Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

blue screen with stop: 0x00000008e memory dump

Started by buck6691 , Mar 29 2012 09:06 PM

  • Please log in to reply
8 replies to this topic

#1 buck6691

buck6691

    New Member

  • Members
  • Pip
  • 8 posts

Posted 29 March 2012 - 09:06 PM

Hello! Although I am a new member, I have been following the forum for a long time at BC. I am having the dreaded blue screen memory dump issue. It seems hopeless as I am only able to manuever in safe mode. I have run Nirsoft blue screen view to see what may be the issue. Can this be fixed? I know AustriAlien and Yard Dog have helped in the past.
==================================================
Dump File : Mini032612-03.dmp
Crash Time : 3/26/2012 8:25:57 AM
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x82f32a65
Parameter 3 : 0x9fccc78c
Parameter 4 : 0x00000000
Caused By Driver : ataport.SYS
Caused By Address : ataport.SYS+4a65
File Description : ATAPI Driver Extension
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Crash Address : ataport.SYS+4a65
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : MpFilter.sys+bc7
Stack Address 3 : MpFilter.sys+ddfd
Computer Name :
Full Path : C:\Windows\Minidump\Mini032612-03.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini032612-02.dmp
Crash Time : 3/26/2012 1:01:43 AM
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x8072fa65
Parameter 3 : 0x953f878c
Parameter 4 : 0x00000000
Caused By Driver : ataport.SYS
Caused By Address : ataport.SYS+4a65
File Description : ATAPI Driver Extension
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18005 (lh_sp2rtm.090410-1830)
Processor : 32-bit
Crash Address : ataport.SYS+4a65
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : MpFilter.sys+bc7
Stack Address 3 : MpFilter.sys+ddfd
Computer Name :
Full Path : C:\Windows\Minidump\Mini032612-02.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini032612-01.dmp
Crash Time : 3/26/2012 12:58:23 AM
Bug Check String : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000007e
Parameter 1 : 0xc0000005
Parameter 2 : 0x82f31a65
Parameter 3 : 0x90357fb8
Parameter 4 : 0x90357cb4
Caused By Driver : Ntfs.sys
Caused By Address : Ntfs.sys+1122f
File Description : NT File System Driver
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Processor : 32-bit
Crash Address : ataport.SYS+4a65
Stack Address 1 : ntkrnlpa.exe+44976
Stack Address 2 : ntkrnlpa.exe+1bd770
Stack Address 3 : mbam.sys+aaa
Computer Name :
Full Path : C:\Windows\Minidump\Mini032612-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini021612-01.dmp
Crash Time : 2/16/2012 9:04:49 AM
Bug Check String : DRIVER_POWER_STATE_FAILURE
Bug Check Code : 0x0000009f
Parameter 1 : 0x00000003
Parameter 2 : 0x87aa0030
Parameter 3 : 0x87b1dc00
Parameter 4 : 0x891e0c48
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb3f
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18533 (vistasp2_gdr.111025-0338)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+cdb3f
Stack Address 1 : ntkrnlpa.exe+313ab
Stack Address 2 : ntkrnlpa.exe+30fc8
Stack Address 3 : ntkrnlpa.exe+aa32b
Computer Name :
Full Path : C:\Windows\Minidump\Mini021612-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini012012-01.dmp
Crash Time : 1/20/2012 1:02:02 PM
Bug Check String : DRIVER_POWER_STATE_FAILURE
Bug Check Code : 0x0000009f
Parameter 1 : 0x00000003
Parameter 2 : 0x87a20030
Parameter 3 : 0x87a6dc00
Parameter 4 : 0x8592caf8
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb3f
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18533 (vistasp2_gdr.111025-0338)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+cdb3f
Stack Address 1 : ntkrnlpa.exe+313ab
Stack Address 2 : ntkrnlpa.exe+30fc8
Stack Address 3 : ntkrnlpa.exe+aa32b
Computer Name :
Full Path : C:\Windows\Minidump\Mini012012-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini120710-01.dmp
Crash Time : 12/7/2010 11:41:18 PM
Bug Check String : DRIVER_POWER_STATE_FAILURE
Bug Check Code : 0x0000009f
Parameter 1 : 0x00000003
Parameter 2 : 0x87484030
Parameter 3 : 0x871bc2b0
Parameter 4 : 0x8532ab50
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb8d
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18533 (vistasp2_gdr.111025-0338)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+cdb8d
Stack Address 1 : ntkrnlpa.exe+313fb
Stack Address 2 : ntkrnlpa.exe+31018
Stack Address 3 : ntkrnlpa.exe+aa30b
Computer Name :
Full Path : C:\Windows\Minidump\Mini120710-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 138,880
==================================================

==================================================
Dump File : Mini081310-01.dmp
Crash Time : 8/13/2010 3:57:02 AM
Bug Check String : DRIVER_POWER_STATE_FAILURE
Bug Check Code : 0x0000009f
Parameter 1 : 0x00000003
Parameter 2 : 0x867a5030
Parameter 3 : 0x86514c00
Parameter 4 : 0x85e108f0
Caused By Driver : ntkrnlpa.exe
Caused By Address : ntkrnlpa.exe+cdb8d
File Description : NT Kernel & System
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6002.18533 (vistasp2_gdr.111025-0338)
Processor : 32-bit
Crash Address : ntkrnlpa.exe+cdb8d
Stack Address 1 : ntkrnlpa.exe+313fb
Stack Address 2 : ntkrnlpa.exe+31018
Stack Address 3 : ntkrnlpa.exe+aa30b
Computer Name :
Full Path : C:\Windows\Minidump\Mini081310-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 179,056
==================================================

==================================================
Dump File : Mini071609-01.dmp
Crash Time : 7/16/2009 8:53:29 PM
Bug Check String : KERNEL_MODE_EXCEPTION_NOT_HANDLED
Bug Check Code : 0x1000008e
Parameter 1 : 0xc0000005
Parameter 2 : 0x958ff547
Parameter 3 : 0x96b97c48
Parameter 4 : 0x00000000
Caused By Driver : win32k.sys
Caused By Address : win32k.sys+cf547
File Description : Multi-User Win32 Driver
Product Name : Microsoft® Windows® Operating System
Company : Microsoft Corporation
File Version : 6.0.6000.16386 (vista_rtm.061101-2205)
Processor : 32-bit
Crash Address : win32k.sys+cf547
Stack Address 1 : win32k.sys+cc7e8
Stack Address 2 : win32k.sys+cc868
Stack Address 3 : ntkrnlpa.exe+57a1a
Computer Name :
Full Path : C:\Windows\Minidump\Mini071609-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6001
Dump File Size : 138,880
==================================================

Edited by hamluis, 31 March 2012 - 07:41 AM.
Moved from Vista to Am I Infected.

