:42 . 2012-06-06 06:05 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2012-10-02 11:42 . 2012-06-06 06:05 1499136 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2012-10-02 11:42 . 2012-06-06 06:05 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2012-10-02 11:42 . 2012-06-06 05:05 1019904 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2012-10-02 11:42 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2012-10-02 11:42 . 2012-06-06 06:05 61440 ----a-w- c:\program files\Common Files\System\ado\msador15.dll
2012-10-02 11:42 . 2012-06-06 06:02 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-10-02 11:42 . 2012-06-06 05:05 143360 ----a-w- c:\program files (x86)\Common Files\System\ado\msjro.dll
2012-10-02 11:42 . 2012-06-06 05:05 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2012-10-02 11:42 . 2012-06-06 05:05 57344 ----a-w- c:\program files (x86)\Common Files\System\ado\msador15.dll
2012-10-02 11:42 . 2012-06-06 05:05 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2012-10-02 11:42 . 2012-06-06 05:05 212992 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2012-10-02 11:42 . 2012-06-06 05:03 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
2012-10-02 11:41 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2012-10-02 11:41 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll
2012-10-02 11:41 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-10-02 11:32 . 2012-10-03 00:37 -------- d-----w- C:\Update
2012-10-02 11:02 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-10-02 11:02 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-10-02 11:02 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-10-02 11:02 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-10-02 11:01 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-10-02 11:01 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-10-02 11:01 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-10-02 11:01 . 2012-06-02 07:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-10-02 11:01 . 2012-06-02 07:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-10-02 02:49 . 2012-10-02 02:49 -------- d-----w- c:\program files (x86)\Internet Download Manager
2012-10-01 05:45 . 2012-10-01 05:45 -------- d-----w- c:\program files (x86)\Evernote
2012-10-01 05:45 . 2012-10-01 05:45 -------- d-----w- c:\programdata\Evernote
2012-10-01 05:42 . 2012-10-01 05:42 -------- d-----w- c:\program files (x86)\Microsoft
2012-10-01 05:41 . 2012-10-01 05:41 -------- d-----w- c:\windows\ar
2012-10-01 05:40 . 2012-10-01 05:40 -------- d-----w- c:\windows\en
2012-10-01 05:40 . 2012-10-01 05:33 -------- d-----w- c:\programdata\Sony Corporation
2012-10-01 05:40 . 2012-10-01 05:40 -------- d-----w- c:\windows\th
2012-10-01 05:40 . 2012-10-01 05:40 -------- d-----w- c:\windows\vi
2012-10-01 05:40 . 2012-10-01 05:46 -------- d-----w- c:\program files\Sony
2012-10-01 05:40 . 2012-10-01 05:40 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-10-01 05:38 . 2012-10-01 05:41 -------- d-----w- c:\program files (x86)\Windows Live
2012-10-01 05:37 . 2012-10-01 05:37 -------- d-----w- c:\program files\Windows Live
2012-10-01 05:37 . 2009-09-05 00:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
2012-10-01 05:37 . 2009-09-05 00:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
2012-10-01 05:37 . 2009-09-05 00:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2012-10-01 05:37 . 2009-09-05 00:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2012-10-01 05:37 . 2006-11-29 20:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll
2012-10-01 05:37 . 2006-11-29 20:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll
2012-10-01 05:36 . 2012-10-01 05:36 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2012-10-01 05:36 . 2012-10-01 05:36 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2012-10-01 05:34 . 2012-10-01 05:34 74703 ----a-w- c:\windows\SysWow64\mfc45.dll
2012-10-01 05:34 . 2012-09-30 14:52 -------- d-----w- c:\programdata\iolo
2012-10-01 05:34 . 2012-01-19 06:40 21176 ----a-w- c:\windows\system32\iolorgdf64.exe
2012-10-01 05:34 . 2011-12-01 01:49 69000 ----a-w- c:\windows\system32\offreg.dll
2012-10-01 05:33 . 2012-10-01 05:33 -------- d-----w- C:\VAIO Sample Contents
2012-10-01 05:30 . 2012-10-01 04:25 -------- d-----w- c:\programdata\Trend Micro
2012-10-01 05:28 . 2007-07-20 01:14 5073256 ----a-w- c:\windows\system32\d3dx9_35.dll
2012-10-01 05:28 . 2006-03-31 19:41 3927248 ----a-w- c:\windows\system32\d3dx9_30.dll
2012-10-01 05:28 . 2012-10-07 07:23 -------- d-----w- c:\programdata\boost_interprocess
2012-10-01 05:28 . 2012-10-01 05:28 -------- d-----w- c:\programdata\Symantec
2012-10-01 05:28 . 2012-10-01 05:28 -------- d-----w- c:\program files (x86)\Symantec
2012-10-01 05:26 . 2012-10-01 05:27 -------- d-----w- c:\program files (x86)\Sony Media Go Install
2012-10-01 05:26 . 2012-10-01 05:26 -------- d-----w- c:\program files (x86)\Intel Corporation
2012-10-01 05:26 . 1995-07-31 20:44 212480 ----a-w- c:\windows\SysWow64\PCDLIB32.DLL
2012-10-01 05:26 . 2009-05-26 21:32 19968 ----a-w- c:\windows\system32\drivers\ArcSoftKsUFilter.sys
2012-10-01 05:26 . 2008-09-05 00:06 55808 ----a-w- c:\windows\system\ArcSoftKsUFilter.dll
2012-10-01 05:26 . 2005-04-27 23:36 245408 ----a-w- c:\windows\SysWow64\unicows.dll
2012-10-01 05:24 . 2012-10-01 05:24 -------- d-----w- c:\programdata\ArcSoft
2012-10-01 05:23 . 2012-10-01 05:26 -------- d-----w- c:\program files (x86)\ArcSoft
2012-10-01 05:23 . 2012-10-01 05:23 -------- d-----w- c:\program files (x86)\Common Files\ArcSoft
2012-10-01 05:22 . 2012-10-01 05:22 -------- d-----w- c:\program files\Common Files\Adobe
2012-10-01 05:22 . 2012-10-01 05:22 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
2012-10-01 05:20 . 2010-03-19 10:00 55856 ------w- c:\windows\system32\drivers\PxHlpa64.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-02 04:32 . 2011-03-29 01:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-10-01 04:51 . 2012-10-01 04:51 2560 ----a-w- c:\windows\SysWow64\drivers\zh-TW\qwavedrv.sys.mui
2012-10-01 04:50 . 2012-10-01 04:50 13824 ----a-w- c:\windows\SysWow64\drivers\zh-TW\bfe.dll.mui
2012-10-01 04:50 . 2012-10-01 04:50 10240 ----a-w- c:\windows\SysWow64\drivers\zh-TW\pacer.sys.mui
2012-10-01 04:50 . 2012-10-01 04:50 2048 ----a-w- c:\windows\SysWow64\drivers\zh-TW\scfilter.sys.mui
2012-10-01 04:50 . 2012-10-01 04:50 4608 ----a-w- c:\windows\SysWow64\drivers\zh-TW\ndiscap.sys.mui
2012-10-01 04:50 . 2012-10-01 04:50 30208 ----a-w- c:\windows\SysWow64\drivers\zh-TW\tcpip.sys.mui
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 94208 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2012-06-21 3491264]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-30 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-02-24 291608]
"Intel AT Service signup"="c:\program files (x86)\Intel Corporation\Intel AT Service signup\IntelATServiceSignup.exe" [2012-02-15 382976]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2011-11-03 3151000]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe" [2012-02-21 693608]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2012-05-31 218880]
.
c:\users\imkhairil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\imkhairil\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-8-27 26924984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 Intel(R) ME Service;Intel(R) ME Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-02-08 121344]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-07 676936]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-01 250288]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys [2012-01-09 195584]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-02 183560]
R3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2011-11-30 94720]
R3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-30 747008]
R3 cphs;Intel(R) Content Protection HECI Service;c:\windows\SysWow64\IntelCpHeciSvc.exe [2012-03-15 276248]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver;c:\windows\system32\DRIVERS\e1y60x64.sys [2009-06-10 281088]
R3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2012-02-14 60928]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-07 25928]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-06 114144]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2012-02-26 273168]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [2012-02-13 340072]
R3 SOHCImp;VAIO Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2012-01-06 138392]
R3 SOHDs;VAIO Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2012-01-06 74904]
R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-12-01 289952]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-12-29 960160]
R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-12-21 550128]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2011-12-21 382720]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2011-08-27 101600]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-10-02 1255736]
R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 59744]
R4 RsFx0151;RsFx0151 Driver;c:\windows\system32\DRIVERS\RsFx0151.sys [2011-06-17 313696]
R4 SQLAgent$QSRNVIVO10;SQL Server Agent (QSRNVIVO10);c:\program files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\SQLAGENT.EXE [2011-06-17 431456]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-02-24 16152]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2012-03-27 30000]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys [2012-05-12 54064]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys [2012-05-24 172888]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeActiveFileMonitor10.0;Adobe Active File Monitor V10;c:\program files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [2011-09-01 169624]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2012-02-22 1014096]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [2012-02-22 1104208]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 135952]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-30 13592]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-02-13 2429544]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-04-23 154272]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2012-02-03 628448]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-02-08 161560]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-07 399432]
S2 MSSQL$QSRNVIVO10;SQL Server (QSRNVIVO10);c:\program files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\sqlservr.exe [2011-06-17 62111072]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2012-02-21 473960]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-12-01 260768]
S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe [2011-02-23 105024]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-02-08 363800]
S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2012-01-10 535688]
S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2012-03-26 978056]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [2012-02-26 2669840]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 195584]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2012-02-22 1304912]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2012-03-15 331264]
S3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\iusb3hub.sys [2012-02-24 356120]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\DRIVERS\iusb3xhc.sys [2012-02-24 787736]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys [2012-05-25 29016]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2012-05-25 27992]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\Netwsw00.sys [2012-02-20 11471872]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-02-13 565352]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2012-01-16 14336]
S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2012-01-20 54432]
S3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update Common\VUAgent.exe [2012-05-10 1259104]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-10-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-01 03:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-06-30 04:19 97792 ----a-w- c:\users\imkhairil\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 23432 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-02-24 1158248]
"BLEServicesCtrl"="c:\program files (x86)\Intel\Bluetooth\BleServicesCtrl.exe" [2012-02-17 177936]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2012-02-22 11406608]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-03-15 170264]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-03-15 398616]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-03-15 440600]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://sony.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
IE: NCapture for NVivo - c:\program files (x86)\QSR\NCapture\Internet Explorer\QSR.NCapture.IE.Resources.dll/101
IE: Se&nd to OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105
IE: {{b9c5d5a9-2b89-427d-bb30-32f567eaa60d} - {b9c5d5a9-2b89-427d-bb30-32f567eaa60d} - mscoree.dll
TCP: DhcpNameServer = 192.168.43.1
FF - ProfilePath - c:\users\imkhairil\AppData\Roaming\Mozilla\Firefox\Profiles\bdsq50wb.default\
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"&_\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\%C3 &_ Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\""
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-10-07 15:49:05
ComboFix-quarantined-files.txt 2012-10-07 07:48
.
Pre-Run: 416,752,594,944 bytes free
Post-Run: 417,585,704,960 bytes free
.
- - End Of File - - 798F1F410D822EC977399CE60F04F708
 
Please download and run TDSSKiller to your desktop as outlined below:

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

For Windows XP, double-click to start.
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

tdss_1.jpg


-------------------------

Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.

tdss_2.jpg


------------------------

Click the Start Scan button.

tdss_3.jpg


-----------------------

If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue


tdss_4.jpg


----------------------

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.


tdss_5.jpg



--------------------

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.

-------------------

Here's a summary of what to do if you would like to print it out:

If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.


avast! aswMBR

Please download aswMBR from here
  • Save aswMBR.exe to your Desktop
  • Double click aswMBR.exe to run it
  • Click the Scan button to start the scan as illustrated below
aswMBR_Scan.jpg

Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives
  • Once the scan finishes click Save log to save the log to your Desktop
    aswMBR_SaveLog.png
  • Copy and paste the contents of aswMBR.txt back here for review
  • Please also find MBR.dat on your Desktop, and rename it to MBR.txt. Upload that as well. Do not copy and paste MBR.dat/txt, it needs to be uploaded.
 
