Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help! Windows has encountered a critical problem


  • Please log in to reply
20 replies to this topic

#1 Trooperzet79

Trooperzet79

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 14 August 2012 - 04:30 PM

I noticed an issue with MSE and tried to uninstall and reinstall but keep getting an error message saying "Windows has encountered a critical problem and will restart automatically in one minute. Please save your work now."

As soon as my pc restarts I just get the same error message, even in Safe Mode. I cannot do anything, run program's etc, because my pc constantly shuts down and restarts.

My OS is a 32 bit Windows Vista.

Thanks in advance for your help!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:43 PM

Posted 14 August 2012 - 08:41 PM

Copy TDSSkiller to a flash drive

TDSSkiller

Launch it on infected PC

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

If scan completes before shutdown ,cure the infections and restart the PC

Let me know how it goes

Edited by narenxp, 14 August 2012 - 08:42 PM.


#3 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 18 August 2012 - 12:00 PM

I ran TDSSkiller which detected 1 object, so I tried to cure but during this process the computer shut down and restarted. When it restarted I no longer had the error message. I wasn't sure if TDSSkiller had fully cured the issue so ran it again. I've posted two log reports below:

15:39:46.0696 1956 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
15:39:46.0712 1956 ============================================================
15:39:46.0712 1956 Current date / time: 2012/08/18 15:39:46.0712
15:39:46.0712 1956 SystemInfo:
15:39:46.0712 1956
15:39:46.0712 1956 OS Version: 6.0.6002 ServicePack: 2.0
15:39:46.0712 1956 Product type: Workstation
15:39:46.0712 1956 ComputerName: USER-PC
15:39:46.0712 1956 UserName: user
15:39:46.0712 1956 Windows directory: C:\Windows
15:39:46.0712 1956 System windows directory: C:\Windows
15:39:46.0712 1956 Processor architecture: Intel x86
15:39:46.0712 1956 Number of processors: 2
15:39:46.0712 1956 Page size: 0x1000
15:39:46.0712 1956 Boot type: Safe boot
15:39:46.0712 1956 ============================================================
15:39:59.0769 1956 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:39:59.0847 1956 Drive \Device\Harddisk1\DR1 - Size: 0x77800000 (1.87 Gb), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:39:59.0847 1956 ============================================================
15:39:59.0847 1956 \Device\Harddisk0\DR0:
15:39:59.0909 1956 MBR partitions:
15:39:59.0909 1956 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C134849
15:39:59.0909 1956 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C134888, BlocksNum 0x108FCF9
15:39:59.0909 1956 \Device\Harddisk1\DR1:
15:39:59.0909 1956 MBR partitions:
15:39:59.0909 1956 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xE, StartLBA 0x1F80, BlocksNum 0x3BA080
15:39:59.0909 1956 ============================================================
15:40:00.0175 1956 C: <-> \Device\Harddisk0\DR0\Partition1
15:40:00.0362 1956 D: <-> \Device\Harddisk0\DR0\Partition2
15:40:00.0362 1956 ============================================================
15:40:00.0362 1956 Initialize success
15:40:00.0362 1956 ============================================================
15:40:04.0995 0336 ============================================================
15:40:04.0995 0336 Scan started
15:40:04.0995 0336 Mode: Manual;
15:40:04.0995 0336 ============================================================
15:40:11.0531 0336 ================ Scan services =============================
15:40:25.0525 0336 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:40:25.0805 0336 ACPI - ok
15:40:26.0273 0336 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:40:26.0835 0336 AdobeFlashPlayerUpdateSvc - ok
15:40:27.0287 0336 [ 2edc5bbac6c651ece337bde8ed97c9fb ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:40:27.0865 0336 adp94xx - ok
15:40:28.0177 0336 [ b84088ca3cdca97da44a984c6ce1ccad ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:40:28.0520 0336 adpahci - ok
15:40:28.0567 0336 [ 7880c67bccc27c86fd05aa2afb5ea469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:40:28.0629 0336 adpu160m - ok
15:40:28.0769 0336 [ 9ae713f8e30efc2abccd84904333df4d ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:40:28.0894 0336 adpu320 - ok
15:40:29.0081 0336 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:40:29.0128 0336 AeLookupSvc - ok
15:40:29.0581 0336 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
15:40:29.0877 0336 AFD - ok
15:40:30.0127 0336 [ ef23439cdd587f64c2c1b8825cead7d8 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:40:30.0189 0336 agp440 - ok
15:40:30.0251 0336 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:40:30.0345 0336 aic78xx - ok
15:40:30.0407 0336 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
15:40:30.0454 0336 ALG - ok
15:40:30.0532 0336 [ 90395b64600ebb4552e26e178c94b2e4 ] aliide C:\Windows\system32\drivers\aliide.sys
15:40:30.0579 0336 aliide - ok
15:40:30.0735 0336 [ 2b13e304c9dfdfa5eb582f6a149fa2c7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:40:30.0829 0336 amdagp - ok
15:40:30.0860 0336 [ 0577df1d323fe75a739c787893d300ea ] amdide C:\Windows\system32\drivers\amdide.sys
15:40:30.0907 0336 amdide - ok
15:40:31.0016 0336 [ dc487885bcef9f28eece6fac0e5ddfc5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:40:31.0063 0336 AmdK7 - ok
15:40:31.0109 0336 [ 0ca0071da4315b00fc1328ca86b425da ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:40:31.0141 0336 AmdK8 - ok
15:40:31.0375 0336 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
15:40:31.0406 0336 Appinfo - ok
15:40:32.0513 0336 [ f401929ee0cc92bfe7f15161ca535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:40:32.0981 0336 Apple Mobile Device - ok
15:40:33.0106 0336 [ 5f673180268bb1fdb69c99b6619fe379 ] arc C:\Windows\system32\drivers\arc.sys
15:40:33.0169 0336 arc - ok
15:40:33.0262 0336 [ 957f7540b5e7f602e44648c7de5a1c05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:40:33.0356 0336 arcsas - ok
15:40:33.0605 0336 [ e54e27976e2c5a6465d44c10b1d87ac0 ] ASPI C:\Windows\System32\DRIVERS\ASPI32.sys
15:40:33.0746 0336 ASPI - ok
15:40:33.0886 0336 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:33.0980 0336 AsyncMac - ok
15:40:34.0073 0336 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
15:40:34.0073 0336 atapi - ok
15:40:34.0323 0336 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:40:34.0463 0336 AudioEndpointBuilder - ok
15:40:34.0541 0336 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:40:34.0557 0336 Audiosrv - ok
15:40:34.0807 0336 [ cf6a67c90951e3e763d2135dede44b85 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
15:40:35.0337 0336 BCM43XV - ok
15:40:35.0774 0336 [ 6163664c7e9cd110af70180c126c3fdc ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
15:40:36.0086 0336 BcmSqlStartupSvc - ok
15:40:36.0179 0336 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:40:36.0211 0336 Beep - ok
15:40:36.0211 0336 blbdrive - ok
15:40:36.0429 0336 [ db5bea73edaf19ac68b2c0fad0f92b1a ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:40:36.0616 0336 Bonjour Service - ok
15:40:36.0694 0336 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:40:36.0725 0336 bowser - ok
15:40:36.0803 0336 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:40:36.0819 0336 BrFiltLo - ok
15:40:36.0850 0336 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:40:36.0866 0336 BrFiltUp - ok
15:40:36.0944 0336 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
15:40:36.0959 0336 Browser - ok
15:40:37.0084 0336 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:40:37.0100 0336 Brserid - ok
15:40:37.0131 0336 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:40:37.0147 0336 BrSerWdm - ok
15:40:37.0193 0336 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:40:37.0209 0336 BrUsbMdm - ok
15:40:37.0271 0336 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:40:37.0287 0336 BrUsbSer - ok
15:40:37.0365 0336 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:40:37.0396 0336 BTHMODEM - ok
15:40:37.0615 0336 [ a9acc4b9730b6d5b0bb2bffdc53f0812 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
15:40:37.0693 0336 CCALib8 - ok
15:40:37.0771 0336 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:40:37.0817 0336 cdfs - ok
15:40:37.0911 0336 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:40:37.0942 0336 cdrom - ok
15:40:38.0036 0336 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
15:40:38.0083 0336 CertPropSvc - ok
15:40:38.0161 0336 [ da8e0afc7baa226c538ef53ac2f90897 ] circlass C:\Windows\system32\drivers\circlass.sys
15:40:38.0192 0336 circlass - ok
15:40:38.0629 0336 [ dbafc6734c054feef9087754bd80f847 ] CLCapSvc C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
15:40:38.0987 0336 CLCapSvc - ok
15:40:39.0050 0336 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
15:40:39.0112 0336 CLFS - ok
15:40:39.0518 0336 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:39.0814 0336 clr_optimization_v2.0.50727_32 - ok
15:40:40.0251 0336 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:40:40.0937 0336 clr_optimization_v4.0.30319_32 - ok
15:40:41.0015 0336 [ e67f8f036fd882e4ab62501c0d45b536 ] CLSched C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
15:40:41.0062 0336 CLSched - ok
15:40:41.0140 0336 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:41.0265 0336 CmBatt - ok
15:40:41.0343 0336 [ 45201046c776ffdaf3fc8a0029c581c8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:40:41.0390 0336 cmdide - ok
15:40:41.0468 0336 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:40:41.0499 0336 Compbatt - ok
15:40:41.0499 0336 COMSysApp - ok
15:40:41.0577 0336 [ 2a213ae086bbec5e937553c7d9a2b22c ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:40:41.0655 0336 crcdisk - ok
15:40:41.0686 0336 [ 22a7f883508176489f559ee745b5bf5d ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:40:41.0702 0336 Crusoe - ok
15:40:41.0827 0336 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:40:41.0873 0336 CryptSvc - ok
15:40:42.0341 0336 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:40:43.0496 0336 DcomLaunch - ok
15:40:43.0527 0336 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:40:43.0543 0336 DfsC - ok
15:40:43.0995 0336 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
15:40:45.0071 0336 DFSR - ok
15:40:45.0243 0336 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:40:45.0274 0336 Dhcp - ok
15:40:45.0399 0336 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
15:40:45.0415 0336 disk - ok
15:40:45.0477 0336 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:40:45.0524 0336 Dnscache - ok
15:40:45.0586 0336 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:40:45.0602 0336 dot3svc - ok
15:40:45.0727 0336 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
15:40:45.0742 0336 DPS - ok
15:40:45.0836 0336 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:40:45.0851 0336 drmkaud - ok
15:40:46.0023 0336 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:40:46.0195 0336 DXGKrnl - ok
15:40:46.0319 0336 [ c0b00e55cf82d122d25983c7a6a53dea ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
15:40:46.0335 0336 E100B - ok
15:40:46.0366 0336 [ f88fb26547fd2ce6d0a5af2985892c48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:40:46.0413 0336 E1G60 - ok
15:40:46.0475 0336 [ e88b0cfcecf745211bba87f44f85d0dd ] eabfiltr C:\Windows\system32\DRIVERS\eabfiltr.sys
15:40:46.0491 0336 eabfiltr - ok
15:40:46.0600 0336 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
15:40:46.0616 0336 EapHost - ok
15:40:46.0694 0336 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:40:46.0709 0336 Ecache - ok
15:40:46.0834 0336 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:40:46.0912 0336 ehRecvr - ok
15:40:46.0959 0336 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
15:40:46.0990 0336 ehSched - ok
15:40:47.0006 0336 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
15:40:47.0037 0336 ehstart - ok
15:40:47.0084 0336 [ e8f3f21a71720c84bcf423b80028359f ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:40:47.0131 0336 elxstor - ok
15:40:47.0224 0336 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:40:47.0302 0336 EMDMgmt - ok
15:40:47.0443 0336 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
15:40:47.0505 0336 EventSystem - ok
15:40:47.0583 0336 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
15:40:47.0599 0336 exfat - ok
15:40:47.0630 0336 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:40:47.0661 0336 fastfat - ok
15:40:47.0708 0336 [ 63bdada84951b9c03e641800e176898a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:40:47.0739 0336 fdc - ok
15:40:47.0801 0336 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:40:47.0817 0336 fdPHost - ok
15:40:47.0848 0336 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:40:47.0864 0336 FDResPub - ok
15:40:47.0942 0336 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:40:47.0957 0336 FileInfo - ok
15:40:48.0035 0336 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:40:48.0035 0336 Filetrace - ok
15:40:48.0082 0336 [ 6603957eff5ec62d25075ea8ac27de68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:48.0113 0336 flpydisk - ok
15:40:48.0223 0336 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:40:48.0254 0336 FltMgr - ok
15:40:48.0488 0336 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
15:40:48.0597 0336 FontCache - ok
15:40:48.0691 0336 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:40:48.0722 0336 FontCache3.0.0.0 - ok
15:40:48.0753 0336 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:40:48.0769 0336 Fs_Rec - ok
15:40:48.0831 0336 [ 4e1cd0a45c50a8882616cae5bf82f3c5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:40:48.0847 0336 gagp30kx - ok
15:40:48.0909 0336 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
15:40:48.0909 0336 GEARAspiWDM - ok
15:40:49.0018 0336 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
15:40:49.0221 0336 gpsvc - ok
15:40:49.0361 0336 [ 626a24ed1228580b9518c01930936df9 ] gupdate1c98590aa4d76b0 C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:49.0377 0336 gupdate1c98590aa4d76b0 - ok
15:40:49.0424 0336 [ 626a24ed1228580b9518c01930936df9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:49.0439 0336 gupdatem - ok
15:40:49.0564 0336 [ 408ddd80eede47175f6844817b90213e ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:40:49.0580 0336 gusvc - ok
15:40:49.0627 0336 [ de15777902a5d9121857d155873a1d1b ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
15:40:49.0658 0336 HBtnKey - ok
15:40:49.0751 0336 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:40:49.0798 0336 HdAudAddService - ok
15:40:49.0876 0336 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:40:49.0907 0336 HDAudBus - ok
15:40:49.0923 0336 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:40:49.0923 0336 HidBth - ok
15:40:49.0954 0336 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
15:40:49.0985 0336 HidIr - ok
15:40:50.0032 0336 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\System32\hidserv.dll
15:40:50.0032 0336 hidserv - ok
15:40:50.0079 0336 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:40:50.0095 0336 HidUsb - ok
15:40:50.0157 0336 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:40:50.0173 0336 hkmsvc - ok
15:40:50.0282 0336 [ a19b0bb5a7eb6df2dd4a0711d36955ee ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
15:40:50.0282 0336 HP Health Check Service - ok
15:40:50.0329 0336 [ df353b401001246853763c4b7aaa6f50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:40:50.0344 0336 HpCISSs - ok
15:40:50.0407 0336 [ 04c1dcbb226c6ae647b794833ce3ceb6 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
15:40:50.0438 0336 hpqwmiex - ok
15:40:50.0547 0336 [ 46d67209550973257601a533e2ac5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
15:40:50.0609 0336 HSFHWAZL - ok
15:40:50.0672 0336 [ ec36f1d542ed4252390d446bf6d4dfd0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
15:40:51.0031 0336 HSF_DPV - ok
15:40:51.0140 0336 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:40:51.0218 0336 HTTP - ok
15:40:51.0265 0336 [ 324c2152ff2c61abae92d09f3cca4d63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:40:51.0265 0336 i2omp - ok
15:40:51.0358 0336 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:40:51.0374 0336 i8042prt - ok
15:40:51.0467 0336 [ cb686f44bf955ea02520710a56874fa4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
15:40:51.0530 0336 IAANTMON - ok
15:40:51.0639 0336 [ 9378d57e2b96c0a185d844770ad49948 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
15:40:51.0717 0336 ialm - ok
15:40:51.0795 0336 [ db0cc620b27a928d968c1a1e9cd9cb87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:40:51.0795 0336 iaStor - ok
15:40:51.0904 0336 [ c957bf4b5d80b46c5017bf0101e6c906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:40:51.0935 0336 iaStorV - ok