 

  • BC Ads
  • BleepingComputer.com

#2 AustrAlien

AustrAlien

    Inquisitor

  • BC Advisor
  • PipPipPipPipPipPip
  • 6,763 posts
  • Gender:Male
  • Location:Cowra NSW Australia

Posted 30 March 2012 - 12:05 AM

It seems hopeless as I am only able to manuever in safe mode.
==================================================
Dump File : Mini032612-03.dmp
Stack Address 2 : MpFilter.sys+bc7 <<< Microsoft Security Essentials (or Windows Defender?)
Stack Address 3 : MpFilter.sys+ddfd
==================================================

==================================================
Dump File : Mini032612-02.dmp
Stack Address 2 : MpFilter.sys+bc7
Stack Address 3 : MpFilter.sys+ddfd
==================================================

==================================================
Dump File : Mini032612-01.dmp
Stack Address 3 : mbam.sys+aaa <<< Malwarebytes Antimalware
==================================================

mbam.sys is the driver for Malwarebytes Antimalware (MBAM).
  • Un-install MBAM and re-start the computer normally.
  • What is the situation like now?
If still not right ...
  • MpFilter.sys could belong to either Microsoft Security Essentials (MSE) or Windows Defender.
  • If you have MSE installed as your antivirus application, then un-install that and re-start the computer normally.
  • What is the situation like now?
If you are still having any problems with Windows starting &/or running normally, then please describe the problems fully.

How does the system run in Safe Mode or Safe Mode with networking? Any problems?

Do you have any reason to suspect that the system might be infected with malware, or have you had to deal with a malware infection recently?
AustrAlien
Google is my friend. Make Google your friend too.
Posted Image

#3 buck6691

buck6691

    New Member

  • Members
  • Pip
  • 8 posts

Posted 31 March 2012 - 01:35 AM

I do use Mbam and MS Security Essentials..completed mbam uninstall: no change,memory dump; Attempted MS Security Essentials but I got an erroe indicating it could not install MS E in safe mode. yes, not uninstall, but install (error code 0x8004FF11).I am not sure if u have to run MS E wizard to uninstall or its an error. does run in safe mode and safe mode with networking. I did run full scans with mbam ( found 7 malware and viruses and they were removed. Prior, MS Security Essentials was not turned on (dont know y). First saw something strange days ago when screen visual settings changed as if they were reduced to an older windows look. Looking back, I seem to have an issue with MS isatap network adapter that was disabled and could not be enabled. OTHER QUIRKS: I can only see half of Control Panel; I seemingly lost personal files with 3 system restore attempts; incomplete JAVA and adobe update installs; and windows security cannot be turned on. thanks in advance.

#4 AustrAlien

AustrAlien

    Inquisitor

  • BC Advisor
  • PipPipPipPipPipPip
  • 6,763 posts
  • Gender:Male
  • Location:Cowra NSW Australia

Posted 31 March 2012 - 01:43 AM

It seems that your woes are due to a malware infection on the system.

I'll get your topic moved to the "Am I Infected?" forum.

Sit tight.
AustrAlien
Google is my friend. Make Google your friend too.
Posted Image

#5 cryptodan

cryptodan

    Bleepin Madman

  • Inactive Staff
  • PipPipPipPipPipPip
  • 19,032 posts
  • Gender:Male
  • Location:Catonsville, Md

Posted 31 March 2012 - 12:56 PM

Please download and run TDSSKiller. If asks you to fix anything, then PLEASE DO NOT FIX ANYTHING post the log it generates usually stored in c:\.

#6 buck6691

buck6691

    New Member

  • Members
  • Pip
  • 8 posts

Posted 31 March 2012 - 04:52 PM

will do.

#7 cryptodan

cryptodan

    Bleepin Madman

  • Inactive Staff
  • PipPipPipPipPipPip
  • 19,032 posts
  • Gender:Male
  • Location:Catonsville, Md

Posted 01 April 2012 - 05:30 PM

Have you ran TDSS Killer?

#8 buck6691

buck6691

    New Member

  • Members
  • Pip
  • 8 posts

Posted 02 April 2012 - 01:11 PM

Ran it...