08:44:20.0246 1436 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
08:44:21.0088 1436 ============================================================
08:44:21.0088 1436 Current date / time: 2012/10/08 08:44:21.0088
08:44:21.0088 1436 SystemInfo:
08:44:21.0088 1436
08:44:21.0088 1436 OS Version: 6.1.7601 ServicePack: 1.0
08:44:21.0088 1436 Product type: Workstation
08:44:21.0088 1436 ComputerName: IMKHAIRIL-VAIO
08:44:21.0088 1436 UserName: imkhairil
08:44:21.0088 1436 Windows directory: C:\Windows
08:44:21.0088 1436 System windows directory: C:\Windows
08:44:21.0088 1436 Running under WOW64
08:44:21.0088 1436 Processor architecture: Intel x64
08:44:21.0088 1436 Number of processors: 4
08:44:21.0088 1436 Page size: 0x1000
08:44:21.0088 1436 Boot type: Normal boot
08:44:21.0088 1436 ============================================================
08:44:21.0352 1436 Drive \Device\Harddisk0\DR0 - Size: 0x74709D0E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:44:21.0352 1436 Drive \Device\Harddisk1\DR1 - Size: 0x2CDD00000 (11.22 Gb), SectorSize: 0x200, Cylinders: 0x5B8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:44:21.0352 1436 Drive \Device\Harddisk2\DR3 - Size: 0xEF000000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:44:21.0352 1436 ============================================================
08:44:21.0352 1436 \Device\Harddisk0\DR0:
08:44:21.0352 1436 MBR partitions:
08:44:21.0352 1436 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F800, BlocksNum 0xAF000
08:44:21.0352 1436 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E0E800, BlocksNum 0x38575800
08:44:21.0352 1436 \Device\Harddisk1\DR1:
08:44:21.0352 1436 MBR partitions:
08:44:21.0352 1436 \Device\Harddisk2\DR3:
08:44:21.0352 1436 MBR partitions:
08:44:21.0352 1436 \Device\Harddisk2\DR3\Partition1: MBR, Type 0xB, StartLBA 0x478, BlocksNum 0x777B88
08:44:21.0352 1436 ============================================================
08:44:21.0352 1436 C: <-> \Device\Harddisk0\DR0\Partition2
08:44:21.0352 1436 ============================================================
08:44:21.0352 1436 Initialize success
08:44:21.0352 1436 ============================================================
08:46:05.0710 2460 ============================================================
08:46:05.0710 2460 Scan started
08:46:05.0710 2460 Mode: Manual; SigCheck; TDLFS;
08:46:05.0710 2460 ============================================================
08:46:06.0108 2460 ================ Scan system memory ========================
08:46:06.0108 2460 System memory - ok
08:46:06.0108 2460 ================ Scan services =============================
08:46:06.0202 2460 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:46:06.0295 2460 1394ohci - ok
08:46:06.0295 2460 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
08:46:06.0311 2460 ACDaemon - ok
08:46:06.0327 2460 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:46:06.0342 2460 ACPI - ok
08:46:06.0342 2460 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:46:06.0358 2460 AcpiPmi - ok
08:46:06.0373 2460 [ C245E08EC469A52A622EFDC9787A0DCC ] AdobeActiveFileMonitor10.0 c:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
08:46:06.0373 2460 AdobeActiveFileMonitor10.0 - ok
08:46:06.0405 2460 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:46:06.0405 2460 AdobeFlashPlayerUpdateSvc - ok
08:46:06.0420 2460 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:46:06.0436 2460 adp94xx - ok
08:46:06.0436 2460 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:46:06.0451 2460 adpahci - ok
08:46:06.0467 2460 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:46:06.0467 2460 adpu320 - ok
08:46:06.0483 2460 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:46:06.0514 2460 AeLookupSvc - ok
08:46:06.0514 2460 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:46:06.0529 2460 AFD - ok
08:46:06.0529 2460 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:46:06.0545 2460 agp440 - ok
08:46:06.0545 2460 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:46:06.0561 2460 ALG - ok
08:46:06.0561 2460 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:46:06.0576 2460 aliide - ok
08:46:06.0576 2460 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:46:06.0592 2460 amdide - ok
08:46:06.0592 2460 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:46:06.0607 2460 AmdK8 - ok
08:46:06.0607 2460 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:46:06.0623 2460 AmdPPM - ok
08:46:06.0623 2460 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:46:06.0639 2460 amdsata - ok
08:46:06.0639 2460 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:46:06.0654 2460 amdsbs - ok
08:46:06.0654 2460 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:46:06.0670 2460 amdxata - ok
08:46:06.0670 2460 [ 157B1C973637919DCD0D0464167C86BA ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
08:46:06.0685 2460 AMPPAL - ok
08:46:06.0685 2460 [ 157B1C973637919DCD0D0464167C86BA ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
08:46:06.0701 2460 AMPPALP - ok
08:46:06.0717 2460 [ FB70F8C1283C8CC6BFAA6F9971107E68 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
08:46:06.0732 2460 AMPPALR3 - ok
08:46:06.0732 2460 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:46:06.0763 2460 AppID - ok
08:46:06.0763 2460 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:46:06.0795 2460 AppIDSvc - ok
08:46:06.0810 2460 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
08:46:06.0826 2460 Appinfo - ok
08:46:06.0841 2460 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:46:06.0857 2460 arc - ok
08:46:06.0857 2460 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:46:06.0857 2460 arcsas - ok
08:46:06.0873 2460 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
08:46:06.0873 2460 ArcSoftKsUFilter - ok
08:46:06.0888 2460 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:46:06.0904 2460 aspnet_state - ok
08:46:06.0904 2460 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:46:06.0935 2460 AsyncMac - ok
08:46:06.0935 2460 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:46:06.0951 2460 atapi - ok
08:46:06.0966 2460 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
08:46:06.0997 2460 athr - ok
08:46:07.0029 2460 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:46:07.0060 2460 AudioEndpointBuilder - ok
08:46:07.0075 2460 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:46:07.0107 2460 AudioSrv - ok
08:46:07.0107 2460 [ 6FDDD18A650764A59302A018765E5521 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
08:46:07.0122 2460 AVP - ok
08:46:07.0122 2460 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:46:07.0153 2460 AxInstSV - ok
08:46:07.0153 2460 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:46:07.0169 2460 b06bdrv - ok
08:46:07.0185 2460 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:46:07.0185 2460 b57nd60a - ok
08:46:07.0200 2460 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
08:46:07.0216 2460 BBSvc - ok
08:46:07.0231 2460 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:46:07.0231 2460 BDESVC - ok
08:46:07.0231 2460 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:46:07.0263 2460 Beep - ok
08:46:07.0278 2460 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:46:07.0309 2460 BFE - ok
08:46:07.0325 2460 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
08:46:07.0372 2460 BITS - ok
08:46:07.0372 2460 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:46:07.0387 2460 blbdrive - ok
08:46:07.0403 2460 [ A52EA1D8C2900055323C93DDB252A3DA ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
08:46:07.0419 2460 Bluetooth Device Monitor - ok
08:46:07.0434 2460 [ 091210450CA7CED08F360D9D7FEC5D11 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
08:46:07.0450 2460 Bluetooth Media Service - ok
08:46:07.0465 2460 [ 392450754E17FF778CBC5B9D20583AD1 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
08:46:07.0497 2460 Bluetooth OBEX Service - ok
08:46:07.0497 2460 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:46:07.0512 2460 bowser - ok
08:46:07.0512 2460 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:46:07.0528 2460 BrFiltLo - ok
08:46:07.0528 2460 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:46:07.0543 2460 BrFiltUp - ok
08:46:07.0543 2460 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
08:46:07.0575 2460 BridgeMP - ok
08:46:07.0575 2460 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:46:07.0590 2460 Browser - ok
08:46:07.0606 2460 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:46:07.0606 2460 Brserid - ok
08:46:07.0621 2460 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:46:07.0637 2460 BrSerWdm - ok
08:46:07.0637 2460 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:46:07.0653 2460 BrUsbMdm - ok
08:46:07.0653 2460 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:46:07.0668 2460 BrUsbSer - ok
08:46:07.0699 2460 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:46:07.0715 2460 BthEnum - ok
08:46:07.0715 2460 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:46:07.0731 2460 BTHMODEM - ok
08:46:07.0746 2460 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:46:07.0762 2460 BthPan - ok
08:46:07.0762 2460 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
08:46:07.0777 2460 BTHPORT - ok
08:46:07.0777 2460 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:46:07.0809 2460 bthserv - ok
08:46:07.0824 2460 [ FA2D081709A764F6BEE16B7FFE03E36C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
08:46:07.0824 2460 BTHSSecurityMgr - ok
08:46:07.0824 2460 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
08:46:07.0840 2460 BTHUSB - ok
08:46:07.0840 2460 [ 988CC6CC49303665D3B2435C51505C3F ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
08:46:07.0855 2460 btmaux - ok
08:46:07.0871 2460 [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
08:46:07.0887 2460 btmhsf - ok
08:46:07.0887 2460 catchme - ok
08:46:07.0902 2460 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:46:07.0933 2460 cdfs - ok
08:46:07.0933 2460 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:46:07.0949 2460 cdrom - ok
08:46:07.0949 2460 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:46:07.0980 2460 CertPropSvc - ok
08:46:07.0980 2460 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:46:07.0996 2460 circlass - ok
08:46:08.0011 2460 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:46:08.0027 2460 CLFS - ok
08:46:08.0043 2460 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:46:08.0058 2460 clr_optimization_v2.0.50727_32 - ok
08:46:08.0074 2460 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:46:08.0074 2460 clr_optimization_v2.0.50727_64 - ok
08:46:08.0089 2460 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:46:08.0089 2460 clr_optimization_v4.0.30319_32 - ok
08:46:08.0105 2460 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:46:08.0105 2460 clr_optimization_v4.0.30319_64 - ok
08:46:08.0121 2460 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:46:08.0121 2460 CmBatt - ok
08:46:08.0136 2460 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:46:08.0136 2460 cmdide - ok
08:46:08.0152 2460 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
08:46:08.0167 2460 CNG - ok
08:46:08.0167 2460 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:46:08.0183 2460 Compbatt - ok
08:46:08.0183 2460 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:46:08.0199 2460 CompositeBus - ok
08:46:08.0199 2460 COMSysApp - ok
08:46:08.0230 2460 [ B045E4A252442D6223994AA5765438B8 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
08:46:08.0245 2460 cphs - ok
08:46:08.0245 2460 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:46:08.0245 2460 crcdisk - ok
08:46:08.0261 2460 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:46:08.0277 2460 CryptSvc - ok
08:46:08.0277 2460 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:46:08.0323 2460 DcomLaunch - ok
08:46:08.0323 2460 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:46:08.0355 2460 defragsvc - ok
08:46:08.0370 2460 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:46:08.0401 2460 DfsC - ok
08:46:08.0433 2460 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:46:08.0464 2460 Dhcp - ok
08:46:08.0464 2460 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:46:08.0495 2460 discache - ok
08:46:08.0495 2460 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:46:08.0511 2460 Disk - ok
08:46:08.0511 2460 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:46:08.0526 2460 Dnscache - ok
08:46:08.0542 2460 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:46:08.0573 2460 dot3svc - ok
08:46:08.0573 2460 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:46:08.0604 2460 DPS - ok
08:46:08.0604 2460 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:46:08.0620 2460 drmkaud - ok
08:46:08.0635 2460 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:46:08.0651 2460 DXGKrnl - ok
08:46:08.0667 2460 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
08:46:08.0667 2460 e1yexpress - ok
08:46:08.0682 2460 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:46:08.0713 2460 EapHost - ok
08:46:08.0745 2460 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:46:08.0791 2460 ebdrv - ok
08:46:08.0791 2460 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:46:08.0807 2460 EFS - ok
08:46:08.0823 2460 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:46:08.0838 2460 ehRecvr - ok
08:46:08.0854 2460 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:46:08.0854 2460 ehSched - ok
08:46:08.0869 2460 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:46:08.0885 2460 elxstor - ok
08:46:08.0885 2460 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:46:08.0901 2460 ErrDev - ok
08:46:08.0916 2460 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:46:08.0947 2460 EventSystem - ok
08:46:08.0963 2460 [ 23D401A43DADED10A153B9F3A7E66C91 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:46:08.0979 2460 EvtEng - ok
08:46:08.0979 2460 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:46:09.0009 2460 exfat - ok
08:46:09.0019 2460 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:46:09.0049 2460 fastfat - ok
08:46:09.0059 2460 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:46:09.0079 2460 Fax - ok
08:46:09.0079 2460 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:46:09.0089 2460 fdc - ok
08:46:09.0099 2460 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:46:09.0129 2460 fdPHost - ok
08:46:09.0129 2460 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:46:09.0159 2460 FDResPub - ok
08:46:09.0169 2460 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:46:09.0179 2460 FileInfo - ok
08:46:09.0179 2460 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:46:09.0209 2460 Filetrace - ok
08:46:09.0209 2460 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:46:09.0219 2460 flpydisk - ok
08:46:09.0229 2460 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:46:09.0249 2460 FltMgr - ok
08:46:09.0289 2460 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
08:46:09.0309 2460 FontCache - ok
08:46:09.0319 2460 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:46:09.0329 2460 FontCache3.0.0.0 - ok
08:46:09.0329 2460 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:46:09.0339 2460 FsDepends - ok
08:46:09.0339 2460 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:46:09.0349 2460 Fs_Rec - ok
08:46:09.0359 2460 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:46:09.0379 2460 fvevol - ok
08:46:09.0379 2460 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:46:09.0389 2460 gagp30kx - ok
08:46:09.0409 2460 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:46:09.0439 2460 gpsvc - ok
08:46:09.0449 2460 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:46:09.0459 2460 hcw85cir - ok
08:46:09.0459 2460 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:46:09.0479 2460 HdAudAddService - ok
08:46:09.0489 2460 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:46:09.0499 2460 HDAudBus - ok
08:46:09.0499 2460 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:46:09.0509 2460 HidBatt - ok
08:46:09.0519 2460 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:46:09.0529 2460 HidBth - ok
08:46:09.0539 2460 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:46:09.0549 2460 HidIr - ok
08:46:09.0549 2460 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
08:46:09.0579 2460 hidserv - ok
08:46:09.0589 2460 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:46:09.0599 2460 HidUsb - ok
08:46:09.0609 2460 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:46:09.0639 2460 hkmsvc - ok
08:46:09.0639 2460 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener
 
