Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ilivid popup and redirection.

Started by Cromlech , Jun 27 2012 07:24 PM

  • Please log in to reply
13 replies to this topic

#1 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 27 June 2012 - 07:24 PM

Hi,

I'm pretty sure this subject has been posted here before by another member, but I didn't understand the advice that was given.

Anyway, just as the other person I also constantly get the Ilivid pop ups appearing, I am also redirected from most sites I am trying to look at and end up on ad sites.

I currently run Mcafee antivirus and firewall. I have used Malwarebytes Anti-malware and Mcafee stinger, neither of these have solved the problem. Others have suggested that it could be caused by a toolbar, so at the minute I have disabled all add ons but still have the same problem.

Can anyone help with this?

Thanks in advance.

 

  • BC Ads
  • BleepingComputer.com

#2 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 27 June 2012 - 08:05 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 27 June 2012 - 09:35 PM

If it fails again,try to run in it in safemode with networking

#4 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 27 June 2012 - 10:30 PM

I will wait for eset online scanner log

Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 28 June 2012 - 08:07 AM

Hi, only just back online after making thread. I'll post the logs below.
Thanks for the help.

14:01:48.0422 4200 TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
14:01:50.0428 4200 ============================================================
14:01:50.0428 4200 Current date / time: 2012/06/28 14:01:50.0428
14:01:50.0428 4200 SystemInfo:
14:01:50.0428 4200
14:01:50.0428 4200 OS Version: 6.1.7601 ServicePack: 1.0
14:01:50.0428 4200 Product type: Workstation
14:01:50.0428 4200 ComputerName: CHRIS-HP
14:01:50.0428 4200 UserName: chris
14:01:50.0428 4200 Windows directory: C:\Windows
14:01:50.0428 4200 System windows directory: C:\Windows
14:01:50.0428 4200 Running under WOW64
14:01:50.0428 4200 Processor architecture: Intel x64
14:01:50.0428 4200 Number of processors: 2
14:01:50.0428 4200 Page size: 0x1000
14:01:50.0428 4200 Boot type: Normal boot
14:01:50.0428 4200 ============================================================
14:01:51.0971 4200 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:01:51.0975 4200 ============================================================
14:01:51.0975 4200 \Device\Harddisk0\DR0:
14:01:51.0975 4200 MBR partitions:
14:01:51.0975 4200 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:01:51.0975 4200 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x55989800
14:01:51.0975 4200 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x559ED800, BlocksNum 0x1B25000
14:01:51.0975 4200 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
14:01:51.0975 4200 ============================================================
14:01:52.0001 4200 C: <-> \Device\Harddisk0\DR0\Partition1
14:01:52.0641 4200 D: <-> \Device\Harddisk0\DR0\Partition2
14:01:52.0652 4200 F: <-> \Device\Harddisk0\DR0\Partition3
14:01:52.0652 4200 ============================================================
14:01:52.0652 4200 Initialize success
14:01:52.0652 4200 ============================================================
14:02:05.0184 1260 ============================================================
14:02:05.0184 1260 Scan started
14:02:05.0184 1260 Mode: Manual; TDLFS;
14:02:05.0184 1260 ============================================================
14:02:06.0135 1260 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:02:06.0194 1260 1394ohci - ok
14:02:06.0402 1260 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:02:06.0407 1260 ACPI - ok
14:02:06.0489 1260 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:02:06.0536 1260 AcpiPmi - ok
14:02:06.0915 1260 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:02:06.0975 1260 AdobeARMservice - ok
14:02:07.0548 1260 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:02:07.0552 1260 AdobeFlashPlayerUpdateSvc - ok
14:02:07.0784 1260 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
14:02:07.0937 1260 adp94xx - ok
14:02:08.0166 1260 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
14:02:08.0177 1260 adpahci - ok
14:02:08.0289 1260 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
14:02:08.0296 1260 adpu320 - ok
14:02:08.0506 1260 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:02:08.0507 1260 AeLookupSvc - ok
14:02:08.0621 1260 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:02:08.0627 1260 AFD - ok
14:02:08.0698 1260 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:02:08.0702 1260 agp440 - ok
14:02:08.0808 1260 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:02:08.0813 1260 ALG - ok
14:02:08.0863 1260 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:02:08.0868 1260 aliide - ok
14:02:08.0900 1260 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:02:08.0903 1260 amdide - ok
14:02:08.0938 1260 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
14:02:08.0942 1260 AmdK8 - ok
14:02:08.0973 1260 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
14:02:08.0977 1260 AmdPPM - ok
14:02:09.0031 1260 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:02:09.0088 1260 amdsata - ok
14:02:09.0169 1260 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
14:02:09.0177 1260 amdsbs - ok
14:02:09.0237 1260 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:02:09.0291 1260 amdxata - ok
14:02:09.0551 1260 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:02:09.0595 1260 AppID - ok
14:02:09.0703 1260 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:02:09.0707 1260 AppIDSvc - ok
14:02:09.0864 1260 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:02:09.0906 1260 Appinfo - ok
14:02:09.0957 1260 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
14:02:09.0961 1260 arc - ok
14:02:10.0025 1260 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
14:02:10.0032 1260 arcsas - ok
14:02:10.0069 1260 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:02:10.0074 1260 AsyncMac - ok
14:02:10.0094 1260 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:02:10.0096 1260 atapi - ok
14:02:10.0265 1260 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:02:10.0308 1260 AudioEndpointBuilder - ok
14:02:10.0318 1260 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:02:10.0323 1260 AudioSrv - ok
14:02:10.0559 1260 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:02:10.0608 1260 AxInstSV - ok
14:02:10.0750 1260 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
14:02:10.0761 1260 b06bdrv - ok
14:02:10.0856 1260 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:02:10.0864 1260 b57nd60a - ok
14:02:11.0229 1260 BBSvc (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
14:02:11.0287 1260 BBSvc - ok
14:02:11.0810 1260 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
14:02:11.0910 1260 BCM43XX - ok
14:02:11.0971 1260 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:02:11.0976 1260 BDESVC - ok
14:02:12.0197 1260 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:02:12.0203 1260 Beep - ok
14:02:12.0413 1260 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:02:12.0460 1260 BFE - ok
14:02:12.0572 1260 BHDrvx64 - ok
14:02:12.0707 1260 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:02:13.0057 1260 BITS - ok
14:02:13.0295 1260 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
14:02:13.0301 1260 blbdrive - ok
14:02:13.0319 1260 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:02:13.0371 1260 bowser - ok
14:02:13.0436 1260 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
14:02:13.0442 1260 BrFiltLo - ok
14:02:13.0490 1260 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
14:02:13.0500 1260 BrFiltUp - ok
14:02:13.0675 1260 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:02:13.0731 1260 Browser - ok
14:02:13.0947 1260 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:02:13.0999 1260 Brserid - ok
14:02:14.0024 1260 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:02:14.0029 1260 BrSerWdm - ok
14:02:14.0057 1260 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:02:14.0061 1260 BrUsbMdm - ok
14:02:14.0065 1260 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:02:14.0068 1260 BrUsbSer - ok
14:02:14.0079 1260 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
14:02:14.0082 1260 BTHMODEM - ok
14:02:14.0187 1260 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:02:14.0190 1260 bthserv - ok
14:02:14.0358 1260 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:02:14.0364 1260 cdfs - ok
14:02:14.0440 1260 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
14:02:14.0489 1260 cdrom - ok
