Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Security Essentials will not run after Trogan removal

Started by phrog63 , Jul 21 2012 04:17 PM

  • Please log in to reply
4 replies to this topic

#1 phrog63

phrog63

    New Member

  • Members
  • Pip
  • 3 posts
  • Gender:Male
  • Location:Cincinnati, OH

Posted 21 July 2012 - 04:17 PM

I need help. After Trojan removal using Bluepoint Security, Windows Security essentials will not open or run.
I have deleted and re downloaded it and reinstalled but still will not run.

Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Animal

 

  • BC Ads
  • BleepingComputer.com

#2 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 21 July 2012 - 06:32 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 phrog63

phrog63

    New Member

  • Members
  • Pip
  • 3 posts
  • Gender:Male
  • Location:Cincinnati, OH

Posted 22 July 2012 - 05:37 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


#4 phrog63

phrog63

    New Member

  • Members
  • Pip
  • 3 posts
  • Gender:Male
  • Location:Cincinnati, OH

Posted 22 July 2012 - 05:47 PM

I can not find the log for TDSSkiller but it found and removed 19 items.
Below are the other logs.
Both are clesr.

Thanks



18:12:18.0583 5024 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
18:12:19.0132 5024 ============================================================
18:12:19.0132 5024 Current date / time: 2012/07/22 18:12:19.0132
18:12:19.0132 5024 SystemInfo:
18:12:19.0132 5024
18:12:19.0132 5024 OS Version: 6.1.7601 ServicePack: 1.0
18:12:19.0132 5024 Product type: Workstation
18:12:19.0132 5024 ComputerName: DANIEL-PC
18:12:19.0132 5024 UserName: Daniel
18:12:19.0132 5024 Windows directory: C:\Windows
18:12:19.0132 5024 System windows directory: C:\Windows
18:12:19.0132 5024 Running under WOW64
18:12:19.0133 5024 Processor architecture: Intel x64
18:12:19.0133 5024 Number of processors: 2
18:12:19.0133 5024 Page size: 0x1000
18:12:19.0133 5024 Boot type: Normal boot
18:12:19.0133 5024 ============================================================
18:12:21.0921 5024 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:12:21.0934 5024 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:12:21.0968 5024 ============================================================
18:12:21.0969 5024 \Device\Harddisk0\DR0:
18:12:21.0970 5024 MBR partitions:
18:12:21.0970 5024 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:12:21.0970 5024 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x18ACF000
18:12:21.0970 5024 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18B02000, BlocksNum 0xC92B800
18:12:21.0970 5024 \Device\Harddisk1\DR1:
18:12:21.0971 5024 MBR partitions:
18:12:21.0971 5024 ============================================================
18:12:21.0984 5024 C: <-> \Device\Harddisk0\DR0\Partition1
18:12:22.0071 5024 M: <-> \Device\Harddisk0\DR0\Partition2
18:12:22.0087 5024 ============================================================
18:12:22.0087 5024 Initialize success
18:12:22.0087 5024 ============================================================
18:12:54.0807 4252 ============================================================
18:12:54.0807 4252 Scan started
18:12:54.0807 4252 Mode: Manual; TDLFS;
18:12:54.0807 4252 ============================================================
18:12:56.0948 4252 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:12:56.0979 4252 1394ohci - ok
18:12:57.0276 4252 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:12:57.0323 4252 ACPI - ok
18:12:57.0416 4252 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:12:57.0416 4252 AcpiPmi - ok
18:12:57.0745 4252 AcrSch2Svc (0b3601ecea5d6d41ccae143355892061) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
18:12:57.0776 4252 AcrSch2Svc - ok
18:12:57.0823 4252 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:12:57.0823 4252 AdobeARMservice - ok
18:12:58.0057 4252 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:12:58.0057 4252 AdobeFlashPlayerUpdateSvc - ok
18:12:58.0151 4252 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:12:58.0166 4252 adp94xx - ok
18:12:58.0229 4252 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:12:58.0276 4252 adpahci - ok
18:12:58.0323 4252 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:12:58.0323 4252 adpu320 - ok
18:12:58.0385 4252 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:12:58.0385 4252 AeLookupSvc - ok
18:12:58.0776 4252 afcdp (b794dd8acc5cc76177156463dab4bebb) C:\Windows\system32\DRIVERS\afcdp.sys
18:12:58.0776 4252 afcdp - ok
18:12:59.0338 4252 afcdpsrv (5555e5ce43de53fe4c2f19a1163c49a0) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
18:12:59.0432 4252 afcdpsrv - ok
18:12:59.0557 4252 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:12:59.0573 4252 AFD - ok
18:12:59.0604 4252 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:12:59.0620 4252 agp440 - ok
18:12:59.0651 4252 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:12:59.0651 4252 ALG - ok
18:12:59.0666 4252 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:12:59.0666 4252 aliide - ok
18:12:59.0682 4252 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:12:59.0682 4252 amdide - ok
18:12:59.0713 4252 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:12:59.0713 4252 AmdK8 - ok
18:12:59.0729 4252 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:12:59.0729 4252 AmdPPM - ok
18:12:59.0838 4252 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:12:59.0838 4252 amdsata - ok
18:12:59.0916 4252 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:12:59.0916 4252 amdsbs - ok
18:12:59.0932 4252 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:12:59.0932 4252 amdxata - ok
18:12:59.0963 4252 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:12:59.0963 4252 AppID - ok
18:12:59.0995 4252 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:12:59.0995 4252 AppIDSvc - ok
18:13:00.0041 4252 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:13:00.0041 4252 Appinfo - ok
18:13:00.0120 4252 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:13:00.0120 4252 arc - ok
18:13:00.0120 4252 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:13:00.0151 4252 arcsas - ok
18:13:00.0166 4252 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:13:00.0166 4252 AsyncMac - ok
18:13:00.0198 4252 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:13:00.0198 4252 atapi - ok
18:13:00.0338 4252 athur (417b9bab376e8e50f6770196656fd348) C:\Windows\system32\DRIVERS\athurx.sys
18:13:00.0401 4252 athur - ok
18:13:00.0604 4252 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:13:00.0635 4252 AudioEndpointBuilder - ok
18:13:00.0651 4252 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:13:00.0651 4252 AudioSrv - ok