13:01:22.0799 3196 TDSS rootkit removing tool 2.7.24.0 Apr 2 2012 10:31:48
13:01:24.0234 3196 ============================================================
13:01:24.0234 3196 Current date / time: 2012/04/02 13:01:24.0234
13:01:24.0234 3196 SystemInfo:
13:01:24.0234 3196
13:01:24.0234 3196 OS Version: 6.0.6002 ServicePack: 2.0
13:01:24.0234 3196 Product type: Workstation
13:01:24.0234 3196 ComputerName: DJE-PC
13:01:24.0250 3196 UserName: dje
13:01:24.0250 3196 Windows directory: C:\Windows
13:01:24.0250 3196 System windows directory: C:\Windows
13:01:24.0250 3196 Processor architecture: Intel x86
13:01:24.0250 3196 Number of processors: 2
13:01:24.0250 3196 Page size: 0x1000
13:01:24.0250 3196 Boot type: Safe boot with network
13:01:24.0250 3196 ============================================================
13:01:29.0289 3196 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:01:29.0304 3196 \Device\Harddisk0\DR0:
13:01:29.0304 3196 MBR used
13:01:29.0304 3196 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1CED7000
13:01:29.0445 3196 Initialize success
13:01:29.0445 3196 ============================================================
13:01:34.0000 1804 ============================================================
13:01:34.0000 1804 Scan started
13:01:34.0000 1804 Mode: Manual;
13:01:34.0000 1804 ============================================================
13:01:38.0181 1804 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
13:01:38.0228 1804 ACPI - ok
13:01:38.0805 1804 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
13:01:38.0820 1804 adp94xx - ok
13:01:39.0678 1804 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
13:01:39.0756 1804 adpahci - ok
13:01:40.0474 1804 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
13:01:40.0490 1804 adpu160m - ok
13:01:40.0895 1804 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
13:01:40.0895 1804 adpu320 - ok
13:01:41.0067 1804 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
13:01:41.0082 1804 AeLookupSvc - ok
13:01:41.0597 1804 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
13:01:41.0597 1804 AFD - ok
13:01:41.0816 1804 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
13:01:41.0831 1804 AgereModemAudio - ok
13:01:42.0705 1804 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
13:01:42.0705 1804 AgereSoftModem - ok
13:01:43.0173 1804 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
13:01:43.0173 1804 agp440 - ok
13:01:43.0594 1804 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
13:01:43.0610 1804 aic78xx - ok
13:01:43.0797 1804 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
13:01:43.0812 1804 ALG - ok
13:01:44.0140 1804 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
13:01:44.0140 1804 aliide - ok
13:01:44.0624 1804 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
13:01:44.0624 1804 amdagp - ok
13:01:44.0936 1804 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
13:01:44.0936 1804 amdide - ok
13:01:46.0418 1804 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
13:01:46.0418 1804 AmdK7 - ok
13:01:46.0496 1804 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
13:01:46.0496 1804 AmdK8 - ok
13:01:46.0792 1804 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
13:01:46.0792 1804 Appinfo - ok
13:01:47.0276 1804 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:01:47.0338 1804 Apple Mobile Device - ok
13:01:47.0775 1804 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
13:01:47.0775 1804 arc - ok
13:01:48.0243 1804 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
13:01:48.0243 1804 arcsas - ok
13:01:48.0680 1804 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
13:01:48.0695 1804 AsyncMac - ok
13:01:48.0945 1804 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
13:01:48.0945 1804 atapi - ok
13:01:49.0600 1804 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
13:01:49.0616 1804 athr - ok
13:01:50.0068 1804 Ati External Event Utility (581b9be9e92a0f3856cc85ec011edc6f) C:\Windows\system32\Ati2evxx.exe
13:01:50.0427 1804 Ati External Event Utility - ok
13:01:53.0266 1804 atikmdag (22d300f835600c9c634860cf2912f9cf) C:\Windows\system32\DRIVERS\atikmdag.sys
13:01:53.0812 1804 atikmdag - ok
13:01:54.0046 1804 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
13:01:54.0046 1804 AtiPcie - ok
13:01:54.0233 1804 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
13:01:54.0358 1804 AudioEndpointBuilder - ok
13:01:54.0452 1804 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
13:01:54.0452 1804 Audiosrv - ok
13:01:54.0795 1804 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
13:01:54.0810 1804 BBSvc - ok
13:01:55.0294 1804 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
13:01:55.0294 1804 Beep - ok
13:01:55.0497 1804 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
13:01:55.0528 1804 BFE - ok
13:01:55.0824 1804 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
13:01:55.0871 1804 BITS - ok
13:01:56.0152 1804 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
13:01:56.0168 1804 blbdrive - ok
13:01:56.0526 1804 Bonjour Service (1c87705ccb2f60172b0fc86b5d82f00d) C:\Program Files\Bonjour\mDNSResponder.exe
13:01:56.0542 1804 Bonjour Service - ok
13:01:56.0854 1804 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
13:01:56.0854 1804 bowser - ok
13:01:57.0291 1804 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
13:01:57.0291 1804 BrFiltLo - ok
13:01:57.0650 1804 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
13:01:57.0650 1804 BrFiltUp - ok
13:01:57.0837 1804 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
13:01:57.0852 1804 Browser - ok
13:01:58.0305 1804 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
13:01:58.0305 1804 Brserid - ok
13:01:58.0617 1804 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
13:01:58.0617 1804 BrSerWdm - ok
13:01:58.0835 1804 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
13:01:58.0835 1804 BrUsbMdm - ok
13:01:59.0194 1804 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
13:01:59.0194 1804 BrUsbSer - ok
13:01:59.0646 1804 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
13:01:59.0646 1804 BTHMODEM - ok
13:02:00.0114 1804 BthServ (a4c8377fa4a994e07075107dbe2e3dce) C:\Windows\System32\bthserv.dll
13:02:00.0114 1804 BthServ - ok
13:02:00.0676 1804 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
13:02:00.0692 1804 cdfs - ok
13:02:01.0144 1804 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\Windows\system32\drivers\Cdr4_xp.sys
13:02:01.0144 1804 Cdr4_xp - ok
13:02:01.0550 1804 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\Windows\system32\drivers\Cdralw2k.sys
13:02:01.0550 1804 Cdralw2k - ok
13:02:02.0111 1804 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
13:02:02.0111 1804 cdrom - ok
13:02:02.0501 1804 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
13:02:02.0579 1804 CertPropSvc - ok
13:02:03.0188 1804 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
13:02:03.0188 1804 circlass - ok
13:02:03.0593 1804 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
13:02:03.0687 1804 CLFS - ok
13:02:05.0075 1804 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:02:05.0294 1804 clr_optimization_v2.0.50727_32 - ok
13:02:06.0245 1804 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:02:06.0386 1804 clr_optimization_v4.0.30319_32 - ok
13:02:06.0557 1804 CLTNetCnService - ok
13:02:06.0978 1804 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
13:02:06.0994 1804 CmBatt - ok
13:02:07.0368 1804 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
13:02:07.0384 1804 cmdide - ok
13:02:07.0821 1804 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
13:02:07.0821 1804 Compbatt - ok
13:02:07.0977 1804 COMSysApp - ok
13:02:08.0289 1804 ConfigFree Service (596e452b5152ec9afe8153d296459d2b) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
13:02:08.0414 1804 ConfigFree Service - ok