14:02:14.0632 1260 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:02:14.0668 1260 CertPropSvc - ok
14:02:14.0830 1260 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
14:02:14.0934 1260 cfwids - ok
14:02:15.0119 1260 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
14:02:15.0122 1260 circlass - ok
14:02:15.0204 1260 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:02:15.0209 1260 CLFS - ok
14:02:15.0332 1260 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:02:15.0336 1260 clr_optimization_v2.0.50727_32 - ok
14:02:15.0471 1260 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:02:15.0492 1260 clr_optimization_v2.0.50727_64 - ok
14:02:15.0605 1260 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:02:15.0739 1260 clr_optimization_v4.0.30319_32 - ok
14:02:15.0882 1260 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:02:15.0937 1260 clr_optimization_v4.0.30319_64 - ok
14:02:16.0002 1260 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
14:02:16.0052 1260 clwvd - ok
14:02:16.0126 1260 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
14:02:16.0130 1260 CmBatt - ok
14:02:16.0253 1260 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:02:16.0257 1260 cmdide - ok
14:02:16.0440 1260 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:02:16.0602 1260 CNG - ok
14:02:16.0751 1260 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
14:02:16.0756 1260 Compbatt - ok
14:02:16.0797 1260 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:02:16.0850 1260 CompositeBus - ok
14:02:16.0896 1260 COMSysApp - ok
14:02:17.0031 1260 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
14:02:17.0035 1260 crcdisk - ok
14:02:17.0235 1260 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
14:02:17.0271 1260 CryptSvc - ok
14:02:18.0105 1260 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
14:02:18.0226 1260 cvhsvc - ok
14:02:18.0314 1260 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:02:18.0321 1260 DcomLaunch - ok
14:02:18.0516 1260 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:02:18.0524 1260 defragsvc - ok
14:02:18.0632 1260 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:02:18.0678 1260 DfsC - ok
14:02:18.0836 1260 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:02:18.0880 1260 Dhcp - ok
14:02:18.0893 1260 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:02:18.0894 1260 discache - ok
14:02:18.0998 1260 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
14:02:19.0005 1260 Disk - ok
14:02:19.0048 1260 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:02:19.0088 1260 Dnscache - ok
14:02:19.0134 1260 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:02:19.0175 1260 dot3svc - ok
14:02:19.0218 1260 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:02:19.0221 1260 DPS - ok
14:02:19.0260 1260 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:02:19.0266 1260 drmkaud - ok
14:02:19.0452 1260 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:02:19.0611 1260 DXGKrnl - ok
14:02:19.0696 1260 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:02:19.0702 1260 EapHost - ok
14:02:20.0120 1260 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
14:02:20.0477 1260 ebdrv - ok
14:02:20.0771 1260 eeCtrl (5ccf1be80930aeb1cdebf561666325e8) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:02:20.0829 1260 eeCtrl - ok
14:02:21.0213 1260 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:02:21.0262 1260 EFS - ok
14:02:21.0405 1260 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
14:02:21.0479 1260 ehRecvr - ok
14:02:21.0507 1260 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:02:21.0511 1260 ehSched - ok
14:02:21.0677 1260 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
14:02:21.0689 1260 elxstor - ok
14:02:21.0706 1260 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:02:21.0711 1260 ErrDev - ok
14:02:21.0920 1260 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:02:21.0999 1260 EventSystem - ok
14:02:22.0085 1260 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:02:22.0093 1260 exfat - ok
14:02:22.0204 1260 ezSharedSvc - ok
14:02:22.0265 1260 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:02:22.0272 1260 fastfat - ok
14:02:22.0339 1260 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:02:22.0393 1260 Fax - ok
14:02:22.0455 1260 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
14:02:22.0461 1260 fdc - ok
14:02:22.0609 1260 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:02:22.0613 1260 fdPHost - ok
14:02:22.0671 1260 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:02:22.0675 1260 FDResPub - ok
14:02:22.0812 1260 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:02:22.0815 1260 FileInfo - ok
14:02:22.0929 1260 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:02:22.0933 1260 Filetrace - ok
14:02:23.0547 1260 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:02:23.0712 1260 FLEXnet Licensing Service - ok
14:02:23.0824 1260 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
14:02:23.0829 1260 flpydisk - ok
14:02:23.0980 1260 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:02:24.0019 1260 FltMgr - ok
14:02:24.0138 1260 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
14:02:24.0211 1260 FontCache - ok
14:02:24.0539 1260 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:02:24.0540 1260 FontCache3.0.0.0 - ok
14:02:24.0780 1260 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:02:24.0784 1260 FsDepends - ok
14:02:24.0874 1260 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
14:02:24.0923 1260 Fs_Rec - ok
14:02:25.0021 1260 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:02:25.0024 1260 fvevol - ok
14:02:25.0174 1260 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
14:02:25.0180 1260 gagp30kx - ok
14:02:25.0607 1260 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
14:02:25.0705 1260 GamesAppService - ok
14:02:25.0882 1260 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:02:25.0972 1260 gpsvc - ok
14:02:26.0117 1260 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:02:26.0120 1260 hcw85cir - ok
14:02:26.0225 1260 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
14:02:26.0314 1260 HdAudAddService - ok
14:02:26.0355 1260 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
14:02:26.0357 1260 HDAudBus - ok
14:02:26.0437 1260 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
14:02:26.0440 1260 HidBatt - ok
14:02:26.0450 1260 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
14:02:26.0455 1260 HidBth - ok
14:02:26.0462 1260 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
14:02:26.0467 1260 HidIr - ok
14:02:26.0579 1260 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:02:26.0584 1260 hidserv - ok
14:02:26.0706 1260 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:02:26.0752 1260 HidUsb - ok
14:02:26.0795 1260 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:02:26.0836 1260 hkmsvc - ok
14:02:26.0917 1260 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:02:26.0954 1260 HomeGroupListener - ok
14:02:27.0000 1260 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:02:27.0038 1260 HomeGroupProvider - ok
14:02:27.0382 1260 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
14:02:27.0383 1260 HP Support Assistant Service - ok
14:02:27.0727 1260 HPClientSvc (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
14:02:27.0783 1260 HPClientSvc - ok
14:02:28.0030 1260 hpqwmiex (e7c7829ba0395e48f8c8fe16b8832344) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
14:02:28.0076 1260 hpqwmiex - ok
14:02:28.0523 1260 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:02:28.0573 1260 HpSAMD - ok
14:02:28.0725 1260 HPWMISVC (2bec76bdcd1bc080210325e7b5094834) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
14:02:28.0780 1260 HPWMISVC - ok
14:02:28.0887 1260 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:02:28.0936 1260 HTTP - ok
14:02:29.0022 1260 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:02:29.0023 1260 hwpolicy - ok
14:02:29.0135 1260 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:02:29.0142 1260 i8042prt - ok
14:02:29.0273 1260 iaStor (26cf4275034214ecedd8ec17b0a18a99) C:\Windows\system32\DRIVERS\iaStor.sys
14:02:29.0278 1260 iaStor - ok
14:02:29.0438 1260 IAStorDataMgrSvc (e79a8e33bd136d14bae1fa20eb2ef124) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:02:29.0439 1260 IAStorDataMgrSvc - ok
14:02:29.0668 1260 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:02:29.0745 1260 iaStorV - ok
14:02:30.0150 1260 IconMan_R (d22d82d74fd1b6c77e7556dbdc3ea9d2) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
14:02:30.0578 1260 IconMan_R - ok
14:02:30.0949 1260 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:02:31.0107 1260 idsvc - ok