18:13:00.0698 4252 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:13:00.0698 4252 AxInstSV - ok
18:13:00.0760 4252 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:13:00.0791 4252 b06bdrv - ok
18:13:00.0823 4252 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:13:00.0823 4252 b57nd60a - ok
18:13:00.0885 4252 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:13:00.0885 4252 BDESVC - ok
18:13:00.0932 4252 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:13:00.0932 4252 Beep - ok
18:13:01.0026 4252 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:13:01.0041 4252 BFE - ok
18:13:01.0041 4252 bfturboh - ok
18:13:01.0151 4252 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:13:01.0166 4252 BITS - ok
18:13:01.0198 4252 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:13:01.0198 4252 blbdrive - ok
18:13:01.0276 4252 BluePoint Personal Edition (a89d2e4ece1f1cb8b195bb03a76ff241) C:\Program Files (x86)\BluePoint Security\BluePoint Personal\bp.exe
18:13:01.0338 4252 BluePoint Personal Edition - ok
18:13:01.0385 4252 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:13:01.0385 4252 bowser - ok
18:13:01.0416 4252 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:13:01.0416 4252 BrFiltLo - ok
18:13:01.0463 4252 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:13:01.0463 4252 BrFiltUp - ok
18:13:01.0510 4252 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:13:01.0526 4252 Browser - ok
18:13:01.0541 4252 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:13:01.0557 4252 Brserid - ok
18:13:01.0573 4252 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:13:01.0573 4252 BrSerWdm - ok
18:13:01.0588 4252 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:13:01.0588 4252 BrUsbMdm - ok
18:13:01.0588 4252 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:13:01.0588 4252 BrUsbSer - ok
18:13:01.0604 4252 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:13:01.0620 4252 BTHMODEM - ok
18:13:01.0635 4252 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:13:01.0635 4252 bthserv - ok
18:13:01.0682 4252 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:13:01.0682 4252 cdfs - ok
18:13:01.0760 4252 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:13:01.0776 4252 cdrom - ok
18:13:01.0838 4252 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:13:01.0838 4252 CertPropSvc - ok
18:13:01.0854 4252 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:13:01.0854 4252 circlass - ok
18:13:01.0885 4252 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:13:01.0901 4252 CLFS - ok
18:13:02.0010 4252 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:13:02.0010 4252 clr_optimization_v2.0.50727_32 - ok
18:13:02.0088 4252 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:13:02.0088 4252 clr_optimization_v2.0.50727_64 - ok
18:13:02.0166 4252 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:13:02.0198 4252 clr_optimization_v4.0.30319_32 - ok
18:13:02.0276 4252 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:13:02.0276 4252 clr_optimization_v4.0.30319_64 - ok
18:13:02.0307 4252 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:13:02.0307 4252 CmBatt - ok
18:13:02.0323 4252 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:13:02.0323 4252 cmdide - ok
18:13:02.0354 4252 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
18:13:02.0370 4252 CNG - ok
18:13:02.0370 4252 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:13:02.0385 4252 Compbatt - ok
18:13:02.0401 4252 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:13:02.0401 4252 CompositeBus - ok
18:13:02.0416 4252 COMSysApp - ok
18:13:02.0448 4252 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:13:02.0448 4252 crcdisk - ok
18:13:02.0510 4252 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
18:13:02.0510 4252 CryptSvc - ok
18:13:02.0573 4252 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:13:02.0573 4252 DcomLaunch - ok
18:13:02.0604 4252 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:13:02.0620 4252 defragsvc - ok
18:13:02.0651 4252 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:13:02.0666 4252 DfsC - ok
18:13:02.0713 4252 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:13:02.0745 4252 Dhcp - ok
18:13:02.0791 4252 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:13:02.0791 4252 discache - ok
18:13:02.0807 4252 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:13:02.0807 4252 Disk - ok
18:13:02.0854 4252 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:13:02.0870 4252 Dnscache - ok
18:13:02.0916 4252 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:13:02.0916 4252 dot3svc - ok
18:13:02.0963 4252 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:13:02.0963 4252 DPS - ok
18:13:03.0026 4252 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:13:03.0026 4252 drmkaud - ok
18:13:03.0120 4252 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:13:03.0135 4252 DXGKrnl - ok
18:13:03.0166 4252 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:13:03.0166 4252 EapHost - ok
18:13:03.0354 4252 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:13:03.0416 4252 ebdrv - ok
18:13:03.0588 4252 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:13:03.0588 4252 EFS - ok
18:13:03.0651 4252 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:13:03.0666 4252 ehRecvr - ok
18:13:03.0713 4252 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:13:03.0713 4252 ehSched - ok
18:13:03.0885 4252 ElRawDisk (f21a07780bbd64adef872f50e8ce2e75) C:\Windows\system32\drivers\ElRawDsk.sys
18:13:03.0979 4252 ElRawDisk - ok
18:13:04.0057 4252 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:13:04.0073 4252 elxstor - ok
18:13:04.0104 4252 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:13:04.0104 4252 ErrDev - ok
18:13:04.0166 4252 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:13:04.0166 4252 EventSystem - ok
18:13:04.0198 4252 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:13:04.0213 4252 exfat - ok
18:13:04.0229 4252 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:13:04.0260 4252 fastfat - ok
18:13:04.0791 4252 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:13:04.0807 4252 Fax - ok
18:13:04.0823 4252 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:13:04.0838 4252 fdc - ok
18:13:04.0870 4252 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:13:04.0870 4252 fdPHost - ok
18:13:04.0901 4252 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:13:04.0901 4252 FDResPub - ok
18:13:04.0916 4252 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:13:04.0916 4252 FileInfo - ok
18:13:04.0932 4252 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:13:04.0932 4252 Filetrace - ok
18:13:04.0963 4252 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:13:04.0963 4252 flpydisk - ok