13:02:09.0053 1804 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
13:02:09.0053 1804 crcdisk - ok
13:02:09.0786 1804 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
13:02:09.0786 1804 Crusoe - ok
13:02:10.0192 1804 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
13:02:10.0270 1804 CryptSvc - ok
13:02:10.0941 1804 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
13:02:11.0315 1804 DcomLaunch - ok
13:02:12.0594 1804 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
13:02:12.0594 1804 DfsC - ok
13:02:13.0187 1804 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
13:02:13.0608 1804 DFSR - ok
13:02:14.0045 1804 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
13:02:14.0061 1804 Dhcp - ok
13:02:14.0622 1804 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
13:02:14.0622 1804 disk - ok
13:02:15.0059 1804 dlcx_device - ok
13:02:15.0324 1804 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
13:02:15.0356 1804 Dnscache - ok
13:02:15.0652 1804 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
13:02:15.0683 1804 dot3svc - ok
13:02:16.0042 1804 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
13:02:16.0120 1804 DPS - ok
13:02:16.0619 1804 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
13:02:16.0619 1804 drmkaud - ok
13:02:17.0212 1804 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
13:02:17.0212 1804 DXGKrnl - ok
13:02:18.0444 1804 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
13:02:18.0444 1804 E1G60 - ok
13:02:18.0928 1804 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
13:02:18.0928 1804 EapHost - ok
13:02:19.0474 1804 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
13:02:19.0474 1804 Ecache - ok
13:02:19.0677 1804 eeCtrl (70aeac5d481b2904b40f2173e280b1b5) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
13:02:19.0677 1804 eeCtrl - ok
13:02:19.0911 1804 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
13:02:19.0973 1804 ehRecvr - ok
13:02:20.0176 1804 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
13:02:20.0238 1804 ehSched - ok
13:02:20.0441 1804 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
13:02:20.0457 1804 ehstart - ok
13:02:20.0909 1804 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
13:02:20.0925 1804 elxstor - ok
13:02:21.0190 1804 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
13:02:21.0252 1804 EMDMgmt - ok
13:02:21.0549 1804 EraserUtilRebootDrv (00bd6fc4a873d3341dcf9aef2d3c841e) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:02:21.0549 1804 EraserUtilRebootDrv - ok
13:02:22.0001 1804 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
13:02:22.0001 1804 ErrDev - ok
13:02:22.0298 1804 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
13:02:22.0329 1804 EventSystem - ok
13:02:22.0828 1804 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
13:02:22.0828 1804 exfat - ok
13:02:23.0358 1804 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
13:02:23.0358 1804 fastfat - ok
13:02:24.0404 1804 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
13:02:24.0404 1804 fdc - ok
13:02:24.0622 1804 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
13:02:24.0622 1804 fdPHost - ok
13:02:24.0794 1804 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
13:02:24.0794 1804 FDResPub - ok
13:02:25.0168 1804 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
13:02:25.0168 1804 FileInfo - ok
13:02:25.0449 1804 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
13:02:25.0449 1804 Filetrace - ok
13:02:25.0808 1804 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
13:02:25.0808 1804 flpydisk - ok
13:02:26.0229 1804 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
13:02:26.0229 1804 FltMgr - ok
13:02:26.0681 1804 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
13:02:26.0790 1804 FontCache - ok
13:02:27.0134 1804 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:02:27.0149 1804 FontCache3.0.0.0 - ok
13:02:27.0586 1804 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
13:02:27.0602 1804 fssfltr - ok
13:02:28.0226 1804 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
13:02:28.0756 1804 fsssvc - ok
13:02:29.0162 1804 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
13:02:29.0162 1804 Fs_Rec - ok
13:02:29.0614 1804 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
13:02:29.0614 1804 FwLnk - ok
13:02:30.0004 1804 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
13:02:30.0004 1804 gagp30kx - ok
13:02:30.0316 1804 GameConsoleService (01a5829dd261b4f3dd66d7e9f9b973f5) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
13:02:30.0363 1804 GameConsoleService - ok
13:02:30.0800 1804 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
13:02:30.0800 1804 GEARAspiWDM - ok
13:02:30.0971 1804 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
13:02:31.0002 1804 GoogleDesktopManager-051210-111108 - ok
13:02:31.0299 1804 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
13:02:31.0392 1804 gpsvc - ok
13:02:31.0829 1804 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
13:02:31.0860 1804 gupdate - ok
13:02:31.0892 1804 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
13:02:31.0892 1804 gupdatem - ok
13:02:32.0157 1804 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
13:02:32.0188 1804 gusvc - ok
13:02:32.0656 1804 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
13:02:32.0656 1804 HdAudAddService - ok
13:02:33.0249 1804 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
13:02:33.0249 1804 HDAudBus - ok
13:02:33.0639 1804 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
13:02:33.0639 1804 HidBth - ok
13:02:34.0013 1804 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
13:02:34.0013 1804 HidIr - ok
13:02:34.0278 1804 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
13:02:34.0294 1804 hidserv - ok
13:02:34.0731 1804 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
13:02:34.0731 1804 HidUsb - ok
13:02:34.0949 1804 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
13:02:34.0965 1804 hkmsvc - ok
13:02:35.0324 1804 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
13:02:35.0339 1804 HpCISSs - ok
13:02:35.0792 1804 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
13:02:35.0792 1804 HTTP - ok
13:02:36.0291 1804 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
13:02:36.0291 1804 i2omp - ok
13:02:36.0837 1804 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
13:02:36.0837 1804 i8042prt - ok
13:02:37.0274 1804 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
13:02:37.0289 1804 iaStorV - ok
13:02:37.0554 1804 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:02:37.0601 1804 IDriverT - ok
13:02:38.0022 1804 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:02:38.0241 1804 idsvc - ok
13:02:38.0600 1804 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
13:02:38.0600 1804 iirsp - ok
13:02:38.0896 1804 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
13:02:38.0958 1804 IKEEXT - ok
13:02:40.0082 1804 IntcAzAudAddService (8a4341616976e47712b60f18c7049dcc) C:\Windows\system32\drivers\RTKVHDA.sys
13:02:40.0097 1804 IntcAzAudAddService - ok
13:02:40.0518 1804 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
13:02:40.0518 1804 intelide - ok
13:02:40.0940 1804 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
13:02:40.0940 1804 intelppm - ok
13:02:41.0189 1804 IO_Memory - ok
13:02:41.0408 1804 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
13:02:41.0439 1804 IPBusEnum - ok
13:02:41.0891 1804 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:02:41.0891 1804 IpFilterDriver - ok
13:02:42.0219 1804 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
13:02:42.0281 1804 iphlpsvc - ok
13:02:42.0609 1804 IpInIp - ok
13:02:43.0108 1804 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
13:02:43.0108 1804 IPMIDRV - ok
13:02:43.0514 1804 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