14:02:31.0198 1260 IDSVia64 - ok
14:02:32.0491 1260 igfx (370c2a8629b30f910f740387795ddc6f) C:\Windows\system32\DRIVERS\igdkmd64.sys
14:02:32.0787 1260 igfx - ok
14:02:33.0202 1260 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
14:02:33.0208 1260 iirsp - ok
14:02:33.0323 1260 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:02:33.0628 1260 IKEEXT - ok
14:02:33.0798 1260 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
14:02:33.0858 1260 IntcDAud - ok
14:02:33.0890 1260 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:02:33.0893 1260 intelide - ok
14:02:33.0976 1260 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:02:34.0043 1260 intelppm - ok
14:02:34.0215 1260 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:02:34.0221 1260 IPBusEnum - ok
14:02:34.0299 1260 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:02:34.0345 1260 IpFilterDriver - ok
14:02:34.0603 1260 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:02:34.0670 1260 iphlpsvc - ok
14:02:34.0729 1260 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:02:34.0773 1260 IPMIDRV - ok
14:02:34.0873 1260 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:02:34.0879 1260 IPNAT - ok
14:02:34.0941 1260 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:02:34.0945 1260 IRENUM - ok
14:02:34.0971 1260 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:02:34.0974 1260 isapnp - ok
14:02:35.0023 1260 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:02:35.0076 1260 iScsiPrt - ok
14:02:35.0222 1260 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:02:35.0228 1260 kbdclass - ok
14:02:35.0386 1260 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
14:02:35.0441 1260 kbdhid - ok
14:02:35.0515 1260 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:02:35.0518 1260 KeyIso - ok
14:02:35.0568 1260 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:02:35.0610 1260 KSecDD - ok
14:02:35.0644 1260 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:02:35.0693 1260 KSecPkg - ok
14:02:35.0786 1260 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:02:35.0790 1260 ksthunk - ok
14:02:35.0930 1260 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:02:35.0941 1260 KtmRm - ok
14:02:36.0079 1260 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:02:36.0116 1260 LanmanServer - ok
14:02:36.0263 1260 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:02:36.0299 1260 LanmanWorkstation - ok
14:02:36.0421 1260 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:02:36.0426 1260 lltdio - ok
14:02:36.0559 1260 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:02:36.0568 1260 lltdsvc - ok
14:02:36.0587 1260 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:02:36.0593 1260 lmhosts - ok
14:02:36.0892 1260 LMS (d75c4b4a8fe6d7fd74a7eecdbaec729f) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:02:36.0948 1260 LMS - ok
14:02:37.0066 1260 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
14:02:37.0071 1260 LSI_FC - ok
14:02:37.0102 1260 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
14:02:37.0106 1260 LSI_SAS - ok
14:02:37.0113 1260 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
14:02:37.0116 1260 LSI_SAS2 - ok
14:02:37.0170 1260 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
14:02:37.0175 1260 LSI_SCSI - ok
14:02:37.0319 1260 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:02:37.0323 1260 luafv - ok
14:02:37.0453 1260 ManyCam (922cbac7b992b9614cab7122f4bf9406) C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
14:02:37.0498 1260 ManyCam - ok
14:02:38.0087 1260 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0104 1260 McAfee SiteAdvisor Service - ok
14:02:38.0184 1260 mcaudrv_simple (34a42dd7cf525d0d2c5232916496e4b8) C:\Windows\system32\drivers\mcaudrv_x64.sys
14:02:38.0231 1260 mcaudrv_simple - ok
14:02:38.0334 1260 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0336 1260 McMPFSvc - ok
14:02:38.0387 1260 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0390 1260 mcmscsvc - ok
14:02:38.0394 1260 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0396 1260 McNaiAnn - ok
14:02:38.0512 1260 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0514 1260 McNASvc - ok
14:02:38.0778 1260 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\McAfee\VirusScan\mcods.exe
14:02:38.0805 1260 McODS - ok
14:02:38.0857 1260 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:38.0859 1260 McProxy - ok
14:02:39.0030 1260 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
14:02:39.0033 1260 McShield - ok
14:02:39.0087 1260 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
14:02:39.0125 1260 Mcx2Svc - ok
14:02:39.0182 1260 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
14:02:39.0187 1260 megasas - ok
14:02:39.0319 1260 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
14:02:39.0329 1260 MegaSR - ok
14:02:39.0393 1260 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
14:02:39.0442 1260 MEIx64 - ok
14:02:39.0586 1260 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
14:02:39.0636 1260 mfeapfk - ok
14:02:39.0933 1260 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
14:02:40.0108 1260 mfeavfk - ok
14:02:40.0253 1260 mfeavfk01 - ok
14:02:40.0492 1260 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:02:40.0561 1260 mfefire - ok
14:02:40.0775 1260 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
14:02:40.0856 1260 mfefirek - ok
14:02:41.0062 1260 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
14:02:41.0149 1260 mfehidk - ok
14:02:41.0512 1260 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
14:02:41.0559 1260 mfenlfk - ok
14:02:41.0707 1260 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
14:02:41.0709 1260 mferkdet - ok
14:02:41.0842 1260 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
14:02:41.0895 1260 mfevtp - ok
14:02:42.0049 1260 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
14:02:42.0114 1260 mfewfpk - ok
14:02:42.0194 1260 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:02:42.0196 1260 MMCSS - ok
14:02:42.0305 1260 MOBKbackup (8cc001c65c31633171991fa72a551d43) C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
14:02:42.0308 1260 MOBKbackup - ok
14:02:42.0446 1260 MOBKFilter (3800c23d0d90c59aafcdefdc82b5c4af) C:\Windows\system32\DRIVERS\MOBK.sys
14:02:42.0497 1260 MOBKFilter - ok
14:02:42.0600 1260 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:02:42.0603 1260 Modem - ok
14:02:42.0684 1260 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:02:42.0686 1260 monitor - ok
14:02:42.0729 1260 MotioninJoyXFilter (fc44ad48746ffa5fd640ef1260ab5ec2) C:\Windows\system32\DRIVERS\MijXfilt.sys
14:02:42.0780 1260 MotioninJoyXFilter - ok
14:02:43.0000 1260 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:02:43.0009 1260 mouclass - ok
14:02:43.0110 1260 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:02:43.0115 1260 mouhid - ok
14:02:43.0195 1260 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:02:43.0197 1260 mountmgr - ok
14:02:43.0512 1260 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:02:43.0572 1260 MozillaMaintenance - ok
14:02:43.0601 1260 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:02:43.0653 1260 mpio - ok
14:02:43.0718 1260 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:02:43.0724 1260 mpsdrv - ok
14:02:43.0960 1260 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:02:44.0020 1260 MpsSvc - ok
14:02:44.0070 1260 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:02:44.0140 1260 MRxDAV - ok
14:02:44.0230 1260 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:02:44.0279 1260 mrxsmb - ok
14:02:44.0366 1260 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:02:44.0415 1260 mrxsmb10 - ok
14:02:44.0456 1260 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:02:44.0518 1260 mrxsmb20 - ok
14:02:44.0591 1260 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:02:44.0647 1260 msahci - ok
14:02:44.0668 1260 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:02:44.0729 1260 msdsm - ok
14:02:44.0779 1260 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:02:44.0786 1260 MSDTC - ok
14:02:44.0979 1260 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:02:44.0983 1260 Msfs - ok
14:02:45.0050 1260 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:02:45.0055 1260 mshidkmdf - ok
14:02:45.0070 1260 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:02:45.0073 1260 msisadrv - ok
14:02:45.0240 1260 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:02:45.0248 1260 MSiSCSI - ok
14:02:45.0252 1260 msiserver - ok
14:02:45.0515 1260 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
14:02:45.0519 1260 MSK80Service - ok