15:40:52.0029 0336 [ daf66902f08796f9c694901660e5a64a ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
15:40:52.0045 0336 IDriverT - ok
15:40:52.0216 0336 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:40:52.0247 0336 idsvc - ok
15:40:52.0357 0336 [ 9378d57e2b96c0a185d844770ad49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
15:40:52.0372 0336 igfx - ok
15:40:52.0419 0336 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:40:52.0450 0336 iirsp - ok
15:40:52.0513 0336 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
15:40:52.0513 0336 IKEEXT - ok
15:40:52.0622 0336 [ 8d7eb1fd498fd0a34c95a298685ec1c7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:40:52.0700 0336 IntcAzAudAddService - ok
15:40:52.0747 0336 [ 97469037714070e45194ed318d636401 ] intelide C:\Windows\system32\drivers\intelide.sys
15:40:52.0747 0336 intelide - ok
15:40:52.0809 0336 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:40:52.0809 0336 intelppm - ok
15:40:52.0871 0336 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:40:52.0871 0336 IPBusEnum - ok
15:40:52.0949 0336 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:52.0949 0336 IpFilterDriver - ok
15:40:52.0965 0336 IpInIp - ok
15:40:52.0996 0336 [ 40f34f8aba2a015d780e4b09138b6c17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:40:53.0027 0336 IPMIDRV - ok
15:40:53.0090 0336 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:40:53.0105 0336 IPNAT - ok
15:40:53.0386 0336 [ e6be7a41a28d8f2db174957454d32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:40:53.0417 0336 iPod Service - ok
15:40:53.0480 0336 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:40:53.0495 0336 IRENUM - ok
15:40:53.0527 0336 [ 350fca7e73cf65bcef43fae1e4e91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:40:53.0542 0336 isapnp - ok
15:40:53.0605 0336 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:40:53.0605 0336 iScsiPrt - ok
15:40:53.0651 0336 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:40:53.0651 0336 iteatapi - ok
15:40:53.0667 0336 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:40:53.0667 0336 iteraid - ok
15:40:53.0761 0336 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:40:53.0761 0336 kbdclass - ok
15:40:53.0792 0336 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:40:53.0792 0336 kbdhid - ok
15:40:53.0839 0336 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
15:40:53.0839 0336 KeyIso - ok
15:40:53.0885 0336 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:40:53.0901 0336 KSecDD - ok
15:40:54.0010 0336 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:40:54.0026 0336 KtmRm - ok
15:40:54.0057 0336 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\System32\srvsvc.dll
15:40:54.0088 0336 LanmanServer - ok
15:40:54.0166 0336 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:40:54.0197 0336 LanmanWorkstation - ok
15:40:54.0244 0336 [ 559c9b7800fac92fc515cd0003d7c631 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:40:54.0260 0336 LightScribeService - ok
15:40:54.0307 0336 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:40:54.0307 0336 lltdio - ok
15:40:54.0431 0336 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:40:54.0463 0336 lltdsvc - ok
15:40:54.0509 0336 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:40:54.0509 0336 lmhosts - ok
15:40:54.0541 0336 [ a2262fb9f28935e862b4db46438c80d2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:40:54.0541 0336 LSI_FC - ok
15:40:54.0587 0336 [ 30d73327d390f72a62f32c103daf1d6d ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:40:54.0587 0336 LSI_SAS - ok
15:40:54.0619 0336 [ e1e36fefd45849a95f1ab81de0159fe3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:40:54.0619 0336 LSI_SCSI - ok
15:40:54.0665 0336 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
15:40:54.0681 0336 luafv - ok
15:40:54.0743 0336 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:40:54.0775 0336 Mcx2Svc - ok
15:40:54.0806 0336 [ d153b14fc6598eae8422a2037553adce ] megasas C:\Windows\system32\drivers\megasas.sys
15:40:54.0806 0336 megasas - ok
15:40:54.0884 0336 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:40:54.0884 0336 MMCSS - ok
15:40:54.0915 0336 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
15:40:54.0931 0336 Modem - ok
15:40:54.0993 0336 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:40:54.0993 0336 monitor - ok
15:40:55.0009 0336 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:40:55.0009 0336 mouclass - ok
15:40:55.0024 0336 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:40:55.0040 0336 mouhid - ok
15:40:55.0133 0336 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:40:55.0133 0336 MountMgr - ok
15:40:55.0196 0336 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:40:55.0196 0336 MpFilter - ok
15:40:55.0243 0336 [ 583a41f26278d9e0ea548163d6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
15:40:55.0243 0336 mpio - ok
15:40:55.0321 0336 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:40:55.0321 0336 mpsdrv - ok
15:40:55.0367 0336 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:40:55.0367 0336 Mraid35x - ok
15:40:55.0430 0336 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:40:55.0430 0336 MRxDAV - ok
15:40:55.0477 0336 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:55.0477 0336 mrxsmb - ok
15:40:55.0508 0336 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:55.0508 0336 mrxsmb10 - ok
15:40:55.0539 0336 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:55.0539 0336 mrxsmb20 - ok
15:40:55.0570 0336 [ 742aed7939e734c36b7e8d6228ce26b7 ] msahci C:\Windows\system32\drivers\msahci.sys
15:40:55.0570 0336 msahci - ok
15:40:55.0586 0336 [ 3fc82a2ae4cc149165a94699183d3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:40:55.0586 0336 msdsm - ok
15:40:55.0633 0336 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
15:40:55.0633 0336 MSDTC - ok
15:40:55.0711 0336 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:40:55.0711 0336 Msfs - ok
15:40:55.0773 0336 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:40:55.0773 0336 msisadrv - ok
15:40:55.0820 0336 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:40:55.0835 0336 MSiSCSI - ok
15:40:55.0835 0336 msiserver - ok
15:40:55.0913 0336 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:40:55.0913 0336 MSKSSRV - ok
15:40:56.0007 0336 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:40:56.0023 0336 MsMpSvc - ok
15:40:56.0069 0336 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:56.0101 0336 MSPCLOCK - ok
15:40:56.0147 0336 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:40:56.0179 0336 MSPQM - ok
15:40:56.0225 0336 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:40:56.0241 0336 MsRPC - ok
15:40:56.0303 0336 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:40:56.0303 0336 mssmbios - ok
15:40:56.0413 0336 MSSQL$MSSMLBIZ - ok
15:40:56.0459 0336 [ 1d89eb4e2a99cabd4e81225f4f4c4b25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
15:40:56.0459 0336 MSSQLServerADHelper - ok
15:40:56.0506 0336 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:40:56.0522 0336 MSTEE - ok
15:40:56.0553 0336 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
15:40:56.0569 0336 Mup - ok
15:40:56.0615 0336 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
15:40:56.0631 0336 napagent - ok
15:40:56.0678 0336 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:40:56.0725 0336 NativeWifiP - ok
15:40:56.0834 0336 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:40:56.0849 0336 NDIS - ok
15:40:56.0912 0336 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:56.0912 0336 NdisTapi - ok
15:40:56.0959 0336 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:56.0959 0336 Ndisuio - ok
15:40:57.0021 0336 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:57.0021 0336 NdisWan - ok
15:40:57.0068 0336 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:40:57.0068 0336 NDProxy - ok
15:40:57.0115 0336 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:40:57.0115 0336 NetBIOS - ok
15:40:57.0161 0336 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:40:57.0161 0336 netbt - ok
15:40:57.0161 0336 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
15:40:57.0161 0336 Netlogon - ok
15:40:57.0255 0336 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
15:40:57.0271 0336 Netman - ok
15:40:57.0395 0336 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
15:40:57.0395 0336 netprofm - ok
15:40:57.0427 0336 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:40:57.0442 0336 NetTcpPortSharing - ok
15:40:57.0520 0336 [ a15f219208843a5a210c8cb391384453 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
15:40:57.0567 0336 NETw3v32 - ok
15:40:57.0661 0336 [ 1d73499a6664b4da05d750ff83fdb274 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
15:40:57.0723 0336 NETw4v32 - ok
15:40:57.0770 0336 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:40:57.0785 0336 nfrd960 - ok
15:40:57.0817 0336 [ b52f26bade7d7e4a79706e3fd91834cd ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:40:57.0817 0336 NisDrv - ok
15:40:57.0832 0336 [ 290c0d4c4889398797f8df3be00b9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
15:40:57.0848 0336 NisSrv - ok
15:40:57.0895 0336 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:40:57.0895 0336 NlaSvc - ok
15:40:57.0957 0336 [ 357ddb51e03cae598c096d95497373d0 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
15:40:57.0957 0336 nmwcd - ok
15:40:58.0004 0336 [ 7cd443f9d36c80e152fadb274089577a ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
15:40:58.0004 0336 nmwcdc - ok
15:40:58.0035 0336 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:40:58.0051 0336 Npfs - ok
15:40:58.0113 0336 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
15:40:58.0113 0336 nsi - ok
15:40:58.0175 0336 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:40:58.0175 0336 nsiproxy - ok
15:40:58.0253 0336 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:40:58.0285 0336 Ntfs - ok
15:40:58.0316 0336 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:40:58.0316 0336 ntrigdigi - ok
15:40:58.0331 0336 [ cf7e041663119e09d2e118521ada9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
15:40:58.0347 0336 NuidFltr - ok
15:40:58.0363 0336 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
15:40:58.0363 0336 Null - ok
15:40:58.0378 0336 [ e69e946f80c1c31c53003bfbf50cbb7c ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:40:58.0378 0336 nvraid - ok
15:40:58.0409 0336 [ 9e0ba19a28c498a6d323d065db76dffc ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:40:58.0409 0336 nvstor - ok
15:40:58.0441 0336 [ 07c186427eb8fcc3d8d7927187f260f7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:40:58.0441 0336 nv_agp - ok
15:40:58.0456 0336 NwlnkFlt - ok
15:40:58.0456 0336 NwlnkFwd - ok
15:40:58.0550 0336 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:40:58.0565 0336 odserv - ok
15:40:58.0628 0336 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:40:58.0628 0336 ohci1394 - ok
15:40:58.0675 0336 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:40:58.0675 0336 ose - ok
15:40:58.0721 0336 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:40:58.0753 0336 p2pimsvc - ok
15:40:58.0768 0336 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
15:40:58.0768 0336 p2psvc - ok
15:40:58.0784 0336 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
15:40:58.0784 0336 Parport - ok
15:40:58.0815 0336 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:40:58.0815 0336 partmgr - ok
15:40:58.0831 0336 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:40:58.0831 0336 Parvdm - ok
15:40:58.0877 0336 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
15:40:58.0877 0336 PcaSvc - ok
15:40:58.0924 0336 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
15:40:58.0924 0336 pccsmcfd - ok
15:40:58.0955 0336 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
15:40:58.0955 0336 pci - ok
15:40:59.0002 0336 [ 1636d43f10416aeb483bc6001097b26c ] pciide C:\Windows\system32\DRIVERS\pciide.sys
15:40:59.0002 0336 pciide - ok
15:40:59.0033 0336 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:40:59.0033 0336 pcmcia - ok
15:40:59.0096 0336 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:40:59.0127 0336 PEAUTH - ok
15:40:59.0221 0336 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
15:40:59.0267 0336 pla - ok
15:40:59.0299 0336 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:40:59.0314 0336 PlugPlay - ok
15:40:59.0345 0336 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:40:59.0345 0336 PNRPAutoReg - ok
15:40:59.0392 0336 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:40:59.0392 0336 PNRPsvc - ok
15:40:59.0423 0336 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:40:59.0439 0336 PolicyAgent - ok
15:40:59.0486 0336 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:40:59.0486 0336 PptpMiniport - ok
15:40:59.0517 0336 [ 0e3cef5d28b40cf273281d620c50700a ] Processor C:\Windows\system32\drivers\processr.sys
15:40:59.0517 0336 Processor - ok
15:40:59.0564 0336 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
15:40:59.0579 0336 ProfSvc - ok
15:40:59.0579 0336 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
15:40:59.0579 0336 ProtectedStorage - ok
15:40:59.0626 0336 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:40:59.0626 0336 PSched - ok
15:40:59.0657 0336 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:40:59.0657 0336 PxHelp20 - ok
15:40:59.0735 0336 [ ccdac889326317792480c0a67156a1ec ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:40:59.0782 0336 ql2300 - ok
15:40:59.0813 0336 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:40:59.0813 0336 ql40xx - ok
15:40:59.0876 0336 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
15:40:59.0876 0336 QWAVE - ok
15:40:59.0923 0336 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:40:59.0923 0336 QWAVEdrv - ok
15:41:00.0047 0336 [ 6b6f0a77365667912360ff1d5e984f25 ] RapportCerberus_34302 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\34302\RapportCerberus32_34302.sys
15:41:00.0047 0336 RapportCerberus_34302 - ok
15:41:00.0125 0336 [ a5a800faa8ab5f7f19743cd60cc1cbed ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
15:41:00.0125 0336 RapportEI - ok
15:41:00.0235 0336 [ 35199ec35edc7dcba71fda711dfb05c0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\39624\rapportiaso.sys
15:41:00.0235 0336 RapportIaso - ok
15:41:00.0266 0336 [ e5adfe497baf93eac2be20a58c40c874 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
15:41:00.0266 0336 RapportKELL - ok
15:41:00.0375 0336 [ c862053be4168c0bb6191af76b9fc878 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
15:41:00.0391 0336 RapportMgmtService - ok
15:41:00.0422 0336 [ fe69d9bc32dccb4b49885070d6518275 ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
15:41:00.0422 0336 RapportPG - ok
15:41:00.0469 0336 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:41:00.0469 0336 RasAcd - ok
15:41:00.0515 0336 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
15:41:00.0515 0336 RasAuto - ok
15:41:00.0578 0336 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:41:00.0578 0336 Rasl2tp - ok
15:41:00.0609 0336 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
15:41:00.0625 0336 RasMan - ok
15:41:00.0656 0336 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:41:00.0656 0336 RasPppoe - ok
15:41:00.0687 0336 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:41:00.0687 0336 RasSstp - ok
15:41:00.0718 0336 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:41:00.0749 0336 rdbss - ok
15:41:00.0827 0336 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:41:00.0827 0336 RDPCDD - ok
15:41:00.0890 0336 [ e8bd98d46f2ed77132ba927fccb47d8b ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:41:00.0890 0336 rdpdr - ok
15:41:00.0905 0336 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:41:00.0905 0336 RDPENCDD - ok
15:41:00.0968 0336 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:41:00.0968 0336 RDPWD - ok
15:41:01.0015 0336 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:41:01.0015 0336 RemoteAccess - ok
15:41:01.0046 0336 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:41:01.0046 0336 RemoteRegistry - ok
15:41:01.0077 0336 [ 355aac141b214bef1dbc1483afd9bd50 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
15:41:01.0093 0336 rimmptsk - ok
15:41:01.0139 0336 [ a4216c71dd4f60b26418ccfd99cd0815 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
15:41:01.0139 0336 rimsptsk - ok
15:41:01.0155 0336 [ c663af77e2f4eabf8eb08b388d2f1f36 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
15:41:01.0155 0336 rismxdp - ok
15:41:01.0264 0336 [ 08fb7d968805001c7adcbb14b0651fa2 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
15:41:01.0311 0336 RoxMediaDB9 - ok
15:41:01.0327 0336 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
15:41:01.0327 0336 RpcLocator - ok
15:41:01.0373 0336 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
15:41:01.0373 0336 RpcSs - ok
15:41:01.0420 0336 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:41:01.0420 0336 rspndr - ok