13:02:43.0514 1804 IPNAT - ok
13:02:44.0122 1804 iPod Service (3a6d4d8abacf64292d060c9e06d2050d) C:\Program Files\iPod\bin\iPodService.exe
13:02:44.0684 1804 iPod Service - ok
13:02:45.0089 1804 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
13:02:45.0089 1804 IRENUM - ok
13:02:45.0510 1804 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
13:02:45.0510 1804 isapnp - ok
13:02:46.0883 1804 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
13:02:46.0883 1804 iScsiPrt - ok
13:02:47.0476 1804 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
13:02:47.0507 1804 iteatapi - ok
13:02:47.0788 1804 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
13:02:47.0819 1804 iteraid - ok
13:02:48.0350 1804 jswpsapi (723ba0aec942e91c0a9ce146e73deceb) C:\Program Files\Jumpstart\jswpsapi.exe
13:02:48.0490 1804 jswpsapi - ok
13:02:48.0942 1804 jswpslwf (7e72514a3a1c5a9f3bff0660b3866c2b) C:\Windows\system32\DRIVERS\jswpslwf.sys
13:02:48.0942 1804 jswpslwf - ok
13:02:49.0114 1804 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
13:02:49.0114 1804 kbdclass - ok
13:02:49.0535 1804 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
13:02:49.0535 1804 kbdhid - ok
13:02:49.0738 1804 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:02:49.0738 1804 KeyIso - ok
13:02:50.0097 1804 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
13:02:50.0097 1804 KR10I - ok
13:02:50.0549 1804 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
13:02:50.0549 1804 KR10N - ok
13:02:50.0986 1804 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
13:02:51.0002 1804 KSecDD - ok
13:02:51.0251 1804 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
13:02:51.0298 1804 KtmRm - ok
13:02:51.0532 1804 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
13:02:51.0548 1804 LanmanServer - ok
13:02:51.0891 1804 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
13:02:51.0922 1804 LanmanWorkstation - ok
13:02:53.0435 1804 LiveUpdate (a97eeb81f05bce3d7aa6c81f04ef39a4) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
13:02:54.0855 1804 LiveUpdate - ok
13:02:54.0964 1804 LiveUpdate Notice Ex - ok
13:02:55.0354 1804 LiveUpdate Notice Service (2d1389e05a807d956829f44bd4b60389) C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
13:02:55.0448 1804 LiveUpdate Notice Service - ok
13:02:55.0884 1804 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
13:02:55.0884 1804 lltdio - ok
13:02:56.0181 1804 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
13:02:56.0259 1804 lltdsvc - ok
13:02:56.0462 1804 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
13:02:56.0477 1804 lmhosts - ok
13:02:56.0742 1804 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
13:02:56.0742 1804 LSI_FC - ok
13:02:56.0852 1804 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
13:02:56.0852 1804 LSI_SAS - ok
13:02:57.0335 1804 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
13:02:57.0335 1804 LSI_SCSI - ok
13:02:57.0600 1804 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
13:02:57.0600 1804 luafv - ok
13:02:58.0006 1804 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
13:02:58.0053 1804 McComponentHostService - ok
13:02:58.0271 1804 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
13:02:58.0287 1804 Mcx2Svc - ok
13:02:58.0770 1804 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
13:02:58.0770 1804 megasas - ok
13:02:59.0285 1804 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
13:02:59.0285 1804 MegaSR - ok
13:02:59.0488 1804 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
13:02:59.0504 1804 MMCSS - ok
13:02:59.0862 1804 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
13:02:59.0862 1804 Modem - ok
13:03:00.0330 1804 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
13:03:00.0330 1804 monitor - ok
13:03:00.0736 1804 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
13:03:00.0736 1804 mouclass - ok
13:03:01.0204 1804 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
13:03:01.0204 1804 mouhid - ok
13:03:01.0532 1804 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
13:03:01.0532 1804 MountMgr - ok
13:03:02.0078 1804 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
13:03:02.0093 1804 MpFilter - ok
13:03:02.0546 1804 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
13:03:02.0577 1804 mpio - ok
13:03:02.0842 1804 MpKsl4b99bdc3 - ok
13:03:03.0326 1804 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
13:03:03.0341 1804 MpNWMon - ok
13:03:03.0684 1804 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
13:03:03.0700 1804 mpsdrv - ok
13:03:04.0012 1804 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
13:03:04.0090 1804 MpsSvc - ok
13:03:04.0542 1804 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
13:03:04.0558 1804 Mraid35x - ok
13:03:04.0948 1804 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
13:03:04.0948 1804 MRxDAV - ok
13:03:05.0291 1804 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:03:05.0291 1804 mrxsmb - ok
13:03:05.0697 1804 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:03:05.0697 1804 mrxsmb10 - ok
13:03:06.0024 1804 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:03:06.0024 1804 mrxsmb20 - ok
13:03:06.0430 1804 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
13:03:06.0430 1804 msahci - ok
13:03:06.0804 1804 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
13:03:06.0804 1804 msdsm - ok
13:03:07.0038 1804 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
13:03:07.0038 1804 MSDTC - ok
13:03:07.0506 1804 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
13:03:07.0506 1804 Msfs - ok
13:03:07.0974 1804 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
13:03:07.0974 1804 msisadrv - ok
13:03:08.0224 1804 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
13:03:08.0240 1804 MSiSCSI - ok
13:03:08.0442 1804 msiserver - ok
13:03:08.0957 1804 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
13:03:08.0957 1804 MSKSSRV - ok
13:03:09.0300 1804 MsMpSvc (cfce43b70ca0cc4dcc8adb62b792b173) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
13:03:09.0316 1804 MsMpSvc - ok
13:03:09.0706 1804 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
13:03:09.0706 1804 MSPCLOCK - ok
13:03:10.0190 1804 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
13:03:10.0190 1804 MSPQM - ok
13:03:10.0502 1804 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
13:03:10.0517 1804 MsRPC - ok
13:03:11.0094 1804 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
13:03:11.0094 1804 mssmbios - ok
13:03:11.0562 1804 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
13:03:11.0562 1804 MSTEE - ok
13:03:11.0937 1804 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
13:03:11.0937 1804 Mup - ok
13:03:12.0186 1804 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
13:03:12.0264 1804 napagent - ok
13:03:12.0748 1804 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
13:03:12.0748 1804 NativeWifiP - ok
13:03:13.0216 1804 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
13:03:13.0232 1804 NDIS - ok
13:03:13.0590 1804 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
13:03:13.0590 1804 NdisTapi - ok
13:03:14.0012 1804 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
13:03:14.0012 1804 Ndisuio - ok
13:03:14.0589 1804 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
13:03:14.0604 1804 NdisWan - ok
13:03:15.0041 1804 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
13:03:15.0041 1804 NDProxy - ok
13:03:15.0431 1804 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
13:03:15.0431 1804 NetBIOS - ok
13:03:15.0915 1804 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
13:03:15.0915 1804 netbt - ok
13:03:16.0118 1804 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:03:16.0118 1804 Netlogon - ok
13:03:16.0367 1804 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
13:03:16.0398 1804 Netman - ok