C:\Windows\system32\ListSvc.dll
08:46:09.0659 2460 HomeGroupListener - ok
08:46:09.0659 2460 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:46:09.0679 2460 HomeGroupProvider - ok
08:46:09.0679 2460 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:46:09.0689 2460 HpSAMD - ok
08:46:09.0699 2460 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:46:09.0739 2460 HTTP - ok
08:46:09.0739 2460 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:46:09.0749 2460 hwpolicy - ok
08:46:09.0759 2460 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:46:09.0769 2460 i8042prt - ok
08:46:09.0779 2460 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\drivers\iaStor.sys
08:46:09.0789 2460 iaStor - ok
08:46:09.0799 2460 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
08:46:09.0809 2460 IAStorDataMgrSvc - ok
08:46:09.0809 2460 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:46:09.0829 2460 iaStorV - ok
08:46:09.0839 2460 [ 60CC7AE9AEDB4D1E7923BD053B176D97 ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
08:46:09.0849 2460 ibtfltcoex - ok
08:46:09.0909 2460 [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
08:46:09.0949 2460 IconMan_R - ok
08:46:09.0969 2460 [ 2A63036283B36B3B68CDC6F85A7D53ED ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys
08:46:09.0979 2460 IDMWFP - ok
08:46:09.0989 2460 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:46:10.0009 2460 idsvc - ok
08:46:10.0139 2460 [ 11BA677667432A99CA261A472A2C29B8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
08:46:10.0319 2460 igfx - ok
08:46:10.0319 2460 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:46:10.0329 2460 iirsp - ok
08:46:10.0339 2460 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:46:10.0379 2460 IKEEXT - ok
08:46:10.0439 2460 [ E83BB47C3446F0497019DE7FD6C6A86F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:46:10.0509 2460 IntcAzAudAddService - ok
08:46:10.0519 2460 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
08:46:10.0529 2460 IntcDAud - ok
08:46:10.0539 2460 [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
08:46:10.0559 2460 Intel(R) Capability Licensing Service Interface - ok
08:46:10.0559 2460 [ 709C8623721A1F1EF388EA75A07EC33B ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
08:46:10.0569 2460 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - warning
08:46:10.0569 2460 Intel(R) ME Service - detected UnsignedFile.Multi.Generic (1)
08:46:10.0569 2460 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:46:10.0589 2460 intelide - ok
08:46:10.0589 2460 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:46:10.0599 2460 intelppm - ok
08:46:10.0609 2460 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:46:10.0639 2460 IPBusEnum - ok
08:46:10.0639 2460 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:46:10.0679 2460 IpFilterDriver - ok
08:46:10.0689 2460 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:46:10.0729 2460 iphlpsvc - ok
08:46:10.0739 2460 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:46:10.0749 2460 IPMIDRV - ok
08:46:10.0759 2460 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:46:10.0789 2460 IPNAT - ok
08:46:10.0789 2460 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:46:10.0809 2460 IRENUM - ok
08:46:10.0819 2460 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:46:10.0829 2460 isapnp - ok
08:46:10.0829 2460 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:46:10.0849 2460 iScsiPrt - ok
08:46:10.0849 2460 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
08:46:10.0859 2460 iusb3hcs - ok
08:46:10.0869 2460 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
08:46:10.0879 2460 iusb3hub - ok
08:46:10.0889 2460 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
08:46:10.0909 2460 iusb3xhc - ok
08:46:10.0919 2460 [ C44B44E24B929631D9D7368F5B2B40CF ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
08:46:10.0929 2460 jhi_service - ok
08:46:10.0929 2460 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:46:10.0939 2460 kbdclass - ok
08:46:10.0949 2460 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
08:46:10.0959 2460 kbdhid - ok
08:46:10.0969 2460 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:46:10.0979 2460 KeyIso - ok
08:46:10.0989 2460 [ 549F9D454E9E6697B108F16C569B505A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
08:46:10.0999 2460 KL1 - ok
08:46:11.0009 2460 [ 08DF1B7A82837B92096EC7597C00889A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
08:46:11.0029 2460 KLIF - ok
08:46:11.0029 2460 [ A7DFA9A2554143667E830E8ABE452D70 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
08:46:11.0044 2460 KLIM6 - ok
08:46:11.0044 2460 [ E6FAA395058F7BAF0F3529CDBA9B7133 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
08:46:11.0044 2460 klkbdflt - ok
08:46:11.0060 2460 [ D398DABD44FDDDBED305442BB7BCDB29 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
08:46:11.0060 2460 klmouflt - ok
08:46:11.0060 2460 [ B9B2AEEE5E17B2CEBC034FF2748577A0 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
08:46:11.0075 2460 kltdi - ok
08:46:11.0075 2460 [ 8E880E08D7453DB58DAC36C2C48FFD45 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
08:46:11.0091 2460 kneps - ok
08:46:11.0091 2460 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:46:11.0107 2460 KSecDD - ok
08:46:11.0107 2460 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:46:11.0122 2460 KSecPkg - ok
08:46:11.0122 2460 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:46:11.0153 2460 ksthunk - ok
08:46:11.0169 2460 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:46:11.0200 2460 KtmRm - ok
08:46:11.0200 2460 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
08:46:11.0231 2460 LanmanServer - ok
08:46:11.0231 2460 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:46:11.0278 2460 LanmanWorkstation - ok
08:46:11.0278 2460 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:46:11.0309 2460 lltdio - ok
08:46:11.0325 2460 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:46:11.0372 2460 lltdsvc - ok
08:46:11.0372 2460 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:46:11.0403 2460 lmhosts - ok
08:46:11.0419 2460 [ 75F29D77B0540FCF47EE3BE000BBABDA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:46:11.0419 2460 LMS - ok
08:46:11.0434 2460 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:46:11.0450 2460 LSI_FC - ok
08:46:11.0450 2460 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:46:11.0465 2460 LSI_SAS - ok
08:46:11.0465 2460 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:46:11.0465 2460 LSI_SAS2 - ok
08:46:11.0481 2460 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:46:11.0497 2460 LSI_SCSI - ok
08:46:11.0497 2460 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:46:11.0528 2460 luafv - ok
08:46:11.0528 2460 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
08:46:11.0543 2460 MBAMProtector - ok
08:46:11.0575 2460 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
08:46:11.0590 2460 MBAMScheduler - ok
08:46:11.0606 2460 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
08:46:11.0621 2460 MBAMService - ok
08:46:11.0637 2460 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:46:11.0637 2460 Mcx2Svc - ok
08:46:11.0653 2460 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:46:11.0653 2460 megasas - ok
08:46:11.0668 2460 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:46:11.0668 2460 MegaSR - ok
08:46:11.0684 2460 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:46:11.0684 2460 MEIx64 - ok
08:46:11.0699 2460 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:46:11.0731 2460 MMCSS - ok
08:46:11.0731 2460 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:46:11.0762 2460 Modem - ok
08:46:11.0762 2460 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:46:11.0777 2460 monitor - ok
08:46:11.0777 2460 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:46:11.0793 2460 mouclass - ok
08:46:11.0793 2460 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:46:11.0809 2460 mouhid - ok
08:46:11.0809 2460 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:46:11.0824 2460 mountmgr - ok
08:46:11.0824 2460 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:46:11.0824 2460 MozillaMaintenance - ok
08:46:11.0840 2460 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:46:11.0855 2460 mpio - ok
08:46:11.0855 2460 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:46:11.0887 2460 mpsdrv - ok
08:46:11.0918 2460 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:46:11.0949 2460 MpsSvc - ok
08:46:11.0949 2460 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:46:11.0965 2460 MRxDAV - ok
08:46:11.0980 2460 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:46:11.0980 2460 mrxsmb - ok
08:46:11.0996 2460 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:46:12.0011 2460 mrxsmb10 - ok
08:46:12.0011 2460 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:46:12.0027 2460 mrxsmb20 - ok
08:46:12.0027 2460 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:46:12.0043 2460 msahci - ok
08:46:12.0043 2460 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:46:12.0058 2460 msdsm - ok
08:46:12.0058 2460 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:46:12.0074 2460 MSDTC - ok
08:46:12.0074 2460 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:46:12.0105 2460 Msfs - ok
08:46:12.0105 2460 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:46:12.0136 2460 mshidkmdf - ok
08:46:12.0152 2460 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:46:12.0152 2460 msisadrv - ok
08:46:12.0152 2460 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:46:12.0183 2460 MSiSCSI - ok
08:46:12.0199 2460 msiserver - ok
08:46:12.0199 2460 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:46:12.0230 2460 MSKSSRV - ok
08:46:12.0230 2460 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:46:12.0261 2460 MSPCLOCK - ok
08:46:12.0261 2460 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:46:12.0292 2460 MSPQM - ok
08:46:12.0292 2460 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:46:12.0308 2460 MsRPC - ok
08:46:12.0323 2460 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:46:12.0323 2460 mssmbios - ok
08:46:12.0323 2460 MSSQL$QSRNVIVO10 - ok
08:46:12.0339 2460 [ 04EF36EAF5C4DBCE424D81B76F1E9231 ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
08:46:12.0339 2460 MSSQLServerADHelper100 - ok
08:46:12.0355 2460 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:46:12.0386 2460 MSTEE - ok
08:46:12.0386 2460 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:46:12.0401 2460 MTConfig - ok
08:46:12.0401 2460 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:46:12.0417 2460 Mup - ok
08:46:12.0417 2460 [ 48C9BA25EDA90E3DB07ADAC8CD32F5F3 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:46:12.0433 2460 MyWiFiDHCPDNS - ok
08:46:12.0433 2460 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:46:12.0464 2460 napagent - ok
08:46:12.0479 2460 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:46:12.0495 2460 NativeWifiP - ok
08:46:12.0526 2460 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:46:12.0542 2460 NDIS - ok
08:46:12.0542 2460 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:46:12.0573 2460 NdisCap - ok
08:46:12.0573 2460 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:46:12.0604 2460 NdisTapi - ok
08:46:12.0620 2460 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:46:12.0635 2460 Ndisuio - ok
08:46:12.0651 2460 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:46:12.0682 2460 NdisWan - ok
08:46:12.0682 2460 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:46:12.0713 2460 NDProxy - ok
08:46:12.0713 2460 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:46:12.0745 2460 NetBIOS - ok
08:46:12.0745 2460 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:46:12.0776 2460 NetBT - ok
08:46:12.0791 2460 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:46:12.0791 2460 Netlogon - ok
08:46:12.0807 2460 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:46:12.0838 2460 Netman - ok
08:46:12.0854 2460 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:46:12.0854 2460 NetMsmqActivator - ok
08:46:12.0854 2460 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:46:12.0869 2460 NetPipeActivator - ok
08:46:12.0885 2460 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:46:12.0916 2460 netprofm - ok
08:46:12.0916 2460 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:46:12.0932 2460 NetTcpActivator - ok
08:46:12.0932 2460 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:46:12.0947 2460 NetTcpPortSharing - ok
08:46:13.0043 2460 [ FAD6C5610D020534401966CD72A1C306 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
08:46:13.0183 2460 NETwNs64 - ok
08:46:13.0193 2460 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:46:13.0203 2460 nfrd960 - ok
08:46:13.0263 2460 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:46:13.0313 2460 NlaSvc - ok
08:46:13.0373 2460 [ 1F3AE7B19E20EA1B48F4D0DB2A287B54 ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
08:46:13.0433 2460 NOBU - ok
08:46:13.0433 2460 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:46:13.0463 2460 Npfs - ok
08:46:13.0463 2460 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:46:13.0493 2460 nsi - ok
08:46:13.0503 2460 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:46:13.0523 2460 nsiproxy - ok
08:46:13.0553 2460 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:46:13.0583 2460 Ntfs - ok
08:46:13.0583 2460 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:46:13.0613 2460 Null - ok
08:46:13.0783 2460 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:46:14.0063 2460 nvlddmkm - ok
08:46:14.0073 2460 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:46:14.0083 2460 nvraid - ok
08:46:14.0093 2460 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:46:14.0103 2460 nvstor - ok
08:46:14.0103 2460 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:46:14.0113 2460 nv_agp - ok
08:46:14.0123 2460 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:46:14.0133 2460 ohci1394 - ok
08:46:14.0133 2460 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:46:14.0143 2460 ose - ok
08:46:14.0193 2460 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:46:14.0263 2460 osppsvc - ok
08:46:14.0273 2460 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:46:14.0283 2460 p2pimsvc - ok
08:46:14.0293 2460 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:46:14.0313 2460 p2psvc - ok
08:46:14.0313 2460 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:46:14.0323 2460 Parport - ok
08:46:14.0333 2460 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:46:14.0343 2460 partmgr - ok
08:46:14.0343 2460 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:46:14.0363 2460 PcaSvc - ok
08:46:14.0363 2460 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:46:14.0383 2460 pci - ok
08:46:14.0383 2460 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:46:14.0393 2460 pciide - ok
08:46:14.0393 2460 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:46:14.0413 2460 pcmcia - ok
08:46:14.0413 2460 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:46:14.0423 2460 pcw - ok
08:46:14.0433 2460 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:46:14.0473 2460 PEAUTH - ok
08:46:14.0493 2460 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:46:14.0503 2460 PerfHost - ok
08:46:14.0533 2460 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:46:14.0583 2460 pla - ok
08:46:14.0613 2460 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:46:14.0633 2460 PlugPlay - ok
08:46:14.0673 2460 [ 9C4D0DE187CBC24F658C52EFC93B1C73 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
08:46:14.0693 2460 PMBDeviceInfoProvider - ok
08:46:14.0693 2460 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:46:14.0703 2460 PNRPAutoReg - ok
08:46:14.0713 2460 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:46:14.0733 2460 PNRPsvc - ok
08:46:14.0733 2460 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:46:14.0783 2460 PolicyAgent - ok
08:46:14.0783 2460 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:46:14.0813 2460 Power - ok
08:46:14.0823 2460 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:46:14.0853 2460 PptpMiniport - ok
08:46:14.0853 2460 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:46:14.0863 2460 Processor - ok
08:46:14.0873 2460 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:46:14.0883 2460 ProfSvc - ok
08:46:14.0893 2460 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:46:14.0903 2460 ProtectedStorage - ok
08:46:14.0913 2460 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:46:14.0943 2460 Psched - ok
08:46:14.0943 2460 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
08:46:14.0953 2460 PxHlpa64 - ok
08:46:14.0973 2460 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:46:15.0003 2460 ql2300 - ok
08:46:15.0013 2460 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:46:15.0023 2460 ql40xx - ok
08:46:15.0023 2460 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:46:15.0039 2460 QWAVE - ok
08:46:15.0039 2460 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:46:15.0054 2460 QWAVEdrv - ok
08:46:15.0054 2460 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:46:15.0085 2460 RasAcd - ok
08:46:15.0101 2460 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:46:15.0117 2460 RasAgileVpn - ok
08:46:15.0132 2460 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:46:15.0163 2460 RasAuto - ok
08:46:15.0163 2460 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:46:15.0195 2460 Rasl2tp - ok
08:46:15.0195 2460 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:46:15.0226 2460 RasMan - ok
08:46:15.0226 2460 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:46:15.0257 2460 RasPppoe - ok
08:46:15.0273 2460 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:46:15.0288 2460 RasSstp - ok
08:46:15.0304 2460 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:46:15.0335 2460 rdbss - ok
08:46:15.0335 2460 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
08:46:15.0351 2460 rdpbus - ok
08:46:15.0351 2460 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:46:15.0382 2460 RDPCDD - ok
08:46:15.0382 2460 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:46:15.0413 2460 RDPENCDD - ok
08:46:15.0413 2460 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:46:15.0444 2460 RDPREFMP - ok
08:46:15.0460 2460 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:46:15.0460 2460 RDPWD - ok
08:46:15.0475 2460 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:46:15.0491 2460 rdyboost - ok
08:46:15.0491 2460 [ 0C2B4C3B10D183BE116A38353E937F62 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:46:15.0491 2460 RegSrvc - ok
08:46:15.0507 2460 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:46:15.0538 2460 RemoteAccess - ok
08:46:15.0538 2460 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:46:15.0569 2460 RemoteRegistry - ok
08:46:15.0569 2460 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:46:15.0585 2460 RFCOMM - ok
08:46:15.0600 2460 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:46:15.0616 2460 RpcEptMapper - ok
08:46:15.0631 2460 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:46:15.0647 2460 RpcLocator - ok
08:46:15.0647 2460 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:46:15.0678 2460 RpcSs - ok
08:46:15.0694 2460 [ C606C5F712A3761896CEFFA4AF6B1268 ] RsFx0151 C:\Windows\system32\DRIVERS\RsFx0151.sys
08:46:15.0694 2460 RsFx0151 - ok
08:46:15.0709 2460 [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
08:46:15.0725 2460 RSPCIESTOR - ok
08:46:15.0725 2460 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:46:15.0756 2460 rspndr - ok
08:46:15.0772 2460 [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
08:46:15.0772 2460 RTL8167 - ok
08:46:15.0787 2460 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:46:15.0787 2460 SamSs - ok
08:46:15.0803 2460 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:46:15.0803 2460 sbp2port - ok
08:46:15.0819 2460 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:46:15.0850 2460 SCardSvr - ok
08:46:15.0850 2460 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:46:15.0881 2460 scfilter - ok
08:46:15.0897 2460 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:46:15.0943 2460 Schedule - ok
08:46:15.0943 2460 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:46:15.0975 2460 SCPolicySvc - ok
08:46:15.0975 2460 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
08:46:15.0990 2460 sdbus - ok
08:46:15.0990 2460 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:46:16.0006 2460 SDRSVC - ok
08:46:16.0006 2460 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
08:46:16.0021 2460 SeaPort - ok
08:46:16.0021 2460 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:46:16.0053 2460 secdrv - ok
08:46:16.0053 2460 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:46:16.0084 2460 seclogon - ok
08:46:16.0099 2460 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
08:46:16.0131 2460 SENS - ok
08:46:16.0131 2460 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:46:16.0146 2460 SensrSvc - ok
08:46:16.0146 2460 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:46:16.0162 2460 Serenum - ok
08:46:16.0162 2460 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:46:16.0177 2460 Serial - ok
08:46:16.0177 2460 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:46:16.0193 2460 sermouse - ok
08:46:16.0193 2460 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:46:16.0224 2460 SessionEnv - ok
08:46:16.0224 2460 [ 85D0F874734C105D02280B39BF0AD23F ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
08:46:16.0240 2460 SFEP - ok
08:46:16.0240 2460 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:46:16.0255 2460 sffdisk - ok
08:46:16.0255 2460 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:46:16.0287 2460 sffp_mmc - ok
08:46:16.0287 2460 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:46:16.0302 2460 sffp_sd - ok
08:46:16.0302 2460 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:46:16.0318 2460 sfloppy - ok
08:46:16.0318 2460 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:46:16.0365 2460 SharedAccess - ok
08:46:16.0365 2460 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:46:16.0411 2460 ShellHWDetection - ok
08:46:16.0411 2460 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:46:16.0427 2460 SiSRaid2 - ok
08:46:16.0427 2460 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:46:16.0443 2460 SiSRaid4 - ok
08:46:16.0443 2460 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:46:16.0474 2460 Smb - ok
08:46:16.0474 2460 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:46:16.0489 2460 SNMPTRAP - ok
08:46:16.0505 2460 [ 4AEA7A1C3CA06D95D6966C34D13C0D8B ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
08:46:16.0505 2460 SOHCImp - ok
08:46:16.0505 2460 [ 16FD95781117E13107D477AE36219E6F ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
08:46:16.0521 2460 SOHDs - ok
08:46:16.0521 2460 [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
08:46:16.0536 2460 SpfService - ok
08:46:16.0536 2460 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:46:16.0552 2460 spldr - ok
08:46:16.0567 2460 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:46:16.0583 2460 Spooler - ok
08:46:16.0677 2460 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:46:16.0755 2460 sppsvc - ok
08:46:16.0755 2460 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:46:16.0786 2460 sppuinotify - ok
08:46:16.0801 2460 [ 3420E0482AD95120B471B7328A8D7D08 ] SQLAgent$QSRNVIVO10 c:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\SQLAGENT.EXE
08:46:16.0801 2460 SQLAgent$QSRNVIVO10 - ok
08:46:16.0817 2460 [ 7D67C07C63796775CC5492BCFEAFF125 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
08:46:16.0833 2460 SQLBrowser - ok
08:46:16.0833 2460 [ F98DDFBFE0EE66D4C4B00693512B9527 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
08:46:16.0848 2460 SQLWriter - ok
08:46:16.0848 2460 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:46:16.0864 2460 srv - ok
08:46:16.0864 2460 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:46:16.0879 2460 srv2 - ok
08:46:16.0895 2460 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:46:16.0911 2460 srvnet - ok
08:46:16.0911 2460 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:46:16.0942 2460 SSDPSRV - ok
08:46:16.0942 2460 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:46:16.0973 2460 SstpSvc - ok
08:46:16.0989 2460 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:46:16.0989 2460 stexstor - ok
08:46:17.0004 2460 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:46:17.0020 2460 stisvc - ok
08:46:17.0035 2460 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:46:17.0035 2460 swenum - ok
08:46:17.0051 2460 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:46:17.0082 2460 swprv - ok
08:46:17.0082 2460 [ BD4F51AEF67AB7D57698BC4AAD983D1F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
08:46:17.0098 2460 SynTP - ok
08:46:17.0129 2460 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:46:17.0176 2460 SysMain - ok
08:46:17.0176 2460 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:46:17.0191 2460 TabletInputService - ok
08:46:17.0207 2460 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:46:17.0238 2460 TapiSrv - ok
08:46:17.0254 2460 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:46:17.0285 2460 TBS - ok
08:46:17.0301 2460 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:46:17.0347 2460 Tcpip - ok
08:46:17.0363 2460 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:46:17.0394 2460 TCPIP6 - ok
08:46:17.0394 2460 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:46:17.0425 2460 tcpipreg - ok
08:46:17.0425 2460 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:46:17.0441 2460 TDPIPE - ok
08:46:17.0441 2460 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:46:17.0457 2460 TDTCP - ok
08:46:17.0457 2460 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:46:17.0488 2460 tdx - ok
08:46:17.0488 2460 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:46:17.0503 2460 TermDD - ok
08:46:17.0503 2460 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:46:17.0550 2460 TermService - ok
08:46:17.0550 2460 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:46:17.0566 2460 Themes - ok
08:46:17.0566 2460 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:46:17.0597 2460 THREADORDER - ok
08:46:17.0613 2460 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:46:17.0628 2460 TrkWks - ok
08:46:17.0644 2460 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:46:17.0675 2460 TrustedInstaller - ok
08:46:17.0675 2460 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:46:17.0706 2460 tssecsrv - ok
08:46:17.0706 2460 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:46:17.0722 2460 TsUsbFlt - ok
08:46:17.0722 2460 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:46:17.0737 2460 TsUsbGD - ok
08:46:17.0737 2460 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:46:17.0769 2460 tunnel - ok
08:46:17.0769 2460 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:46:17.0784 2460 uagp35 - ok
08:46:17.0862 2460 [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe
08:46:17.0893 2460 uCamMonitor - ok
08:46:17.0893 2460 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:46:17.0925 2460 udfs - ok
08:46:17.0940 2460 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:46:17.0940 2460 UI0Detect - ok
08:46:17.0956 2460 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:46:17.0956 2460 uliagpkx - ok
08:46:17.0971 2460 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:46:17.0971 2460 umbus - ok
08:46:17.0971 2460 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:46:17.0987 2460 UmPass - ok
08:46:18.0003 2460 [ 193AD338F2A64D17300AD640ADFA5D0A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
08:46:18.0018 2460 UNS - ok
08:46:18.0018 2460 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:46:18.0049 2460 upnphost - ok
08:46:18.0049 2460 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:46:18.0065 2460 usbccgp - ok
08:46:18.0065 2460 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:46:18.0081 2460 usbcir - ok
08:46:18.0096 2460 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:46:18.0096 2460 usbehci - ok
08:46:18.0112 2460 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:46:18.0127 2460 usbhub - ok
08:46:18.0127 2460 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:46:18.0143 2460 usbohci - ok
08:46:18.0143 2460 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:46:18.0159 2460 usbprint - ok
08:46:18.0159 2460 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:46:18.0174 2460 USBSTOR - ok
08:46:18.0174 2460 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:46:18.0190 2460 usbuhci - ok
08:46:18.0190 2460 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
08:46:18.0205 2460 usbvideo - ok
08:46:18.0221 2460 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:46:18.0252 2460 UxSms - ok
08:46:18.0252 2460 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
08:46:18.0268 2460 VAIO Event Service - ok
08:46:18.0268 2460 [ 59308CD511A5F3EE33595FFD46F76B31 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
08:46:18.0283 2460 VAIO Power Management - ok
08:46:18.0283 2460 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:46:18.0299 2460 VaultSvc - ok
08:46:18.0315 2460 [ ADD5A5BA64D0710E1C764A8D4DAD510E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
 