18:13:05.0010 4252 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:13:05.0010 4252 FltMgr - ok
18:13:05.0057 4252 fltsrv (d4463a74e1bfbf3fb9b4fc6cf5390152) C:\Windows\system32\DRIVERS\fltsrv.sys
18:13:05.0057 4252 fltsrv - ok
18:13:05.0135 4252 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:13:05.0166 4252 FontCache - ok
18:13:05.0307 4252 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:13:05.0307 4252 FontCache3.0.0.0 - ok
18:13:05.0510 4252 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:13:05.0526 4252 FsDepends - ok
18:13:05.0635 4252 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
18:13:05.0635 4252 fssfltr - ok
18:13:06.0151 4252 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:13:06.0182 4252 fsssvc - ok
18:13:06.0276 4252 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:13:06.0291 4252 Fs_Rec - ok
18:13:06.0323 4252 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:13:06.0323 4252 fvevol - ok
18:13:06.0354 4252 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:13:06.0354 4252 gagp30kx - ok
18:13:06.0416 4252 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:13:06.0432 4252 gpsvc - ok
18:13:06.0463 4252 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:13:06.0463 4252 hcw85cir - ok
18:13:06.0495 4252 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:13:06.0495 4252 HdAudAddService - ok
18:13:06.0526 4252 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:13:06.0526 4252 HDAudBus - ok
18:13:06.0541 4252 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:13:06.0541 4252 HidBatt - ok
18:13:06.0557 4252 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:13:06.0557 4252 HidBth - ok
18:13:06.0588 4252 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:13:06.0588 4252 HidIr - ok
18:13:06.0620 4252 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:13:06.0620 4252 hidserv - ok
18:13:06.0635 4252 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:13:06.0635 4252 HidUsb - ok
18:13:06.0666 4252 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:13:06.0682 4252 hkmsvc - ok
18:13:06.0760 4252 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:13:06.0776 4252 HomeGroupListener - ok
18:13:06.0823 4252 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:13:06.0823 4252 HomeGroupProvider - ok
18:13:06.0932 4252 HP LaserJet Service (53dca61931847e35c950504bfb7559c6) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
18:13:06.0995 4252 HP LaserJet Service - ok
18:13:07.0073 4252 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:13:07.0088 4252 hpqcxs08 - ok
18:13:07.0104 4252 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:13:07.0104 4252 hpqddsvc - ok
18:13:07.0135 4252 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:13:07.0135 4252 HpSAMD - ok
18:13:07.0213 4252 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:13:07.0276 4252 HPSLPSVC - ok
18:13:07.0338 4252 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:13:07.0338 4252 HTTP - ok
18:13:07.0370 4252 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:13:07.0385 4252 hwpolicy - ok
18:13:07.0416 4252 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:13:07.0416 4252 i8042prt - ok
18:13:07.0463 4252 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:13:07.0479 4252 iaStorV - ok
18:13:07.0573 4252 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:13:07.0604 4252 idsvc - ok
18:13:07.0870 4252 igfx (24cc43ecdeefd4c19fbbee4951b647f1) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:13:07.0979 4252 igfx - ok
18:13:08.0073 4252 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:13:08.0073 4252 iirsp - ok
18:13:08.0213 4252 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:13:08.0260 4252 IKEEXT - ok
18:13:08.0291 4252 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:13:08.0291 4252 intelide - ok
18:13:08.0323 4252 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:13:08.0323 4252 intelppm - ok
18:13:08.0495 4252 ioloFileInfoList (440a02fa25be8dccd2103d820036eda1) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
18:13:08.0526 4252 ioloFileInfoList - ok
18:13:08.0541 4252 ioloSystemService (440a02fa25be8dccd2103d820036eda1) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
18:13:08.0541 4252 ioloSystemService - ok
18:13:08.0573 4252 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:13:08.0573 4252 IPBusEnum - ok
18:13:08.0604 4252 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:13:08.0604 4252 IpFilterDriver - ok
18:13:08.0651 4252 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:13:08.0698 4252 iphlpsvc - ok
18:13:08.0745 4252 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:13:08.0745 4252 IPMIDRV - ok
18:13:08.0760 4252 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:13:08.0776 4252 IPNAT - ok
18:13:08.0791 4252 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:13:08.0791 4252 IRENUM - ok
18:13:08.0807 4252 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:13:08.0807 4252 isapnp - ok
18:13:08.0979 4252 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:13:08.0979 4252 iScsiPrt - ok
18:13:08.0995 4252 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:13:08.0995 4252 kbdclass - ok
18:13:09.0073 4252 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:13:09.0073 4252 kbdhid - ok
18:13:09.0135 4252 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:13:09.0151 4252 KeyIso - ok
18:13:09.0245 4252 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
18:13:09.0245 4252 KSecDD - ok
18:13:09.0276 4252 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
18:13:09.0276 4252 KSecPkg - ok
18:13:09.0291 4252 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:13:09.0291 4252 ksthunk - ok
18:13:09.0448 4252 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:13:09.0448 4252 KtmRm - ok
18:13:09.0526 4252 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:13:09.0526 4252 LanmanServer - ok
18:13:09.0588 4252 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:13:09.0620 4252 LanmanWorkstation - ok
18:13:09.0666 4252 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:13:09.0682 4252 lltdio - ok
18:13:09.0729 4252 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:13:09.0729 4252 lltdsvc - ok
18:13:09.0745 4252 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:13:09.0745 4252 lmhosts - ok
18:13:09.0776 4252 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:13:09.0776 4252 LSI_FC - ok
18:13:09.0791 4252 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:13:09.0791 4252 LSI_SAS - ok
18:13:09.0854 4252 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:13:09.0854 4252 LSI_SAS2 - ok
18:13:09.0870 4252 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:13:09.0885 4252 LSI_SCSI - ok