13:03:16.0632 1804 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
13:03:16.0695 1804 netprofm - ok
13:03:17.0069 1804 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:03:17.0132 1804 NetTcpPortSharing - ok
13:03:17.0600 1804 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
13:03:17.0600 1804 nfrd960 - ok
13:03:18.0114 1804 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:03:18.0114 1804 NisDrv - ok
13:03:18.0411 1804 NisSrv (a5cb074f34bbd89948e34a630d459c0c) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
13:03:18.0567 1804 NisSrv - ok
13:03:18.0972 1804 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
13:03:19.0004 1804 NlaSvc - ok
13:03:19.0378 1804 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
13:03:19.0378 1804 Npfs - ok
13:03:19.0706 1804 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
13:03:19.0752 1804 nsi - ok
13:03:20.0376 1804 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
13:03:20.0376 1804 nsiproxy - ok
13:03:22.0248 1804 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
13:03:22.0311 1804 Ntfs - ok
13:03:22.0966 1804 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
13:03:22.0966 1804 ntrigdigi - ok
13:03:23.0980 1804 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
13:03:23.0980 1804 Null - ok
13:03:24.0542 1804 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
13:03:24.0557 1804 nvraid - ok
13:03:25.0634 1804 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
13:03:25.0634 1804 nvstor - ok
13:03:26.0975 1804 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
13:03:26.0975 1804 nv_agp - ok
13:03:27.0443 1804 NwlnkFlt - ok
13:03:27.0911 1804 NwlnkFwd - ok
13:03:29.0268 1804 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:03:29.0877 1804 odserv - ok
13:03:31.0203 1804 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
13:03:31.0218 1804 ohci1394 - ok
13:03:33.0200 1804 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:03:33.0293 1804 ose - ok
13:03:33.0636 1804 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:03:33.0699 1804 p2pimsvc - ok
13:03:33.0730 1804 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:03:33.0746 1804 p2psvc - ok
13:03:34.0089 1804 PalmUSBD - ok
13:03:34.0198 1804 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
13:03:34.0198 1804 Parport - ok
13:03:34.0292 1804 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
13:03:34.0292 1804 partmgr - ok
13:03:34.0494 1804 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
13:03:34.0494 1804 Parvdm - ok
13:03:34.0635 1804 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
13:03:34.0650 1804 PcaSvc - ok
13:03:34.0962 1804 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
13:03:34.0962 1804 pci - ok
13:03:35.0259 1804 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
13:03:35.0259 1804 pciide - ok
13:03:35.0586 1804 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
13:03:35.0602 1804 pcmcia - ok
13:03:36.0070 1804 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
13:03:36.0070 1804 PEAUTH - ok
13:03:36.0242 1804 pinger (6dbf2ac2bdaff355995ab25eccc4cfe1) C:\TOSHIBA\IVP\ISM\pinger.exe
13:03:36.0257 1804 pinger - ok
13:03:36.0632 1804 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
13:03:36.0928 1804 pla - ok
13:03:37.0240 1804 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
13:03:37.0256 1804 PlugPlay - ok
13:03:37.0568 1804 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:03:37.0583 1804 PNRPAutoReg - ok
13:03:37.0677 1804 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
13:03:37.0677 1804 PNRPsvc - ok
13:03:38.0082 1804 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
13:03:38.0223 1804 PolicyAgent - ok
13:03:39.0252 1804 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
13:03:39.0252 1804 PptpMiniport - ok
13:03:39.0720 1804 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
13:03:39.0736 1804 Processor - ok
13:03:39.0923 1804 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
13:03:39.0923 1804 ProfSvc - ok
13:03:40.0079 1804 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:03:40.0079 1804 ProtectedStorage - ok
13:03:40.0376 1804 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
13:03:40.0376 1804 PSched - ok
13:03:40.0547 1804 PTDUBus (dbaf8a53d7669efb4742896b458181d0) C:\Windows\system32\DRIVERS\PTDUBus.sys
13:03:40.0547 1804 PTDUBus - ok
13:03:41.0062 1804 PTDUMdm (fa4e2a5cf478624d3154fb045fb2d076) C:\Windows\system32\DRIVERS\PTDUMdm.sys
13:03:41.0078 1804 PTDUMdm - ok
13:03:41.0499 1804 PTDUVsp (9c489b38ca13f251289004fe4f8631dd) C:\Windows\system32\DRIVERS\PTDUVsp.sys
13:03:41.0499 1804 PTDUVsp - ok
13:03:41.0873 1804 PTDUWFLT (37a75ac00d26364a5ea2050a6f85c2d0) C:\Windows\system32\DRIVERS\PTDUWFLT.sys
13:03:41.0873 1804 PTDUWFLT - ok
13:03:42.0263 1804 PTDUWWAN (f4a789a94ff74a47eb321be4465259d0) C:\Windows\system32\DRIVERS\PTDUWWAN.sys
13:03:42.0263 1804 PTDUWWAN - ok
13:03:42.0450 1804 PxHelp20 (f7bb4e7a7c02ab4a2672937e124e306e) C:\Windows\system32\Drivers\PxHelp20.sys
13:03:42.0450 1804 PxHelp20 - ok
13:03:43.0137 1804 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
13:03:43.0168 1804 ql2300 - ok
13:03:43.0636 1804 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
13:03:43.0652 1804 ql40xx - ok
13:03:43.0886 1804 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
13:03:43.0886 1804 QWAVE - ok
13:03:44.0447 1804 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
13:03:44.0447 1804 QWAVEdrv - ok
13:03:44.0790 1804 RapiMgr (8f97d374ad1857e1eed85a79f29a1d3d) C:\Windows\WindowsMobile\rapimgr.dll
13:03:44.0962 1804 RapiMgr - ok
13:03:45.0383 1804 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
13:03:45.0383 1804 RasAcd - ok
13:03:45.0617 1804 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
13:03:45.0633 1804 RasAuto - ok
13:03:46.0101 1804 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:03:46.0101 1804 Rasl2tp - ok
13:03:46.0413 1804 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
13:03:46.0475 1804 RasMan - ok
13:03:46.0881 1804 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
13:03:46.0881 1804 RasPppoe - ok
13:03:47.0302 1804 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
13:03:47.0302 1804 RasSstp - ok
13:03:48.0004 1804 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
13:03:48.0004 1804 rdbss - ok
13:03:48.0784 1804 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:03:48.0784 1804 RDPCDD - ok
13:03:49.0736 1804 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
13:03:49.0736 1804 rdpdr - ok
13:03:50.0297 1804 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
13:03:50.0297 1804 RDPENCDD - ok
13:03:50.0843 1804 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
13:03:50.0859 1804 RDPWD - ok
13:03:51.0171 1804 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
13:03:51.0249 1804 RemoteAccess - ok
13:03:51.0748 1804 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
13:03:51.0857 1804 RemoteRegistry - ok
13:03:52.0715 1804 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
13:03:52.0715 1804 RpcLocator - ok
13:03:53.0636 1804 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
13:03:53.0636 1804 RpcSs - ok
13:03:54.0260 1804 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
13:03:54.0260 1804 rspndr - ok
13:03:55.0211 1804 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
13:03:55.0211 1804 RTL8169 - ok
13:03:55.0695 1804 RTSTOR (01c64783db1f40e1e3df67dd36199b35) C:\Windows\system32\drivers\RTSTOR.SYS
13:03:55.0695 1804 RTSTOR - ok
13:03:55.0898 1804 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
13:03:55.0898 1804 SamSs - ok
13:03:56.0350 1804 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
13:03:56.0350 1804 sbp2port - ok
13:03:56.0553 1804 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
13:03:56.0568 1804 SCardSvr - ok
13:03:56.0771 1804 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
13:03:56.0787 1804 Schedule - ok