08:46:18.0330 2460 VCFw - ok
08:46:18.0346 2460 [ EEE5AD6FB40B35F7867C3A49B98BB4EF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
08:46:18.0361 2460 VcmIAlzMgr - ok
08:46:18.0377 2460 [ FD5BD55C1854208BC9C51DBCFC3C1941 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
08:46:18.0393 2460 VcmINSMgr - ok
08:46:18.0393 2460 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
08:46:18.0408 2460 VcmXmlIfHelper - ok
08:46:18.0408 2460 [ D076011ECD0D1310E879F32EBF3B4886 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
08:46:18.0424 2460 VCService - ok
08:46:18.0424 2460 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:46:18.0424 2460 vdrvroot - ok
08:46:18.0439 2460 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:46:18.0471 2460 vds - ok
08:46:18.0486 2460 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:46:18.0486 2460 vga - ok
08:46:18.0502 2460 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:46:18.0517 2460 VgaSave - ok
08:46:18.0533 2460 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:46:18.0549 2460 vhdmp - ok
08:46:18.0549 2460 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:46:18.0549 2460 viaide - ok
08:46:18.0564 2460 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:46:18.0564 2460 volmgr - ok
08:46:18.0580 2460 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:46:18.0595 2460 volmgrx - ok
08:46:18.0595 2460 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:46:18.0611 2460 volsnap - ok
08:46:18.0611 2460 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:46:18.0627 2460 vsmraid - ok
08:46:18.0642 2460 [ 596E65BDEE804CC6658A39756CC61849 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
08:46:18.0658 2460 VSNService - ok
08:46:18.0689 2460 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:46:18.0736 2460 VSS - ok
08:46:18.0751 2460 [ F5742637A15179AD47C41855A3BF9415 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
08:46:18.0767 2460 VUAgent - ok
08:46:18.0767 2460 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:46:18.0783 2460 vwifibus - ok
08:46:18.0783 2460 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:46:18.0798 2460 vwififlt - ok
08:46:18.0814 2460 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
08:46:18.0829 2460 vwifimp - ok
08:46:18.0829 2460 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:46:18.0861 2460 W32Time - ok
08:46:18.0876 2460 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:46:18.0876 2460 WacomPen - ok
08:46:18.0892 2460 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:46:18.0907 2460 WANARP - ok
08:46:18.0923 2460 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:46:18.0939 2460 Wanarpv6 - ok
08:46:18.0970 2460 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:46:18.0985 2460 WatAdminSvc - ok
08:46:19.0017 2460 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:46:19.0032 2460 wbengine - ok
08:46:19.0048 2460 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:46:19.0063 2460 WbioSrvc - ok
08:46:19.0063 2460 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:46:19.0095 2460 wcncsvc - ok
08:46:19.0095 2460 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:46:19.0110 2460 WcsPlugInService - ok
08:46:19.0110 2460 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:46:19.0110 2460 Wd - ok
08:46:19.0126 2460 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:46:19.0141 2460 Wdf01000 - ok
08:46:19.0141 2460 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:46:19.0157 2460 WdiServiceHost - ok
08:46:19.0173 2460 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:46:19.0188 2460 WdiSystemHost - ok
08:46:19.0188 2460 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:46:19.0204 2460 WebClient - ok
08:46:19.0219 2460 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:46:19.0251 2460 Wecsvc - ok
08:46:19.0251 2460 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:46:19.0282 2460 wercplsupport - ok
08:46:19.0282 2460 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:46:19.0313 2460 WerSvc - ok
08:46:19.0313 2460 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:46:19.0344 2460 WfpLwf - ok
08:46:19.0344 2460 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:46:19.0360 2460 WIMMount - ok
08:46:19.0360 2460 WinDefend - ok
08:46:19.0375 2460 WinHttpAutoProxySvc - ok
08:46:19.0422 2460 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:46:19.0453 2460 Winmgmt - ok
08:46:19.0485 2460 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:46:19.0531 2460 WinRM - ok
08:46:19.0547 2460 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:46:19.0583 2460 Wlansvc - ok
08:46:19.0593 2460 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:46:19.0593 2460 wlcrasvc - ok
08:46:19.0623 2460 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:46:19.0663 2460 wlidsvc - ok
08:46:19.0663 2460 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
08:46:19.0673 2460 WmiAcpi - ok
08:46:19.0683 2460 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:46:19.0693 2460 wmiApSrv - ok
08:46:19.0693 2460 WMPNetworkSvc - ok
08:46:19.0703 2460 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:46:19.0713 2460 WPCSvc - ok
08:46:19.0713 2460 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:46:19.0733 2460 WPDBusEnum - ok
08:46:19.0733 2460 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:46:19.0763 2460 ws2ifsl - ok
08:46:19.0813 2460 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
08:46:19.0843 2460 wscsvc - ok
08:46:19.0853 2460 WSearch - ok
08:46:19.0903 2460 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:46:19.0953 2460 wuauserv - ok
08:46:19.0953 2460 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:46:19.0983 2460 WudfPf - ok
08:46:19.0993 2460 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:46:20.0023 2460 WUDFRd - ok
08:46:20.0033 2460 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:46:20.0073 2460 wudfsvc - ok
08:46:20.0073 2460 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
08:46:20.0093 2460 WwanSvc - ok
08:46:20.0133 2460 [ D2FE4103450E52CB248D842501F84B90 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
08:46:20.0183 2460 ZeroConfigService - ok
08:46:20.0193 2460 ================ Scan global ===============================
08:46:20.0193 2460 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:46:20.0193 2460 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
08:46:20.0203 2460 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
08:46:20.0213 2460 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:46:20.0213 2460 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:46:20.0223 2460 [Global] - ok
08:46:20.0223 2460 ================ Scan MBR ==================================
08:46:20.0223 2460 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:46:20.0393 2460 \Device\Harddisk0\DR0 - ok
08:46:20.0393 2460 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:46:20.0413 2460 \Device\Harddisk1\DR1 - ok
08:46:20.0413 2460 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR3
08:46:22.0866 2460 \Device\Harddisk2\DR3 - ok
08:46:22.0866 2460 ================ Scan VBR ==================================
08:46:22.0866 2460 [ 797F48B7E07F5579372C9E39238F19F1 ] \Device\Harddisk0\DR0\Partition1
08:46:22.0882 2460 \Device\Harddisk0\DR0\Partition1 - ok
08:46:22.0882 2460 [ 28FDEF85961DEC3F033B57C2FE9EB908 ] \Device\Harddisk0\DR0\Partition2
08:46:22.0882 2460 \Device\Harddisk0\DR0\Partition2 - ok
08:46:22.0882 2460 [ 97E1E10300E12FF4C892567A3820BA73 ] \Device\Harddisk2\DR3\Partition1
08:46:22.0882 2460 \Device\Harddisk2\DR3\Partition1 - ok
08:46:22.0882 2460 ============================================================
08:46:22.0882 2460 Scan finished
08:46:22.0882 2460 ============================================================
08:46:22.0897 6740 Detected object count: 1
08:46:22.0897 6740 Actual detected object count: 1
08:46:27.0515 6740 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - skipped by user
08:46:27.0515 6740 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
08:47:45.0550 7108 ============================================================
08:47:45.0550 7108 Scan started
08:47:45.0550 7108 Mode: Manual; SigCheck; TDLFS;
08:47:45.0550 7108 ============================================================
08:47:45.0640 7108 ================ Scan system memory ========================
08:47:45.0640 7108 System memory - ok
08:47:45.0650 7108 ================ Scan services =============================
08:47:45.0700 7108 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:47:45.0720 7108 1394ohci - ok
08:47:45.0730 7108 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
08:47:45.0740 7108 ACDaemon - ok
08:47:45.0750 7108 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:47:45.0760 7108 ACPI - ok
08:47:45.0760 7108 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:47:45.0780 7108 AcpiPmi - ok
08:47:45.0780 7108 [ C245E08EC469A52A622EFDC9787A0DCC ] AdobeActiveFileMonitor10.0 c:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
08:47:45.0790 7108 AdobeActiveFileMonitor10.0 - ok
08:47:45.0820 7108 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:47:45.0830 7108 AdobeFlashPlayerUpdateSvc - ok
08:47:45.0840 7108 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:47:45.0850 7108 adp94xx - ok
08:47:45.0860 7108 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:47:45.0870 7108 adpahci - ok
08:47:45.0880 7108 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:47:45.0890 7108 adpu320 - ok
08:47:45.0890 7108 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:47:45.0920 7108 AeLookupSvc - ok
08:47:45.0930 7108 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
08:47:45.0950 7108 AFD - ok
08:47:45.0950 7108 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:47:45.0960 7108 agp440 - ok
08:47:45.0960 7108 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:47:45.0980 7108 ALG - ok
08:47:45.0980 7108 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:47:45.0990 7108 aliide - ok
08:47:45.0990 7108 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:47:46.0000 7108 amdide - ok
08:47:46.0000 7108 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:47:46.0020 7108 AmdK8 - ok
08:47:46.0020 7108 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:47:46.0030 7108 AmdPPM - ok
08:47:46.0040 7108 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:47:46.0050 7108 amdsata - ok
08:47:46.0060 7108 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:47:46.0070 7108 amdsbs - ok
08:47:46.0070 7108 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:47:46.0080 7108 amdxata - ok
08:47:46.0080 7108 [ 157B1C973637919DCD0D0464167C86BA ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
08:47:46.0100 7108 AMPPAL - ok
08:47:46.0100 7108 [ 157B1C973637919DCD0D0464167C86BA ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
08:47:46.0110 7108 AMPPALP - ok
08:47:46.0120 7108 [ FB70F8C1283C8CC6BFAA6F9971107E68 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
08:47:46.0140 7108 AMPPALR3 - ok
08:47:46.0140 7108 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:47:46.0180 7108 AppID - ok
08:47:46.0180 7108 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:47:46.0210 7108 AppIDSvc - ok
08:47:46.0210 7108 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
08:47:46.0240 7108 Appinfo - ok
08:47:46.0250 7108 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:47:46.0250 7108 arc - ok
08:47:46.0260 7108 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:47:46.0270 7108 arcsas - ok
08:47:46.0270 7108 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
08:47:46.0280 7108 ArcSoftKsUFilter - ok
08:47:46.0290 7108 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:47:46.0300 7108 aspnet_state - ok
08:47:46.0310 7108 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:47:46.0340 7108 AsyncMac - ok
08:47:46.0340 7108 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:47:46.0350 7108 atapi - ok
08:47:46.0370 7108 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
08:47:46.0390 7108 athr - ok
08:47:46.0400 7108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:47:46.0440 7108 AudioEndpointBuilder - ok
08:47:46.0450 7108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:47:46.0480 7108 AudioSrv - ok
08:47:46.0490 7108 [ 6FDDD18A650764A59302A018765E5521 ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
08:47:46.0500 7108 AVP - ok
08:47:46.0510 7108 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:47:46.0520 7108 AxInstSV - ok
08:47:46.0530 7108 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:47:46.0540 7108 b06bdrv - ok
08:47:46.0550 7108 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:47:46.0560 7108 b57nd60a - ok
08:47:46.0610 7108 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
08:47:46.0640 7108 BBSvc - ok
08:47:46.0640 7108 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:47:46.0650 7108 BDESVC - ok
08:47:46.0660 7108 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:47:46.0690 7108 Beep - ok
08:47:46.0700 7108 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:47:46.0730 7108 BFE - ok
08:47:46.0746 7108 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
08:47:46.0777 7108 BITS - ok
08:47:46.0777 7108 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:47:46.0793 7108 blbdrive - ok
08:47:46.0808 7108 [ A52EA1D8C2900055323C93DDB252A3DA ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
08:47:46.0824 7108 Bluetooth Device Monitor - ok
08:47:46.0839 7108 [ 091210450CA7CED08F360D9D7FEC5D11 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
08:47:46.0871 7108 Bluetooth Media Service - ok
08:47:46.0886 7108 [ 392450754E17FF778CBC5B9D20583AD1 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
08:47:46.0902 7108 Bluetooth OBEX Service - ok
08:47:46.0902 7108 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:47:46.0917 7108 bowser - ok
08:47:46.0917 7108 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:47:46.0933 7108 BrFiltLo - ok
08:47:46.0933 7108 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:47:46.0949 7108 BrFiltUp - ok
08:47:46.0949 7108 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
08:47:46.0994 7108 BridgeMP - ok
08:47:46.0994 7108 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:47:47.0004 7108 Browser - ok
08:47:47.0014 7108 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:47:47.0034 7108 Brserid - ok
08:47:47.0034 7108 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:47:47.0044 7108 BrSerWdm - ok
08:47:47.0054 7108 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:47:47.0064 7108 BrUsbMdm - ok
08:47:47.0064 7108 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:47:47.0074 7108 BrUsbSer - ok
08:47:47.0084 7108 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:47:47.0094 7108 BthEnum - ok
08:47:47.0094 7108 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:47:47.0114 7108 BTHMODEM - ok
08:47:47.0114 7108 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:47:47.0134 7108 BthPan - ok
08:47:47.0134 7108 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
08:47:47.0154 7108 BTHPORT - ok
08:47:47.0154 7108 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:47:47.0184 7108 bthserv - ok
08:47:47.0194 7108 [ FA2D081709A764F6BEE16B7FFE03E36C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
08:47:47.0194 7108 BTHSSecurityMgr - ok
08:47:47.0204 7108 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
08:47:47.0214 7108 BTHUSB - ok
08:47:47.0214 7108 [ 988CC6CC49303665D3B2435C51505C3F ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
08:47:47.0224 7108 btmaux - ok
08:47:47.0234 7108 [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
08:47:47.0254 7108 btmhsf - ok
08:47:47.0254 7108 catchme - ok
08:47:47.0264 7108 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:47:47.0284 7108 cdfs - ok
08:47:47.0294 7108 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:47:47.0304 7108 cdrom - ok
08:47:47.0304 7108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:47:47.0344 7108 CertPropSvc - ok
08:47:47.0344 7108 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:47:47.0364 7108 circlass - ok
08:47:47.0364 7108 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:47:47.0384 7108 CLFS - ok
08:47:47.0464 7108 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:47:47.0484 7108 clr_optimization_v2.0.50727_32 - ok
08:47:47.0504 7108 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:47:47.0534 7108 clr_optimization_v2.0.50727_64 - ok
08:47:47.0544 7108 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:47:47.0554 7108 clr_optimization_v4.0.30319_32 - ok
08:47:47.0554 7108 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:47:47.0564 7108 clr_optimization_v4.0.30319_64 - ok
08:47:47.0564 7108 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:47:47.0574 7108 CmBatt - ok
08:47:47.0584 7108 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:47:47.0584 7108 cmdide - ok
08:47:47.0594 7108 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
08:47:47.0614 7108 CNG - ok
08:47:47.0624 7108 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:47:47.0634 7108 Compbatt - ok
08:47:47.0634 7108 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:47:47.0644 7108 CompositeBus - ok
08:47:47.0644 7108 COMSysApp - ok
08:47:47.0674 7108 [ B045E4A252442D6223994AA5765438B8 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
08:47:47.0684 7108 cphs - ok
08:47:47.0684 7108 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:47:47.0694 7108 crcdisk - ok
08:47:47.0704 7108 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:47:47.0714 7108 CryptSvc - ok
08:47:47.0724 7108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:47:47.0764 7108 DcomLaunch - ok
08:47:47.0764 7108 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:47:47.0794 7108 defragsvc - ok
08:47:47.0804 7108 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:47:47.0834 7108 DfsC - ok
08:47:47.0834 7108 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:47:47.0874 7108 Dhcp - ok
08:47:47.0884 7108 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:47:47.0914 7108 discache - ok
08:47:47.0914 7108 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:47:47.0924 7108 Disk - ok
08:47:47.0924 7108 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:47:47.0944 7108 Dnscache - ok
08:47:47.0944 7108 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:47:47.0974 7108 dot3svc - ok
08:47:47.0984 7108 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:47:48.0014 7108 DPS - ok
08:47:48.0014 7108 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:47:48.0024 7108 drmkaud - ok
08:47:48.0044 7108 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:47:48.0064 7108 DXGKrnl - ok
08:47:48.0074 7108 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
08:47:48.0084 7108 e1yexpress - ok
08:47:48.0084 7108 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:47:48.0114 7108 EapHost - ok
08:47:48.0154 7108 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:47:48.0184 7108 ebdrv - ok
08:47:48.0194 7108 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
08:47:48.0204 7108 EFS - ok
08:47:48.0214 7108 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:47:48.0234 7108 ehRecvr - ok
08:47:48.0234 7108 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:47:48.0244 7108 ehSched - ok
08:47:48.0254 7108 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:47:48.0274 7108 elxstor - ok
08:47:48.0274 7108 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:47:48.0284 7108 ErrDev - ok
08:47:48.0294 7108 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:47:48.0324 7108 EventSystem - ok
08:47:48.0334 7108 [ 23D401A43DADED10A153B9F3A7E66C91 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:47:48.0354 7108 EvtEng - ok
08:47:48.0354 7108 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:47:48.0384 7108 exfat - ok
08:47:48.0394 7108 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:47:48.0424 7108 fastfat - ok
08:47:48.0434 7108 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:47:48.0454 7108 Fax - ok
08:47:48.0454 7108 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:47:48.0464 7108 fdc - ok
08:47:48.0464 7108 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:47:48.0494 7108 fdPHost - ok
08:47:48.0504 7108 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:47:48.0534 7108 FDResPub - ok
08:47:48.0534 7108 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:47:48.0544 7108 FileInfo - ok
08:47:48.0544 7108 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:47:48.0574 7108 Filetrace - ok
08:47:48.0584 7108 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:47:48.0594 7108 flpydisk - ok
08:47:48.0594 7108 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:47:48.0604 7108 FltMgr - ok
08:47:48.0624 7108 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
08:47:48.0644 7108 FontCache - ok
08:47:48.0644 7108 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:47:48.0654 7108 FontCache3.0.0.0 - ok
08:47:48.0654 7108 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:47:48.0664 7108 FsDepends - ok
08:47:48.0674 7108 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:47:48.0684 7108 Fs_Rec - ok
08:47:48.0684 7108 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:47:48.0694 7108 fvevol - ok
08:47:48.0704 7108 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:47:48.0714 7108 gagp30kx - ok
08:47:48.0724 7108 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:47:48.0764 7108 gpsvc - ok
08:47:48.0764 7108 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:47:48.0774 7108 hcw85cir - ok
08:47:48.0784 7108 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:47:48.0794 7108 HdAudAddService - ok
08:47:48.0804 7108 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:47:48.0814 7108 HDAudBus - ok
08:47:48.0814 7108 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:47:48.0824 7108 HidBatt - ok
08:47:48.0834 7108 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:47:48.0844 7108 HidBth - ok
08:47:48.0844 7108 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:47:48.0864 7108 HidIr - ok
08:47:48.0864 7108 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
08:47:48.0894 7108 hidserv - ok
08:47:48.0894 7108 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:47:48.0904 7108 HidUsb - ok
08:47:48.0914 7108 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:47:48.0954 7108 hkmsvc - ok
08:47:48.0954 7108 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:47:48.0964 7108 HomeGroupListener - ok
08:47:48.0974 7108 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:47:48.0984 7108 HomeGroupProvider - ok
08:47:48.0994 7108 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:47:48.0994 7108 HpSAMD - ok
08:47:49.0004 7108 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:47:49.0040 7108 HTTP - ok
08:47:49.0040 7108 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:47:49.0055 7108 hwpolicy - ok
08:47:49.0055 7108 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:47:49.0071 7108 i8042prt - ok
08:47:49.0071 7108 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\drivers\iaStor.sys
08:47:49.0087 7108 iaStor - ok
08:47:49.0102 7108 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
08:47:49.0102 7108 IAStorDataMgrSvc - ok
08:47:49.0118 7108 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:47:49.0133 7108 iaStorV - ok
08:47:49.0133 7108 [ 60CC7AE9AEDB4D1E7923BD053B176D97 ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
08:47:49.0133 7108 ibtfltcoex - ok
08:47:49.0211 7108 [ 3CC7B3BB1A9EA201A040883EDFAA67A0 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
08:47:49.0243 7108 IconMan_R - ok
08:47:49.0258 7108 [ 2A63036283B36B3B68CDC6F85A7D53ED ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys
08:47:49.0258 7108 IDMWFP - ok
08:47:49.0274 7108 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:47:49.0289 7108 idsvc - ok
08:47:49.0445 7108 [ 11BA677667432A99CA261A472A2C29B8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
08:47:49.0570 7108 igfx - ok
08:47:49.0586 7108 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:47:49.0586 7108 iirsp - ok
08:47:49.0601 7108 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
08:47:49.0633 7108 IKEEXT - ok
08:47:49.0679 7108 [ E83BB47C3446F0497019DE7FD6C6A86F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:47:49.0757 7108 IntcAzAudAddService - ok
08:47:49.0757 7108 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
08:47:49.0773 7108 IntcDAud - ok
08:47:49.0789 7108 [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
08:47:49.0804 7108 Intel(R) Capability Licensing Service Interface - ok
08:47:49.0804 7108 [ 709C8623721A1F1EF388EA75A07EC33B ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
08:47:49.0804 7108 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - warning
08:47:49.0804 7108 Intel(R) ME Service - detected UnsignedFile.Multi.Generic (1)
08:47:49.0820 7108 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:47:49.0820 7108 intelide - ok
08:47:49.0820 7108 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:47:49.0835 7108 intelppm - ok
08:47:49.0835 7108 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:47:49.0867 7108 IPBusEnum - ok
08:47:49.0882 7108 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:47:49.0898 7108 IpFilterDriver - ok
08:47:49.0913 7108 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:47:49.0945 7108 iphlpsvc - ok
08:47:49.0945 7108 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:47:49.0960 7108 IPMIDRV - ok
08:47:49.0960 7108 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:47:49.0991 7108 IPNAT - ok
08:47:49.0991 7108 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:47:50.0007 7108 IRENUM - ok
08:47:50.0023 7108 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:47:50.0023 7108 isapnp - ok
08:47:50.0038 7108 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:47:50.0038 7108 iScsiPrt - ok
08:47:50.0038 7108 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
08:47:50.0054 7108 iusb3hcs - ok
08:47:50.0054 7108 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
08:47:50.0069 7108 iusb3hub - ok
08:47:50.0085 7108 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
08:47:50.0101 7108 iusb3xhc - ok
08:47:50.0101 7108 [ C44B44E24B929631D9D7368F5B2B40CF ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
08:47:50.0116 7108 jhi_service - ok
08:47:50.0116 7108 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:47:50.0132 7108 kbdclass - ok
08:47:50.0132 7108 [ 0705EFF5B42A9DB58548EEC3B26BB484 ]
 