18:13:09.0901 4252 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:13:09.0916 4252 luafv - ok
18:13:09.0948 4252 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:13:09.0948 4252 Mcx2Svc - ok
18:13:09.0963 4252 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:13:09.0963 4252 megasas - ok
18:13:09.0995 4252 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:13:09.0995 4252 MegaSR - ok
18:13:10.0041 4252 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:13:10.0057 4252 MMCSS - ok
18:13:10.0088 4252 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:13:10.0104 4252 Modem - ok
18:13:10.0135 4252 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:13:10.0135 4252 monitor - ok
18:13:10.0276 4252 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:13:10.0323 4252 mouclass - ok
18:13:10.0432 4252 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:13:10.0448 4252 mouhid - ok
18:13:10.0510 4252 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:13:10.0573 4252 mountmgr - ok
18:13:10.0588 4252 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
18:13:10.0620 4252 MpFilter - ok
18:13:10.0713 4252 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:13:10.0713 4252 mpio - ok
18:13:10.0760 4252 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:13:10.0760 4252 mpsdrv - ok
18:13:10.0823 4252 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:13:10.0870 4252 MpsSvc - ok
18:13:10.0948 4252 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:13:10.0963 4252 MRxDAV - ok
18:13:10.0995 4252 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:13:11.0010 4252 mrxsmb - ok
18:13:11.0057 4252 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:13:11.0057 4252 mrxsmb10 - ok
18:13:11.0073 4252 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:13:11.0088 4252 mrxsmb20 - ok
18:13:11.0135 4252 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:13:11.0135 4252 msahci - ok
18:13:11.0182 4252 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:13:11.0182 4252 msdsm - ok
18:13:11.0260 4252 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:13:11.0276 4252 MSDTC - ok
18:13:11.0291 4252 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:13:11.0291 4252 Msfs - ok
18:13:11.0307 4252 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:13:11.0307 4252 mshidkmdf - ok
18:13:11.0323 4252 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:13:11.0323 4252 msisadrv - ok
18:13:11.0432 4252 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:13:11.0432 4252 MSiSCSI - ok
18:13:11.0448 4252 msiserver - ok
18:13:11.0448 4252 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:13:11.0463 4252 MSKSSRV - ok
18:13:11.0510 4252 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) C:\Program Files\Microsoft Security Client\MsMpEng.exe
18:13:11.0510 4252 MsMpSvc - ok
18:13:11.0526 4252 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:13:11.0526 4252 MSPCLOCK - ok
18:13:11.0526 4252 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:13:11.0526 4252 MSPQM - ok
18:13:11.0573 4252 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:13:11.0588 4252 MsRPC - ok
18:13:11.0620 4252 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:13:11.0620 4252 mssmbios - ok
18:13:11.0635 4252 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:13:11.0635 4252 MSTEE - ok
18:13:11.0651 4252 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:13:11.0651 4252 MTConfig - ok
18:13:11.0666 4252 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:13:11.0666 4252 Mup - ok
18:13:11.0713 4252 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:13:11.0729 4252 napagent - ok
18:13:11.0745 4252 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:13:11.0760 4252 NativeWifiP - ok
18:13:11.0807 4252 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:13:11.0823 4252 NDIS - ok
18:13:11.0854 4252 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:13:11.0854 4252 NdisCap - ok
18:13:11.0870 4252 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:13:11.0870 4252 NdisTapi - ok
18:13:11.0916 4252 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:13:11.0916 4252 Ndisuio - ok
18:13:11.0948 4252 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:13:11.0963 4252 NdisWan - ok
18:13:11.0995 4252 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:13:11.0995 4252 NDProxy - ok
18:13:12.0026 4252 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
18:13:12.0026 4252 Net Driver HPZ12 - ok
18:13:12.0057 4252 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:13:12.0057 4252 NetBIOS - ok
18:13:12.0104 4252 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:13:12.0104 4252 NetBT - ok
18:13:12.0135 4252 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:13:12.0135 4252 Netlogon - ok
18:13:12.0182 4252 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:13:12.0182 4252 Netman - ok
18:13:12.0213 4252 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:13:12.0229 4252 netprofm - ok
18:13:12.0323 4252 netr28ux (c32cba363c0308ac69da5afb62c96fdb) C:\Windows\system32\DRIVERS\netr28ux.sys
18:13:12.0354 4252 netr28ux - ok
18:13:12.0495 4252 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:13:12.0510 4252 NetTcpPortSharing - ok
18:13:12.0588 4252 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:13:12.0588 4252 nfrd960 - ok
18:13:12.0635 4252 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:13:12.0682 4252 NisDrv - ok
18:13:12.0729 4252 NisSrv (10a43829a9e606af3eef25a1c1665923) C:\Program Files\Microsoft Security Client\NisSrv.exe
18:13:12.0745 4252 NisSrv - ok
18:13:12.0791 4252 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:13:12.0807 4252 NlaSvc - ok
18:13:12.0807 4252 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:13:12.0807 4252 Npfs - ok
18:13:12.0838 4252 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:13:12.0838 4252 nsi - ok
18:13:12.0854 4252 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:13:12.0901 4252 nsiproxy - ok
18:13:12.0995 4252 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:13:13.0026 4252 Ntfs - ok
18:13:13.0104 4252 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:13:13.0120 4252 Null - ok
18:13:13.0151 4252 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:13:13.0198 4252 nvraid - ok
18:13:13.0229 4252 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:13:13.0229 4252 nvstor - ok
18:13:13.0276 4252 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:13:13.0276 4252 nv_agp - ok
18:13:13.0370 4252 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:13:13.0385 4252 odserv - ok
18:13:13.0416 4252 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:13:13.0416 4252 ohci1394 - ok
18:13:13.0432 4252 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:13:13.0448 4252 ose - ok