13:03:57.0052 1804 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
13:03:57.0052 1804 SCPolicySvc - ok
13:03:57.0255 1804 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
13:03:57.0270 1804 SDRSVC - ok
13:03:57.0536 1804 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
13:03:57.0614 1804 SeaPort - ok
13:03:57.0988 1804 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
13:03:57.0988 1804 secdrv - ok
13:03:58.0378 1804 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
13:03:58.0394 1804 seclogon - ok
13:03:58.0643 1804 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
13:03:58.0659 1804 SENS - ok
13:03:59.0018 1804 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
13:03:59.0018 1804 Serenum - ok
13:03:59.0470 1804 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
13:03:59.0470 1804 Serial - ok
13:03:59.0844 1804 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
13:03:59.0860 1804 sermouse - ok
13:04:00.0266 1804 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
13:04:00.0266 1804 SessionEnv - ok
13:04:00.0983 1804 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
13:04:00.0983 1804 sffdisk - ok
13:04:01.0529 1804 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
13:04:01.0529 1804 sffp_mmc - ok
13:04:01.0919 1804 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
13:04:01.0919 1804 sffp_sd - ok
13:04:02.0200 1804 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
13:04:02.0200 1804 sfloppy - ok
13:04:02.0668 1804 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
13:04:02.0730 1804 SharedAccess - ok
13:04:03.0074 1804 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
13:04:03.0152 1804 ShellHWDetection - ok
13:04:03.0542 1804 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
13:04:03.0542 1804 sisagp - ok
13:04:04.0010 1804 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
13:04:04.0025 1804 SiSRaid2 - ok
13:04:04.0524 1804 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
13:04:04.0556 1804 SiSRaid4 - ok
13:04:05.0710 1804 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
13:04:06.0178 1804 slsvc - ok
13:04:06.0646 1804 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
13:04:06.0646 1804 SLUINotify - ok
13:04:07.0816 1804 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
13:04:07.0816 1804 Smb - ok
13:04:08.0362 1804 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
13:04:08.0456 1804 SNMPTRAP - ok
13:04:08.0846 1804 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
13:04:08.0846 1804 spldr - ok
13:04:09.0080 1804 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
13:04:09.0095 1804 Spooler - ok
13:04:09.0438 1804 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
13:04:09.0438 1804 srv - ok
13:04:09.0797 1804 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
13:04:09.0797 1804 srv2 - ok
13:04:10.0172 1804 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
13:04:10.0187 1804 srvnet - ok
13:04:10.0608 1804 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
13:04:10.0608 1804 SSDPSRV - ok
13:04:11.0014 1804 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
13:04:11.0045 1804 SstpSvc - ok
13:04:11.0388 1804 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
13:04:11.0607 1804 stisvc - ok
13:04:12.0309 1804 SVRPEDRV - ok
13:04:13.0229 1804 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
13:04:13.0229 1804 swenum - ok
13:04:13.0775 1804 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
13:04:14.0696 1804 swprv - ok
13:04:14.0898 1804 Swupdtmr (e1292c1ed4deb17b8a9b586d22cb2061) c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
13:04:14.0945 1804 Swupdtmr - ok
13:04:15.0476 1804 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
13:04:15.0491 1804 Symc8xx - ok
13:04:15.0897 1804 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
13:04:15.0897 1804 Sym_hi - ok
13:04:16.0271 1804 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
13:04:16.0287 1804 Sym_u3 - ok
13:04:16.0708 1804 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
13:04:16.0708 1804 SynTP - ok
13:04:16.0989 1804 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
13:04:17.0004 1804 SysMain - ok
13:04:17.0207 1804 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
13:04:17.0223 1804 TabletInputService - ok
13:04:17.0379 1804 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
13:04:17.0410 1804 TapiSrv - ok
13:04:17.0535 1804 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
13:04:17.0535 1804 TBS - ok
13:04:18.0096 1804 Tcpip (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\drivers\tcpip.sys
13:04:18.0112 1804 Tcpip - ok
13:04:18.0720 1804 Tcpip6 (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\DRIVERS\tcpip.sys
13:04:18.0736 1804 Tcpip6 - ok
13:04:19.0266 1804 tcpipreg (3fc13f09af9be487c7b4fac4070a036c) C:\Windows\system32\drivers\tcpipreg.sys
13:04:19.0266 1804 tcpipreg - ok
13:04:19.0984 1804 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys
13:04:19.0984 1804 tdcmdpst - ok
13:04:21.0404 1804 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
13:04:21.0404 1804 TDPIPE - ok
13:04:21.0872 1804 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
13:04:21.0872 1804 TDTCP - ok
13:04:21.0918 1804 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
13:04:21.0934 1804 tdx - ok
13:04:22.0059 1804 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
13:04:22.0059 1804 TermDD - ok
13:04:22.0215 1804 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
13:04:22.0246 1804 TermService - ok
13:04:22.0464 1804 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
13:04:22.0464 1804 Themes - ok
13:04:22.0652 1804 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
13:04:22.0652 1804 THREADORDER - ok
13:04:22.0995 1804 TNaviSrv (e47f35a87ff0da38def37a0eb0c2d2df) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
13:04:23.0026 1804 TNaviSrv - ok
13:04:23.0276 1804 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
13:04:23.0307 1804 TODDSrv - ok
13:04:23.0712 1804 TosCoSrv (da6903958cbdc091ffcbbca70ccff34c) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
13:04:23.0978 1804 TosCoSrv - ok
13:04:24.0274 1804 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
13:04:24.0352 1804 TOSHIBA SMART Log Service - ok
13:04:24.0960 1804 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
13:04:24.0976 1804 tos_sps32 - ok
13:04:25.0382 1804 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
13:04:25.0382 1804 TrkWks - ok
13:04:25.0553 1804 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
13:04:25.0553 1804 TrustedInstaller - ok
13:04:26.0458 1804 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:04:26.0458 1804 tssecsrv - ok
13:04:27.0737 1804 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
13:04:27.0737 1804 tunmp - ok
13:04:28.0205 1804 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
13:04:28.0205 1804 tunnel - ok
13:04:28.0580 1804 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
13:04:28.0580 1804 TVALZ - ok
13:04:28.0954 1804 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
13:04:28.0970 1804 uagp35 - ok
13:04:29.0360 1804 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
13:04:29.0360 1804 udfs - ok
13:04:30.0249 1804 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
13:04:30.0327 1804 UI0Detect - ok
13:04:31.0466 1804 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
13:04:31.0824 1804 UleadBurningHelper - ok
13:04:33.0852 1804 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
13:04:33.0852 1804 uliagpkx - ok
13:04:34.0539 1804 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
13:04:34.0679 1804 uliahci - ok
13:04:34.0866 1804 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
13:04:34.0866 1804 UlSata - ok
13:04:35.0069 1804 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
13:04:35.0069 1804 ulsata2 - ok