14:02:45.0559 1260 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:02:45.0564 1260 MSKSSRV - ok
14:02:45.0604 1260 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:02:45.0609 1260 MSPCLOCK - ok
14:02:45.0638 1260 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:02:45.0641 1260 MSPQM - ok
14:02:45.0706 1260 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:02:45.0747 1260 MsRPC - ok
14:02:45.0766 1260 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:02:45.0768 1260 mssmbios - ok
14:02:45.0845 1260 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:02:45.0849 1260 MSTEE - ok
14:02:45.0852 1260 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
14:02:45.0857 1260 MTConfig - ok
14:02:45.0930 1260 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:02:45.0938 1260 Mup - ok
14:02:46.0002 1260 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:02:46.0009 1260 napagent - ok
14:02:46.0142 1260 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:02:46.0152 1260 NativeWifiP - ok
14:02:46.0174 1260 NAVENG - ok
14:02:46.0178 1260 NAVEX15 - ok
14:02:46.0237 1260 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
14:02:46.0248 1260 NDIS - ok
14:02:46.0431 1260 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:02:46.0439 1260 NdisCap - ok
14:02:46.0519 1260 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:02:46.0525 1260 NdisTapi - ok
14:02:46.0543 1260 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:02:46.0592 1260 Ndisuio - ok
14:02:46.0642 1260 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:02:46.0689 1260 NdisWan - ok
14:02:46.0725 1260 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:02:46.0773 1260 NDProxy - ok
14:02:46.0953 1260 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:02:46.0959 1260 NetBIOS - ok
14:02:47.0049 1260 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:02:47.0053 1260 NetBT - ok
14:02:47.0082 1260 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:02:47.0083 1260 Netlogon - ok
14:02:47.0321 1260 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:02:47.0368 1260 Netman - ok
14:02:47.0448 1260 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:02:47.0454 1260 netprofm - ok
14:02:47.0594 1260 netr28x (9c745041e72576251bc93709633e89ff) C:\Windows\system32\DRIVERS\netr28x.sys
14:02:47.0679 1260 netr28x - ok
14:02:47.0990 1260 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:02:47.0995 1260 NetTcpPortSharing - ok
14:02:48.0277 1260 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
14:02:48.0282 1260 nfrd960 - ok
14:02:48.0804 1260 NIS (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files (x86)\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
14:02:48.0861 1260 NIS - ok
14:02:48.0992 1260 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:02:49.0037 1260 NlaSvc - ok
14:02:49.0276 1260 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:02:49.0279 1260 Npfs - ok
14:02:49.0415 1260 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:02:49.0420 1260 nsi - ok
14:02:49.0463 1260 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:02:49.0464 1260 nsiproxy - ok
14:02:49.0823 1260 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:02:50.0041 1260 Ntfs - ok
14:02:50.0373 1260 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:02:50.0378 1260 Null - ok
14:02:50.0453 1260 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
14:02:50.0463 1260 NVENETFD - ok
14:02:50.0590 1260 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:02:50.0662 1260 nvraid - ok
14:02:50.0772 1260 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:02:50.0826 1260 nvstor - ok
14:02:50.0882 1260 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:02:50.0891 1260 nv_agp - ok
14:02:51.0053 1260 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:02:51.0059 1260 ohci1394 - ok
14:02:51.0260 1260 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:02:51.0319 1260 ose - ok
14:02:52.0609 1260 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:02:53.0680 1260 osppsvc - ok
14:02:53.0992 1260 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:02:54.0001 1260 p2pimsvc - ok
14:02:54.0187 1260 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:02:54.0200 1260 p2psvc - ok
14:02:54.0477 1260 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
14:02:54.0482 1260 Parport - ok
14:02:54.0577 1260 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
14:02:54.0651 1260 partmgr - ok
14:02:54.0827 1260 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:02:54.0834 1260 PcaSvc - ok
14:02:54.0904 1260 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:02:54.0957 1260 pci - ok
14:02:55.0072 1260 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:02:55.0077 1260 pciide - ok
14:02:55.0116 1260 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
14:02:55.0157 1260 pcmcia - ok
14:02:55.0201 1260 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:02:55.0205 1260 pcw - ok
14:02:55.0281 1260 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:02:55.0316 1260 PEAUTH - ok
14:02:55.0413 1260 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:02:55.0417 1260 PerfHost - ok
14:02:55.0699 1260 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:02:55.0803 1260 pla - ok
14:02:55.0872 1260 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:02:55.0928 1260 PlugPlay - ok
14:02:55.0979 1260 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:02:55.0985 1260 PNRPAutoReg - ok
14:02:56.0089 1260 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:02:56.0092 1260 PNRPsvc - ok
14:02:56.0233 1260 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:02:56.0309 1260 PolicyAgent - ok
14:02:56.0395 1260 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:02:56.0401 1260 Power - ok
14:02:56.0568 1260 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:02:56.0619 1260 PptpMiniport - ok
14:02:56.0723 1260 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
14:02:56.0726 1260 Processor - ok
14:02:56.0817 1260 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
14:02:56.0854 1260 ProfSvc - ok
14:02:57.0114 1260 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:02:57.0116 1260 ProtectedStorage - ok
14:02:57.0251 1260 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:02:57.0261 1260 Psched - ok
14:02:57.0680 1260 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
14:02:57.0773 1260 ql2300 - ok
14:02:58.0335 1260 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
14:02:58.0356 1260 ql40xx - ok
14:02:58.0522 1260 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:02:58.0530 1260 QWAVE - ok
14:02:58.0619 1260 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:02:58.0620 1260 QWAVEdrv - ok
14:02:58.0633 1260 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:02:58.0637 1260 RasAcd - ok
14:02:58.0810 1260 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:02:58.0813 1260 RasAgileVpn - ok
14:02:59.0057 1260 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:02:59.0066 1260 RasAuto - ok
14:02:59.0184 1260 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:02:59.0239 1260 Rasl2tp - ok
14:02:59.0338 1260 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:02:59.0392 1260 RasMan - ok
14:02:59.0437 1260 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:02:59.0443 1260 RasPppoe - ok
14:02:59.0497 1260 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:02:59.0501 1260 RasSstp - ok
14:02:59.0579 1260 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:02:59.0657 1260 rdbss - ok
14:02:59.0679 1260 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
14:02:59.0686 1260 rdpbus - ok
14:02:59.0707 1260 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:02:59.0708 1260 RDPCDD - ok
14:02:59.0804 1260 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:02:59.0805 1260 RDPENCDD - ok
14:02:59.0971 1260 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:02:59.0972 1260 RDPREFMP - ok
14:03:00.0061 1260 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
14:03:00.0112 1260 RDPWD - ok
14:03:00.0302 1260 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:03:00.0363 1260 rdyboost - ok
14:03:00.0447 1260 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:03:00.0461 1260 RemoteAccess - ok
14:03:00.0497 1260 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:03:00.0503 1260 RemoteRegistry - ok
14:03:00.0601 1260 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:03:00.0610 1260 RpcEptMapper - ok
14:03:00.0986 1260 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:03:00.0992 1260 RpcLocator - ok
14:03:01.0085 1260 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:03:01.0091 1260 RpcSs - ok
14:03:01.0219 1260 RSPCIESTOR (546d7f426776090b90ef5f195b6ae662) C:\Windows\system32\DRIVERS\RtsPStor.sys