18:13:13.0479 4252 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:13:13.0495 4252 p2pimsvc - ok
18:13:13.0526 4252 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:13:13.0573 4252 p2psvc - ok
18:13:13.0588 4252 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:13:13.0604 4252 Parport - ok
18:13:13.0635 4252 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:13:13.0635 4252 partmgr - ok
18:13:13.0651 4252 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:13:13.0651 4252 PcaSvc - ok
18:13:13.0682 4252 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:13:13.0698 4252 pci - ok
18:13:13.0729 4252 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:13:13.0729 4252 pciide - ok
18:13:13.0745 4252 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:13:13.0760 4252 pcmcia - ok
18:13:13.0776 4252 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:13:13.0776 4252 pcw - ok
18:13:13.0823 4252 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:13:13.0823 4252 PEAUTH - ok
18:13:13.0901 4252 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:13:13.0901 4252 PerfHost - ok
18:13:13.0995 4252 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:13:14.0026 4252 pla - ok
18:13:14.0073 4252 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:13:14.0088 4252 PlugPlay - ok
18:13:14.0135 4252 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
18:13:14.0135 4252 Pml Driver HPZ12 - ok
18:13:14.0166 4252 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:13:14.0166 4252 PNRPAutoReg - ok
18:13:14.0198 4252 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:13:14.0198 4252 PNRPsvc - ok
18:13:14.0354 4252 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:13:14.0370 4252 PolicyAgent - ok
18:13:14.0401 4252 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:13:14.0416 4252 Power - ok
18:13:14.0463 4252 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:13:14.0495 4252 PptpMiniport - ok
18:13:14.0526 4252 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:13:14.0541 4252 Processor - ok
18:13:14.0588 4252 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
18:13:14.0588 4252 ProfSvc - ok
18:13:14.0620 4252 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:13:14.0620 4252 ProtectedStorage - ok
18:13:14.0651 4252 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:13:14.0651 4252 Psched - ok
18:13:14.0760 4252 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:13:14.0823 4252 ql2300 - ok
18:13:14.0901 4252 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:13:14.0901 4252 ql40xx - ok
18:13:14.0948 4252 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:13:14.0963 4252 QWAVE - ok
18:13:14.0995 4252 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:13:15.0010 4252 QWAVEdrv - ok
18:13:15.0088 4252 RalinkRegistryWriter (e5f568414f32873e6ec9fd97f9ee980c) C:\Program Files (x86)\Tenda\Common\RaRegistry.exe
18:13:15.0166 4252 RalinkRegistryWriter - ok
18:13:15.0182 4252 RalinkRegistryWriter64 (ffb6c1e16ff8772f62693a3dca731f8f) C:\Program Files (x86)\Tenda\Common\RaRegistry64.exe
18:13:15.0245 4252 RalinkRegistryWriter64 - ok
18:13:15.0260 4252 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:13:15.0260 4252 RasAcd - ok
18:13:15.0276 4252 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:13:15.0276 4252 RasAgileVpn - ok
18:13:15.0307 4252 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:13:15.0307 4252 RasAuto - ok
18:13:15.0338 4252 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:13:15.0370 4252 Rasl2tp - ok
18:13:15.0416 4252 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:13:15.0448 4252 RasMan - ok
18:13:15.0479 4252 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:13:15.0510 4252 RasPppoe - ok
18:13:15.0510 4252 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:13:15.0541 4252 RasSstp - ok
18:13:15.0573 4252 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:13:15.0604 4252 rdbss - ok
18:13:15.0620 4252 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:13:15.0651 4252 rdpbus - ok
18:13:15.0666 4252 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:13:15.0698 4252 RDPCDD - ok
18:13:15.0698 4252 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:13:15.0713 4252 RDPENCDD - ok
18:13:15.0729 4252 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:13:15.0729 4252 RDPREFMP - ok
18:13:15.0760 4252 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
18:13:15.0776 4252 RDPWD - ok
18:13:15.0807 4252 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:13:15.0823 4252 rdyboost - ok
18:13:15.0854 4252 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:13:15.0901 4252 RemoteAccess - ok
18:13:15.0932 4252 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:13:15.0948 4252 RemoteRegistry - ok
18:13:15.0963 4252 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:13:15.0963 4252 RpcEptMapper - ok
18:13:15.0995 4252 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:13:15.0995 4252 RpcLocator - ok
18:13:16.0041 4252 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:13:16.0041 4252 RpcSs - ok
18:13:16.0073 4252 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:13:16.0088 4252 rspndr - ok
18:13:16.0120 4252 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:13:16.0151 4252 RTL8167 - ok
18:13:16.0182 4252 RTL8187B (945ab249d12cbe044782430c6013aa1a) C:\Windows\system32\DRIVERS\RTL8187B.sys
18:13:16.0198 4252 RTL8187B - ok
18:13:16.0323 4252 RTL85n64 (bf12bef1f005d0fe1dcf00c39c1796aa) C:\Windows\system32\DRIVERS\RTL85n64.sys
18:13:16.0385 4252 RTL85n64 - ok
18:13:16.0463 4252 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:13:16.0463 4252 SamSs - ok
18:13:16.0510 4252 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:13:16.0557 4252 sbp2port - ok
18:13:16.0588 4252 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:13:16.0604 4252 SCardSvr - ok
18:13:16.0635 4252 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:13:16.0635 4252 scfilter - ok
18:13:16.0698 4252 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:13:16.0729 4252 Schedule - ok
18:13:16.0776 4252 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:13:16.0776 4252 SCPolicySvc - ok
18:13:16.0838 4252 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:13:16.0838 4252 SDRSVC - ok
18:13:16.0885 4252 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:13:16.0885 4252 secdrv - ok
18:13:16.0916 4252 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:13:16.0916 4252 seclogon - ok
18:13:16.0932 4252 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:13:16.0948 4252 SENS - ok
18:13:16.0963 4252 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:13:16.0963 4252 SensrSvc - ok
18:13:16.0979 4252 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:13:16.0979 4252 Serenum - ok