15:41:01.0451 0336 [ 71b7026d61293c1e91145bdad11c53bf ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:41:01.0467 0336 RTL8169 - ok
15:41:01.0467 0336 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
15:41:01.0467 0336 SamSs - ok
15:41:01.0498 0336 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:41:01.0498 0336 sbp2port - ok
15:41:01.0545 0336 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:41:01.0561 0336 SCardSvr - ok
15:41:01.0607 0336 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
15:41:01.0639 0336 Schedule - ok
15:41:01.0654 0336 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:41:01.0654 0336 SCPolicySvc - ok
15:41:01.0685 0336 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:41:01.0685 0336 sdbus - ok
15:41:01.0732 0336 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:41:01.0732 0336 SDRSVC - ok
15:41:01.0763 0336 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:41:01.0763 0336 secdrv - ok
15:41:01.0826 0336 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
15:41:01.0826 0336 seclogon - ok
15:41:01.0841 0336 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\system32\sens.dll
15:41:01.0841 0336 SENS - ok
15:41:01.0857 0336 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:41:01.0873 0336 Serenum - ok
15:41:01.0888 0336 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
15:41:01.0888 0336 Serial - ok
15:41:01.0935 0336 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:41:01.0935 0336 sermouse - ok
15:41:02.0013 0336 [ 8988d1f32f56b3cd3f0f6c39f8a91a98 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:41:02.0044 0336 ServiceLayer - ok
15:41:02.0107 0336 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:41:02.0107 0336 SessionEnv - ok
15:41:02.0138 0336 [ 103b79418da647736ee95645f305f68a ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:41:02.0138 0336 sffdisk - ok
15:41:02.0153 0336 [ 8fd08a310645fe872eeec6e08c6bf3ee ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:41:02.0153 0336 sffp_mmc - ok
15:41:02.0185 0336 [ 9cfa05fcfcb7124e69cfc812b72f9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:41:02.0185 0336 sffp_sd - ok
15:41:02.0200 0336 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:41:02.0200 0336 sfloppy - ok
15:41:02.0231 0336 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:41:02.0247 0336 ShellHWDetection - ok
15:41:02.0263 0336 [ d2a595d6eebeeaf4334f8e50efbc9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:41:02.0263 0336 sisagp - ok
15:41:02.0294 0336 [ cedd6f4e7d84e9f98b34b3fe988373aa ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:41:02.0294 0336 SiSRaid2 - ok
15:41:02.0325 0336 [ df843c528c4f69d12ce41ce462e973a7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:41:02.0325 0336 SiSRaid4 - ok
15:41:02.0450 0336 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
15:41:02.0528 0336 slsvc - ok
15:41:02.0559 0336 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:41:02.0559 0336 SLUINotify - ok
15:41:02.0606 0336 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:41:02.0606 0336 Smb - ok
15:41:02.0668 0336 [ 63b3b77bdb67ee674771c0e6fb96da9e ] smserial C:\Windows\system32\DRIVERS\smserial.sys
15:41:02.0699 0336 smserial - ok
15:41:02.0731 0336 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:41:02.0731 0336 SNMPTRAP - ok
15:41:02.0777 0336 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
15:41:02.0793 0336 spldr - ok
15:41:02.0824 0336 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
15:41:02.0824 0336 Spooler - ok
15:41:02.0840 0336 [ 86ebd8b1f23e743aad21f4d5b4d40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:41:02.0855 0336 SQLBrowser - ok
15:41:02.0887 0336 [ d89083c4eb02daca8f944b0e05e57f9d ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:41:02.0902 0336 SQLWriter - ok
15:41:02.0949 0336 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:41:02.0949 0336 srv - ok
15:41:02.0965 0336 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:41:02.0980 0336 srv2 - ok
15:41:02.0996 0336 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:41:02.0996 0336 srvnet - ok
15:41:03.0027 0336 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:41:03.0027 0336 SSDPSRV - ok
15:41:03.0089 0336 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:41:03.0089 0336 SstpSvc - ok
15:41:03.0152 0336 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
15:41:03.0183 0336 stisvc - ok
15:41:03.0230 0336 [ a9a23c8af361f7a93fd632e91a8c346f ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
15:41:03.0230 0336 stllssvr - ok
15:41:03.0261 0336 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:41:03.0261 0336 swenum - ok
15:41:03.0292 0336 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
15:41:03.0308 0336 swprv - ok
15:41:03.0339 0336 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:41:03.0339 0336 Symc8xx - ok
15:41:03.0355 0336 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:41:03.0355 0336 Sym_hi - ok
15:41:03.0370 0336 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:41:03.0370 0336 Sym_u3 - ok
15:41:03.0417 0336 [ 8327106d1c93e9a7b98e63b9fcc24bb7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:41:03.0433 0336 SynTP - ok
15:41:03.0479 0336 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
15:41:03.0511 0336 SysMain - ok
15:41:03.0542 0336 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:41:03.0542 0336 TabletInputService - ok
15:41:03.0589 0336 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:41:03.0589 0336 TapiSrv - ok
15:41:03.0651 0336 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
15:41:03.0651 0336 TBS - ok
15:41:03.0698 0336 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:41:03.0729 0336 Tcpip - ok
15:41:03.0776 0336 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:41:03.0776 0336 Tcpip6 - ok
15:41:03.0807 0336 [ 2c2d4cff5e09c73908f9b5af49a51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:41:03.0807 0336 tcpipreg - ok
15:41:03.0854 0336 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:41:03.0854 0336 TDPIPE - ok
15:41:03.0916 0336 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:41:03.0916 0336 TDTCP - ok
15:41:03.0947 0336 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:41:03.0947 0336 tdx - ok
15:41:03.0963 0336 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:41:03.0963 0336 TermDD - ok
15:41:03.0979 0336 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
15:41:03.0994 0336 TermService - ok
15:41:04.0010 0336 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
15:41:04.0025 0336 Themes - ok
15:41:04.0041 0336 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:41:04.0041 0336 THREADORDER - ok
15:41:04.0088 0336 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
15:41:04.0103 0336 TrkWks - ok
15:41:04.0150 0336 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:41:04.0150 0336 TrustedInstaller - ok
15:41:04.0181 0336 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:41:04.0181 0336 tssecsrv - ok
15:41:04.0244 0336 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:41:04.0244 0336 tunmp - ok
15:41:04.0275 0336 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:41:04.0291 0336 tunnel - ok
15:41:04.0337 0336 [ c3ade15414120033a36c0f293d4a4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:41:04.0337 0336 uagp35 - ok
15:41:04.0369 0336 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:41:04.0369 0336 udfs - ok
15:41:04.0431 0336 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:41:04.0431 0336 UI0Detect - ok
15:41:04.0447 0336 [ 75e6890ebfce0841d3291b02e7a8bdb0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:41:04.0447 0336 uliagpkx - ok
15:41:04.0478 0336 [ 3cd4ea35a6221b85dcc25daa46313f8d ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:41:04.0493 0336 uliahci - ok
15:41:04.0509 0336 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:41:04.0509 0336 UlSata - ok
15:41:04.0540 0336 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:41:04.0540 0336 ulsata2 - ok
15:41:04.0603 0336 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:41:04.0603 0336 umbus - ok
15:41:04.0665 0336 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
15:41:04.0681 0336 upnphost - ok
15:41:04.0743 0336 [ 15629e4d65f97ab5432d6d9597cf6a33 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
15:41:04.0743 0336 upperdev - ok
15:41:04.0790 0336 [ eafe1e00739afe6c51487a050e772e17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:41:04.0790 0336 USBAAPL - ok
15:41:04.0837 0336 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:41:04.0837 0336 usbccgp - ok
15:41:04.0868 0336 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:41:04.0868 0336 usbcir - ok
15:41:04.0946 0336 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:41:04.0946 0336 usbehci - ok
15:41:04.0993 0336 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:41:04.0993 0336 usbhub - ok
15:41:05.0008 0336 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:41:05.0008 0336 usbohci - ok
15:41:05.0024 0336 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:41:05.0024 0336 usbprint - ok
15:41:05.0086 0336 [ d575246188f63de0accf6eac5fb59e6a ] usbser C:\Windows\system32\drivers\usbser.sys
15:41:05.0086 0336 usbser - ok
15:41:05.0117 0336 [ 5c17e6a11aa8be53f79fd364ba19f0ce ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
15:41:05.0117 0336 UsbserFilt - ok
15:41:05.0133 0336 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:41:05.0133 0336 USBSTOR - ok
15:41:05.0180 0336 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:41:05.0195 0336 usbuhci - ok
15:41:05.0258 0336 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:41:05.0273 0336 usbvideo - ok
15:41:05.0305 0336 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
15:41:05.0305 0336 UxSms - ok
15:41:05.0367 0336 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
15:41:05.0383 0336 vds - ok
15:41:05.0445 0336 [ 7d92be0028ecdedec74617009084b5ef ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:41:05.0445 0336 vga - ok
15:41:05.0507 0336 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
15:41:05.0507 0336 VgaSave - ok
15:41:05.0539 0336 [ 045d9961e591cf0674a920b6ba3ba5cb ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:41:05.0539 0336 viaagp - ok
15:41:05.0570 0336 [ 56a4de5f02f2e88182b0981119b4dd98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:41:05.0570 0336 ViaC7 - ok
15:41:05.0585 0336 [ fd2e3175fcada350c7ab4521dca187ec ] viaide C:\Windows\system32\drivers\viaide.sys
15:41:05.0585 0336 viaide - ok
15:41:05.0617 0336 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:41:05.0617 0336 volmgr - ok
15:41:05.0663 0336 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:41:05.0663 0336 volmgrx - ok
15:41:05.0695 0336 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:41:05.0710 0336 volsnap - ok
15:41:05.0741 0336 [ d984439746d42b30fc65a4c3546c6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:41:05.0741 0336 vsmraid - ok
15:41:05.0804 0336 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
15:41:05.0835 0336 VSS - ok
15:41:05.0866 0336 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
15:41:05.0866 0336 W32Time - ok
15:41:05.0897 0336 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:41:05.0897 0336 WacomPen - ok
15:41:05.0944 0336 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:41:05.0960 0336 Wanarp - ok
15:41:05.0960 0336 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:41:05.0960 0336 Wanarpv6 - ok
15:41:05.0975 0336 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:41:06.0007 0336 wcncsvc - ok
15:41:06.0022 0336 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:41:06.0022 0336 WcsPlugInService - ok
15:41:06.0053 0336 [ afc5ad65b991c1e205cf25cfdbf7a6f4 ] Wd C:\Windows\system32\drivers\wd.sys
15:41:06.0053 0336 Wd - ok
15:41:06.0116 0336 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:41:06.0131 0336 Wdf01000 - ok
15:41:06.0163 0336 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:41:06.0178 0336 WdiServiceHost - ok
15:41:06.0178 0336 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:41:06.0178 0336 WdiSystemHost - ok
15:41:06.0225 0336 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
15:41:06.0225 0336 WebClient - ok
15:41:06.0256 0336 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:41:06.0272 0336 Wecsvc - ok
15:41:06.0319 0336 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:41:06.0319 0336 wercplsupport - ok
15:41:06.0350 0336 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
15:41:06.0365 0336 WerSvc - ok
15:41:06.0412 0336 [ 5c7bdcf5864db00323fe2d90fa26a8a2 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
15:41:06.0428 0336 winachsf - ok
15:41:06.0443 0336 WinHttpAutoProxySvc - ok
15:41:06.0506 0336 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:41:06.0521 0336 Winmgmt - ok
15:41:06.0584 0336 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:41:06.0615 0336 WinRM - ok
15:41:06.0646 0336 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:41:06.0693 0336 Wlansvc - ok
15:41:06.0724 0336 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:41:06.0724 0336 WmiAcpi - ok
15:41:06.0755 0336 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:41:06.0755 0336 wmiApSrv - ok
15:41:06.0849 0336 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:41:06.0880 0336 WMPNetworkSvc - ok
15:41:06.0896 0336 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:41:06.0896 0336 WPCSvc - ok
15:41:06.0927 0336 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:41:06.0927 0336 WPDBusEnum - ok
15:41:06.0974 0336 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:41:06.0974 0336 WpdUsb - ok
15:41:07.0083 0336 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:41:07.0099 0336 WPFFontCache_v0400 - ok
15:41:07.0145 0336 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:41:07.0145 0336 ws2ifsl - ok
15:41:07.0161 0336 WSearch - ok
15:41:07.0379 0336 [ 3cf81f104137457a7f32c274709635be ] wsnm C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
15:41:07.0457 0336 wsnm - ok
15:41:07.0582 0336 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:41:07.0613 0336 WUDFRd - ok
15:41:07.0691 0336 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:41:07.0707 0336 wudfsvc - ok
15:41:07.0738 0336 ================ Scan global ===============================
15:41:07.0801 0336 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
15:41:07.0910 0336 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
15:41:08.0050 0336 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
15:41:08.0144 0336 (8737764f4fd36d6808ee80578409c843) C:\Windows\system32\services.exe
15:41:08.0144 0336 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
15:41:08.0144 0336 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
15:41:08.0144 0336 ================ Scan MBR ==================================
15:41:08.0175 0336 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
15:41:09.0891 0336 \Device\Harddisk0\DR0 - ok
15:41:09.0891 0336 MBR (0x1B8) (65e858a8a0293be11a920b0bc99d695e) \Device\Harddisk1\DR1
15:41:10.0640 0336 \Device\Harddisk1\DR1 - ok
15:41:10.0640 0336 ================ Scan VBR ==================================
15:41:10.0655 0336 Boot (0x1200) (043f64bb179e7843b94bd8ecd04aa326) \Device\Harddisk0\DR0\Partition1
15:41:10.0671 0336 \Device\Harddisk0\DR0\Partition1 - ok
15:41:10.0702 0336 Boot (0x1200) (7891f6fcf1d0476f4073887967761350) \Device\Harddisk0\DR0\Partition2
15:41:10.0702 0336 \Device\Harddisk0\DR0\Partition2 - ok
15:41:10.0702 0336 Boot (0x1200) (a6e28a0f065c2e1284851e3b3b33b1b7) \Device\Harddisk1\DR1\Partition1
15:41:10.0702 0336 \Device\Harddisk1\DR1\Partition1 - ok
15:41:10.0702 0336 ============================================================
15:41:10.0702 0336 Scan finished
15:41:10.0702 0336 ============================================================
15:41:10.0733 0332 Detected object count: 1
15:41:10.0733 0332 Actual detected object count: 1
15:42:32.0758 0332 C:\Windows\system32\services.exe - copied to quarantine
15:42:35.0114 0332 C:\Windows\assembly\GAC\desktop.ini - copied to quarantine
15:42:36.0019 0332 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - copied to quarantine
15:42:36.0034 0332 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\00000004.@ - copied to quarantine
15:42:36.0065 0332 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\201d3dde - copied to quarantine
15:42:36.0112 0332 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\n - copied to quarantine
15:42:36.0128 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - copied to quarantine
15:42:36.0159 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\00000004.@ - copied to quarantine
15:42:36.0206 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000004.@ - copied to quarantine
15:42:36.0221 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000008.@ - copied to quarantine
15:42:36.0237 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\000000cb.@ - copied to quarantine
15:42:36.0253 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@ - copied to quarantine
15:42:36.0253 0332 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000032.@ - copied to quarantine