Kbdhid C:\Windows\system32\drivers\kbdhid.sys
08:47:50.0147 7108 kbdhid - ok
08:47:50.0147 7108 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
08:47:50.0163 7108 KeyIso - ok
08:47:50.0163 7108 [ 549F9D454E9E6697B108F16C569B505A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
08:47:50.0179 7108 KL1 - ok
08:47:50.0194 7108 [ 08DF1B7A82837B92096EC7597C00889A ] KLIF C:\Windows\system32\DRIVERS\klif.sys
08:47:50.0210 7108 KLIF - ok
08:47:50.0210 7108 [ A7DFA9A2554143667E830E8ABE452D70 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
08:47:50.0225 7108 KLIM6 - ok
08:47:50.0225 7108 [ E6FAA395058F7BAF0F3529CDBA9B7133 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
08:47:50.0225 7108 klkbdflt - ok
08:47:50.0241 7108 [ D398DABD44FDDDBED305442BB7BCDB29 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
08:47:50.0241 7108 klmouflt - ok
08:47:50.0241 7108 [ B9B2AEEE5E17B2CEBC034FF2748577A0 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
08:47:50.0257 7108 kltdi - ok
08:47:50.0257 7108 [ 8E880E08D7453DB58DAC36C2C48FFD45 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
08:47:50.0272 7108 kneps - ok
08:47:50.0272 7108 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:47:50.0288 7108 KSecDD - ok
08:47:50.0288 7108 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:47:50.0303 7108 KSecPkg - ok
08:47:50.0303 7108 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:47:50.0335 7108 ksthunk - ok
08:47:50.0335 7108 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:47:50.0366 7108 KtmRm - ok
08:47:50.0381 7108 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
08:47:50.0413 7108 LanmanServer - ok
08:47:50.0413 7108 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:47:50.0444 7108 LanmanWorkstation - ok
08:47:50.0459 7108 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:47:50.0491 7108 lltdio - ok
08:47:50.0491 7108 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:47:50.0522 7108 lltdsvc - ok
08:47:50.0522 7108 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:47:50.0553 7108 lmhosts - ok
08:47:50.0553 7108 [ 75F29D77B0540FCF47EE3BE000BBABDA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:47:50.0569 7108 LMS - ok
08:47:50.0584 7108 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:47:50.0584 7108 LSI_FC - ok
08:47:50.0584 7108 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:47:50.0600 7108 LSI_SAS - ok
08:47:50.0600 7108 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:47:50.0615 7108 LSI_SAS2 - ok
08:47:50.0615 7108 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:47:50.0631 7108 LSI_SCSI - ok
08:47:50.0631 7108 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:47:50.0662 7108 luafv - ok
08:47:50.0662 7108 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
08:47:50.0678 7108 MBAMProtector - ok
08:47:50.0756 7108 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
08:47:50.0787 7108 MBAMScheduler - ok
08:47:50.0803 7108 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
08:47:50.0818 7108 MBAMService - ok
08:47:50.0834 7108 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:47:50.0834 7108 Mcx2Svc - ok
08:47:50.0850 7108 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:47:50.0850 7108 megasas - ok
08:47:50.0865 7108 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:47:50.0865 7108 MegaSR - ok
08:47:50.0881 7108 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:47:50.0891 7108 MEIx64 - ok
08:47:50.0891 7108 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:47:50.0921 7108 MMCSS - ok
08:47:50.0921 7108 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:47:50.0951 7108 Modem - ok
08:47:50.0961 7108 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:47:50.0971 7108 monitor - ok
08:47:50.0971 7108 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:47:50.0981 7108 mouclass - ok
08:47:50.0991 7108 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:47:51.0001 7108 mouhid - ok
08:47:51.0001 7108 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:47:51.0011 7108 mountmgr - ok
08:47:51.0021 7108 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:47:51.0021 7108 MozillaMaintenance - ok
08:47:51.0031 7108 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:47:51.0041 7108 mpio - ok
08:47:51.0041 7108 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:47:51.0081 7108 mpsdrv - ok
08:47:51.0091 7108 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:47:51.0121 7108 MpsSvc - ok
08:47:51.0131 7108 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:47:51.0141 7108 MRxDAV - ok
08:47:51.0151 7108 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:47:51.0161 7108 mrxsmb - ok
08:47:51.0161 7108 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:47:51.0181 7108 mrxsmb10 - ok
08:47:51.0181 7108 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:47:51.0191 7108 mrxsmb20 - ok
08:47:51.0191 7108 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:47:51.0201 7108 msahci - ok
08:47:51.0211 7108 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:47:51.0221 7108 msdsm - ok
08:47:51.0221 7108 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:47:51.0231 7108 MSDTC - ok
08:47:51.0241 7108 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:47:51.0271 7108 Msfs - ok
08:47:51.0271 7108 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:47:51.0301 7108 mshidkmdf - ok
08:47:51.0311 7108 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:47:51.0311 7108 msisadrv - ok
08:47:51.0321 7108 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:47:51.0351 7108 MSiSCSI - ok
08:47:51.0351 7108 msiserver - ok
08:47:51.0361 7108 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:47:51.0381 7108 MSKSSRV - ok
08:47:51.0391 7108 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:47:51.0421 7108 MSPCLOCK - ok
08:47:51.0421 7108 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:47:51.0451 7108 MSPQM - ok
08:47:51.0461 7108 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:47:51.0471 7108 MsRPC - ok
08:47:51.0471 7108 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:47:51.0481 7108 mssmbios - ok
08:47:51.0491 7108 MSSQL$QSRNVIVO10 - ok
08:47:51.0491 7108 [ 04EF36EAF5C4DBCE424D81B76F1E9231 ] MSSQLServerADHelper100 c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
08:47:51.0501 7108 MSSQLServerADHelper100 - ok
08:47:51.0501 7108 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:47:51.0531 7108 MSTEE - ok
08:47:51.0541 7108 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:47:51.0551 7108 MTConfig - ok
08:47:51.0551 7108 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:47:51.0561 7108 Mup - ok
08:47:51.0561 7108 [ 48C9BA25EDA90E3DB07ADAC8CD32F5F3 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:47:51.0571 7108 MyWiFiDHCPDNS - ok
08:47:51.0581 7108 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:47:51.0621 7108 napagent - ok
08:47:51.0621 7108 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:47:51.0641 7108 NativeWifiP - ok
08:47:51.0651 7108 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:47:51.0671 7108 NDIS - ok
08:47:51.0681 7108 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:47:51.0701 7108 NdisCap - ok
08:47:51.0711 7108 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:47:51.0741 7108 NdisTapi - ok
08:47:51.0741 7108 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:47:51.0771 7108 Ndisuio - ok
08:47:51.0771 7108 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:47:51.0801 7108 NdisWan - ok
08:47:51.0811 7108 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:47:51.0841 7108 NDProxy - ok
08:47:51.0841 7108 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:47:51.0871 7108 NetBIOS - ok
08:47:51.0871 7108 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:47:51.0901 7108 NetBT - ok
08:47:51.0911 7108 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
08:47:51.0921 7108 Netlogon - ok
08:47:51.0921 7108 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:47:51.0961 7108 Netman - ok
08:47:51.0971 7108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:51.0981 7108 NetMsmqActivator - ok
08:47:51.0981 7108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:51.0991 7108 NetPipeActivator - ok
08:47:52.0001 7108 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:47:52.0031 7108 netprofm - ok
08:47:52.0031 7108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:52.0041 7108 NetTcpActivator - ok
08:47:52.0041 7108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:52.0051 7108 NetTcpPortSharing - ok
08:47:52.0181 7108 [ FAD6C5610D020534401966CD72A1C306 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
08:47:52.0291 7108 NETwNs64 - ok
08:47:52.0301 7108 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:47:52.0311 7108 nfrd960 - ok
08:47:52.0311 7108 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:47:52.0341 7108 NlaSvc - ok
08:47:52.0401 7108 [ 1F3AE7B19E20EA1B48F4D0DB2A287B54 ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
08:47:52.0471 7108 NOBU - ok
08:47:52.0481 7108 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:47:52.0511 7108 Npfs - ok
08:47:52.0521 7108 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:47:52.0551 7108 nsi - ok
08:47:52.0551 7108 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:47:52.0581 7108 nsiproxy - ok
08:47:52.0601 7108 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:47:52.0631 7108 Ntfs - ok
08:47:52.0631 7108 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:47:52.0671 7108 Null - ok
08:47:52.0871 7108 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:47:53.0034 7108 nvlddmkm - ok
08:47:53.0034 7108 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:47:53.0050 7108 nvraid - ok
08:47:53.0050 7108 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:47:53.0066 7108 nvstor - ok
08:47:53.0066 7108 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:47:53.0081 7108 nv_agp - ok
08:47:53.0081 7108 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:47:53.0097 7108 ohci1394 - ok
08:47:53.0097 7108 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:47:53.0097 7108 ose - ok
08:47:53.0159 7108 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:47:53.0222 7108 osppsvc - ok
08:47:53.0222 7108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:47:53.0237 7108 p2pimsvc - ok
08:47:53.0253 7108 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:47:53.0268 7108 p2psvc - ok
08:47:53.0268 7108 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:47:53.0284 7108 Parport - ok
08:47:53.0284 7108 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:47:53.0300 7108 partmgr - ok
08:47:53.0300 7108 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:47:53.0315 7108 PcaSvc - ok
08:47:53.0315 7108 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:47:53.0331 7108 pci - ok
08:47:53.0331 7108 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:47:53.0346 7108 pciide - ok
08:47:53.0346 7108 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:47:53.0362 7108 pcmcia - ok
08:47:53.0362 7108 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:47:53.0378 7108 pcw - ok
08:47:53.0378 7108 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:47:53.0424 7108 PEAUTH - ok
08:47:53.0440 7108 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:47:53.0456 7108 PerfHost - ok
08:47:53.0471 7108 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:47:53.0518 7108 pla - ok
08:47:53.0518 7108 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:47:53.0534 7108 PlugPlay - ok
08:47:53.0580 7108 [ 9C4D0DE187CBC24F658C52EFC93B1C73 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
08:47:53.0596 7108 PMBDeviceInfoProvider - ok
08:47:53.0596 7108 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:47:53.0612 7108 PNRPAutoReg - ok
08:47:53.0612 7108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:47:53.0627 7108 PNRPsvc - ok
08:47:53.0627 7108 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:47:53.0658 7108 PolicyAgent - ok
08:47:53.0674 7108 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:47:53.0705 7108 Power - ok
08:47:53.0705 7108 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:47:53.0736 7108 PptpMiniport - ok
08:47:53.0736 7108 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:47:53.0752 7108 Processor - ok
08:47:53.0752 7108 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:47:53.0768 7108 ProfSvc - ok
08:47:53.0768 7108 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:47:53.0783 7108 ProtectedStorage - ok
08:47:53.0783 7108 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:47:53.0814 7108 Psched - ok
08:47:53.0814 7108 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
08:47:53.0830 7108 PxHlpa64 - ok
08:47:53.0846 7108 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:47:53.0877 7108 ql2300 - ok
08:47:53.0877 7108 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:47:53.0892 7108 ql40xx - ok
08:47:53.0892 7108 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:47:53.0908 7108 QWAVE - ok
08:47:53.0908 7108 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:47:53.0924 7108 QWAVEdrv - ok
08:47:53.0939 7108 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:47:53.0970 7108 RasAcd - ok
08:47:53.0970 7108 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:47:54.0002 7108 RasAgileVpn - ok
08:47:54.0002 7108 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:47:54.0033 7108 RasAuto - ok
08:47:54.0033 7108 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:47:54.0064 7108 Rasl2tp - ok
08:47:54.0064 7108 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:47:54.0095 7108 RasMan - ok
08:47:54.0095 7108 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:47:54.0126 7108 RasPppoe - ok
08:47:54.0142 7108 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:47:54.0158 7108 RasSstp - ok
08:47:54.0173 7108 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:47:54.0204 7108 rdbss - ok
08:47:54.0204 7108 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
08:47:54.0220 7108 rdpbus - ok
08:47:54.0220 7108 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:47:54.0251 7108 RDPCDD - ok
08:47:54.0251 7108 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:47:54.0282 7108 RDPENCDD - ok
08:47:54.0282 7108 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:47:54.0314 7108 RDPREFMP - ok
08:47:54.0314 7108 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:47:54.0329 7108 RDPWD - ok
08:47:54.0329 7108 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:47:54.0345 7108 rdyboost - ok
08:47:54.0345 7108 [ 0C2B4C3B10D183BE116A38353E937F62 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:47:54.0360 7108 RegSrvc - ok
08:47:54.0360 7108 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:47:54.0392 7108 RemoteAccess - ok
08:47:54.0407 7108 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:47:54.0423 7108 RemoteRegistry - ok
08:47:54.0438 7108 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:47:54.0454 7108 RFCOMM - ok
08:47:54.0454 7108 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:47:54.0485 7108 RpcEptMapper - ok
08:47:54.0485 7108 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:47:54.0501 7108 RpcLocator - ok
08:47:54.0501 7108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:47:54.0532 7108 RpcSs - ok
08:47:54.0548 7108 [ C606C5F712A3761896CEFFA4AF6B1268 ] RsFx0151 C:\Windows\system32\DRIVERS\RsFx0151.sys
08:47:54.0563 7108 RsFx0151 - ok
08:47:54.0563 7108 [ EBBFA2B4E317AF86E93FEC4C04D7A9B3 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
08:47:54.0579 7108 RSPCIESTOR - ok
08:47:54.0579 7108 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:47:54.0610 7108 rspndr - ok
08:47:54.0626 7108 [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
08:47:54.0641 7108 RTL8167 - ok
08:47:54.0641 7108 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
08:47:54.0657 7108 SamSs - ok
08:47:54.0657 7108 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:47:54.0672 7108 sbp2port - ok
08:47:54.0672 7108 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:47:54.0704 7108 SCardSvr - ok
08:47:54.0719 7108 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:47:54.0735 7108 scfilter - ok
08:47:54.0750 7108 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:47:54.0797 7108 Schedule - ok
08:47:54.0797 7108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:47:54.0828 7108 SCPolicySvc - ok
08:47:54.0828 7108 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
08:47:54.0844 7108 sdbus - ok
08:47:54.0844 7108 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:47:54.0860 7108 SDRSVC - ok
08:47:54.0860 7108 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
08:47:54.0875 7108 SeaPort - ok
08:47:54.0875 7108 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:47:54.0906 7108 secdrv - ok
08:47:54.0906 7108 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:47:54.0938 7108 seclogon - ok
08:47:54.0953 7108 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
08:47:54.0984 7108 SENS - ok
08:47:54.0984 7108 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:47:54.0984 7108 SensrSvc - ok
08:47:55.0000 7108 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:47:55.0000 7108 Serenum - ok
08:47:55.0016 7108 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:47:55.0016 7108 Serial - ok
08:47:55.0031 7108 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:47:55.0031 7108 sermouse - ok
08:47:55.0047 7108 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:47:55.0078 7108 SessionEnv - ok
08:47:55.0078 7108 [ 85D0F874734C105D02280B39BF0AD23F ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
08:47:55.0078 7108 SFEP - ok
08:47:55.0094 7108 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:47:55.0109 7108 sffdisk - ok
08:47:55.0109 7108 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:47:55.0125 7108 sffp_mmc - ok
08:47:55.0125 7108 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:47:55.0140 7108 sffp_sd - ok
08:47:55.0140 7108 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:47:55.0156 7108 sfloppy - ok
08:47:55.0156 7108 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:47:55.0187 7108 SharedAccess - ok
08:47:55.0203 7108 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:47:55.0234 7108 ShellHWDetection - ok
08:47:55.0234 7108 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:47:55.0250 7108 SiSRaid2 - ok
08:47:55.0250 7108 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:47:55.0265 7108 SiSRaid4 - ok
08:47:55.0265 7108 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:47:55.0296 7108 Smb - ok
08:47:55.0296 7108 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:47:55.0312 7108 SNMPTRAP - ok
08:47:55.0312 7108 [ 4AEA7A1C3CA06D95D6966C34D13C0D8B ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
08:47:55.0328 7108 SOHCImp - ok
08:47:55.0328 7108 [ 16FD95781117E13107D477AE36219E6F ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
08:47:55.0343 7108 SOHDs - ok
08:47:55.0343 7108 [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
08:47:55.0359 7108 SpfService - ok
08:47:55.0359 7108 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:47:55.0374 7108 spldr - ok
08:47:55.0390 7108 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:47:55.0406 7108 Spooler - ok
08:47:55.0484 7108 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:47:55.0546 7108 sppsvc - ok
08:47:55.0546 7108 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:47:55.0577 7108 sppuinotify - ok
08:47:55.0593 7108 [ 3420E0482AD95120B471B7328A8D7D08 ] SQLAgent$QSRNVIVO10 c:\Program Files\Microsoft SQL Server\MSSQL10_50.QSRNVIVO10\MSSQL\Binn\SQLAGENT.EXE
08:47:55.0608 7108 SQLAgent$QSRNVIVO10 - ok
08:47:55.0608 7108 [ 7D67C07C63796775CC5492BCFEAFF125 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
08:47:55.0624 7108 SQLBrowser - ok
08:47:55.0624 7108 [ F98DDFBFE0EE66D4C4B00693512B9527 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
08:47:55.0624 7108 SQLWriter - ok
08:47:55.0640 7108 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:47:55.0655 7108 srv - ok
08:47:55.0655 7108 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:47:55.0671 7108 srv2 - ok
08:47:55.0671 7108 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:47:55.0686 7108 srvnet - ok
08:47:55.0686 7108 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:47:55.0733 7108 SSDPSRV - ok
08:47:55.0733 7108 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:47:55.0764 7108 SstpSvc - ok
08:47:55.0780 7108 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:47:55.0780 7108 stexstor - ok
08:47:55.0796 7108 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:47:55.0811 7108 stisvc - ok
08:47:55.0811 7108 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:47:55.0827 7108 swenum - ok
08:47:55.0827 7108 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:47:55.0858 7108 swprv - ok
08:47:55.0874 7108 [ BD4F51AEF67AB7D57698BC4AAD983D1F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
08:47:55.0889 7108 SynTP - ok
08:47:55.0967 7108 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:47:56.0014 7108 SysMain - ok
08:47:56.0014 7108 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:47:56.0030 7108 TabletInputService - ok
08:47:56.0030 7108 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:47:56.0061 7108 TapiSrv - ok
08:47:56.0092 7108 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:47:56.0108 7108 TBS - ok
08:47:56.0139 7108 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:47:56.0170 7108 Tcpip - ok
08:47:56.0186 7108 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:47:56.0217 7108 TCPIP6 - ok
08:47:56.0217 7108 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:47:56.0248 7108 tcpipreg - ok
08:47:56.0248 7108 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:47:56.0264 7108 TDPIPE - ok
08:47:56.0264 7108 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:47:56.0279 7108 TDTCP - ok
08:47:56.0279 7108 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:47:56.0310 7108 tdx - ok
08:47:56.0310 7108 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:47:56.0326 7108 TermDD - ok
08:47:56.0342 7108 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:47:56.0373 7108 TermService - ok
08:47:56.0373 7108 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:47:56.0388 7108 Themes - ok
08:47:56.0388 7108 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:47:56.0435 7108 THREADORDER - ok
08:47:56.0435 7108 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:47:56.0466 7108 TrkWks - ok
08:47:56.0466 7108 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:47:56.0498 7108 TrustedInstaller - ok
08:47:56.0498 7108 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:47:56.0529 7108 tssecsrv - ok
08:47:56.0529 7108 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:47:56.0544 7108 TsUsbFlt - ok
08:47:56.0544 7108 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:47:56.0560 7108 TsUsbGD - ok
08:47:56.0560 7108 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:47:56.0591 7108 tunnel - ok
08:47:56.0591 7108 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:47:56.0607 7108 uagp35 - ok
08:47:56.0654 7108 [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-I Visual Effects 2\uCamMonitor.exe
08:47:56.0669 7108 uCamMonitor - ok
08:47:56.0685 7108 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:47:56.0716 7108 udfs - ok
08:47:56.0716 7108 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:47:56.0732 7108 UI0Detect - ok
08:47:56.0732 7108 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:47:56.0747 7108 uliagpkx - ok
08:47:56.0747 7108 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:47:56.0763 7108 umbus - ok
08:47:56.0763 7108 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:47:56.0778 7108 UmPass - ok
08:47:56.0778 7108 [ 193AD338F2A64D17300AD640ADFA5D0A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
08:47:56.0794 7108 UNS - ok
08:47:56.0794 7108 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:47:56.0825 7108 upnphost - ok
08:47:56.0841 7108 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:47:56.0841 7108 usbccgp - ok
08:47:56.0841 7108 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:47:56.0856 7108 usbcir - ok
08:47:56.0872 7108 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:47:56.0872 7108 usbehci - ok
08:47:56.0888 7108 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:47:56.0888 7108 usbhub - ok
08:47:56.0903 7108 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:47:56.0903 7108 usbohci - ok
08:47:56.0903 7108 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:47:56.0919 7108 usbprint - ok
08:47:56.0919 7108 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:47:56.0934 7108 USBSTOR - ok
08:47:56.0934 7108 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:47:56.0950 7108 usbuhci - ok
08:47:56.0950 7108 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
08:47:56.0966 7108 usbvideo - ok
08:47:56.0966 7108 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:47:57.0012 7108 UxSms - ok
08:47:57.0012 7108 [ 203FD19D70549A2939E1AE3A36608151 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
08:47:57.0012 7108 VAIO Event Service - ok
08:47:57.0028 7108 [ 59308CD511A5F3EE33595FFD46F76B31 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
08:47:57.0044 7108 VAIO Power Management - ok
08:47:57.0044 7108 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
08:47:57.0059 7108 VaultSvc - ok
08:47:57.0075 7108 [ ADD5A5BA64D0710E1C764A8D4DAD510E ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
08:47:57.0090 7108 VCFw - ok
08:47:57.0106 7108 [ EEE5AD6FB40B35F7867C3A49B98BB4EF ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
08:47:57.0122 7108 VcmIAlzMgr - ok
08:47:57.0122 7108 [ FD5BD55C1854208BC9C51DBCFC3C1941 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
08:47:57.0137 7108 VcmINSMgr - ok
08:47:57.0153 7108 [ 9BC1F203C5604C24F345BCFCD6956BAE ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
08:47:57.0153 7108 VcmXmlIfHelper - ok
08:47:57.0153 7108 [ D076011ECD0D1310E879F32EBF3B4886 ] VCService C:\Program Files\Sony\VAIO Care\VCService.exe
08:47:57.0168 7108 VCService - ok
08:47:57.0168 7108 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:47:57.0184 7108 vdrvroot - ok
08:47:57.0184 7108 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:47:57.0215 7108 vds - ok
08:47:57.0231 7108 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:47:57.0231 7108 vga - ok
08:47:57.0246 7108 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:47:57.0278 7108 VgaSave - ok
08:47:57.0278 7108 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:47:57.0293 7108 vhdmp - ok
08:47:57.0293 7108 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:47:57.0293 7108 viaide - ok
08:47:57.0309 7108 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:47:57.0309 7108 volmgr - ok
08:47:57.0324 7108 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:47:57.0324 7108 volmgrx - ok
08:47:57.0340 7108 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:47:57.0356 7108 volsnap - ok
08:47:57.0356 7108 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:47:57.0371 7108 vsmraid - ok
08:47:57.0387 7108 [ 596E65BDEE804CC6658A39756CC61849 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
08:47:57.0402 7108 VSNService - ok
08:47:57.0434 7108 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:47:57.0465 7108 VSS - ok
08:47:57.0480 7108 [ F5742637A15179AD47C41855A3BF9415 ] VUAgent C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
08:47:57.0512 7108 VUAgent - ok
08:47:57.0512 7108 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:47:57.0527 7108 vwifibus - ok
08:47:57.0527 7108 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:47:57.0543 7108 vwififlt - ok
08:47:57.0543 7108 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
08:47:57.0558 7108 vwifimp - ok
08:47:57.0558 7108 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:47:57.0605 7108 W32Time - ok
08:47:57.0605 7108 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:47:57.0621 7108 WacomPen - ok
08:47:57.0621 7108 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:47:57.0652 7108 WANARP - ok
08:47:57.0652 7108 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:47:57.0683 7108 Wanarpv6 - ok
08:47:57.0699 7108 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:47:57.0714 7108 WatAdminSvc - ok
08:47:57.0730 7108 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:47:57.0761 7108 wbengine - ok
08:47:57.0761 7108 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:47:57.0777 7108 WbioSrvc - ok
08:47:57.0792 7108 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:47:57.0808 7108 wcncsvc - ok
08:47:57.0808 7108 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:47:57.0824 7108 WcsPlugInService - ok
08:47:57.0824 7108 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:47:57.0839 7108 Wd - ok
08:47:57.0839 7108 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:47:57.0855 7108 Wdf01000 - ok
08:47:57.0870 7108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:47:57.0886 7108 WdiServiceHost - ok
08:47:57.0886 7108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:47:57.0902 7108 WdiSystemHost - ok
08:47:57.0902 7108 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:47:57.0917 7108 WebClient - ok
08:47:57.0933 7108 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:47:57.0964 7108 Wecsvc - ok
 