18:13:16.0995 4252 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:13:16.0995 4252 Serial - ok
18:13:17.0026 4252 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:13:17.0026 4252 sermouse - ok
18:13:17.0073 4252 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:13:17.0073 4252 SessionEnv - ok
18:13:17.0104 4252 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:13:17.0104 4252 sffdisk - ok
18:13:17.0120 4252 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:13:17.0120 4252 sffp_mmc - ok
18:13:17.0120 4252 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:13:17.0120 4252 sffp_sd - ok
18:13:17.0135 4252 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:13:17.0135 4252 sfloppy - ok
18:13:17.0198 4252 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:13:17.0198 4252 SharedAccess - ok
18:13:17.0245 4252 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:13:17.0260 4252 ShellHWDetection - ok
18:13:17.0276 4252 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:13:17.0276 4252 SiSRaid2 - ok
18:13:17.0307 4252 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:13:17.0307 4252 SiSRaid4 - ok
18:13:17.0323 4252 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:13:17.0323 4252 Smb - ok
18:13:17.0432 4252 snapman (f26aad9adfc9b62ac59a004a913c92da) C:\Windows\system32\DRIVERS\snapman.sys
18:13:17.0432 4252 snapman - ok
18:13:17.0448 4252 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:13:17.0448 4252 SNMPTRAP - ok
18:13:17.0479 4252 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:13:17.0479 4252 spldr - ok
18:13:17.0541 4252 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:13:17.0557 4252 Spooler - ok
18:13:17.0745 4252 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:13:17.0807 4252 sppsvc - ok
18:13:17.0916 4252 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:13:17.0916 4252 sppuinotify - ok
18:13:17.0979 4252 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:13:17.0995 4252 srv - ok
18:13:18.0026 4252 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:13:18.0041 4252 srv2 - ok
18:13:18.0057 4252 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:13:18.0073 4252 srvnet - ok
18:13:18.0104 4252 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:13:18.0120 4252 SSDPSRV - ok
18:13:18.0135 4252 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:13:18.0151 4252 SstpSvc - ok
18:13:18.0182 4252 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:13:18.0182 4252 stexstor - ok
18:13:18.0213 4252 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
18:13:18.0213 4252 StillCam - ok
18:13:18.0276 4252 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:13:18.0291 4252 stisvc - ok
18:13:18.0323 4252 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:13:18.0323 4252 swenum - ok
18:13:18.0463 4252 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:13:18.0479 4252 swprv - ok
18:13:18.0901 4252 syncagentsrv (caaeb44422474ed5c13d988ae7ca4a1c) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
18:13:19.0026 4252 syncagentsrv - ok
18:13:19.0213 4252 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:13:19.0260 4252 SysMain - ok
18:13:19.0401 4252 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:13:19.0448 4252 TabletInputService - ok
18:13:19.0588 4252 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:13:19.0604 4252 TapiSrv - ok
18:13:19.0620 4252 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:13:19.0635 4252 TBS - ok
18:13:19.0760 4252 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:13:19.0791 4252 Tcpip - ok
18:13:19.0963 4252 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:13:19.0963 4252 TCPIP6 - ok
18:13:20.0041 4252 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:13:20.0041 4252 tcpipreg - ok
18:13:20.0057 4252 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:13:20.0073 4252 TDPIPE - ok
18:13:20.0166 4252 tdrpman (7bc43335c778370fd0040d5224d8edeb) C:\Windows\system32\DRIVERS\tdrpman.sys
18:13:20.0182 4252 tdrpman - ok
18:13:20.0213 4252 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:13:20.0213 4252 TDTCP - ok
18:13:20.0245 4252 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:13:20.0245 4252 tdx - ok
18:13:20.0276 4252 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:13:20.0276 4252 TermDD - ok
18:13:20.0323 4252 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:13:20.0338 4252 TermService - ok
18:13:20.0370 4252 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:13:20.0370 4252 Themes - ok
18:13:20.0401 4252 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:13:20.0401 4252 THREADORDER - ok
18:13:20.0463 4252 timounter (7d68eab50df8b71408b645ba8581800e) C:\Windows\system32\DRIVERS\timntr.sys
18:13:20.0495 4252 timounter - ok
18:13:20.0541 4252 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:13:20.0541 4252 TrkWks - ok
18:13:20.0604 4252 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:13:20.0620 4252 TrustedInstaller - ok
18:13:20.0666 4252 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:13:20.0666 4252 tssecsrv - ok
18:13:20.0698 4252 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:13:20.0698 4252 TsUsbFlt - ok
18:13:20.0745 4252 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:13:20.0745 4252 tunnel - ok
18:13:20.0776 4252 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:13:20.0776 4252 uagp35 - ok
18:13:20.0807 4252 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:13:20.0807 4252 udfs - ok
18:13:20.0838 4252 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:13:20.0838 4252 UI0Detect - ok
18:13:20.0870 4252 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:13:20.0870 4252 uliagpkx - ok
18:13:20.0901 4252 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
18:13:20.0901 4252 umbus - ok
18:13:20.0916 4252 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:13:20.0916 4252 UmPass - ok
18:13:20.0948 4252 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:13:20.0963 4252 upnphost - ok
18:13:20.0995 4252 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:13:21.0010 4252 usbccgp - ok
18:13:21.0041 4252 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:13:21.0041 4252 usbcir - ok
18:13:21.0073 4252 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:13:21.0073 4252 usbehci - ok
18:13:21.0120 4252 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:13:21.0120 4252 usbhub - ok
18:13:21.0135 4252 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
18:13:21.0135 4252 usbohci - ok
18:13:21.0135 4252 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:13:21.0135 4252 usbprint - ok
18:13:21.0166 4252 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:13:21.0166 4252 USBSTOR - ok