#4 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 18 August 2012 - 12:01 PM

This is the 2nd log:

15:50:05.0224 1516 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
15:50:05.0473 1516 ============================================================
15:50:05.0473 1516 Current date / time: 2012/08/18 15:50:05.0473
15:50:05.0473 1516 SystemInfo:
15:50:05.0473 1516
15:50:05.0473 1516 OS Version: 6.0.6002 ServicePack: 2.0
15:50:05.0473 1516 Product type: Workstation
15:50:05.0473 1516 ComputerName: USER-PC
15:50:05.0473 1516 UserName: user
15:50:05.0473 1516 Windows directory: C:\Windows
15:50:05.0473 1516 System windows directory: C:\Windows
15:50:05.0473 1516 Processor architecture: Intel x86
15:50:05.0473 1516 Number of processors: 2
15:50:05.0473 1516 Page size: 0x1000
15:50:05.0473 1516 Boot type: Safe boot
15:50:05.0473 1516 ============================================================
15:50:22.0477 1516 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:50:22.0540 1516 Drive \Device\Harddisk1\DR1 - Size: 0x77800000 (1.87 Gb), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:50:22.0540 1516 ============================================================
15:50:22.0540 1516 \Device\Harddisk0\DR0:
15:50:22.0602 1516 MBR partitions:
15:50:22.0602 1516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C134849
15:50:22.0602 1516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C134888, BlocksNum 0x108FCF9
15:50:22.0602 1516 \Device\Harddisk1\DR1:
15:50:22.0602 1516 MBR partitions:
15:50:22.0602 1516 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xE, StartLBA 0x1F80, BlocksNum 0x3BA080
15:50:22.0602 1516 ============================================================
15:50:23.0117 1516 C: <-> \Device\Harddisk0\DR0\Partition1
15:50:23.0569 1516 D: <-> \Device\Harddisk0\DR0\Partition2
15:50:23.0569 1516 ============================================================
15:50:23.0569 1516 Initialize success
15:50:23.0569 1516 ============================================================
15:50:29.0653 1744 ============================================================
15:50:29.0653 1744 Scan started
15:50:29.0653 1744 Mode: Manual;
15:50:29.0653 1744 ============================================================
15:50:35.0815 1744 ================ Scan services =============================
15:50:46.0267 1744 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:50:46.0579 1744 ACPI - ok
15:50:47.0125 1744 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:50:47.0625 1744 AdobeFlashPlayerUpdateSvc - ok
15:50:48.0139 1744 [ 2edc5bbac6c651ece337bde8ed97c9fb ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:50:48.0576 1744 adp94xx - ok
15:50:48.0841 1744 [ b84088ca3cdca97da44a984c6ce1ccad ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:50:49.0216 1744 adpahci - ok
15:50:49.0278 1744 [ 7880c67bccc27c86fd05aa2afb5ea469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:50:49.0403 1744 adpu160m - ok
15:50:49.0575 1744 [ 9ae713f8e30efc2abccd84904333df4d ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:50:49.0793 1744 adpu320 - ok
15:50:49.0965 1744 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:50:50.0011 1744 AeLookupSvc - ok
15:50:50.0323 1744 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
15:50:50.0542 1744 AFD - ok
15:50:50.0682 1744 [ ef23439cdd587f64c2c1b8825cead7d8 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:50:50.0745 1744 agp440 - ok
15:50:50.0869 1744 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:50:50.0979 1744 aic78xx - ok
15:50:51.0057 1744 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
15:50:51.0135 1744 ALG - ok
15:50:51.0166 1744 [ 90395b64600ebb4552e26e178c94b2e4 ] aliide C:\Windows\system32\drivers\aliide.sys
15:50:51.0197 1744 aliide - ok
15:50:51.0337 1744 [ 2b13e304c9dfdfa5eb582f6a149fa2c7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:50:51.0369 1744 amdagp - ok
15:50:51.0431 1744 [ 0577df1d323fe75a739c787893d300ea ] amdide C:\Windows\system32\drivers\amdide.sys
15:50:51.0478 1744 amdide - ok
15:50:51.0603 1744 [ dc487885bcef9f28eece6fac0e5ddfc5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:50:51.0681 1744 AmdK7 - ok
15:50:51.0759 1744 [ 0ca0071da4315b00fc1328ca86b425da ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:50:51.0805 1744 AmdK8 - ok
15:50:52.0086 1744 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
15:50:52.0133 1744 Appinfo - ok
15:50:53.0506 1744 [ f401929ee0cc92bfe7f15161ca535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:50:53.0974 1744 Apple Mobile Device - ok
15:50:54.0177 1744 [ 5f673180268bb1fdb69c99b6619fe379 ] arc C:\Windows\system32\drivers\arc.sys
15:50:54.0286 1744 arc - ok
15:50:54.0379 1744 [ 957f7540b5e7f602e44648c7de5a1c05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:50:54.0457 1744 arcsas - ok
15:50:54.0676 1744 [ e54e27976e2c5a6465d44c10b1d87ac0 ] ASPI C:\Windows\System32\DRIVERS\ASPI32.sys
15:50:54.0847 1744 ASPI - ok
15:50:54.0988 1744 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:50:55.0035 1744 AsyncMac - ok
15:50:55.0144 1744 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
15:50:55.0191 1744 atapi - ok
15:50:55.0440 1744 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:50:55.0846 1744 AudioEndpointBuilder - ok
15:50:56.0017 1744 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:50:56.0017 1744 Audiosrv - ok
15:50:56.0439 1744 [ cf6a67c90951e3e763d2135dede44b85 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
15:50:57.0063 1744 BCM43XV - ok
15:50:58.0045 1744 [ 6163664c7e9cd110af70180c126c3fdc ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
15:50:58.0701 1744 BcmSqlStartupSvc - ok
15:50:58.0810 1744 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:50:58.0857 1744 Beep - ok
15:50:58.0872 1744 blbdrive - ok
15:50:59.0262 1744 [ db5bea73edaf19ac68b2c0fad0f92b1a ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:50:59.0652 1744 Bonjour Service - ok
15:50:59.0777 1744 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:50:59.0964 1744 bowser - ok
15:51:00.0042 1744 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:51:00.0105 1744 BrFiltLo - ok
15:51:00.0167 1744 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:51:00.0229 1744 BrFiltUp - ok
15:51:00.0354 1744 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
15:51:00.0432 1744 Browser - ok
15:51:00.0557 1744 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:51:00.0760 1744 Brserid - ok
15:51:00.0869 1744 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:51:00.0900 1744 BrSerWdm - ok
15:51:00.0947 1744 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:51:00.0978 1744 BrUsbMdm - ok
15:51:01.0072 1744 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:51:01.0150 1744 BrUsbSer - ok
15:51:01.0275 1744 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:51:01.0399 1744 BTHMODEM - ok
15:51:01.0743 1744 [ a9acc4b9730b6d5b0bb2bffdc53f0812 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
15:51:01.0899 1744 CCALib8 - ok
15:51:01.0992 1744 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:51:02.0148 1744 cdfs - ok
15:51:02.0289 1744 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:51:02.0429 1744 cdrom - ok
15:51:02.0601 1744 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
15:51:02.0710 1744 CertPropSvc - ok
15:51:02.0835 1744 [ da8e0afc7baa226c538ef53ac2f90897 ] circlass C:\Windows\system32\drivers\circlass.sys
15:51:02.0913 1744 circlass - ok
15:51:04.0020 1744 [ dbafc6734c054feef9087754bd80f847 ] CLCapSvc C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
15:51:04.0551 1744 CLCapSvc - ok
15:51:04.0644 1744 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
15:51:04.0831 1744 CLFS - ok
15:51:06.0017 1744 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:51:06.0501 1744 clr_optimization_v2.0.50727_32 - ok
15:51:07.0483 1744 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:51:08.0591 1744 clr_optimization_v4.0.30319_32 - ok
15:51:08.0747 1744 [ e67f8f036fd882e4ab62501c0d45b536 ] CLSched C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
15:51:08.0872 1744 CLSched - ok
15:51:08.0981 1744 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:51:09.0012 1744 CmBatt - ok
15:51:09.0121 1744 [ 45201046c776ffdaf3fc8a0029c581c8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:51:09.0168 1744 cmdide - ok
15:51:09.0246 1744 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:51:09.0293 1744 Compbatt - ok
15:51:09.0293 1744 COMSysApp - ok
15:51:09.0433 1744 [ 2a213ae086bbec5e937553c7d9a2b22c ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:51:09.0558 1744 crcdisk - ok
15:51:09.0652 1744 [ 22a7f883508176489f559ee745b5bf5d ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:51:09.0699 1744 Crusoe - ok
15:51:09.0886 1744 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:51:10.0026 1744 CryptSvc - ok
15:51:10.0369 1744 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:51:13.0287 1744 DcomLaunch - ok
15:51:13.0333 1744 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:51:13.0427 1744 DfsC - ok
15:51:14.0597 1744 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
15:51:16.0531 1744 DFSR - ok
15:51:16.0921 1744 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:51:17.0233 1744 Dhcp - ok
15:51:17.0358 1744 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
15:51:17.0483 1744 disk - ok
15:51:17.0561 1744 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:51:17.0748 1744 Dnscache - ok
15:51:17.0904 1744 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:51:18.0091 1744 dot3svc - ok
15:51:18.0310 1744 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
15:51:18.0497 1744 DPS - ok
15:51:18.0684 1744 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:51:18.0731 1744 drmkaud - ok
15:51:19.0074 1744 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:51:19.0745 1744 DXGKrnl - ok
15:51:20.0010 1744 [ c0b00e55cf82d122d25983c7a6a53dea ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
15:51:20.0229 1744 E100B - ok
15:51:20.0400 1744 [ f88fb26547fd2ce6d0a5af2985892c48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:51:20.0619 1744 E1G60 - ok
15:51:20.0743 1744 [ e88b0cfcecf745211bba87f44f85d0dd ] eabfiltr C:\Windows\system32\DRIVERS\eabfiltr.sys
15:51:20.0790 1744 eabfiltr - ok
15:51:20.0931 1744 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
15:51:20.0962 1744 EapHost - ok
15:51:21.0243 1744 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:51:21.0492 1744 Ecache - ok
15:51:22.0225 1744 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:51:22.0647 1744 ehRecvr - ok
15:51:22.0803 1744 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
15:51:22.0927 1744 ehSched - ok
15:51:23.0052 1744 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
15:51:23.0083 1744 ehstart - ok
15:51:23.0427 1744 [ e8f3f21a71720c84bcf423b80028359f ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:51:23.0817 1744 elxstor - ok
15:51:24.0160 1744 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:51:24.0784 1744 EMDMgmt - ok
15:51:25.0065 1744 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
15:51:25.0392 1744 EventSystem - ok
15:51:25.0735 1744 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
15:51:25.0923 1744 exfat - ok
15:51:26.0079 1744 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:51:26.0313 1744 fastfat - ok
15:51:26.0391 1744 [ 63bdada84951b9c03e641800e176898a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:51:26.0437 1744 fdc - ok
15:51:26.0515 1744 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:51:26.0593 1744 fdPHost - ok
15:51:26.0718 1744 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:51:26.0765 1744 FDResPub - ok
15:51:26.0905 1744 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:51:27.0015 1744 FileInfo - ok
15:51:27.0108 1744 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:51:27.0186 1744 Filetrace - ok
15:51:27.0280 1744 [ 6603957eff5ec62d25075ea8ac27de68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:51:27.0327 1744 flpydisk - ok
15:51:27.0467 1744 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:51:27.0654 1744 FltMgr - ok
15:51:28.0231 1744 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
15:51:28.0855 1744 FontCache - ok
15:51:29.0105 1744 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:51:29.0292 1744 FontCache3.0.0.0 - ok
15:51:29.0355 1744 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:51:29.0401 1744 Fs_Rec - ok
15:51:29.0495 1744 [ 4e1cd0a45c50a8882616cae5bf82f3c5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:51:29.0635 1744 gagp30kx - ok
15:51:29.0713 1744 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
15:51:29.0713 1744 GEARAspiWDM - ok
15:51:29.0979 1744 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
15:51:30.0493 1744 gpsvc - ok
15:51:30.0868 1744 [ 626a24ed1228580b9518c01930936df9 ] gupdate1c98590aa4d76b0 C:\Program Files\Google\Update\GoogleUpdate.exe
15:51:31.0133 1744 gupdate1c98590aa4d76b0 - ok
15:51:31.0336 1744 [ 626a24ed1228580b9518c01930936df9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:51:31.0336 1744 gupdatem - ok
15:51:31.0539 1744 [ 408ddd80eede47175f6844817b90213e ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:51:31.0866 1744 gusvc - ok
15:51:31.0929 1744 [ de15777902a5d9121857d155873a1d1b ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
15:51:31.0991 1744 HBtnKey - ok
15:51:32.0225 1744 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:51:32.0506 1744 HdAudAddService - ok
15:51:32.0927 1744 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:51:33.0411 1744 HDAudBus - ok
15:51:33.0457 1744 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:51:33.0489 1744 HidBth - ok
15:51:33.0567 1744 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
15:51:33.0660 1744 HidIr - ok
15:51:33.0754 1744 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\System32\hidserv.dll
15:51:33.0785 1744 hidserv - ok
15:51:33.0879 1744 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:51:33.0894 1744 HidUsb - ok
15:51:33.0988 1744 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:51:34.0003 1744 hkmsvc - ok
15:51:34.0409 1744 [ a19b0bb5a7eb6df2dd4a0711d36955ee ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
15:51:34.0518 1744 HP Health Check Service - ok
15:51:34.0565 1744 [ df353b401001246853763c4b7aaa6f50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:51:34.0596 1744 HpCISSs - ok
15:51:34.0783 1744 [ 04c1dcbb226c6ae647b794833ce3ceb6 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
15:51:34.0877 1744 hpqwmiex - ok
15:51:35.0017 1744 [ 46d67209550973257601a533e2ac5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
15:51:35.0173 1744 HSFHWAZL - ok
15:51:35.0392 1744 [ ec36f1d542ed4252390d446bf6d4dfd0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
15:51:35.0829 1744 HSF_DPV - ok
15:51:35.0953 1744 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:51:36.0187 1744 HTTP - ok
15:51:36.0281 1744 [ 324c2152ff2c61abae92d09f3cca4d63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:51:36.0312 1744 i2omp - ok
15:51:36.0484 1744 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:51:36.0515 1744 i8042prt - ok
15:51:36.0780 1744 [ cb686f44bf955ea02520710a56874fa4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
15:51:36.0952 1744 IAANTMON - ok
15:51:37.0451 1744 [ 9378d57e2b96c0a185d844770ad49948 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
15:51:38.0309 1744 ialm - ok
15:51:38.0418 1744 [ db0cc620b27a928d968c1a1e9cd9cb87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:51:38.0434 1744 iaStor - ok
15:51:38.0574 1744 [ c957bf4b5d80b46c5017bf0101e6c906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:51:38.0746 1744 iaStorV - ok
15:51:38.0917 1744 [ daf66902f08796f9c694901660e5a64a ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
15:51:39.0105 1744 IDriverT - ok
15:51:39.0635 1744 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:51:40.0306 1744 idsvc - ok
15:51:40.0821 1744 [ 9378d57e2b96c0a185d844770ad49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
15:51:40.0836 1744 igfx - ok
15:51:40.0961 1744 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:51:41.0023 1744 iirsp - ok
15:51:41.0242 1744 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
15:51:41.0569 1744 IKEEXT - ok
15:51:42.0037 1744 [ 8d7eb1fd498fd0a34c95a298685ec1c7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:51:42.0942 1744 IntcAzAudAddService - ok
15:51:43.0020 1744 [ 97469037714070e45194ed318d636401 ] intelide C:\Windows\system32\drivers\intelide.sys
15:51:43.0051 1744 intelide - ok
15:51:43.0207 1744 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:51:43.0270 1744 intelppm - ok
15:51:43.0363 1744 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:51:43.0426 1744 IPBusEnum - ok
15:51:43.0488 1744 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:51:43.0535 1744 IpFilterDriver - ok
15:51:43.0551 1744 IpInIp - ok