14:03:01.0291 1260 RSPCIESTOR - ok
14:03:01.0502 1260 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:03:01.0507 1260 rspndr - ok
14:03:01.0739 1260 RTL8167 (9140db0911de035fed0a9a77a2d156ea) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:03:01.0802 1260 RTL8167 - ok
14:03:01.0826 1260 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:03:01.0828 1260 SamSs - ok
14:03:01.0858 1260 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:03:01.0929 1260 sbp2port - ok
14:03:02.0064 1260 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:03:02.0086 1260 SCardSvr - ok
14:03:02.0192 1260 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:03:02.0253 1260 scfilter - ok
14:03:02.0307 1260 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:03:02.0368 1260 Schedule - ok
14:03:02.0443 1260 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:03:02.0521 1260 SCPolicySvc - ok
14:03:02.0677 1260 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
14:03:02.0768 1260 sdbus - ok
14:03:03.0041 1260 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:03:03.0129 1260 SDRSVC - ok
14:03:03.0282 1260 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
14:03:03.0286 1260 SeaPort - ok
14:03:03.0340 1260 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:03:03.0344 1260 secdrv - ok
14:03:03.0495 1260 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:03:03.0581 1260 seclogon - ok
14:03:03.0689 1260 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:03:03.0701 1260 SENS - ok
14:03:03.0745 1260 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:03:03.0748 1260 SensrSvc - ok
14:03:03.0841 1260 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
14:03:03.0861 1260 Serenum - ok
14:03:03.0896 1260 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
14:03:03.0901 1260 Serial - ok
14:03:03.0942 1260 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
14:03:03.0946 1260 sermouse - ok
14:03:04.0101 1260 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:03:04.0207 1260 SessionEnv - ok
14:03:04.0310 1260 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:03:04.0345 1260 sffdisk - ok
14:03:04.0409 1260 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:03:04.0415 1260 sffp_mmc - ok
14:03:04.0428 1260 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:03:04.0493 1260 sffp_sd - ok
14:03:04.0671 1260 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
14:03:04.0677 1260 sfloppy - ok
14:03:04.0795 1260 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
14:03:04.0892 1260 Sftfs - ok
14:03:05.0407 1260 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
14:03:05.0583 1260 sftlist - ok
14:03:05.0665 1260 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
14:03:05.0765 1260 Sftplay - ok
14:03:05.0831 1260 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
14:03:05.0926 1260 Sftredir - ok
14:03:06.0164 1260 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
14:03:06.0287 1260 Sftvol - ok
14:03:06.0321 1260 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
14:03:06.0452 1260 sftvsa - ok
14:03:06.0592 1260 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:03:06.0603 1260 SharedAccess - ok
14:03:06.0639 1260 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:03:06.0699 1260 ShellHWDetection - ok
14:03:06.0790 1260 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
14:03:06.0800 1260 SiSRaid2 - ok
14:03:06.0812 1260 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
14:03:06.0818 1260 SiSRaid4 - ok
14:03:06.0856 1260 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:03:06.0870 1260 Smb - ok
14:03:06.0927 1260 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:03:06.0935 1260 SNMPTRAP - ok
14:03:07.0042 1260 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:03:07.0060 1260 spldr - ok
14:03:07.0244 1260 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:03:07.0318 1260 Spooler - ok
14:03:07.0925 1260 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:03:07.0992 1260 sppsvc - ok
14:03:08.0119 1260 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:03:08.0160 1260 sppuinotify - ok
14:03:08.0394 1260 SRTSP (90ef30c3867bcde4579c01a6d6e75a7a) C:\Windows\System32\Drivers\NISx64\1206000.01D\SRTSP64.SYS
14:03:08.0606 1260 SRTSP - ok
14:03:08.0669 1260 SRTSPX (c513e8a5e7978da49077f5484344ee1b) C:\Windows\system32\drivers\NISx64\1206000.01D\SRTSPX64.SYS
14:03:08.0767 1260 SRTSPX - ok
14:03:09.0175 1260 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:03:09.0397 1260 srv - ok
14:03:09.0576 1260 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:03:09.0645 1260 srv2 - ok
14:03:09.0709 1260 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
14:03:09.0717 1260 SrvHsfHDA - ok
14:03:10.0003 1260 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
14:03:10.0053 1260 SrvHsfV92 - ok
14:03:10.0418 1260 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
14:03:10.0478 1260 SrvHsfWinac - ok
14:03:10.0598 1260 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:03:10.0663 1260 srvnet - ok
14:03:10.0722 1260 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:03:10.0794 1260 SSDPSRV - ok
14:03:10.0986 1260 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:03:10.0996 1260 SstpSvc - ok
14:03:11.0230 1260 STacSV (7bf818b11c1fedc3e76d233124470a30) C:\Program Files\IDT\WDM\STacSV64.exe
14:03:11.0313 1260 STacSV - ok
14:03:11.0583 1260 Steam Client Service - ok
14:03:11.0714 1260 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
14:03:11.0718 1260 stexstor - ok
14:03:11.0843 1260 STHDA (ebc1a5e076a9be314d3d9e8ed19abb0a) C:\Windows\system32\DRIVERS\stwrt64.sys
14:03:11.0917 1260 STHDA - ok
14:03:12.0010 1260 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:03:12.0059 1260 stisvc - ok
14:03:12.0225 1260 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:03:12.0230 1260 swenum - ok
14:03:12.0363 1260 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:03:12.0381 1260 swprv - ok
14:03:12.0684 1260 SymDS (6160145c7a87fc7672e8e3b886888176) C:\Windows\system32\drivers\NISx64\1206000.01D\SYMDS64.SYS
14:03:12.0772 1260 SymDS - ok
14:03:12.0993 1260 SymEFA (96aeed40d4d3521568b42027687e69e0) C:\Windows\system32\drivers\NISx64\1206000.01D\SYMEFA64.SYS
14:03:13.0213 1260 SymEFA - ok
14:03:13.0286 1260 SymEvent (21a1c2d694c3cf962d31f5e873ab3d6f) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
14:03:13.0346 1260 SymEvent - ok
14:03:13.0365 1260 SymIRON (bd0d711d8cbfcaa19ca123306eaf53a5) C:\Windows\system32\drivers\NISx64\1206000.01D\Ironx64.SYS
14:03:13.0438 1260 SymIRON - ok
14:03:13.0468 1260 SymNetS (a6adb3d83023f8daa0f7b6fda785d83b) C:\Windows\System32\Drivers\NISx64\1206000.01D\SYMNETS.SYS
14:03:13.0581 1260 SymNetS - ok
14:03:13.0675 1260 SynTP (c447977ed2a4ae9346fe3a0579a34d7c) C:\Windows\system32\DRIVERS\SynTP.sys
14:03:13.0781 1260 SynTP - ok
14:03:13.0907 1260 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:03:13.0982 1260 SysMain - ok
14:03:14.0070 1260 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:03:14.0124 1260 TabletInputService - ok
14:03:14.0261 1260 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:03:14.0305 1260 TapiSrv - ok
14:03:14.0335 1260 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:03:14.0340 1260 TBS - ok
14:03:14.0541 1260 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
14:03:14.0619 1260 Tcpip - ok
14:03:14.0911 1260 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
14:03:14.0925 1260 TCPIP6 - ok
14:03:15.0065 1260 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:03:15.0117 1260 tcpipreg - ok
14:03:15.0235 1260 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:03:15.0241 1260 TDPIPE - ok
14:03:15.0277 1260 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:03:15.0331 1260 TDTCP - ok
14:03:15.0370 1260 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:03:15.0422 1260 tdx - ok
14:03:15.0471 1260 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:03:15.0514 1260 TermDD - ok
14:03:15.0567 1260 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:03:15.0620 1260 TermService - ok
14:03:15.0639 1260 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:03:15.0646 1260 Themes - ok
14:03:15.0680 1260 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:03:15.0683 1260 THREADORDER - ok
14:03:15.0760 1260 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:03:15.0767 1260 TrkWks - ok
14:03:15.0893 1260 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:03:15.0945 1260 TrustedInstaller - ok
14:03:15.0996 1260 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:03:16.0046 1260 tssecsrv - ok
14:03:16.0072 1260 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:03:16.0123 1260 TsUsbFlt - ok