18:13:21.0182 4252 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
18:13:21.0182 4252 usbuhci - ok
18:13:21.0198 4252 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:13:21.0198 4252 UxSms - ok
18:13:21.0229 4252 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:13:21.0229 4252 VaultSvc - ok
18:13:21.0260 4252 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:13:21.0260 4252 vdrvroot - ok
18:13:21.0307 4252 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:13:21.0323 4252 vds - ok
18:13:21.0354 4252 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:13:21.0354 4252 vga - ok
18:13:21.0370 4252 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:13:21.0370 4252 VgaSave - ok
18:13:21.0401 4252 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:13:21.0416 4252 vhdmp - ok
18:13:21.0432 4252 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:13:21.0432 4252 viaide - ok
18:13:21.0495 4252 vididr (acbcbd8421920d20f1f40b6f76a4c213) C:\Windows\system32\DRIVERS\vididr.sys
18:13:21.0495 4252 vididr - ok
18:13:21.0541 4252 vidsflt67 (905dd422d28a32face8ae695b3823843) C:\Windows\system32\DRIVERS\vsflt67.sys
18:13:21.0557 4252 vidsflt67 - ok
18:13:21.0557 4252 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:13:21.0573 4252 volmgr - ok
18:13:21.0604 4252 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:13:21.0620 4252 volmgrx - ok
18:13:21.0651 4252 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:13:21.0651 4252 volsnap - ok
18:13:21.0682 4252 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:13:21.0698 4252 vsmraid - ok
18:13:21.0791 4252 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:13:21.0807 4252 VSS - ok
18:13:21.0901 4252 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:13:21.0901 4252 vwifibus - ok
18:13:21.0916 4252 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:13:21.0916 4252 vwififlt - ok
18:13:21.0948 4252 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:13:21.0948 4252 vwifimp - ok
18:13:21.0995 4252 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:13:22.0010 4252 W32Time - ok
18:13:22.0041 4252 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:13:22.0041 4252 WacomPen - ok
18:13:22.0073 4252 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:13:22.0073 4252 WANARP - ok
18:13:22.0073 4252 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:13:22.0073 4252 Wanarpv6 - ok
18:13:22.0182 4252 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:13:22.0213 4252 WatAdminSvc - ok
18:13:22.0291 4252 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:13:22.0323 4252 wbengine - ok
18:13:22.0416 4252 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:13:22.0432 4252 WbioSrvc - ok
18:13:22.0479 4252 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:13:22.0510 4252 wcncsvc - ok
18:13:22.0526 4252 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:13:22.0526 4252 WcsPlugInService - ok
18:13:22.0557 4252 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:13:22.0557 4252 Wd - ok
18:13:22.0604 4252 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:13:22.0620 4252 Wdf01000 - ok
18:13:22.0635 4252 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:13:22.0651 4252 WdiServiceHost - ok
18:13:22.0651 4252 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:13:22.0666 4252 WdiSystemHost - ok
18:13:22.0698 4252 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:13:22.0713 4252 WebClient - ok
18:13:22.0729 4252 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:13:22.0745 4252 Wecsvc - ok
18:13:22.0760 4252 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:13:22.0760 4252 wercplsupport - ok
18:13:22.0776 4252 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:13:22.0776 4252 WerSvc - ok
18:13:22.0823 4252 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:13:22.0823 4252 WfpLwf - ok
18:13:22.0838 4252 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:13:22.0838 4252 WIMMount - ok
18:13:22.0870 4252 WinDefend - ok
18:13:22.0885 4252 WinHttpAutoProxySvc - ok
18:13:23.0010 4252 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:13:23.0010 4252 Winmgmt - ok
18:13:23.0135 4252 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:13:23.0166 4252 WinRM - ok
18:13:23.0307 4252 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:13:23.0307 4252 WinUsb - ok
18:13:23.0416 4252 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:13:23.0432 4252 Wlansvc - ok
18:13:23.0495 4252 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:13:23.0495 4252 wlcrasvc - ok
18:13:23.0729 4252 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:13:23.0823 4252 wlidsvc - ok
18:13:23.0963 4252 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:13:24.0135 4252 WmiAcpi - ok
18:13:24.0823 4252 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:13:24.0854 4252 wmiApSrv - ok
18:13:24.0901 4252 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:13:24.0948 4252 WPCSvc - ok
18:13:25.0104 4252 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:13:25.0104 4252 WPDBusEnum - ok
18:13:25.0135 4252 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:13:25.0135 4252 ws2ifsl - ok
18:13:25.0166 4252 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:13:25.0166 4252 wscsvc - ok
18:13:25.0182 4252 WSearch - ok
18:13:25.0401 4252 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
18:13:25.0432 4252 wuauserv - ok
18:13:25.0573 4252 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:13:25.0573 4252 WudfPf - ok
18:13:25.0620 4252 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:13:25.0620 4252 WUDFRd - ok
18:13:25.0651 4252 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:13:25.0651 4252 wudfsvc - ok
18:13:25.0682 4252 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:13:25.0698 4252 WwanSvc - ok
18:13:25.0745 4252 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:13:26.0088 4252 \Device\Harddisk0\DR0 - ok
18:13:26.0088 4252 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
18:13:26.0151 4252 \Device\Harddisk1\DR1 - ok
18:13:26.0151 4252 Boot (0x1200) (cc39979c82f240a198803b5c11492fd4) \Device\Harddisk0\DR0\Partition0
18:13:26.0166 4252 \Device\Harddisk0\DR0\Partition0 - ok
18:13:26.0198 4252 Boot (0x1200) (0ab9081bea75acc3c09b3384d49895a8) \Device\Harddisk0\DR0\Partition1
18:13:26.0198 4252 \Device\Harddisk0\DR0\Partition1 - ok
18:13:26.0229 4252 Boot (0x1200) (d72255e7d472c98e4a6e9175ff661e30) \Device\Harddisk0\DR0\Partition2
18:13:26.0229 4252 \Device\Harddisk0\DR0\Partition2 - ok
18:13:26.0229 4252 ============================================================
18:13:26.0229 4252 Scan finished
18:13:26.0229 4252 ============================================================
18:13:26.0245 4344 Detected object count: 0
18:13:26.0245 4344 Actual detected object count: 0