15:51:43.0644 1744 [ 40f34f8aba2a015d780e4b09138b6c17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:51:43.0675 1744 IPMIDRV - ok
15:51:43.0753 1744 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:51:43.0800 1744 IPNAT - ok
15:51:44.0284 1744 [ e6be7a41a28d8f2db174957454d32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:51:45.0126 1744 iPod Service - ok
15:51:45.0235 1744 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:51:45.0267 1744 IRENUM - ok
15:51:45.0313 1744 [ 350fca7e73cf65bcef43fae1e4e91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:51:45.0329 1744 isapnp - ok
15:51:45.0516 1744 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:51:45.0516 1744 iScsiPrt - ok
15:51:45.0579 1744 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:51:45.0610 1744 iteatapi - ok
15:51:45.0750 1744 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:51:45.0797 1744 iteraid - ok
15:51:45.0906 1744 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:51:45.0906 1744 kbdclass - ok
15:51:45.0984 1744 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:51:46.0015 1744 kbdhid - ok
15:51:46.0109 1744 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
15:51:46.0156 1744 KeyIso - ok
15:51:46.0374 1744 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:51:46.0702 1744 KSecDD - ok
15:51:46.0873 1744 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:51:47.0123 1744 KtmRm - ok
15:51:47.0170 1744 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\System32\srvsvc.dll
15:51:47.0279 1744 LanmanServer - ok
15:51:47.0357 1744 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:51:47.0747 1744 LanmanWorkstation - ok
15:51:47.0887 1744 [ 559c9b7800fac92fc515cd0003d7c631 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:51:47.0919 1744 LightScribeService - ok
15:51:47.0981 1744 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:51:48.0012 1744 lltdio - ok
15:51:48.0075 1744 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:51:48.0137 1744 lltdsvc - ok
15:51:48.0215 1744 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:51:48.0231 1744 lmhosts - ok
15:51:48.0293 1744 [ a2262fb9f28935e862b4db46438c80d2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:51:48.0340 1744 LSI_FC - ok
15:51:48.0371 1744 [ 30d73327d390f72a62f32c103daf1d6d ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:51:48.0433 1744 LSI_SAS - ok
15:51:48.0496 1744 [ e1e36fefd45849a95f1ab81de0159fe3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:51:48.0511 1744 LSI_SCSI - ok
15:51:48.0574 1744 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
15:51:48.0605 1744 luafv - ok
15:51:48.0683 1744 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:51:48.0714 1744 Mcx2Svc - ok
15:51:48.0823 1744 [ d153b14fc6598eae8422a2037553adce ] megasas C:\Windows\system32\drivers\megasas.sys
15:51:48.0870 1744 megasas - ok
15:51:48.0917 1744 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:51:48.0933 1744 MMCSS - ok
15:51:48.0979 1744 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
15:51:48.0995 1744 Modem - ok
15:51:49.0089 1744 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:51:49.0104 1744 monitor - ok
15:51:49.0135 1744 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:51:49.0135 1744 mouclass - ok
15:51:49.0151 1744 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:51:49.0167 1744 mouhid - ok
15:51:49.0229 1744 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:51:49.0260 1744 MountMgr - ok
15:51:49.0385 1744 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:51:49.0416 1744 MpFilter - ok
15:51:49.0494 1744 [ 583a41f26278d9e0ea548163d6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
15:51:49.0557 1744 mpio - ok
15:51:49.0666 1744 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:51:49.0697 1744 mpsdrv - ok
15:51:49.0775 1744 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:51:49.0822 1744 Mraid35x - ok
15:51:49.0869 1744 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:51:49.0900 1744 MRxDAV - ok
15:51:49.0978 1744 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:51:50.0009 1744 mrxsmb - ok
15:51:50.0134 1744 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:51:50.0243 1744 mrxsmb10 - ok
15:51:50.0321 1744 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:51:50.0352 1744 mrxsmb20 - ok
15:51:50.0446 1744 [ 742aed7939e734c36b7e8d6228ce26b7 ] msahci C:\Windows\system32\drivers\msahci.sys
15:51:50.0493 1744 msahci - ok
15:51:50.0524 1744 [ 3fc82a2ae4cc149165a94699183d3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:51:50.0555 1744 msdsm - ok
15:51:50.0602 1744 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
15:51:50.0633 1744 MSDTC - ok
15:51:50.0711 1744 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:51:50.0742 1744 Msfs - ok
15:51:50.0836 1744 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:51:50.0851 1744 msisadrv - ok
15:51:50.0929 1744 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:51:50.0976 1744 MSiSCSI - ok
15:51:50.0992 1744 msiserver - ok
15:51:51.0085 1744 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:51:51.0101 1744 MSKSSRV - ok
15:51:51.0241 1744 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:51:51.0257 1744 MsMpSvc - ok
15:51:51.0304 1744 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:51:51.0335 1744 MSPCLOCK - ok
15:51:51.0382 1744 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:51:51.0413 1744 MSPQM - ok
15:51:51.0475 1744 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:51:51.0538 1744 MsRPC - ok
15:51:51.0600 1744 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:51:51.0600 1744 mssmbios - ok
15:51:51.0709 1744 MSSQL$MSSMLBIZ - ok
15:51:51.0865 1744 [ 1d89eb4e2a99cabd4e81225f4f4c4b25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
15:51:51.0928 1744 MSSQLServerADHelper - ok
15:51:51.0990 1744 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:51:52.0021 1744 MSTEE - ok
15:51:52.0068 1744 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
15:51:52.0099 1744 Mup - ok
15:51:52.0240 1744 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
15:51:52.0396 1744 napagent - ok
15:51:52.0505 1744 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:51:52.0536 1744 NativeWifiP - ok
15:51:52.0661 1744 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:51:52.0911 1744 NDIS - ok
15:51:52.0973 1744 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:51:53.0020 1744 NdisTapi - ok
15:51:53.0082 1744 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:51:53.0113 1744 Ndisuio - ok
15:51:53.0145 1744 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:51:53.0207 1744 NdisWan - ok
15:51:53.0285 1744 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:51:53.0301 1744 NDProxy - ok
15:51:53.0379 1744 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:51:53.0410 1744 NetBIOS - ok
15:51:53.0472 1744 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:51:53.0488 1744 netbt - ok
15:51:53.0519 1744 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
15:51:53.0519 1744 Netlogon - ok
15:51:53.0628 1744 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
15:51:53.0659 1744 Netman - ok
15:51:53.0737 1744 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
15:51:53.0784 1744 netprofm - ok
15:51:53.0815 1744 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:51:53.0847 1744 NetTcpPortSharing - ok
15:51:54.0112 1744 [ a15f219208843a5a210c8cb391384453 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
15:51:54.0642 1744 NETw3v32 - ok
15:51:54.0907 1744 [ 1d73499a6664b4da05d750ff83fdb274 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
15:51:55.0422 1744 NETw4v32 - ok
15:51:55.0500 1744 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:51:55.0547 1744 nfrd960 - ok
15:51:55.0594 1744 [ b52f26bade7d7e4a79706e3fd91834cd ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:51:55.0609 1744 NisDrv - ok
15:51:55.0656 1744 [ 290c0d4c4889398797f8df3be00b9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
15:51:55.0687 1744 NisSrv - ok
15:51:55.0734 1744 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:51:55.0750 1744 NlaSvc - ok
15:51:55.0828 1744 [ 357ddb51e03cae598c096d95497373d0 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
15:51:55.0859 1744 nmwcd - ok
15:51:55.0937 1744 [ 7cd443f9d36c80e152fadb274089577a ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
15:51:55.0953 1744 nmwcdc - ok
15:51:55.0999 1744 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:51:56.0015 1744 Npfs - ok
15:51:56.0077 1744 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
15:51:56.0093 1744 nsi - ok
15:51:56.0140 1744 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:51:56.0171 1744 nsiproxy - ok
15:51:56.0343 1744 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:51:56.0577 1744 Ntfs - ok
15:51:56.0639 1744 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:51:56.0670 1744 ntrigdigi - ok
15:51:56.0701 1744 [ cf7e041663119e09d2e118521ada9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
15:51:56.0701 1744 NuidFltr - ok
15:51:56.0764 1744 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
15:51:56.0764 1744 Null - ok
15:51:56.0826 1744 [ e69e946f80c1c31c53003bfbf50cbb7c ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:51:56.0857 1744 nvraid - ok
15:51:56.0904 1744 [ 9e0ba19a28c498a6d323d065db76dffc ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:51:56.0935 1744 nvstor - ok
15:51:56.0967 1744 [ 07c186427eb8fcc3d8d7927187f260f7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:51:56.0982 1744 nv_agp - ok
15:51:56.0982 1744 NwlnkFlt - ok
15:51:57.0013 1744 NwlnkFwd - ok
15:51:57.0497 1744 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:51:57.0700 1744 odserv - ok
15:51:57.0793 1744 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:51:57.0793 1744 ohci1394 - ok
15:51:57.0887 1744 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:51:57.0965 1744 ose - ok
15:51:58.0152 1744 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:51:58.0417 1744 p2pimsvc - ok
15:51:58.0558 1744 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
15:51:58.0558 1744 p2psvc - ok
15:51:58.0620 1744 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
15:51:58.0636 1744 Parport - ok
15:51:58.0683 1744 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:51:58.0683 1744 partmgr - ok
15:51:58.0729 1744 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:51:58.0745 1744 Parvdm - ok
15:51:58.0807 1744 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
15:51:58.0807 1744 PcaSvc - ok
15:51:58.0932 1744 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
15:51:58.0979 1744 pccsmcfd - ok
15:51:59.0026 1744 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
15:51:59.0073 1744 pci - ok
15:51:59.0135 1744 [ 1636d43f10416aeb483bc6001097b26c ] pciide C:\Windows\system32\DRIVERS\pciide.sys
15:51:59.0166 1744 pciide - ok
15:51:59.0275 1744 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:51:59.0338 1744 pcmcia - ok
15:51:59.0447 1744 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:51:59.0619 1744 PEAUTH - ok
15:51:59.0821 1744 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
15:51:59.0931 1744 pla - ok
15:52:00.0009 1744 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:52:00.0055 1744 PlugPlay - ok
15:52:00.0118 1744 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:52:00.0133 1744 PNRPAutoReg - ok
15:52:00.0165 1744 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:52:00.0180 1744 PNRPsvc - ok
15:52:00.0274 1744 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:52:00.0383 1744 PolicyAgent - ok
15:52:00.0461 1744 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:52:00.0492 1744 PptpMiniport - ok
15:52:00.0586 1744 [ 0e3cef5d28b40cf273281d620c50700a ] Processor C:\Windows\system32\drivers\processr.sys
15:52:00.0586 1744 Processor - ok
15:52:00.0648 1744 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
15:52:00.0664 1744 ProfSvc - ok
15:52:00.0679 1744 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
15:52:00.0679 1744 ProtectedStorage - ok
15:52:00.0711 1744 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:52:00.0711 1744 PSched - ok
15:52:00.0773 1744 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:52:00.0835 1744 PxHelp20 - ok
15:52:00.0976 1744 [ ccdac889326317792480c0a67156a1ec ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:52:01.0054 1744 ql2300 - ok
15:52:01.0069 1744 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:52:01.0069 1744 ql40xx - ok
15:52:01.0132 1744 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
15:52:01.0132 1744 QWAVE - ok
15:52:01.0194 1744 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:52:01.0194 1744 QWAVEdrv - ok
15:52:01.0319 1744 [ 6b6f0a77365667912360ff1d5e984f25 ] RapportCerberus_34302 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\34302\RapportCerberus32_34302.sys
15:52:01.0319 1744 RapportCerberus_34302 - ok
15:52:01.0397 1744 [ a5a800faa8ab5f7f19743cd60cc1cbed ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
15:52:01.0397 1744 RapportEI - ok
15:52:01.0522 1744 [ 35199ec35edc7dcba71fda711dfb05c0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\39624\rapportiaso.sys
15:52:01.0522 1744 RapportIaso - ok
15:52:01.0631 1744 [ e5adfe497baf93eac2be20a58c40c874 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
15:52:01.0662 1744 RapportKELL - ok
15:52:01.0740 1744 [ c862053be4168c0bb6191af76b9fc878 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
15:52:01.0771 1744 RapportMgmtService - ok
15:52:01.0865 1744 [ fe69d9bc32dccb4b49885070d6518275 ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
15:52:01.0881 1744 RapportPG - ok
15:52:01.0912 1744 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:52:01.0943 1744 RasAcd - ok
15:52:02.0005 1744 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
15:52:02.0021 1744 RasAuto - ok
15:52:02.0083 1744 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:52:02.0099 1744 Rasl2tp - ok
15:52:02.0161 1744 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
15:52:02.0161 1744 RasMan - ok
15:52:02.0193 1744 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:52:02.0193 1744 RasPppoe - ok
15:52:02.0239 1744 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:52:02.0239 1744 RasSstp - ok
15:52:02.0271 1744 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:52:02.0302 1744 rdbss - ok
15:52:02.0364 1744 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:52:02.0364 1744 RDPCDD - ok
15:52:02.0411 1744 [ e8bd98d46f2ed77132ba927fccb47d8b ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:52:02.0427 1744 rdpdr - ok
15:52:02.0427 1744 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:52:02.0427 1744 RDPENCDD - ok
15:52:02.0505 1744 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:52:02.0536 1744 RDPWD - ok
15:52:02.0583 1744 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:52:02.0614 1744 RemoteAccess - ok
15:52:02.0661 1744 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:52:02.0661 1744 RemoteRegistry - ok
15:52:02.0707 1744 [ 355aac141b214bef1dbc1483afd9bd50 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
15:52:02.0739 1744 rimmptsk - ok
15:52:02.0832 1744 [ a4216c71dd4f60b26418ccfd99cd0815 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
15:52:02.0848 1744 rimsptsk - ok
15:52:02.0879 1744 [ c663af77e2f4eabf8eb08b388d2f1f36 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
15:52:02.0879 1744 rismxdp - ok
15:52:03.0004 1744 [ 08fb7d968805001c7adcbb14b0651fa2 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
15:52:03.0035 1744 RoxMediaDB9 - ok
15:52:03.0066 1744 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
15:52:03.0066 1744 RpcLocator - ok
15:52:03.0113 1744 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
15:52:03.0113 1744 RpcSs - ok
15:52:03.0160 1744 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:52:03.0160 1744 rspndr - ok
15:52:03.0191 1744 [ 71b7026d61293c1e91145bdad11c53bf ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:52:03.0207 1744 RTL8169 - ok
15:52:03.0207 1744 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
15:52:03.0222 1744 SamSs - ok
15:52:03.0253 1744 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:52:03.0253 1744 sbp2port - ok
15:52:03.0300 1744 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:52:03.0300 1744 SCardSvr - ok
15:52:03.0347 1744 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
15:52:03.0378 1744 Schedule - ok
15:52:03.0425 1744 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:52:03.0425 1744 SCPolicySvc - ok
15:52:03.0441 1744 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:52:03.0456 1744 sdbus - ok
15:52:03.0487 1744 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:52:03.0487 1744 SDRSVC - ok
15:52:03.0519 1744 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:52:03.0519 1744 secdrv - ok
15:52:03.0565 1744 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
15:52:03.0565 1744 seclogon - ok
15:52:03.0612 1744 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\system32\sens.dll