08:47:57.0964 7108 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:47:57.0995 7108 wercplsupport - ok
08:47:57.0995 7108 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:47:58.0026 7108 WerSvc - ok
08:47:58.0026 7108 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:47:58.0058 7108 WfpLwf - ok
08:47:58.0058 7108 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:47:58.0073 7108 WIMMount - ok
08:47:58.0073 7108 WinDefend - ok
08:47:58.0089 7108 WinHttpAutoProxySvc - ok
08:47:58.0136 7108 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:47:58.0198 7108 Winmgmt - ok
08:47:58.0214 7108 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:47:58.0269 7108 WinRM - ok
08:47:58.0289 7108 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:47:58.0309 7108 Wlansvc - ok
08:47:58.0309 7108 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:47:58.0319 7108 wlcrasvc - ok
08:47:58.0349 7108 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:47:58.0379 7108 wlidsvc - ok
08:47:58.0379 7108 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
08:47:58.0389 7108 WmiAcpi - ok
08:47:58.0399 7108 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:47:58.0409 7108 wmiApSrv - ok
08:47:58.0419 7108 WMPNetworkSvc - ok
08:47:58.0419 7108 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:47:58.0429 7108 WPCSvc - ok
08:47:58.0439 7108 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:47:58.0449 7108 WPDBusEnum - ok
08:47:58.0449 7108 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:47:58.0479 7108 ws2ifsl - ok
08:47:58.0489 7108 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
08:47:58.0499 7108 wscsvc - ok
08:47:58.0509 7108 WSearch - ok
08:47:58.0599 7108 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:47:58.0639 7108 wuauserv - ok
08:47:58.0639 7108 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:47:58.0669 7108 WudfPf - ok
08:47:58.0679 7108 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:47:58.0709 7108 WUDFRd - ok
08:47:58.0709 7108 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:47:58.0739 7108 wudfsvc - ok
08:47:58.0749 7108 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
08:47:58.0759 7108 WwanSvc - ok
08:47:58.0799 7108 [ D2FE4103450E52CB248D842501F84B90 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
08:47:58.0839 7108 ZeroConfigService - ok
08:47:58.0849 7108 ================ Scan global ===============================
08:47:58.0849 7108 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:47:58.0859 7108 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
08:47:58.0859 7108 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
08:47:58.0869 7108 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:47:58.0869 7108 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:47:58.0879 7108 [Global] - ok
08:47:58.0879 7108 ================ Scan MBR ==================================
08:47:58.0879 7108 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:47:59.0039 7108 \Device\Harddisk0\DR0 - ok
08:47:59.0049 7108 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:47:59.0059 7108 \Device\Harddisk1\DR1 - ok
08:47:59.0059 7108 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR3
08:48:01.0499 7108 \Device\Harddisk2\DR3 - ok
08:48:01.0499 7108 ================ Scan VBR ==================================
08:48:01.0509 7108 [ 797F48B7E07F5579372C9E39238F19F1 ] \Device\Harddisk0\DR0\Partition1
08:48:01.0509 7108 \Device\Harddisk0\DR0\Partition1 - ok
08:48:01.0519 7108 [ 28FDEF85961DEC3F033B57C2FE9EB908 ] \Device\Harddisk0\DR0\Partition2
08:48:01.0519 7108 \Device\Harddisk0\DR0\Partition2 - ok
08:48:01.0529 7108 [ 97E1E10300E12FF4C892567A3820BA73 ] \Device\Harddisk2\DR3\Partition1
08:48:01.0529 7108 \Device\Harddisk2\DR3\Partition1 - ok
08:48:01.0529 7108 ============================================================
08:48:01.0529 7108 Scan finished
08:48:01.0529 7108 ============================================================
08:48:01.0539 1828 Detected object count: 1
08:48:01.0539 1828 Actual detected object count: 1
08:48:11.0239 1828 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - skipped by user
08:48:11.0239 1828 Intel(R) ME Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
08:49:35.0502 8120 Deinitialize success
 