14:03:16.0143 1260 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
14:03:16.0195 1260 TsUsbGD - ok
14:03:16.0252 1260 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:03:16.0320 1260 tunnel - ok
14:03:16.0342 1260 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
14:03:16.0348 1260 uagp35 - ok
14:03:16.0375 1260 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:03:16.0432 1260 udfs - ok
14:03:16.0463 1260 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:03:16.0469 1260 UI0Detect - ok
14:03:16.0495 1260 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:03:16.0500 1260 uliagpkx - ok
14:03:16.0537 1260 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
14:03:16.0591 1260 umbus - ok
14:03:16.0635 1260 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
14:03:16.0638 1260 UmPass - ok
14:03:17.0275 1260 UNS (758c2ce427c343f780a205e28555c98d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:03:17.0362 1260 UNS - ok
14:03:17.0614 1260 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:03:17.0629 1260 upnphost - ok
14:03:17.0975 1260 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:03:18.0022 1260 usbccgp - ok
14:03:18.0067 1260 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:03:18.0072 1260 usbcir - ok
14:03:18.0105 1260 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
14:03:18.0153 1260 usbehci - ok
14:03:18.0181 1260 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:03:18.0236 1260 usbhub - ok
14:03:18.0258 1260 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
14:03:18.0306 1260 usbohci - ok
14:03:18.0410 1260 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:03:18.0414 1260 usbprint - ok
14:03:18.0452 1260 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:03:18.0456 1260 usbscan - ok
14:03:18.0521 1260 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:03:18.0568 1260 USBSTOR - ok
14:03:18.0760 1260 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
14:03:18.0805 1260 usbuhci - ok
14:03:18.0951 1260 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
14:03:18.0999 1260 usbvideo - ok
14:03:19.0152 1260 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:03:19.0156 1260 UxSms - ok
14:03:19.0439 1260 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:03:19.0440 1260 VaultSvc - ok
14:03:19.0513 1260 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:03:19.0519 1260 vdrvroot - ok
14:03:19.0686 1260 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:03:19.0866 1260 vds - ok
14:03:20.0019 1260 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:03:20.0022 1260 vga - ok
14:03:20.0184 1260 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:03:20.0190 1260 VgaSave - ok
14:03:20.0293 1260 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:03:20.0360 1260 vhdmp - ok
14:03:20.0480 1260 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:03:20.0495 1260 viaide - ok
14:03:20.0561 1260 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:03:20.0622 1260 volmgr - ok
14:03:20.0685 1260 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:03:20.0690 1260 volmgrx - ok
14:03:20.0805 1260 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:03:20.0922 1260 volsnap - ok
14:03:21.0011 1260 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
14:03:21.0020 1260 vsmraid - ok
14:03:21.0259 1260 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:03:21.0876 1260 VSS - ok
14:03:22.0097 1260 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:03:22.0100 1260 vwifibus - ok
14:03:22.0155 1260 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:03:22.0162 1260 vwififlt - ok
14:03:22.0194 1260 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
14:03:22.0196 1260 vwifimp - ok
14:03:22.0262 1260 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:03:22.0273 1260 W32Time - ok
14:03:22.0390 1260 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
14:03:22.0396 1260 WacomPen - ok
14:03:22.0513 1260 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:22.0593 1260 WANARP - ok
14:03:22.0612 1260 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:03:22.0614 1260 Wanarpv6 - ok
14:03:22.0977 1260 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:03:23.0485 1260 WatAdminSvc - ok
14:03:23.0766 1260 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:03:23.0942 1260 wbengine - ok
14:03:24.0174 1260 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:03:24.0228 1260 WbioSrvc - ok
14:03:24.0335 1260 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:03:24.0383 1260 wcncsvc - ok
14:03:24.0513 1260 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:03:24.0519 1260 WcsPlugInService - ok
14:03:24.0629 1260 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
14:03:24.0635 1260 Wd - ok
14:03:24.0683 1260 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:03:24.0701 1260 Wdf01000 - ok
14:03:24.0755 1260 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:03:24.0774 1260 WdiServiceHost - ok
14:03:24.0790 1260 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:03:24.0792 1260 WdiSystemHost - ok
14:03:25.0016 1260 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:03:25.0088 1260 WebClient - ok
14:03:25.0259 1260 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:03:25.0269 1260 Wecsvc - ok
14:03:25.0354 1260 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:03:25.0357 1260 wercplsupport - ok
14:03:25.0505 1260 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:03:25.0508 1260 WerSvc - ok
14:03:25.0631 1260 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:03:25.0634 1260 WfpLwf - ok
14:03:25.0697 1260 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:03:25.0700 1260 WIMMount - ok
14:03:25.0758 1260 WinDefend - ok
14:03:25.0770 1260 WinHttpAutoProxySvc - ok
14:03:25.0888 1260 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:03:25.0898 1260 Winmgmt - ok
14:03:26.0230 1260 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:03:26.0566 1260 WinRM - ok
14:03:26.0929 1260 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
14:03:26.0980 1260 WinUsb - ok
14:03:27.0137 1260 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:03:27.0234 1260 Wlansvc - ok
14:03:27.0485 1260 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:03:27.0557 1260 wlcrasvc - ok
14:03:27.0934 1260 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:03:27.0989 1260 wlidsvc - ok
14:03:28.0441 1260 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:03:28.0442 1260 WmiAcpi - ok
14:03:28.0573 1260 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:03:28.0580 1260 wmiApSrv - ok
14:03:28.0771 1260 WMPNetworkSvc - ok
14:03:28.0857 1260 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:03:28.0863 1260 WPCSvc - ok
14:03:28.0903 1260 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:03:28.0949 1260 WPDBusEnum - ok
14:03:28.0999 1260 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:03:29.0003 1260 ws2ifsl - ok
14:03:29.0075 1260 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:03:29.0081 1260 wscsvc - ok
14:03:29.0087 1260 WSearch - ok
14:03:29.0562 1260 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
14:03:29.0613 1260 wuauserv - ok
14:03:30.0066 1260 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:03:30.0188 1260 WudfPf - ok
14:03:30.0285 1260 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:03:30.0344 1260 WUDFRd - ok
14:03:30.0470 1260 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:03:30.0521 1260 wudfsvc - ok
14:03:30.0633 1260 WwanSvc (ce8cf9de9cbfdaa318bd04d8be3fcada) C:\Windows\System32\wwansvc.dll
14:03:30.0684 1260 WwanSvc - ok
14:03:30.0797 1260 xusb21 (9176c0822faa649e45121875be32f5d2) C:\Windows\system32\DRIVERS\xusb21.sys
14:03:30.0865 1260 xusb21 - ok
14:03:30.0935 1260 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:03:31.0633 1260 \Device\Harddisk0\DR0 - ok
14:03:31.0742 1260 Boot (0x1200) (baffa924762df5330fa315c743f3b576) \Device\Harddisk0\DR0\Partition0
14:03:31.0744 1260 \Device\Harddisk0\DR0\Partition0 - ok
14:03:31.0756 1260 Boot (0x1200) (ade46a874c4fae48933c40d4f8a54f34) \Device\Harddisk0\DR0\Partition1
14:03:31.0760 1260 \Device\Harddisk0\DR0\Partition1 - ok
14:03:32.0112 1260 Boot (0x1200) (018205767804718b57d653edda8c086e) \Device\Harddisk0\DR0\Partition2
14:03:32.0113 1260 \Device\Harddisk0\DR0\Partition2 - ok
14:03:32.0158 1260 Boot (0x1200) (3f3c5089d9cdef2cdbac47fdd7e5874c) \Device\Harddisk0\DR0\Partition3
14:03:32.0159 1260 \Device\Harddisk0\DR0\Partition3 - ok
14:03:32.0162 1260 ============================================================
14:03:32.0162 1260 Scan finished
14:03:32.0162 1260 ============================================================
14:03:32.0174 6064 Detected object count: 0
14:03:32.0174 6064 Actual detected object count: 0