15:52:03.0612 1744 SENS - ok
15:52:03.0643 1744 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:52:03.0643 1744 Serenum - ok
15:52:03.0659 1744 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
15:52:03.0659 1744 Serial - ok
15:52:03.0706 1744 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:52:03.0706 1744 sermouse - ok
15:52:03.0768 1744 [ 8988d1f32f56b3cd3f0f6c39f8a91a98 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:52:03.0815 1744 ServiceLayer - ok
15:52:03.0862 1744 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:52:03.0877 1744 SessionEnv - ok
15:52:03.0893 1744 [ 103b79418da647736ee95645f305f68a ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:52:03.0893 1744 sffdisk - ok
15:52:03.0940 1744 [ 8fd08a310645fe872eeec6e08c6bf3ee ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:52:03.0940 1744 sffp_mmc - ok
15:52:03.0955 1744 [ 9cfa05fcfcb7124e69cfc812b72f9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:52:03.0955 1744 sffp_sd - ok
15:52:03.0971 1744 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:52:03.0971 1744 sfloppy - ok
15:52:04.0018 1744 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:52:04.0033 1744 ShellHWDetection - ok
15:52:04.0065 1744 [ d2a595d6eebeeaf4334f8e50efbc9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:52:04.0065 1744 sisagp - ok
15:52:04.0080 1744 [ cedd6f4e7d84e9f98b34b3fe988373aa ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:52:04.0096 1744 SiSRaid2 - ok
15:52:04.0143 1744 [ df843c528c4f69d12ce41ce462e973a7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:52:04.0143 1744 SiSRaid4 - ok
15:52:04.0267 1744 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
15:52:04.0345 1744 slsvc - ok
15:52:04.0408 1744 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:52:04.0423 1744 SLUINotify - ok
15:52:04.0455 1744 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:52:04.0455 1744 Smb - ok
15:52:04.0517 1744 [ 63b3b77bdb67ee674771c0e6fb96da9e ] smserial C:\Windows\system32\DRIVERS\smserial.sys
15:52:04.0548 1744 smserial - ok
15:52:04.0595 1744 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:52:04.0595 1744 SNMPTRAP - ok
15:52:04.0642 1744 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
15:52:04.0642 1744 spldr - ok
15:52:04.0704 1744 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
15:52:04.0704 1744 Spooler - ok
15:52:04.0720 1744 [ 86ebd8b1f23e743aad21f4d5b4d40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:52:04.0720 1744 SQLBrowser - ok
15:52:04.0751 1744 [ d89083c4eb02daca8f944b0e05e57f9d ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:52:04.0751 1744 SQLWriter - ok
15:52:04.0798 1744 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:52:04.0813 1744 srv - ok
15:52:04.0829 1744 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:52:04.0845 1744 srv2 - ok
15:52:04.0860 1744 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:52:04.0860 1744 srvnet - ok
15:52:04.0876 1744 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:52:04.0891 1744 SSDPSRV - ok
15:52:04.0938 1744 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:52:04.0954 1744 SstpSvc - ok
15:52:05.0001 1744 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
15:52:05.0032 1744 stisvc - ok
15:52:05.0110 1744 [ a9a23c8af361f7a93fd632e91a8c346f ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
15:52:05.0125 1744 stllssvr - ok
15:52:05.0141 1744 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:52:05.0141 1744 swenum - ok
15:52:05.0219 1744 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
15:52:05.0219 1744 swprv - ok
15:52:05.0250 1744 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:52:05.0250 1744 Symc8xx - ok
15:52:05.0266 1744 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:52:05.0266 1744 Sym_hi - ok
15:52:05.0281 1744 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:52:05.0297 1744 Sym_u3 - ok
15:52:05.0344 1744 [ 8327106d1c93e9a7b98e63b9fcc24bb7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:52:05.0344 1744 SynTP - ok
15:52:05.0391 1744 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
15:52:05.0422 1744 SysMain - ok
15:52:05.0453 1744 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:52:05.0453 1744 TabletInputService - ok
15:52:05.0531 1744 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:52:05.0547 1744 TapiSrv - ok
15:52:05.0593 1744 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
15:52:05.0609 1744 TBS - ok
15:52:05.0656 1744 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:52:05.0687 1744 Tcpip - ok
15:52:05.0765 1744 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:52:05.0781 1744 Tcpip6 - ok
15:52:05.0812 1744 [ 2c2d4cff5e09c73908f9b5af49a51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:52:05.0812 1744 tcpipreg - ok
15:52:05.0859 1744 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:52:05.0859 1744 TDPIPE - ok
15:52:05.0890 1744 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:52:05.0905 1744 TDTCP - ok
15:52:05.0937 1744 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:52:05.0937 1744 tdx - ok
15:52:05.0952 1744 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:52:05.0952 1744 TermDD - ok
15:52:05.0999 1744 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
15:52:06.0015 1744 TermService - ok
15:52:06.0030 1744 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
15:52:06.0046 1744 Themes - ok
15:52:06.0061 1744 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:52:06.0061 1744 THREADORDER - ok
15:52:06.0108 1744 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
15:52:06.0108 1744 TrkWks - ok
15:52:06.0155 1744 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:52:06.0155 1744 TrustedInstaller - ok
15:52:06.0217 1744 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:52:06.0217 1744 tssecsrv - ok
15:52:06.0280 1744 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:52:06.0280 1744 tunmp - ok
15:52:06.0311 1744 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:52:06.0311 1744 tunnel - ok
15:52:06.0342 1744 [ c3ade15414120033a36c0f293d4a4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:52:06.0358 1744 uagp35 - ok
15:52:06.0389 1744 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:52:06.0389 1744 udfs - ok
15:52:06.0467 1744 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:52:06.0467 1744 UI0Detect - ok
15:52:06.0483 1744 [ 75e6890ebfce0841d3291b02e7a8bdb0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:52:06.0498 1744 uliagpkx - ok
15:52:06.0514 1744 [ 3cd4ea35a6221b85dcc25daa46313f8d ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:52:06.0514 1744 uliahci - ok
15:52:06.0545 1744 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:52:06.0545 1744 UlSata - ok
15:52:06.0561 1744 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:52:06.0576 1744 ulsata2 - ok
15:52:06.0607 1744 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:52:06.0623 1744 umbus - ok
15:52:06.0670 1744 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
15:52:06.0670 1744 upnphost - ok
15:52:06.0717 1744 [ 15629e4d65f97ab5432d6d9597cf6a33 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
15:52:06.0717 1744 upperdev - ok
15:52:06.0779 1744 [ eafe1e00739afe6c51487a050e772e17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:52:06.0779 1744 USBAAPL - ok
15:52:06.0857 1744 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:52:06.0857 1744 usbccgp - ok
15:52:06.0873 1744 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:52:06.0888 1744 usbcir - ok
15:52:06.0919 1744 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:52:06.0919 1744 usbehci - ok
15:52:06.0966 1744 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:52:06.0982 1744 usbhub - ok
15:52:06.0997 1744 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:52:06.0997 1744 usbohci - ok
15:52:07.0013 1744 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:52:07.0013 1744 usbprint - ok
15:52:07.0075 1744 [ d575246188f63de0accf6eac5fb59e6a ] usbser C:\Windows\system32\drivers\usbser.sys
15:52:07.0075 1744 usbser - ok
15:52:07.0122 1744 [ 5c17e6a11aa8be53f79fd364ba19f0ce ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
15:52:07.0122 1744 UsbserFilt - ok
15:52:07.0138 1744 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:52:07.0138 1744 USBSTOR - ok
15:52:07.0200 1744 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:52:07.0200 1744 usbuhci - ok
15:52:07.0278 1744 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:52:07.0278 1744 usbvideo - ok
15:52:07.0309 1744 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
15:52:07.0325 1744 UxSms - ok
15:52:07.0387 1744 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
15:52:07.0403 1744 vds - ok
15:52:07.0450 1744 [ 7d92be0028ecdedec74617009084b5ef ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:52:07.0450 1744 vga - ok
15:52:07.0497 1744 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
15:52:07.0497 1744 VgaSave - ok
15:52:07.0528 1744 [ 045d9961e591cf0674a920b6ba3ba5cb ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:52:07.0528 1744 viaagp - ok
15:52:07.0543 1744 [ 56a4de5f02f2e88182b0981119b4dd98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:52:07.0559 1744 ViaC7 - ok
15:52:07.0575 1744 [ fd2e3175fcada350c7ab4521dca187ec ] viaide C:\Windows\system32\drivers\viaide.sys
15:52:07.0575 1744 viaide - ok
15:52:07.0590 1744 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:52:07.0590 1744 volmgr - ok
15:52:07.0637 1744 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:52:07.0637 1744 volmgrx - ok
15:52:07.0684 1744 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:52:07.0699 1744 volsnap - ok
15:52:07.0715 1744 [ d984439746d42b30fc65a4c3546c6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:52:07.0715 1744 vsmraid - ok
15:52:07.0777 1744 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
15:52:07.0824 1744 VSS - ok
15:52:07.0855 1744 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
15:52:07.0855 1744 W32Time - ok
15:52:07.0887 1744 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:52:07.0887 1744 WacomPen - ok
15:52:07.0933 1744 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:52:07.0933 1744 Wanarp - ok
15:52:07.0949 1744 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:52:07.0949 1744 Wanarpv6 - ok
15:52:07.0996 1744 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:52:08.0011 1744 wcncsvc - ok
15:52:08.0027 1744 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:52:08.0043 1744 WcsPlugInService - ok
15:52:08.0058 1744 [ afc5ad65b991c1e205cf25cfdbf7a6f4 ] Wd C:\Windows\system32\drivers\wd.sys
15:52:08.0058 1744 Wd - ok
15:52:08.0121 1744 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:52:08.0152 1744 Wdf01000 - ok
15:52:08.0199 1744 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:52:08.0199 1744 WdiServiceHost - ok
15:52:08.0214 1744 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:52:08.0214 1744 WdiSystemHost - ok
15:52:08.0261 1744 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
15:52:08.0261 1744 WebClient - ok
15:52:08.0308 1744 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:52:08.0308 1744 Wecsvc - ok
15:52:08.0355 1744 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:52:08.0355 1744 wercplsupport - ok
15:52:08.0401 1744 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
15:52:08.0401 1744 WerSvc - ok
15:52:08.0464 1744 [ 5c7bdcf5864db00323fe2d90fa26a8a2 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
15:52:08.0495 1744 winachsf - ok
15:52:08.0495 1744 WinHttpAutoProxySvc - ok
15:52:08.0557 1744 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:52:08.0573 1744 Winmgmt - ok
15:52:08.0635 1744 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:52:08.0667 1744 WinRM - ok
15:52:08.0713 1744 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:52:08.0745 1744 Wlansvc - ok
15:52:08.0776 1744 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:52:08.0776 1744 WmiAcpi - ok
15:52:08.0807 1744 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:52:08.0807 1744 wmiApSrv - ok
15:52:08.0901 1744 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:52:08.0932 1744 WMPNetworkSvc - ok
15:52:08.0947 1744 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:52:08.0947 1744 WPCSvc - ok
15:52:08.0979 1744 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:52:08.0979 1744 WPDBusEnum - ok
15:52:09.0010 1744 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:52:09.0025 1744 WpdUsb - ok
15:52:09.0135 1744 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:52:09.0150 1744 WPFFontCache_v0400 - ok
15:52:09.0213 1744 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:52:09.0213 1744 ws2ifsl - ok
15:52:09.0213 1744 WSearch - ok
15:52:09.0322 1744 [ 3cf81f104137457a7f32c274709635be ] wsnm C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
15:52:09.0337 1744 wsnm - ok
15:52:09.0384 1744 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:52:09.0384 1744 WUDFRd - ok
15:52:09.0447 1744 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:52:09.0447 1744 wudfsvc - ok
15:52:09.0462 1744 ================ Scan global ===============================
15:52:09.0509 1744 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
15:52:09.0571 1744 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
15:52:09.0603 1744 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
15:52:09.0649 1744 (8737764f4fd36d6808ee80578409c843) C:\Windows\system32\services.exe
15:52:09.0665 1744 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
15:52:09.0665 1744 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
15:52:09.0665 1744 ================ Scan MBR ==================================
15:52:09.0681 1744 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
15:52:10.0117 1744 \Device\Harddisk0\DR0 - ok
15:52:10.0133 1744 MBR (0x1B8) (65e858a8a0293be11a920b0bc99d695e) \Device\Harddisk1\DR1
15:52:10.0882 1744 \Device\Harddisk1\DR1 - ok
15:52:10.0882 1744 ================ Scan VBR ==================================
15:52:10.0882 1744 Boot (0x1200) (043f64bb179e7843b94bd8ecd04aa326) \Device\Harddisk0\DR0\Partition1
15:52:10.0882 1744 \Device\Harddisk0\DR0\Partition1 - ok
15:52:10.0897 1744 Boot (0x1200) (7891f6fcf1d0476f4073887967761350) \Device\Harddisk0\DR0\Partition2
15:52:10.0897 1744 \Device\Harddisk0\DR0\Partition2 - ok
15:52:10.0913 1744 Boot (0x1200) (0d43d421f0d929f9bb0ddd4dd17aac04) \Device\Harddisk1\DR1\Partition1
15:52:10.0913 1744 \Device\Harddisk1\DR1\Partition1 - ok
15:52:10.0913 1744 ============================================================
15:52:10.0913 1744 Scan finished
15:52:10.0913 1744 ============================================================
15:52:10.0929 1736 Detected object count: 1
15:52:10.0929 1736 Actual detected object count: 1
15:52:34.0875 1736 C:\Windows\system32\services.exe - copied to quarantine
15:52:37.0261 1736 C:\Windows\assembly\GAC\desktop.ini - copied to quarantine
15:52:38.0151 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - copied to quarantine
15:52:38.0182 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\00000004.@ - copied to quarantine
15:52:38.0213 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\201d3dde - copied to quarantine
15:52:38.0229 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\n - copied to quarantine
15:52:38.0244 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - copied to quarantine
15:52:38.0275 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\L\00000004.@ - copied to quarantine
15:52:38.0338 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000004.@ - copied to quarantine
15:52:38.0353 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000008.@ - copied to quarantine
15:52:38.0369 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\000000cb.@ - copied to quarantine
15:52:38.0385 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@ - copied to quarantine
15:52:38.0385 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000032.@ - copied to quarantine
15:52:56.0527 1736 Backup copy found, using it..
15:52:56.0621 1736 C:\Windows\assembly\GAC\desktop.ini - will be deleted on reboot
15:52:56.0683 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - will be deleted on reboot
15:52:56.0699 1736 C:\Windows\installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\n - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@ - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000004.@ - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000008.@ - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\000000cb.@ - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@ - will be deleted on reboot
15:52:56.0699 1736 C:\Users\user\AppData\Local\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000032.@ - will be deleted on reboot
15:52:56.0699 1736 C:\Windows\system32\services.exe - will be cured on reboot
15:52:56.0699 1736 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Cure
15:53:08.0321 1492 Deinitialize success