As for aswMBR I 'm not sure because I need to restart my computer due my computer was hang.

could you provide me what are the expectation duration before it's complete because all of my system cannot be used...is it normal during the process or my computer is really hang.
 
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-08 09:50:34
-----------------------------
09:50:34.258 OS Version: Windows x64 6.1.7601 Service Pack 1
09:50:34.258 Number of processors: 4 586 0x3A09
09:50:34.258 ComputerName: IMKHAIRIL-VAIO UserName: imkhairil
09:50:34.804 Initialize success
09:50:47.593 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
09:50:47.609 Disk 0 Vendor: Intel___ 1.0. Size: 476937MB BusType: 8
09:50:47.609 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-1
09:50:47.609 Disk 1 Vendor: Intel___ 1.0. Size: 11485MB BusType: 8
09:50:47.609 Disk 0 MBR read successfully
09:50:47.609 Disk 0 MBR scan
09:50:47.624 Disk 0 Windows 7 default MBR code
09:50:47.624 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15038 MB offset 2048
09:50:47.624 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 350 MB offset 30799872
09:50:47.624 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461547 MB offset 31516672
09:50:47.640 Disk 0 scanning C:\Windows\system32\drivers
09:50:48.997 Service scanning
09:50:49.169 Service 1394ohci C:\Windows\system32\drivers\1394ohci.sys **LOCKED** 32
09:50:49.684 Service ACPI C:\Windows\system32\drivers\ACPI.sys **LOCKED** 32
09:50:49.730 Service AcpiPmi C:\Windows\system32\drivers\acpipmi.sys **LOCKED** 32
09:50:50.152 Service adp94xx C:\Windows\system32\drivers\adp94xx.sys **LOCKED** 32
09:50:50.167 Service adpahci C:\Windows\system32\drivers\adpahci.sys **LOCKED** 32
09:50:50.183 Service adpu320 C:\Windows\system32\drivers\adpu320.sys **LOCKED** 32
09:50:50.198 Service AFD C:\Windows\system32\drivers\afd.sys **LOCKED** 32
09:50:50.214 Service agp440 C:\Windows\system32\drivers\agp440.sys **LOCKED** 32
09:50:50.230 Service aliide C:\Windows\system32\drivers\aliide.sys **LOCKED** 32
09:50:50.245 Service amdide C:\Windows\system32\drivers\amdide.sys **LOCKED** 32
09:50:50.245 Service AmdK8 C:\Windows\system32\drivers\amdk8.sys **LOCKED** 32
09:50:50.261 Service AmdPPM C:\Windows\system32\drivers\amdppm.sys **LOCKED** 32
09:50:50.276 Service amdsata C:\Windows\system32\drivers\amdsata.sys **LOCKED** 32
09:50:50.292 Service amdsbs C:\Windows\system32\drivers\amdsbs.sys **LOCKED** 32
09:50:50.308 Service amdxata C:\Windows\system32\drivers\amdxata.sys **LOCKED** 32
09:50:50.323 Service AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys **LOCKED** 32
09:50:50.339 Service AMPPALP C:\Windows\system32\DRIVERS\amppal.sys **LOCKED** 32
09:50:50.354 Service AppID C:\Windows\system32\drivers\appid.sys **LOCKED** 32
09:50:50.370 Service arc C:\Windows\system32\drivers\arc.sys **LOCKED** 32
09:50:50.386 Service arcsas C:\Windows\system32\drivers\arcsas.sys **LOCKED** 32
09:50:50.401 Service ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys **LOCKED** 32
09:50:50.417 Service AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys **LOCKED** 32
09:50:50.432 Service atapi C:\Windows\system32\drivers\atapi.sys **LOCKED** 32
09:50:50.448 Service athr C:\Windows\system32\DRIVERS\athrx.sys **LOCKED** 32
09:50:50.479 Service b06bdrv C:\Windows\system32\drivers\bxvbda.sys **LOCKED** 32
09:50:50.495 Service b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys **LOCKED** 32
09:50:50.526 Service Beep C:\Windows\System32\Drivers\Beep.sys **LOCKED** 32
09:50:50.542 Service blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys **LOCKED** 32
09:50:50.604 Service BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys **LOCKED** 32
09:50:50.620 Service BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys **LOCKED** 32
09:50:50.635 Service BridgeMP C:\Windows\system32\DRIVERS\bridge.sys **LOCKED** 32
09:50:50.651 Service Brserid C:\Windows\System32\Drivers\Brserid.sys **LOCKED** 32
09:50:50.666 Service BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys **LOCKED** 32
09:50:50.682 Service BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys **LOCKED** 32
09:50:50.698 Service BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys **LOCKED** 32
09:50:50.713 Service BthEnum C:\Windows\system32\drivers\BthEnum.sys **LOCKED** 32
09:50:50.713 Service BTHMODEM C:\Windows\system32\drivers\bthmodem.sys **LOCKED** 32
09:50:50.729 Service BthPan C:\Windows\system32\DRIVERS\bthpan.sys **LOCKED** 32
09:50:50.760 Service BTHPORT C:\Windows\System32\Drivers\BTHport.sys **LOCKED** 32
09:50:50.776 Service BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys **LOCKED** 32
09:50:50.791 Service btmaux C:\Windows\system32\DRIVERS\btmaux.sys **LOCKED** 32
09:50:50.807 Service btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys **LOCKED** 32
09:50:50.822 Service cdrom C:\Windows\system32\DRIVERS\cdrom.sys **LOCKED** 32
09:50:50.838 Service circlass C:\Windows\system32\drivers\circlass.sys **LOCKED** 32
09:50:50.854 Service CLFS C:\Windows\System32\CLFS.sys **LOCKED** 32
09:50:50.885 Service CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys **LOCKED** 32
09:50:50.900 Service cmdide C:\Windows\system32\drivers\cmdide.sys **LOCKED** 32
09:50:50.916 Service CNG C:\Windows\System32\Drivers\cng.sys **LOCKED** 32
09:50:50.932 Service Compbatt C:\Windows\system32\DRIVERS\compbatt.sys **LOCKED** 32
09:50:50.947 Service CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys **LOCKED** 32
09:50:50.963 Service crcdisk C:\Windows\system32\drivers\crcdisk.sys **LOCKED** 32
09:50:51.072 Service discache C:\Windows\System32\drivers\discache.sys **LOCKED** 32
09:50:51.103 Service Disk C:\Windows\system32\drivers\disk.sys **LOCKED** 32
09:50:51.134 Service drmkaud C:\Windows\system32\drivers\drmkaud.sys **LOCKED** 32
09:50:51.150 Service DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys **LOCKED** 32
09:50:51.166 Service e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys **LOCKED** 32
09:50:51.197 Service ebdrv C:\Windows\system32\drivers\evbda.sys **LOCKED** 32
09:50:51.228 Service elxstor C:\Windows\system32\drivers\elxstor.sys **LOCKED** 32
09:50:51.244 Service ErrDev C:\Windows\system32\drivers\errdev.sys **LOCKED** 32
09:50:51.322 Service fdc C:\Windows\system32\drivers\fdc.sys **LOCKED** 32
09:50:51.353 Service flpydisk C:\Windows\system32\drivers\flpydisk.sys **LOCKED** 32
09:50:51.400 Service fvevol C:\Windows\System32\DRIVERS\fvevol.sys **LOCKED** 32
09:50:51.415 Service gagp30kx C:\Windows\system32\drivers\gagp30kx.sys **LOCKED** 32
09:50:51.446 Service hcw85cir C:\Windows\system32\drivers\hcw85cir.sys **LOCKED** 32
09:50:51.462 Service HdAudAddService C:\Windows\system32\drivers\HdAudio.sys **LOCKED** 32
09:50:51.478 Service HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys **LOCKED** 32
09:50:51.493 Service HidBatt C:\Windows\system32\drivers\HidBatt.sys **LOCKED** 32
09:50:51.509 Service HidBth C:\Windows\system32\drivers\hidbth.sys **LOCKED** 32
09:50:51.524 Service HidIr C:\Windows\system32\drivers\hidir.sys **LOCKED** 32
09:50:51.540 Service HidUsb C:\Windows\system32\DRIVERS\hidusb.sys **LOCKED** 32
09:50:51.571 Service HpSAMD C:\Windows\system32\drivers\HpSAMD.sys **LOCKED** 32
09:50:51.587 Service HTTP C:\Windows\system32\drivers\HTTP.sys **LOCKED** 32
09:50:51.602 Service hwpolicy C:\Windows\System32\drivers\hwpolicy.sys **LOCKED** 32
09:50:51.618 Service i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys **LOCKED** 32
09:50:51.634 Service iaStor C:\Windows\system32\drivers\iaStor.sys **LOCKED** 32
09:50:51.665 Service iaStorV C:\Windows\system32\drivers\iaStorV.sys **LOCKED** 32
09:50:51.696 Service ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys **LOCKED** 32
09:50:51.727 Service IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys **LOCKED** 32
09:50:51.790 Service igfx C:\Windows\system32\DRIVERS\igdkmd64.sys **LOCKED** 32
09:50:51.821 Service iirsp C:\Windows\system32\drivers\iirsp.sys **LOCKED** 32
09:50:51.868 Service IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys **LOCKED** 32
09:50:51.883 Service IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys **LOCKED** 32
09:50:51.914 Service intelide C:\Windows\system32\drivers\intelide.sys **LOCKED** 32
09:50:51.930 Service intelppm C:\Windows\system32\DRIVERS\intelppm.sys **LOCKED** 32
09:50:51.946 Service IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys **LOCKED** 32
09:50:51.961 Service IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys **LOCKED** 32
09:50:51.977 Service IPNAT C:\Windows\System32\drivers\ipnat.sys **LOCKED** 32
09:50:51.992 Service IRENUM C:\Windows\system32\drivers\irenum.sys **LOCKED** 32
09:50:52.008 Service isapnp C:\Windows\system32\drivers\isapnp.sys **LOCKED** 32
09:50:52.024 Service iScsiPrt C:\Windows\system32\drivers\msiscsi.sys **LOCKED** 32
09:50:52.039 Service iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys **LOCKED** 32
09:50:52.055 Service iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys **LOCKED** 32
09:50:52.070 Service iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys **LOCKED** 32
09:50:52.086 Service kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys **LOCKED** 32
09:50:52.102 Service kbdhid C:\Windows\system32\drivers\kbdhid.sys **LOCKED** 32
09:50:52.133 Service KL1 C:\Windows\system32\DRIVERS\kl1.sys **LOCKED** 32
09:50:52.148 Service KLIM6 C:\Windows\system32\DRIVERS\klim6.sys **LOCKED** 32
09:50:52.164 Service klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys **LOCKED** 32
09:50:52.180 Service klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys **LOCKED** 32
09:50:52.195 Service kltdi C:\Windows\system32\DRIVERS\kltdi.sys **LOCKED** 32
09:50:52.211 Service kneps C:\Windows\system32\DRIVERS\kneps.sys **LOCKED** 32
09:50:52.226 Service KSecDD C:\Windows\System32\Drivers\ksecdd.sys **LOCKED** 32
09:50:52.242 Service KSecPkg C:\Windows\System32\Drivers\ksecpkg.sys **LOCKED** 32
09:50:52.258 Service ksthunk C:\Windows\system32\drivers\ksthunk.sys **LOCKED** 32
09:50:52.273 Service lltdio C:\Windows\system32\DRIVERS\lltdio.sys **LOCKED** 32
09:50:52.351 Service LSI_FC C:\Windows\system32\drivers\lsi_fc.sys **LOCKED** 32
09:50:52.367 Service LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys **LOCKED** 32
09:50:52.382 Service LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys **LOCKED** 32
09:50:52.398 Service LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys **LOCKED** 32
09:50:52.445 Service megasas C:\Windows\system32\drivers\megasas.sys **LOCKED** 32
09:50:52.460 Service MegaSR C:\Windows\system32\drivers\MegaSR.sys **LOCKED** 32
09:50:52.476 Service MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys **LOCKED** 32
09:50:52.492 Service Modem C:\Windows\system32\drivers\modem.sys **LOCKED** 32
09:50:52.507 Service monitor C:\Windows\system32\DRIVERS\monitor.sys **LOCKED** 32
09:50:52.523 Service mouclass C:\Windows\system32\DRIVERS\mouclass.sys **LOCKED** 32
09:50:52.538 Service mouhid C:\Windows\system32\DRIVERS\mouhid.sys **LOCKED** 32
09:50:52.554 Service mountmgr C:\Windows\System32\drivers\mountmgr.sys **LOCKED** 32
09:50:52.585 Service mpio C:\Windows\system32\drivers\mpio.sys **LOCKED** 32
09:50:52.601 Service mpsdrv C:\Windows\System32\drivers\mpsdrv.sys **LOCKED** 32
09:50:52.632 Service msahci C:\Windows\system32\drivers\msahci.sys **LOCKED** 32
09:50:52.648 Service msdsm C:\Windows\system32\drivers\msdsm.sys **LOCKED** 32
09:50:52.679 Service mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys **LOCKED** 32
09:50:52.694 Service msisadrv C:\Windows\system32\drivers\msisadrv.sys **LOCKED** 32
09:50:52.710 Service MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys **LOCKED** 32
09:50:52.726 Service MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys **LOCKED** 32
09:50:52.741 Service MSPQM C:\Windows\system32\drivers\MSPQM.sys **LOCKED** 32
09:50:52.757 Service MsRPC C:\Windows\System32\Drivers\MsRPC.sys **LOCKED** 32
09:50:52.772 Service mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys **LOCKED** 32
09:50:53.100 Service MSTEE C:\Windows\system32\drivers\MSTEE.sys **LOCKED** 32
09:50:53.100 Service MTConfig C:\Windows\system32\drivers\MTConfig.sys **LOCKED** 32
09:50:53.131 Service NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys **LOCKED** 32
09:50:53.162 Service NDIS C:\Windows\system32\drivers\ndis.sys **LOCKED** 32
09:50:53.178 Service NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys **LOCKED** 32
09:50:53.178 Service NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys **LOCKED** 32
09:50:53.194 Service Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys **LOCKED** 32
09:50:53.209 Service NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys **LOCKED** 32
09:50:53.225 Service NDProxy C:\Windows\System32\Drivers\NDProxy.sys **LOCKED** 32
09:50:53.256 Service NetBT C:\Windows\System32\DRIVERS\netbt.sys **LOCKED** 32
09:50:53.334 Service NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys **LOCKED** 32
09:50:53.396 Service nfrd960 C:\Windows\system32\drivers\nfrd960.sys **LOCKED** 32
09:50:53.490 Service nsiproxy C:\Windows\system32\drivers\nsiproxy.sys **LOCKED** 32
09:50:53.521 Service Null C:\Windows\System32\Drivers\Null.sys **LOCKED** 32
09:50:53.662 Service nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys **LOCKED** 32
09:50:53.693 Service nvraid C:\Windows\system32\drivers\nvraid.sys **LOCKED** 32
09:50:53.708 Service nvstor C:\Windows\system32\drivers\nvstor.sys **LOCKED** 32
09:50:53.724 Service nv_agp C:\Windows\system32\drivers\nv_agp.sys **LOCKED** 32
09:50:53.740 Service ohci1394 C:\Windows\system32\drivers\ohci1394.sys **LOCKED** 32
09:50:53.786 Service Parport C:\Windows\system32\drivers\parport.sys **LOCKED** 32
09:50:53.802 Service partmgr C:\Windows\System32\drivers\partmgr.sys **LOCKED** 32
09:50:53.818 Service pci C:\Windows\system32\drivers\pci.sys **LOCKED** 32
09:50:53.849 Service pciide C:\Windows\system32\drivers\pciide.sys **LOCKED** 32
09:50:53.864 Service pcmcia C:\Windows\system32\drivers\pcmcia.sys **LOCKED** 32
09:50:53.880 Service pcw C:\Windows\System32\drivers\pcw.sys **LOCKED** 32
09:50:53.896 Service PEAUTH C:\Windows\system32\drivers\peauth.sys **LOCKED** 32
09:50:53.958 Service PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys **LOCKED** 32
09:50:53.974 Service Processor C:\Windows\system32\drivers\processr.sys **LOCKED** 32
09:50:53.989 Service Psched C:\Windows\system32\DRIVERS\pacer.sys **LOCKED** 32
09:50:54.005 Service PxHlpa64 C:\Windows\System32\Drivers\PxHlpa64.sys **LOCKED** 32
09:50:54.052 Service ql2300 C:\Windows\system32\drivers\ql2300.sys **LOCKED** 32
09:50:54.067 Service ql40xx C:\Windows\system32\drivers\ql40xx.sys **LOCKED** 32
09:50:54.083 Service QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys **LOCKED** 32
09:50:54.098 Service RasAcd C:\Windows\System32\DRIVERS\rasacd.sys **LOCKED** 32
09:50:54.114 Service RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys **LOCKED** 32
09:50:54.130 Service Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys **LOCKED** 32
09:50:54.161 Service RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys **LOCKED** 32
09:50:54.176 Service RasSstp C:\Windows\system32\DRIVERS\rassstp.sys **LOCKED** 32
09:50:54.192 Service rdpbus C:\Windows\system32\drivers\rdpbus.sys **LOCKED** 32
09:50:54.208 Service RDPCDD C:\Windows\System32\DRIVERS\RDPCDD.sys **LOCKED** 32
09:50:54.223 Service RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys **LOCKED** 32
09:50:54.223 Service RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys **LOCKED** 32
09:50:54.239 Service RDPWD C:\Windows\System32\Drivers\RDPWD.sys **LOCKED** 32
09:50:54.254 Service rdyboost C:\Windows\System32\drivers\rdyboost.sys **LOCKED** 32
09:50:54.301 Service RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys **LOCKED** 32
09:50:54.332 Service RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys **LOCKED** 32
09:50:54.348 Service rspndr C:\Windows\system32\DRIVERS\rspndr.sys **LOCKED** 32
09:50:54.364 Service RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys **LOCKED** 32
09:50:54.410 Service sbp2port C:\Windows\system32\drivers\sbp2port.sys **LOCKED** 32
09:50:54.426 Service scfilter C:\Windows\System32\DRIVERS\scfilter.sys **LOCKED** 32
09:50:54.442 Service sdbus C:\Windows\system32\DRIVERS\sdbus.sys **LOCKED** 32
09:50:54.473 Service secdrv C:\Windows\System32\Drivers\secdrv.sys **LOCKED** 32
09:50:54.488 Service Serenum C:\Windows\system32\drivers\serenum.sys **LOCKED** 32
09:50:54.504 Service Serial C:\Windows\system32\drivers\serial.sys **LOCKED** 32
09:50:54.520 Service sermouse C:\Windows\system32\drivers\sermouse.sys **LOCKED** 32
09:50:54.535 Service SFEP C:\Windows\system32\DRIVERS\SFEP.sys **LOCKED** 32
09:50:54.551 Service sffdisk C:\Windows\system32\drivers\sffdisk.sys **LOCKED** 32
09:50:54.566 Service sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys **LOCKED** 32
09:50:54.582 Service sffp_sd C:\Windows\system32\drivers\sffp_sd.sys **LOCKED** 32
09:50:54.598 Service sfloppy C:\Windows\system32\drivers\sfloppy.sys **LOCKED** 32
09:50:54.629 Service SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys **LOCKED** 32
09:50:54.644 Service SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys **LOCKED** 32
09:50:54.660 Service Smb C:\Windows\system32\DRIVERS\smb.sys **LOCKED** 32
09:50:54.722 Service spldr C:\Windows\System32\Drivers\spldr.sys **LOCKED** 32
09:50:54.863 Service stexstor C:\Windows\system32\drivers\stexstor.sys **LOCKED** 32
09:50:54.894 Service swenum C:\Windows\system32\DRIVERS\swenum.sys **LOCKED** 32
09:50:54.910 Service SynTP C:\Windows\system32\DRIVERS\SynTP.sys **LOCKED** 32
09:50:54.956 Service Tcpip C:\Windows\System32\drivers\tcpip.sys **LOCKED** 32
09:50:54.988 Service TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys **LOCKED** 32
09:50:55.003 Service tcpipreg C:\Windows\System32\drivers\tcpipreg.sys **LOCKED** 32
09:50:55.019 Service TDPIPE C:\Windows\system32\drivers\tdpipe.sys **LOCKED** 32
09:50:55.034 Service TDTCP C:\Windows\system32\drivers\tdtcp.sys **LOCKED** 32
09:50:55.034 Service tdx C:\Windows\system32\DRIVERS\tdx.sys **LOCKED** 32
09:50:55.050 Service TermDD C:\Windows\system32\DRIVERS\termdd.sys **LOCKED** 32
09:50:55.097 Service tssecsrv C:\Windows\System32\DRIVERS\tssecsrv.sys **LOCKED** 32
09:50:55.112 Service TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys **LOCKED** 32
09:50:55.128 Service TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys **LOCKED** 32
09:50:55.144 Service tunnel C:\Windows\system32\DRIVERS\tunnel.sys **LOCKED** 32
09:50:55.159 Service uagp35 C:\Windows\system32\drivers\uagp35.sys **LOCKED** 32
09:50:55.190 Service uliagpkx C:\Windows\system32\drivers\uliagpkx.sys **LOCKED** 32
09:50:55.190 Service umbus C:\Windows\system32\DRIVERS\umbus.sys **LOCKED** 32
09:50:55.206 Service UmPass C:\Windows\system32\drivers\umpass.sys **LOCKED** 32
09:50:55.237 Service usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys **LOCKED** 32
09:50:55.253 Service usbcir C:\Windows\system32\drivers\usbcir.sys **LOCKED** 32
09:50:55.268 Service usbehci C:\Windows\system32\DRIVERS\usbehci.sys **LOCKED** 32
09:50:55.284 Service usbhub C:\Windows\system32\DRIVERS\usbhub.sys **LOCKED** 32
09:50:55.300 Service usbohci C:\Windows\system32\drivers\usbohci.sys **LOCKED** 32
09:50:55.315 Service usbprint C:\Windows\system32\drivers\usbprint.sys **LOCKED** 32
09:50:55.331 Service USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS **LOCKED** 32
09:50:55.346 Service usbuhci C:\Windows\system32\drivers\usbuhci.sys **LOCKED** 32
09:50:55.362 Service usbvideo C:\Windows\System32\Drivers\usbvideo.sys **LOCKED** 32
09:50:55.409 Service vdrvroot C:\Windows\system32\drivers\vdrvroot.sys **LOCKED** 32
09:50:55.424 Service vga C:\Windows\system32\DRIVERS\vgapnp.sys **LOCKED** 32
09:50:55.456 Service VgaSave C:\Windows\System32\drivers\vga.sys **LOCKED** 32
09:50:55.456 Service vhdmp C:\Windows\system32\drivers\vhdmp.sys **LOCKED** 32
09:50:55.487 Service viaide C:\Windows\system32\drivers\viaide.sys **LOCKED** 32
09:50:55.502 Service volmgr C:\Windows\system32\drivers\volmgr.sys **LOCKED** 32
09:50:55.518 Service volmgrx C:\Windows\System32\drivers\volmgrx.sys **LOCKED** 32
09:50:55.534 Service volsnap C:\Windows\system32\drivers\volsnap.sys **LOCKED** 32
09:50:55.549 Service vsmraid C:\Windows\system32\drivers\vsmraid.sys **LOCKED** 32
09:50:55.580 Service vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys **LOCKED** 32
09:50:55.596 Service vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys **LOCKED** 32
09:50:55.612 Service vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys **LOCKED** 32
09:50:55.627 Service WacomPen C:\Windows\system32\drivers\wacompen.sys **LOCKED** 32
09:50:55.658 Service WANARP C:\Windows\system32\DRIVERS\wanarp.sys **LOCKED** 32
09:50:55.674 Service Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys **LOCKED** 32
09:50:55.705 Service Wd C:\Windows\system32\drivers\wd.sys **LOCKED** 32
09:50:55.721 Service Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys **LOCKED** 32
09:50:55.768 Service WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys **LOCKED** 32
09:50:55.830 Service WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys **LOCKED** 32
09:50:55.861 Service ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys **LOCKED** 32
09:50:55.924 Service WudfPf C:\Windows\system32\drivers\WudfPf.sys **LOCKED** 32
09:50:55.939 Service WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys **LOCKED** 32
09:50:56.485 Modules scanning
09:50:56.485 Disk 0 trace - called modules:
09:50:56.485 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
09:50:56.501 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800af72060]
09:50:56.501 3 CLASSPNP.SYS[fffff88001c4d43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa800aa68050]
09:50:56.501 Scan finished successfully
09:51:06.672 Disk 0 MBR has been saved successfully to "C:\Users\imkhairil\Desktop\MBR.dat"
09:51:06.672 The log file has been saved successfully to "C:\Users\imkhairil\Desktop\aswMBR.txt"
 