#6 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 28 June 2012 - 08:29 AM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-28 14:03:32
-----------------------------
14:03:32.607 OS Version: Windows x64 6.1.7601 Service Pack 1
14:03:32.607 Number of processors: 2 586 0x2A07
14:03:32.613 ComputerName: CHRIS-HP UserName: chris
14:03:35.758 Initialze error C0000034 - driver not loaded
14:03:58.142 The log file has been saved successfully to "C:\Users\chris\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-28 14:19:10
-----------------------------
14:19:10.458 OS Version: Windows x64 6.1.7601 Service Pack 1
14:19:10.458 Number of processors: 2 586 0x2A07
14:19:10.458 ComputerName: CHRIS-HP UserName: chris
14:19:13.704 Initialize success
14:19:22.659 AVAST engine defs: 12062800
14:19:32.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
14:19:32.689 Disk 0 Vendor: TOSHIBA_ GN00 Size: 715404MB BusType: 3
14:19:32.937 Disk 0 MBR read successfully
14:19:32.937 Disk 0 MBR scan
14:19:32.947 Disk 0 Windows 7 default MBR code
14:19:32.977 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
14:19:33.037 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 701203 MB offset 409600
14:19:33.087 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13898 MB offset 1436473344
14:19:33.187 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 102 MB offset 1464936448
14:19:33.267 Disk 0 scanning C:\Windows\system32\drivers
14:19:54.635 Service scanning
14:20:56.873 Modules scanning
14:20:56.873 Disk 0 trace - called modules:
14:20:57.212 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
14:20:57.216 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004f43530]
14:20:57.221 3 CLASSPNP.SYS[fffff88001c1743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa80049bf050]
14:21:09.960 AVAST engine scan C:\Windows
14:21:15.175 AVAST engine scan C:\Windows\system32
14:25:40.406 AVAST engine scan C:\Windows\system32\drivers
14:25:53.690 AVAST engine scan C:\Users\chris
14:27:37.564 Disk 0 MBR has been saved successfully to "C:\Users\chris\Documents\MBR.dat"
14:27:37.584 The log file has been saved successfully to "C:\Users\chris\Documents\aswMBR.txt"