13:04:35.0366 1804 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
13:04:35.0366 1804 umbus - ok
13:04:35.0568 1804 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
13:04:35.0615 1804 upnphost - ok
13:04:36.0224 1804 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
13:04:36.0224 1804 USBAAPL - ok
13:04:36.0910 1804 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
13:04:36.0910 1804 usbccgp - ok
13:04:37.0284 1804 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
13:04:37.0284 1804 usbcir - ok
13:04:37.0877 1804 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
13:04:37.0877 1804 usbehci - ok
13:04:38.0376 1804 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
13:04:38.0376 1804 usbhub - ok
13:04:38.0829 1804 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
13:04:38.0829 1804 usbohci - ok
13:04:39.0359 1804 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
13:04:39.0359 1804 usbprint - ok
13:04:40.0935 1804 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
13:04:40.0935 1804 usbscan - ok
13:04:41.0247 1804 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:04:41.0262 1804 USBSTOR - ok
13:04:41.0652 1804 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
13:04:41.0652 1804 usbuhci - ok
13:04:42.0136 1804 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
13:04:42.0136 1804 usbvideo - ok
13:04:42.0651 1804 usb_rndisx (35c9095fa7076466afbfc5b9ec4b779e) C:\Windows\system32\DRIVERS\usb8023x.sys
13:04:42.0651 1804 usb_rndisx - ok
13:04:43.0010 1804 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS
13:04:43.0010 1804 UVCFTR - ok
13:04:43.0244 1804 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
13:04:43.0259 1804 UxSms - ok
13:04:43.0524 1804 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
13:04:43.0540 1804 vds - ok
13:04:43.0930 1804 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
13:04:43.0930 1804 vga - ok
13:04:44.0336 1804 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
13:04:44.0336 1804 VgaSave - ok
13:04:44.0788 1804 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
13:04:44.0788 1804 viaagp - ok
13:04:45.0240 1804 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
13:04:45.0240 1804 ViaC7 - ok
13:04:45.0630 1804 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
13:04:45.0630 1804 viaide - ok
13:04:46.0660 1804 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
13:04:46.0660 1804 volmgr - ok
13:04:47.0222 1804 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
13:04:47.0222 1804 volmgrx - ok
13:04:47.0705 1804 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
13:04:47.0705 1804 volsnap - ok
13:04:48.0142 1804 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
13:04:48.0142 1804 vsmraid - ok
13:04:48.0548 1804 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
13:04:48.0672 1804 VSS - ok
13:04:48.0875 1804 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
13:04:48.0891 1804 W32Time - ok
13:04:49.0265 1804 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
13:04:49.0265 1804 WacomPen - ok
13:04:49.0624 1804 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
13:04:49.0624 1804 Wanarp - ok
13:04:49.0640 1804 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
13:04:49.0640 1804 Wanarpv6 - ok
13:04:49.0998 1804 WcesComm (59e19bd13c3bdb857646b9e436ba27f7) C:\Windows\WindowsMobile\wcescomm.dll
13:04:50.0030 1804 WcesComm - ok
13:04:50.0217 1804 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
13:04:50.0264 1804 wcncsvc - ok
13:04:50.0451 1804 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
13:04:50.0466 1804 WcsPlugInService - ok
13:04:50.0810 1804 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
13:04:50.0810 1804 Wd - ok
13:04:51.0262 1804 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
13:04:51.0262 1804 Wdf01000 - ok
13:04:51.0480 1804 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
13:04:51.0480 1804 WdiServiceHost - ok
13:04:51.0480 1804 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
13:04:51.0496 1804 WdiSystemHost - ok
13:04:51.0746 1804 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
13:04:51.0761 1804 WebClient - ok
13:04:52.0058 1804 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
13:04:52.0058 1804 Wecsvc - ok
13:04:52.0744 1804 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
13:04:52.0760 1804 wercplsupport - ok
13:04:52.0931 1804 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
13:04:52.0947 1804 WerSvc - ok
13:04:53.0118 1804 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
13:04:53.0134 1804 WinDefend - ok
13:04:53.0150 1804 WinHttpAutoProxySvc - ok
13:04:53.0493 1804 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
13:04:53.0508 1804 Winmgmt - ok
13:04:53.0852 1804 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
13:04:53.0961 1804 WinRM - ok
13:04:54.0366 1804 winusb (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\winusb.sys
13:04:54.0366 1804 winusb - ok
13:04:54.0632 1804 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
13:04:54.0663 1804 Wlansvc - ok
13:04:55.0022 1804 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:04:55.0068 1804 wlcrasvc - ok
13:04:55.0848 1804 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:04:56.0644 1804 wlidsvc - ok
13:04:57.0081 1804 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
13:04:57.0081 1804 WmiAcpi - ok
13:04:57.0362 1804 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
13:04:57.0424 1804 wmiApSrv - ok
13:04:58.0672 1804 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:04:59.0124 1804 WMPNetworkSvc - ok
13:04:59.0343 1804 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
13:04:59.0358 1804 WPCSvc - ok
13:04:59.0483 1804 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
13:04:59.0499 1804 WPDBusEnum - ok
13:04:59.0982 1804 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
13:04:59.0998 1804 WpdUsb - ok
13:05:00.0840 1804 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:05:00.0934 1804 WPFFontCache_v0400 - ok
13:05:01.0277 1804 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
13:05:01.0277 1804 ws2ifsl - ok
13:05:01.0480 1804 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
13:05:01.0480 1804 wscsvc - ok
13:05:01.0652 1804 WSearch - ok
13:05:02.0042 1804 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
13:05:02.0369 1804 wuauserv - ok
13:05:02.0775 1804 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:05:02.0775 1804 WUDFRd - ok
13:05:02.0993 1804 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
13:05:03.0009 1804 wudfsvc - ok
13:05:03.0165 1804 MBR (0x1B8) (849e52748aab5959bc8000cb4974bc13) \Device\Harddisk0\DR0
13:05:03.0274 1804 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
13:05:03.0274 1804 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
13:05:03.0305 1804 Boot (0x1200) (d138f9ddcba85c47c99311a4bf71f2fa) \Device\Harddisk0\DR0\Partition0
13:05:03.0368 1804 \Device\Harddisk0\DR0\Partition0 - ok
13:05:03.0368 1804 ============================================================
13:05:03.0368 1804 Scan finished
13:05:03.0368 1804 ============================================================
13:05:03.0399 4092 Detected object count: 1
13:05:03.0399 4092 Actual detected object count: 1

#9 cryptodan

cryptodan

    Bleepin Madman

  • Inactive Staff
  • PipPipPipPipPipPip
  • 19,032 posts
  • Gender:Male
  • Location:Catonsville, Md

Posted 02 April 2012 - 01:12 PM

Please follow the instructions in ==>Malware Removal and Log Section Preparation Guide<==.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

Once you have created the new topic, please reply back here with a link to the new topic.

Most importantly please be patient till you get a reply to your topic. If you receive a reply from the HelpBot, then please follow the instructions outlined in the helpbot's post.
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·