That's fine, good job!

ESET Online Scan

Please run a free online scan with the ESET Online Scanner
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install, or it will ask to download an installer. Please do so an install it.
  • Click Start or wait for the scanner to load.
  • Make sure that the options Remove found threats and the option Scan unwanted applications are checked.
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, there are a couple of things to keep in mind:
  • 1. If NO threats were found, allow the scanner to Uninstall on close and then close the Window.
  • 2. If threats WERE detected, click on List of Threats Found, Export to Text File...save it as ESET-Scan-Log.txt. Click the back button/link, put a checkmark to Uninstall Application on Close and then close the window.
  • Open the logfile from wherever you saved it
  • Copy and paste the contents in your next reply.


=======================================


Any more issues?

We need to know any other issues that are plaguing your computer. Kindly give a summary so we know how to continue from here.

Many of the things to note for us would be:

  • Slow computer
  • Error messages
  • Fake antivirus alerts or the icon in the system tray
  • svchost.exe running at 100%
  • System crashes or blue screen of death
 
C:\Users\imkhairil\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VMA19EOL\bi_downloader[1].exe a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\imkhairil\AppData\Local\Temp\nsk8FE3.tmp a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\imkhairil\AppData\Local\Temp\nsq4C1F.tmp a variant of Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\imkhairil\Downloads\Programs\SoftonicDownloader_for_picpick.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined

I don't face any of other issues as stated. thank you
 
Please do the following so we can finish up here, excellent work:

Clean up System Restore

Now, to get you off to a clean start, we will be creating a new Restore Point, then clearing the old ones to make sure you do not get reinfected, in case you need to "restore back."

To manually create a new Restore Point
  • Go to Control Panel and select System and Maintenance
  • Select System
  • On the left select Advance System Settings and accept the warning if you get one
  • Select System Protection Tab
  • Select Create at the bottom
  • Type in a name I.e. Clean
  • Select Create
Now we can purge the infected ones
  • Go back to the System and Maintenance page
  • Select Performance Information and Tools
  • On the left select Open Disk Cleanup
  • Select Files from all users and accept the warning if you get one
  • In the drop down box select your main drive I.e. C
  • For a few moments the system will make some calculations:
    diskcleanup1.png
  • Select the More Options tab
    moreoptions.png
  • In the System Restore and Shadow Backups select Clean up
    moreoptions2.png
  • Select Delete on the pop up
  • Select OK
  • Select Delete
Run OTC to remove our tools

To remove all of the tools we used and the files and folders they created, please do the following:
Please download OTC.exe by OldTimer:
  • Save it to your Desktop.
  • Double click OTC.exe.
  • Click the CleanUp! button.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes.
Note:If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

Purge old temporary files

Download CCleaner Slim and save it to your Desktop - Alternate download link

When the file has been saved, go to your Desktop and double-click on ccsetupxxx_slim.exe
Follow the prompts to install the program.

* Double-click the CCleaner shortcut on the desktop to start the program.
* Click on the Options block on the left, then choose Cookies.
* Under Cookies to Delete, highlight any cookies you would like to retain permanently
* Click the right arrow > to move them to the Cookies to Keep window.
* Go into Options > Advanced & uncheck Only delete files in Windows Temp folders older than 48 hours
* Click Cleaner on the left then Run Cleaner on the right to run the program.
* Important: Make sure that ALL browser windows are closed before selecting Run Cleaner

Caution: Only use the Registry feature if you are very familiar with the registry.
Always back up your registry before making any changes. Exit CCleaner after it has completed it's process.

Security Check

Please download Security Check by screen317 from SpywareInfoforum.org or Changelog.fr.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
 
Results of screen317's Security Check version 0.99.51
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
Kaspersky Internet Security
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.0.1400
Java(TM) 7 Update 1
Java version out of Date!
Adobe Flash Player 11.4.402.278
Mozilla Firefox (15.0.1)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Symantec Norton Online Backup NOBuAgent.exe
Kaspersky Lab Kaspersky Internet Security 2013 avp.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 6%
````````````````````End of Log``````````````````````
 
Java Update!

Please download the newest version of Java from Java.com.

Before installing: it is important to remove older versions of Java since it does not do so automatically and old versions still leave you vulnerable.
Go to the Control Panel and enter Add or Remove Programs (Programs and Features in Vista/7).
Search in the list for all previous installed versions of Java. (J2SE Runtime Environment). Please uninstall/remove each of them.

Once old versions are gone, please install the newest version.

Read more about Java exploit problems


Personal Tips on Preventing Malware

See this page for more info about malware and prevention.

Read more about "FAQ: How did Sirefef or ZeroAccess Infect You?"

Any other questions before I mark this topic solved?
 
Status
Not open for further replies.

Similar threads

D
Microsoft Outlook and Teams to open links in Edge, ignoring default browser settings in...
Replies
11
Views
1K
Hadakajime
H
Julio Franco
Expert tips for great video conferences, virtual meetings and interviews
Replies
0
Views
799
Julio Franco
Julio Franco
Cal Jeffrey
The MyHouse Doom 2 mod is a masterpiece of creepy map editing
Replies
4
Views
776
loki1944
L

Latest posts

Back