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:43 PM

Posted 18 August 2012 - 01:13 PM

Yes,it cured it,Restart the PC,run TDSSkiller and post the new log


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#6 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 19 August 2012 - 01:04 PM

Here is the TDSSkiller

16:23:49.0199 0228 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
16:23:49.0339 0228 ============================================================
16:23:49.0339 0228 Current date / time: 2012/08/19 16:23:49.0339
16:23:49.0339 0228 SystemInfo:
16:23:49.0339 0228
16:23:49.0339 0228 OS Version: 6.0.6002 ServicePack: 2.0
16:23:49.0339 0228 Product type: Workstation
16:23:49.0339 0228 ComputerName: USER-PC
16:23:49.0339 0228 UserName: user
16:23:49.0339 0228 Windows directory: C:\Windows
16:23:49.0339 0228 System windows directory: C:\Windows
16:23:49.0339 0228 Processor architecture: Intel x86
16:23:49.0339 0228 Number of processors: 2
16:23:49.0339 0228 Page size: 0x1000
16:23:49.0339 0228 Boot type: Normal boot
16:23:49.0339 0228 ============================================================
16:23:52.0334 0228 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:23:52.0365 0228 ============================================================
16:23:52.0365 0228 \Device\Harddisk0\DR0:
16:23:52.0365 0228 MBR partitions:
16:23:52.0365 0228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C134849
16:23:52.0365 0228 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C134888, BlocksNum 0x108FCF9
16:23:52.0365 0228 ============================================================
16:23:52.0428 0228 C: <-> \Device\Harddisk0\DR0\Partition1
16:23:52.0537 0228 D: <-> \Device\Harddisk0\DR0\Partition2
16:23:52.0537 0228 ============================================================
16:23:52.0537 0228 Initialize success
16:23:52.0537 0228 ============================================================
16:24:02.0709 2176 ============================================================
16:24:02.0709 2176 Scan started
16:24:02.0709 2176 Mode: Manual;
16:24:02.0709 2176 ============================================================
16:24:08.0778 2176 ================ Scan services =============================
16:24:09.0667 2176 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
16:24:09.0682 2176 ACPI - ok
16:24:09.0823 2176 [ a9d3b95e8466bd58eeb8a1154654e162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:24:10.0275 2176 AdobeFlashPlayerUpdateSvc - ok
16:24:10.0400 2176 [ 2edc5bbac6c651ece337bde8ed97c9fb ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
16:24:10.0447 2176 adp94xx - ok
16:24:10.0525 2176 [ b84088ca3cdca97da44a984c6ce1ccad ] adpahci C:\Windows\system32\drivers\adpahci.sys
16:24:10.0540 2176 adpahci - ok
16:24:10.0587 2176 [ 7880c67bccc27c86fd05aa2afb5ea469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
16:24:10.0603 2176 adpu160m - ok
16:24:10.0650 2176 [ 9ae713f8e30efc2abccd84904333df4d ] adpu320 C:\Windows\system32\drivers\adpu320.sys
16:24:10.0681 2176 adpu320 - ok
16:24:10.0743 2176 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:24:11.0102 2176 AeLookupSvc - ok
16:24:11.0274 2176 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
16:24:11.0367 2176 AFD - ok
16:24:11.0445 2176 [ ef23439cdd587f64c2c1b8825cead7d8 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:24:11.0445 2176 agp440 - ok
16:24:11.0492 2176 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
16:24:11.0492 2176 aic78xx - ok
16:24:11.0539 2176 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
16:24:11.0586 2176 ALG - ok
16:24:11.0601 2176 [ 90395b64600ebb4552e26e178c94b2e4 ] aliide C:\Windows\system32\drivers\aliide.sys
16:24:11.0601 2176 aliide - ok
16:24:11.0632 2176 [ 2b13e304c9dfdfa5eb582f6a149fa2c7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
16:24:11.0632 2176 amdagp - ok
16:24:11.0664 2176 [ 0577df1d323fe75a739c787893d300ea ] amdide C:\Windows\system32\drivers\amdide.sys
16:24:11.0664 2176 amdide - ok
16:24:11.0710 2176 [ dc487885bcef9f28eece6fac0e5ddfc5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
16:24:11.0757 2176 AmdK7 - ok
16:24:11.0788 2176 [ 0ca0071da4315b00fc1328ca86b425da ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
16:24:11.0820 2176 AmdK8 - ok
16:24:12.0007 2176 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
16:24:12.0022 2176 Appinfo - ok
16:24:12.0381 2176 [ f401929ee0cc92bfe7f15161ca535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:24:12.0412 2176 Apple Mobile Device - ok
16:24:12.0506 2176 [ 5f673180268bb1fdb69c99b6619fe379 ] arc C:\Windows\system32\drivers\arc.sys
16:24:12.0522 2176 arc - ok
16:24:12.0584 2176 [ 957f7540b5e7f602e44648c7de5a1c05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:24:12.0615 2176 arcsas - ok
16:24:12.0709 2176 [ e54e27976e2c5a6465d44c10b1d87ac0 ] ASPI C:\Windows\System32\DRIVERS\ASPI32.sys
16:24:12.0756 2176 ASPI - ok
16:24:12.0849 2176 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:24:12.0865 2176 AsyncMac - ok
16:24:12.0974 2176 [ 1f05b78ab91c9075565a9d8a4b880bc4 ] atapi C:\Windows\system32\drivers\atapi.sys
16:24:12.0974 2176 atapi - ok
16:24:13.0099 2176 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:24:13.0114 2176 AudioEndpointBuilder - ok
16:24:13.0130 2176 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:24:13.0130 2176 Audiosrv - ok
16:24:13.0317 2176 [ cf6a67c90951e3e763d2135dede44b85 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
16:24:13.0380 2176 BCM43XV - ok
16:24:13.0489 2176 [ 6163664c7e9cd110af70180c126c3fdc ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
16:24:13.0536 2176 BcmSqlStartupSvc - ok
16:24:13.0660 2176 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
16:24:13.0692 2176 Beep - ok
16:24:13.0707 2176 blbdrive - ok
16:24:13.0848 2176 [ db5bea73edaf19ac68b2c0fad0f92b1a ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:24:13.0910 2176 Bonjour Service - ok
16:24:14.0066 2176 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:24:14.0066 2176 bowser - ok
16:24:14.0175 2176 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
16:24:14.0269 2176 BrFiltLo - ok
16:24:14.0300 2176 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
16:24:14.0331 2176 BrFiltUp - ok
16:24:14.0409 2176 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
16:24:14.0456 2176 Browser - ok
16:24:14.0518 2176 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
16:24:14.0581 2176 Brserid - ok
16:24:14.0596 2176 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
16:24:14.0643 2176 BrSerWdm - ok
16:24:14.0690 2176 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
16:24:14.0706 2176 BrUsbMdm - ok
16:24:14.0737 2176 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
16:24:14.0784 2176 BrUsbSer - ok
16:24:14.0830 2176 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
16:24:14.0877 2176 BTHMODEM - ok
16:24:15.0111 2176 [ a9acc4b9730b6d5b0bb2bffdc53f0812 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
16:24:15.0111 2176 CCALib8 - ok
16:24:15.0220 2176 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:24:15.0220 2176 cdfs - ok
16:24:15.0314 2176 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:24:15.0392 2176 cdrom - ok
16:24:15.0486 2176 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
16:24:15.0501 2176 CertPropSvc - ok
16:24:15.0532 2176 [ da8e0afc7baa226c538ef53ac2f90897 ] circlass C:\Windows\system32\drivers\circlass.sys
16:24:15.0579 2176 circlass - ok
16:24:15.0985 2176 [ dbafc6734c054feef9087754bd80f847 ] CLCapSvc C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
16:24:15.0985 2176 CLCapSvc - ok
16:24:16.0047 2176 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
16:24:16.0078 2176 CLFS - ok
16:24:16.0234 2176 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:24:16.0250 2176 clr_optimization_v2.0.50727_32 - ok
16:24:16.0390 2176 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:24:16.0500 2176 clr_optimization_v4.0.30319_32 - ok
16:24:16.0562 2176 [ e67f8f036fd882e4ab62501c0d45b536 ] CLSched C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
16:24:16.0562 2176 CLSched - ok
16:24:16.0656 2176 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:24:16.0702 2176 CmBatt - ok
16:24:16.0734 2176 [ 45201046c776ffdaf3fc8a0029c581c8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:24:16.0749 2176 cmdide - ok
16:24:16.0796 2176 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:24:16.0796 2176 Compbatt - ok
16:24:16.0812 2176 COMSysApp - ok
16:24:16.0827 2176 [ 2a213ae086bbec5e937553c7d9a2b22c ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
16:24:16.0827 2176 crcdisk - ok
16:24:16.0858 2176 [ 22a7f883508176489f559ee745b5bf5d ] Crusoe C:\Windows\system32\drivers\crusoe.sys
16:24:16.0921 2176 Crusoe - ok
16:24:17.0077 2176 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:24:17.0077 2176 CryptSvc - ok
16:24:17.0311 2176 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:24:17.0420 2176 DcomLaunch - ok
16:24:17.0451 2176 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:24:17.0560 2176 DfsC - ok
16:24:17.0748 2176 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
16:24:18.0013 2176 DFSR - ok
16:24:18.0075 2176 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
16:24:18.0075 2176 Dhcp - ok
16:24:18.0138 2176 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
16:24:18.0138 2176 disk - ok
16:24:18.0169 2176 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:24:18.0169 2176 Dnscache - ok
16:24:18.0247 2176 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:24:18.0294 2176 dot3svc - ok
16:24:18.0372 2176 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
16:24:18.0418 2176 DPS - ok
16:24:18.0481 2176 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:24:18.0481 2176 drmkaud - ok
16:24:18.0684 2176 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:24:18.0684 2176 DXGKrnl - ok
16:24:18.0730 2176 [ c0b00e55cf82d122d25983c7a6a53dea ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
16:24:18.0824 2176 E100B - ok
16:24:18.0840 2176 [ f88fb26547fd2ce6d0a5af2985892c48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
16:24:18.0902 2176 E1G60 - ok
16:24:18.0949 2176 [ e88b0cfcecf745211bba87f44f85d0dd ] eabfiltr C:\Windows\system32\DRIVERS\eabfiltr.sys
16:24:19.0042 2176 eabfiltr - ok
16:24:19.0120 2176 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
16:24:19.0120 2176 EapHost - ok
16:24:19.0183 2176 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
16:24:19.0183 2176 Ecache - ok
16:24:19.0386 2176 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:24:19.0557 2176 ehRecvr - ok
16:24:19.0604 2176 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
16:24:19.0666 2176 ehSched - ok
16:24:19.0713 2176 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
16:24:19.0713 2176 ehstart - ok
16:24:19.0776 2176 [ e8f3f21a71720c84bcf423b80028359f ] elxstor C:\Windows\system32\drivers\elxstor.sys
16:24:19.0791 2176 elxstor - ok
16:24:20.0072 2176 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
16:24:20.0088 2176 EMDMgmt - ok
16:24:20.0181 2176 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
16:24:20.0181 2176 EventSystem - ok
16:24:20.0212 2176 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
16:24:20.0259 2176 exfat - ok
16:24:20.0368 2176 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:24:20.0400 2176 fastfat - ok
16:24:20.0415 2176 [ 63bdada84951b9c03e641800e176898a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:24:20.0478 2176 fdc - ok
16:24:20.0540 2176 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
16:24:20.0540 2176 fdPHost - ok
16:24:20.0602 2176 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
16:24:20.0602 2176 FDResPub - ok
16:24:20.0649 2176 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:24:20.0649 2176 FileInfo - ok
16:24:20.0696 2176 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:24:20.0727 2176 Filetrace - ok
16:24:20.0743 2176 [ 6603957eff5ec62d25075ea8ac27de68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:24:20.0790 2176 flpydisk - ok
16:24:20.0852 2176 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:24:20.0852 2176 FltMgr - ok
16:24:20.0961 2176 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
16:24:21.0039 2176 FontCache - ok
16:24:21.0148 2176 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:24:21.0195 2176 FontCache3.0.0.0 - ok
16:24:21.0226 2176 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:24:21.0242 2176 Fs_Rec - ok
16:24:21.0273 2176 [ 4e1cd0a45c50a8882616cae5bf82f3c5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:24:21.0273 2176 gagp30kx - ok
16:24:21.0304 2176 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
16:24:21.0304 2176 GEARAspiWDM - ok
16:24:21.0554 2176 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
16:24:21.0616 2176 gpsvc - ok
16:24:21.0772 2176 [ 626a24ed1228580b9518c01930936df9 ] gupdate1c98590aa4d76b0 C:\Program Files\Google\Update\GoogleUpdate.exe
16:24:21.0804 2176 gupdate1c98590aa4d76b0 - ok
16:24:21.0835 2176 [ 626a24ed1228580b9518c01930936df9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
16:24:21.0835 2176 gupdatem - ok
16:24:21.0850 2176 [ 408ddd80eede47175f6844817b90213e ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:24:21.0850 2176 gusvc - ok
16:24:21.0866 2176 [ de15777902a5d9121857d155873a1d1b ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
16:24:21.0897 2176 HBtnKey - ok
16:24:21.0944 2176 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:24:22.0022 2176 HdAudAddService - ok
16:24:22.0240 2176 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:24:22.0272 2176 HDAudBus - ok
16:24:22.0303 2176 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
16:24:22.0350 2176 HidBth - ok
16:24:22.0365 2176 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
16:24:22.0381 2176 HidIr - ok
16:24:22.0459 2176 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\System32\hidserv.dll
16:24:22.0459 2176 hidserv - ok
16:24:22.0506 2176 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:24:22.0552 2176 HidUsb - ok
16:24:22.0599 2176 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:24:22.0630 2176 hkmsvc - ok
16:24:22.0724 2176 [ a19b0bb5a7eb6df2dd4a0711d36955ee ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
16:24:22.0724 2176 HP Health Check Service - ok
16:24:22.0755 2176 [ df353b401001246853763c4b7aaa6f50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
16:24:22.0755 2176 HpCISSs - ok
16:24:22.0818 2176 [ 04c1dcbb226c6ae647b794833ce3ceb6 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
16:24:22.0818 2176 hpqwmiex - ok
16:24:22.0911 2176 [ 46d67209550973257601a533e2ac5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
16:24:22.0989 2176 HSFHWAZL - ok
16:24:23.0145 2176 [ ec36f1d542ed4252390d446bf6d4dfd0 ] HSF_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS
16:24:23.0208 2176 HSF_DPV - ok
16:24:23.0332 2176 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:24:23.0332 2176 HTTP - ok
16:24:23.0426 2176 [ 324c2152ff2c61abae92d09f3cca4d63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
16:24:23.0457 2176 i2omp - ok
16:24:23.0520 2176 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:24:23.0582 2176 i8042prt - ok
16:24:23.0707 2176 [ cb686f44bf955ea02520710a56874fa4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:24:23.0769 2176 IAANTMON - ok
16:24:23.0988 2176 [ 9378d57e2b96c0a185d844770ad49948 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
16:24:24.0565 2176 ialm - ok
16:24:24.0658 2176 [ db0cc620b27a928d968c1a1e9cd9cb87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:24:24.0674 2176 iaStor - ok
16:24:24.0799 2176 [ c957bf4b5d80b46c5017bf0101e6c906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
16:24:24.0830 2176 iaStorV - ok
16:24:24.0970 2176 [ daf66902f08796f9c694901660e5a64a ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
16:24:25.0033 2176 IDriverT - ok
16:24:25.0267 2176 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:24:25.0360 2176 idsvc - ok
16:24:25.0610 2176 [ 9378d57e2b96c0a185d844770ad49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
16:24:25.0626 2176 igfx - ok
16:24:25.0657 2176 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
16:24:25.0672 2176 iirsp - ok
16:24:25.0766 2176 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
16:24:25.0875 2176 IKEEXT - ok
16:24:26.0156 2176 [ 8d7eb1fd498fd0a34c95a298685ec1c7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
16:24:26.0172 2176 IntcAzAudAddService - ok
16:24:26.0234 2176 [ 97469037714070e45194ed318d636401 ] intelide C:\Windows\system32\drivers\intelide.sys
16:24:26.0250 2176 intelide - ok
16:24:26.0328 2176 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:24:26.0328 2176 intelppm - ok
16:24:26.0374 2176 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:24:26.0421 2176 IPBusEnum - ok
16:24:26.0484 2176 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:24:26.0546 2176 IpFilterDriver - ok
16:24:26.0546 2176 IpInIp - ok
16:24:26.0624 2176 [ 40f34f8aba2a015d780e4b09138b6c17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
16:24:26.0686 2176 IPMIDRV - ok
16:24:26.0764 2176 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
16:24:26.0827 2176 IPNAT - ok
16:24:27.0310 2176 [ e6be7a41a28d8f2db174957454d32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:24:27.0451 2176 iPod Service - ok
16:24:27.0513 2176 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:24:27.0529 2176 IRENUM - ok
16:24:27.0576 2176 [ 350fca7e73cf65bcef43fae1e4e91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:24:27.0591 2176 isapnp - ok
16:24:27.0669 2176 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:24:27.0669 2176 iScsiPrt - ok
16:24:27.0700 2176 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
16:24:27.0716 2176 iteatapi - ok
16:24:27.0747 2176 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
16:24:27.0778 2176 iteraid - ok
16:24:27.0841 2176 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:24:27.0841 2176 kbdclass - ok
16:24:27.0872 2176 [ ede59ec70e25c24581add1fbec7325f7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:24:27.0903 2176 kbdhid - ok
16:24:27.0981 2176 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
16:24:28.0012 2176 KeyIso - ok
16:24:28.0090 2176 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:24:28.0231 2176 KSecDD - ok
16:24:28.0340 2176 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:24:28.0356 2176 KtmRm - ok
16:24:28.0387 2176 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\System32\srvsvc.dll
16:24:28.0387 2176 LanmanServer - ok
16:24:28.0496 2176 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:24:28.0512 2176 LanmanWorkstation - ok
16:24:28.0683 2176 [ 559c9b7800fac92fc515cd0003d7c631 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
16:24:28.0683 2176 LightScribeService - ok
16:24:28.0730 2176 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:24:28.0730 2176 lltdio - ok
16:24:28.0855 2176 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:24:28.0933 2176 lltdsvc - ok
16:24:28.0980 2176 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:24:28.0980 2176 lmhosts - ok
16:24:29.0011 2176 [ a2262fb9f28935e862b4db46438c80d2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
16:24:29.0042 2176 LSI_FC - ok
16:24:29.0089 2176 [ 30d73327d390f72a62f32c103daf1d6d ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:24:29.0198 2176 LSI_SAS - ok
16:24:29.0229 2176 [ e1e36fefd45849a95f1ab81de0159fe3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
16:24:29.0260 2176 LSI_SCSI - ok
16:24:29.0307 2176 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
16:24:29.0385 2176 luafv - ok
16:24:29.0448 2176 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:24:29.0541 2176 Mcx2Svc - ok
16:24:29.0572 2176 [ d153b14fc6598eae8422a2037553adce ] megasas C:\Windows\system32\drivers\megasas.sys
16:24:29.0588 2176 megasas - ok
16:24:29.0650 2176 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
16:24:29.0650 2176 MMCSS - ok
16:24:29.0728 2176 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
16:24:29.0775 2176 Modem - ok
16:24:29.0853 2176 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:24:29.0853 2176 monitor - ok
16:24:29.0869 2176 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:24:29.0869 2176 mouclass - ok
16:24:29.0884 2176 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:24:29.0931 2176 mouhid - ok
16:24:29.0994 2176 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
16:24:30.0009 2176 MountMgr - ok
16:24:30.0103 2176 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:24:30.0181 2176 MpFilter - ok
16:24:30.0228 2176 [ 583a41f26278d9e0ea548163d6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
16:24:30.0243 2176 mpio - ok
16:24:30.0524 2176 [ a69630d039c38018689190234f866d77 ] MpKslb4ee2db1 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F60B0F39-F589-4717-B28F-1C9D9E76CBB5}\MpKslb4ee2db1.sys
16:24:30.0524 2176 MpKslb4ee2db1 - ok
16:24:30.0633 2176 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:24:30.0664 2176 mpsdrv - ok
16:24:30.0742 2176 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
16:24:30.0774 2176 Mraid35x - ok
16:24:30.0820 2176 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:24:30.0820 2176 MRxDAV - ok
16:24:30.0883 2176 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:24:30.0883 2176 mrxsmb - ok
16:24:30.0945 2176 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:24:30.0976 2176 mrxsmb10 - ok
16:24:30.0992 2176 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:24:30.0992 2176 mrxsmb20 - ok
16:24:31.0054 2176 [ 742aed7939e734c36b7e8d6228ce26b7 ] msahci C:\Windows\system32\drivers\msahci.sys
16:24:31.0070 2176 msahci - ok
16:24:31.0101 2176 [ 3fc82a2ae4cc149165a94699183d3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:24:31.0101 2176 msdsm - ok
16:24:31.0210 2176 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
16:24:32.0427 2176 MSDTC - ok
16:24:32.0505 2176 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:24:32.0568 2176 Msfs - ok
16:24:32.0646 2176 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:24:32.0646 2176 msisadrv - ok
16:24:32.0724 2176 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:24:32.0770 2176 MSiSCSI - ok
16:24:32.0786 2176 msiserver - ok
16:24:32.0864 2176 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:24:32.0895 2176 MSKSSRV - ok
16:24:32.0989 2176 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:24:33.0004 2176 MsMpSvc - ok
16:24:33.0067 2176 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:24:33.0098 2176 MSPCLOCK - ok
16:24:33.0160 2176 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:24:33.0160 2176 MSPQM - ok
16:24:33.0301 2176 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:24:33.0332 2176 MsRPC - ok
16:24:33.0394 2176 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:24:33.0394 2176 mssmbios - ok
16:24:33.0504 2176 MSSQL$MSSMLBIZ - ok
16:24:33.0566 2176 [ 1d89eb4e2a99cabd4e81225f4f4c4b25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
16:24:33.0582 2176 MSSQLServerADHelper - ok
16:24:33.0660 2176 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:24:33.0706 2176 MSTEE - ok
16:24:33.0753 2176 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
16:24:33.0769 2176 Mup - ok
16:24:33.0831 2176 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
16:24:33.0847 2176 napagent - ok
16:24:33.0940 2176 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:24:33.0940 2176 NativeWifiP - ok
16:24:34.0081 2176 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:24:34.0128 2176 NDIS - ok
16:24:34.0284 2176 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:24:34.0315 2176 NdisTapi - ok
16:24:34.0377 2176 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:24:34.0377 2176 Ndisuio - ok
16:24:34.0440 2176 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:24:34.0471 2176 NdisWan - ok
16:24:34.0549 2176 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:24:34.0596 2176 NDProxy - ok
16:24:34.0674 2176 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:24:34.0736 2176 NetBIOS - ok
16:24:34.0783 2176 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
16:24:34.0892 2176 netbt - ok
16:24:34.0939 2176 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
16:24:34.0939 2176 Netlogon - ok