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software

Run date: 2012-07-22 00:48:25

-----------------------------

00:48:25.205 OS Version: Windows x64 6.1.7601 Service Pack 1

00:48:25.205 Number of processors: 2 586 0x170A

00:48:25.206 ComputerName: DANIEL-PC UserName: Daniel

00:48:26.708 Initialize success

00:49:57.066 AVAST engine defs: 12072101

00:50:06.547 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3

00:50:06.552 Disk 0 Vendor: WDC_WD3200AAJS-65M0A0 01.03E01 Size: 305245MB BusType: 3

00:50:06.558 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-5

00:50:06.565 Disk 1 Vendor: Hitachi_HDS721010CLA332 JP4OA3EA Size: 953869MB BusType: 3

00:50:06.595 Disk 0 MBR read successfully

00:50:06.601 Disk 0 MBR scan

00:50:06.669 Disk 0 Windows 7 default MBR code

00:50:06.685 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048

00:50:06.718 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 202142 MB offset 206848

00:50:06.763 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 102999 MB offset 414195712

00:50:06.837 Disk 0 scanning C:\Windows\system32\drivers

00:50:20.912 Service scanning

00:50:52.854 Modules scanning

00:50:52.874 Disk 0 trace - called modules:

00:50:52.901 ntoskrnl.exe fltsrv.sys tdrpman.sys CLASSPNP.SYS disk.sys vsflt67.sys ACPI.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys

00:50:52.909 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005827060]

00:50:52.916 3 CLASSPNP.SYS[fffff88001c1743f] -> nt!IofCallDriver -> [0xfffffa8005826040]

00:50:52.924 5 vsflt67.sys[fffff88000e527cd] -> nt!IofCallDriver -> [0xfffffa8005338520]

00:50:52.932 7 ACPI.sys[fffff88000f897a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-3[0xfffffa8005512060]

00:50:53.938 AVAST engine scan C:\Windows

00:50:57.364 AVAST engine scan C:\Windows\system32

00:54:59.000 AVAST engine scan C:\Windows\system32\drivers

00:55:21.500 AVAST engine scan C:\Users\Daniel

01:04:36.444 AVAST engine scan C:\ProgramData

01:05:39.187 Scan finished successfully

18:11:50.060 Disk 0 MBR has been saved successfully to "C:\Users\Daniel\Downloads\MBR.dat"

18:11:50.067 The log file has been saved successfully to "C:\Users\Daniel\Downloads\aswMBR log.txt"






#5 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 22 July 2012 - 06:03 PM

I can not find the log for TDSSkiller but it found and removed 19 items.


Go to C drive,you will find previous logs.Please post the results here
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·