#7 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 28 June 2012 - 08:53 AM

Cromlech

ESET log ?

Robyn1727

Please create a new topic :thumbup2: This topic was created by cromlech

Mod Edit: Removed posts by Robyn1727, topic for him at http://www.bleepingcomputer.com/forums/topic458717.html . Please...when someone interjects their issues into post initiated by someone else...do not repond, just use the REPORT button and someone will remove the interloper - Hamluis.

Edited by hamluis, 29 June 2012 - 06:07 AM.

#8 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 29 June 2012 - 06:33 AM

Hi, I ran the ESET but I was unsure of where to find the log, I did notice that it quarntined 3 threats. All 3 were win32/toolbar.mywebsearch,although I am still having the same problem.

Thanks again.

#9 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 29 June 2012 - 06:38 AM

Download

Rogue killer

right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix ,post the log here

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#10 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 29 June 2012 - 03:08 PM

RogueKiller V7.6.1 [06/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User: chris [Admin rights]
Mode: HOSTSFix -- Date: 06/29/2012 21:06:11

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
::1 localhost
188.119.151.111 www.google-analytics.com.
188.119.151.111 ad-emea.doubleclick.net.
188.119.151.111 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.


¤¤¤ Resetted HOSTS: ¤¤¤
127.0.0.1 localhost

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt

#11 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 29 June 2012 - 04:54 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.29.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
chris :: CHRIS-HP [administrator]

29/06/2012 21:14:23
mbam-log-2012-06-29 (21-14-23).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 414600
Time elapsed: 1 hour(s), 39 minute(s), 17 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#12 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 29 June 2012 - 06:29 PM

Minitoolbox log?

#13 Cromlech

Cromlech

    New Member

  • Members
  • Pip
  • 10 posts
  • Gender:Male
  • Location:Belfast

Posted 01 July 2012 - 06:10 PM

Hi,

The step just before the Minitoolbox seems to have fixed it.

Thanks again for the help.

#14 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 01 July 2012 - 06:37 PM

Not yet

Please post the minitoolbox log
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·