16:24:35.0001 2176 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
16:24:35.0032 2176 Netman - ok
16:24:35.0095 2176 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
16:24:35.0095 2176 netprofm - ok
16:24:35.0157 2176 [ d6c4e4a39a36029ac0813d476fbd0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:24:35.0251 2176 NetTcpPortSharing - ok
16:24:35.0625 2176 [ a15f219208843a5a210c8cb391384453 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
16:24:36.0140 2176 NETw3v32 - ok
16:24:36.0405 2176 [ 1d73499a6664b4da05d750ff83fdb274 ] NETw4v32 C:\Windows\system32\DRIVERS\NETw4v32.sys
16:24:36.0795 2176 NETw4v32 - ok
16:24:36.0873 2176 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
16:24:36.0873 2176 nfrd960 - ok
16:24:36.0904 2176 [ b52f26bade7d7e4a79706e3fd91834cd ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:24:36.0920 2176 NisDrv - ok
16:24:36.0967 2176 [ 290c0d4c4889398797f8df3be00b9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:24:36.0998 2176 NisSrv - ok
16:24:37.0076 2176 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:24:37.0092 2176 NlaSvc - ok
16:24:37.0154 2176 [ 357ddb51e03cae598c096d95497373d0 ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
16:24:37.0294 2176 nmwcd - ok
16:24:37.0341 2176 [ 7cd443f9d36c80e152fadb274089577a ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
16:24:37.0372 2176 nmwcdc - ok
16:24:37.0404 2176 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:24:37.0450 2176 Npfs - ok
16:24:37.0513 2176 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
16:24:37.0513 2176 nsi - ok
16:24:37.0560 2176 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:24:37.0591 2176 nsiproxy - ok
16:24:37.0747 2176 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:24:37.0887 2176 Ntfs - ok
16:24:37.0934 2176 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
16:24:37.0981 2176 ntrigdigi - ok
16:24:38.0028 2176 [ cf7e041663119e09d2e118521ada9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
16:24:38.0059 2176 NuidFltr - ok
16:24:38.0121 2176 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
16:24:38.0137 2176 Null - ok
16:24:38.0168 2176 [ e69e946f80c1c31c53003bfbf50cbb7c ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:24:38.0199 2176 nvraid - ok
16:24:38.0230 2176 [ 9e0ba19a28c498a6d323d065db76dffc ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:24:38.0246 2176 nvstor - ok
16:24:38.0277 2176 [ 07c186427eb8fcc3d8d7927187f260f7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:24:38.0293 2176 nv_agp - ok
16:24:38.0293 2176 NwlnkFlt - ok
16:24:38.0308 2176 NwlnkFwd - ok
16:24:38.0449 2176 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:24:38.0496 2176 odserv - ok
16:24:38.0574 2176 [ 6f310e890d46e246e0e261a63d9b36b4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:24:38.0574 2176 ohci1394 - ok
16:24:38.0652 2176 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:24:38.0667 2176 ose - ok
16:24:38.0761 2176 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
16:24:38.0870 2176 p2pimsvc - ok
16:24:38.0886 2176 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
16:24:38.0886 2176 p2psvc - ok
16:24:38.0932 2176 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
16:24:38.0932 2176 Parport - ok
16:24:38.0964 2176 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:24:38.0979 2176 partmgr - ok
16:24:39.0010 2176 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
16:24:39.0042 2176 Parvdm - ok
16:24:39.0135 2176 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
16:24:39.0135 2176 PcaSvc - ok
16:24:39.0213 2176 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfd.sys
16:24:39.0260 2176 pccsmcfd - ok
16:24:39.0338 2176 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
16:24:39.0338 2176 pci - ok
16:24:39.0369 2176 [ 1636d43f10416aeb483bc6001097b26c ] pciide C:\Windows\system32\DRIVERS\pciide.sys
16:24:39.0369 2176 pciide - ok
16:24:39.0463 2176 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
16:24:39.0478 2176 pcmcia - ok
16:24:39.0525 2176 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:24:39.0525 2176 PEAUTH - ok
16:24:39.0650 2176 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
16:24:39.0868 2176 pla - ok
16:24:39.0915 2176 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:24:40.0336 2176 PlugPlay - ok
16:24:40.0368 2176 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
16:24:40.0368 2176 PNRPAutoReg - ok
16:24:40.0430 2176 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
16:24:40.0446 2176 PNRPsvc - ok
16:24:40.0539 2176 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:24:40.0602 2176 PolicyAgent - ok
16:24:40.0695 2176 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:24:40.0742 2176 PptpMiniport - ok
16:24:40.0773 2176 [ 0e3cef5d28b40cf273281d620c50700a ] Processor C:\Windows\system32\drivers\processr.sys
16:24:40.0804 2176 Processor - ok
16:24:40.0867 2176 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
16:24:40.0867 2176 ProfSvc - ok
16:24:40.0867 2176 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
16:24:40.0867 2176 ProtectedStorage - ok
16:24:40.0929 2176 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
16:24:40.0992 2176 PSched - ok
16:24:41.0070 2176 [ e42e3433dbb4cffe8fdd91eab29aea8e ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
16:24:41.0070 2176 PxHelp20 - ok
16:24:41.0194 2176 [ ccdac889326317792480c0a67156a1ec ] ql2300 C:\Windows\system32\drivers\ql2300.sys
16:24:41.0397 2176 ql2300 - ok
16:24:41.0444 2176 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
16:24:41.0475 2176 ql40xx - ok
16:24:41.0538 2176 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
16:24:41.0553 2176 QWAVE - ok
16:24:41.0631 2176 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:24:41.0662 2176 QWAVEdrv - ok
16:24:41.0865 2176 [ 6b6f0a77365667912360ff1d5e984f25 ] RapportCerberus_34302 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\34302\RapportCerberus32_34302.sys
16:24:41.0865 2176 RapportCerberus_34302 - ok
16:24:41.0974 2176 [ a5a800faa8ab5f7f19743cd60cc1cbed ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
16:24:41.0974 2176 RapportEI - ok
16:24:42.0115 2176 [ 35199ec35edc7dcba71fda711dfb05c0 ] RapportIaso c:\programdata\trusteer\rapport\store\exts\rapportms\39624\rapportiaso.sys
16:24:42.0115 2176 RapportIaso - ok
16:24:42.0162 2176 [ e5adfe497baf93eac2be20a58c40c874 ] RapportKELL C:\Windows\system32\Drivers\RapportKELL.sys
16:24:42.0162 2176 RapportKELL - ok
16:24:42.0614 2176 [ c862053be4168c0bb6191af76b9fc878 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
16:24:42.0645 2176 RapportMgmtService - ok
16:24:42.0692 2176 [ fe69d9bc32dccb4b49885070d6518275 ] RapportPG C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
16:24:42.0692 2176 RapportPG - ok
16:24:42.0739 2176 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:24:42.0754 2176 RasAcd - ok
16:24:42.0832 2176 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
16:24:42.0832 2176 RasAuto - ok
16:24:42.0910 2176 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:24:43.0004 2176 Rasl2tp - ok
16:24:43.0051 2176 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
16:24:43.0066 2176 RasMan - ok
16:24:43.0113 2176 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:24:43.0144 2176 RasPppoe - ok
16:24:43.0176 2176 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:24:43.0238 2176 RasSstp - ok
16:24:43.0269 2176 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:24:43.0410 2176 rdbss - ok
16:24:43.0488 2176 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:24:43.0503 2176 RDPCDD - ok
16:24:43.0581 2176 [ e8bd98d46f2ed77132ba927fccb47d8b ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
16:24:43.0628 2176 rdpdr - ok
16:24:43.0644 2176 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:24:43.0659 2176 RDPENCDD - ok
16:24:43.0706 2176 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:24:43.0815 2176 RDPWD - ok
16:24:43.0878 2176 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:24:43.0878 2176 RemoteAccess - ok
16:24:43.0924 2176 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:24:43.0924 2176 RemoteRegistry - ok
16:24:43.0971 2176 [ 355aac141b214bef1dbc1483afd9bd50 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
16:24:44.0018 2176 rimmptsk - ok
16:24:44.0080 2176 [ a4216c71dd4f60b26418ccfd99cd0815 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
16:24:44.0127 2176 rimsptsk - ok
16:24:44.0143 2176 [ c663af77e2f4eabf8eb08b388d2f1f36 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
16:24:44.0205 2176 rismxdp - ok
16:24:44.0626 2176 [ 08fb7d968805001c7adcbb14b0651fa2 ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
16:24:44.0970 2176 RoxMediaDB9 - ok
16:24:45.0048 2176 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
16:24:45.0048 2176 RpcLocator - ok
16:24:45.0219 2176 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
16:24:45.0219 2176 RpcSs - ok
16:24:45.0266 2176 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:24:45.0266 2176 rspndr - ok
16:24:45.0438 2176 [ 71b7026d61293c1e91145bdad11c53bf ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
16:24:45.0500 2176 RTL8169 - ok
16:24:45.0531 2176 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
16:24:45.0531 2176 SamSs - ok
16:24:45.0609 2176 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:24:45.0656 2176 sbp2port - ok
16:24:45.0765 2176 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:24:45.0765 2176 SCardSvr - ok
16:24:45.0890 2176 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
16:24:45.0968 2176 Schedule - ok
16:24:46.0015 2176 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
16:24:46.0015 2176 SCPolicySvc - ok
16:24:46.0077 2176 [ 8f36b54688c31eed4580129040c6a3d3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:24:46.0140 2176 sdbus - ok
16:24:46.0202 2176 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:24:46.0202 2176 SDRSVC - ok
16:24:46.0233 2176 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:24:46.0233 2176 secdrv - ok
16:24:46.0296 2176 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
16:24:46.0296 2176 seclogon - ok
16:24:46.0420 2176 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\system32\sens.dll
16:24:46.0436 2176 SENS - ok
16:24:46.0467 2176 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
16:24:46.0483 2176 Serenum - ok
16:24:46.0530 2176 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
16:24:46.0576 2176 Serial - ok
16:24:46.0639 2176 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
16:24:46.0686 2176 sermouse - ok
16:24:46.0966 2176 [ 8988d1f32f56b3cd3f0f6c39f8a91a98 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
16:24:46.0982 2176 ServiceLayer - ok
16:24:47.0107 2176 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
16:24:47.0122 2176 SessionEnv - ok
16:24:47.0154 2176 [ 103b79418da647736ee95645f305f68a ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:24:47.0185 2176 sffdisk - ok
16:24:47.0232 2176 [ 8fd08a310645fe872eeec6e08c6bf3ee ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:24:47.0278 2176 sffp_mmc - ok
16:24:47.0341 2176 [ 9cfa05fcfcb7124e69cfc812b72f9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:24:47.0419 2176 sffp_sd - ok
16:24:47.0481 2176 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
16:24:47.0512 2176 sfloppy - ok
16:24:47.0575 2176 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:24:47.0575 2176 ShellHWDetection - ok
16:24:47.0606 2176 [ d2a595d6eebeeaf4334f8e50efbc9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
16:24:47.0606 2176 sisagp - ok
16:24:47.0637 2176 [ cedd6f4e7d84e9f98b34b3fe988373aa ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
16:24:47.0637 2176 SiSRaid2 - ok
16:24:47.0668 2176 [ df843c528c4f69d12ce41ce462e973a7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
16:24:47.0684 2176 SiSRaid4 - ok
16:24:48.0058 2176 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
16:24:48.0214 2176 slsvc - ok
16:24:48.0246 2176 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
16:24:48.0246 2176 SLUINotify - ok
16:24:48.0277 2176 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:24:48.0339 2176 Smb - ok
16:24:48.0542 2176 [ 63b3b77bdb67ee674771c0e6fb96da9e ] smserial C:\Windows\system32\DRIVERS\smserial.sys
16:24:48.0682 2176 smserial - ok
16:24:48.0729 2176 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:24:48.0729 2176 SNMPTRAP - ok
16:24:48.0776 2176 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
16:24:48.0776 2176 spldr - ok
16:24:48.0823 2176 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
16:24:48.0838 2176 Spooler - ok
16:24:48.0885 2176 [ 86ebd8b1f23e743aad21f4d5b4d40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
16:24:48.0885 2176 SQLBrowser - ok
16:24:48.0932 2176 [ d89083c4eb02daca8f944b0e05e57f9d ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
16:24:48.0948 2176 SQLWriter - ok
16:24:49.0010 2176 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:24:49.0010 2176 srv - ok
16:24:49.0057 2176 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:24:49.0057 2176 srv2 - ok
16:24:49.0072 2176 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:24:49.0072 2176 srvnet - ok
16:24:49.0166 2176 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:24:49.0166 2176 SSDPSRV - ok
16:24:49.0228 2176 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:24:49.0228 2176 SstpSvc - ok
16:24:49.0306 2176 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
16:24:49.0338 2176 stisvc - ok
16:24:49.0494 2176 [ a9a23c8af361f7a93fd632e91a8c346f ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:24:49.0587 2176 stllssvr - ok
16:24:49.0618 2176 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:24:49.0618 2176 swenum - ok
16:24:49.0665 2176 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
16:24:49.0681 2176 swprv - ok
16:24:49.0728 2176 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
16:24:49.0743 2176 Symc8xx - ok
16:24:49.0759 2176 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
16:24:49.0774 2176 Sym_hi - ok
16:24:49.0790 2176 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
16:24:49.0806 2176 Sym_u3 - ok
16:24:49.0868 2176 [ 8327106d1c93e9a7b98e63b9fcc24bb7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:24:49.0868 2176 SynTP - ok
16:24:49.0930 2176 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
16:24:49.0946 2176 SysMain - ok
16:24:49.0993 2176 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:24:49.0993 2176 TabletInputService - ok
16:24:50.0024 2176 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:24:50.0040 2176 TapiSrv - ok
16:24:50.0086 2176 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
16:24:50.0086 2176 TBS - ok
16:24:50.0180 2176 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:24:50.0211 2176 Tcpip - ok
16:24:50.0258 2176 [ ee7e10bed85c312c1d5d30c435bdda9f ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
16:24:50.0258 2176 Tcpip6 - ok
16:24:50.0289 2176 [ 2c2d4cff5e09c73908f9b5af49a51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:24:50.0289 2176 tcpipreg - ok
16:24:50.0352 2176 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:24:50.0383 2176 TDPIPE - ok
16:24:50.0554 2176 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:24:50.0586 2176 TDTCP - ok
16:24:50.0617 2176 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:24:50.0664 2176 tdx - ok
16:24:50.0679 2176 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:24:50.0679 2176 TermDD - ok
16:24:50.0710 2176 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
16:24:50.0757 2176 TermService - ok
16:24:50.0788 2176 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
16:24:50.0804 2176 Themes - ok
16:24:50.0820 2176 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
16:24:50.0820 2176 THREADORDER - ok
16:24:50.0882 2176 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
16:24:50.0882 2176 TrkWks - ok
16:24:50.0944 2176 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:24:50.0944 2176 TrustedInstaller - ok
16:24:51.0007 2176 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:24:51.0054 2176 tssecsrv - ok
16:24:51.0163 2176 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
16:24:51.0178 2176 tunmp - ok
16:24:51.0210 2176 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:24:51.0241 2176 tunnel - ok
16:24:51.0303 2176 [ c3ade15414120033a36c0f293d4a4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
16:24:51.0319 2176 uagp35 - ok
16:24:51.0366 2176 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:24:51.0506 2176 udfs - ok
16:24:51.0568 2176 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:24:51.0568 2176 UI0Detect - ok
16:24:51.0600 2176 [ 75e6890ebfce0841d3291b02e7a8bdb0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:24:51.0600 2176 uliagpkx - ok
16:24:51.0631 2176 [ 3cd4ea35a6221b85dcc25daa46313f8d ] uliahci C:\Windows\system32\drivers\uliahci.sys
16:24:51.0646 2176 uliahci - ok
16:24:51.0662 2176 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
16:24:51.0678 2176 UlSata - ok
16:24:51.0709 2176 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
16:24:51.0709 2176 ulsata2 - ok
16:24:51.0756 2176 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:24:51.0802 2176 umbus - ok
16:24:51.0865 2176 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
16:24:51.0865 2176 upnphost - ok
16:24:51.0943 2176 [ 15629e4d65f97ab5432d6d9597cf6a33 ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
16:24:51.0974 2176 upperdev - ok
16:24:52.0052 2176 [ eafe1e00739afe6c51487a050e772e17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
16:24:52.0130 2176 USBAAPL - ok
16:24:52.0192 2176 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:24:52.0270 2176 usbccgp - ok
16:24:52.0317 2176 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:24:52.0380 2176 usbcir - ok
16:24:52.0504 2176 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:24:52.0567 2176 usbehci - ok
16:24:52.0629 2176 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:24:52.0660 2176 usbhub - ok
16:24:52.0692 2176 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:24:52.0707 2176 usbohci - ok
16:24:52.0723 2176 [ b51e52acf758be00ef3a58ea452fe360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
16:24:52.0785 2176 usbprint - ok
16:24:52.0832 2176 [ d575246188f63de0accf6eac5fb59e6a ] usbser C:\Windows\system32\drivers\usbser.sys
16:24:52.0863 2176 usbser - ok
16:24:52.0894 2176 [ 5c17e6a11aa8be53f79fd364ba19f0ce ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
16:24:52.0910 2176 UsbserFilt - ok
16:24:52.0941 2176 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:24:53.0004 2176 USBSTOR - ok
16:24:53.0050 2176 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:24:53.0082 2176 usbuhci - ok
16:24:53.0144 2176 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
16:24:53.0191 2176 usbvideo - ok
16:24:53.0206 2176 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
16:24:53.0300 2176 UxSms - ok
16:24:53.0378 2176 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
16:24:53.0394 2176 vds - ok
16:24:53.0550 2176 [ 7d92be0028ecdedec74617009084b5ef ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:24:53.0581 2176 vga - ok
16:24:53.0643 2176 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
16:24:53.0674 2176 VgaSave - ok
16:24:53.0706 2176 [ 045d9961e591cf0674a920b6ba3ba5cb ] viaagp C:\Windows\system32\drivers\viaagp.sys
16:24:53.0721 2176 viaagp - ok
16:24:53.0752 2176 [ 56a4de5f02f2e88182b0981119b4dd98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
16:24:53.0784 2176 ViaC7 - ok
16:24:53.0815 2176 [ fd2e3175fcada350c7ab4521dca187ec ] viaide C:\Windows\system32\drivers\viaide.sys
16:24:53.0830 2176 viaide - ok
16:24:53.0862 2176 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:24:53.0862 2176 volmgr - ok
16:24:53.0893 2176 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:24:53.0908 2176 volmgrx - ok
16:24:53.0940 2176 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:24:53.0940 2176 volsnap - ok
16:24:53.0986 2176 [ d984439746d42b30fc65a4c3546c6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
16:24:54.0002 2176 vsmraid - ok
16:24:54.0064 2176 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
16:24:54.0111 2176 VSS - ok
16:24:54.0142 2176 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
16:24:54.0142 2176 W32Time - ok
16:24:54.0174 2176 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
16:24:54.0189 2176 WacomPen - ok
16:24:54.0252 2176 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
16:24:54.0314 2176 Wanarp - ok
16:24:54.0314 2176 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:24:54.0314 2176 Wanarpv6 - ok
16:24:54.0501 2176 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:24:54.0501 2176 wcncsvc - ok
16:24:54.0532 2176 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:24:54.0548 2176 WcsPlugInService - ok
16:24:54.0548 2176 [ afc5ad65b991c1e205cf25cfdbf7a6f4 ] Wd C:\Windows\system32\drivers\wd.sys
16:24:54.0564 2176 Wd - ok
16:24:54.0626 2176 [ b6f0a7ad6d4bd325fbcd8bac96cd8d96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:24:54.0626 2176 Wdf01000 - ok
16:24:54.0688 2176 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:24:54.0704 2176 WdiServiceHost - ok
16:24:54.0735 2176 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:24:54.0735 2176 WdiSystemHost - ok
16:24:54.0860 2176 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
16:24:54.0891 2176 WebClient - ok
16:24:54.0922 2176 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:24:54.0922 2176 Wecsvc - ok
16:24:54.0985 2176 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:24:54.0985 2176 wercplsupport - ok
16:24:55.0032 2176 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
16:24:55.0032 2176 WerSvc - ok
16:24:55.0110 2176 [ 5c7bdcf5864db00323fe2d90fa26a8a2 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
16:24:55.0172 2176 winachsf - ok
16:24:55.0172 2176 WinHttpAutoProxySvc - ok
16:24:55.0250 2176 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:24:55.0281 2176 Winmgmt - ok
16:24:55.0375 2176 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
16:24:55.0422 2176 WinRM - ok
16:24:55.0484 2176 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
16:24:55.0500 2176 Wlansvc - ok
16:24:55.0578 2176 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:24:55.0578 2176 WmiAcpi - ok
16:24:55.0671 2176 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:24:55.0702 2176 wmiApSrv - ok
16:24:55.0952 2176 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
16:24:55.0983 2176 WMPNetworkSvc - ok
16:24:56.0014 2176 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:24:56.0014 2176 WPCSvc - ok
16:24:56.0061 2176 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:24:56.0061 2176 WPDBusEnum - ok
16:24:56.0108 2176 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
16:24:56.0155 2176 WpdUsb - ok
16:24:56.0638 2176 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:24:56.0701 2176 WPFFontCache_v0400 - ok
16:24:56.0732 2176 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:24:56.0763 2176 ws2ifsl - ok
16:24:56.0763 2176 WSearch - ok
16:24:57.0013 2176 [ 3cf81f104137457a7f32c274709635be ] wsnm C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
16:24:57.0044 2176 wsnm - ok
16:24:57.0122 2176 [ ac13cb789d93412106b0fb6c7eb2bcb6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:24:57.0200 2176 WUDFRd - ok
16:24:57.0231 2176 [ 575a4190d989f64732119e4114045a4f ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:24:57.0247 2176 wudfsvc - ok
16:24:57.0262 2176 ================ Scan global ===============================
16:24:57.0309 2176 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
16:24:57.0418 2176 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:24:57.0543 2176 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
16:24:57.0715 2176 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
16:24:57.0715 2176 [Global] - ok
16:24:57.0715 2176 ================ Scan MBR ==================================
16:24:57.0762 2176 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
16:25:00.0663 2176 \Device\Harddisk0\DR0 - ok
16:25:00.0663 2176 ================ Scan VBR ==================================
16:25:00.0710 2176 Boot (0x1200) (043f64bb179e7843b94bd8ecd04aa326) \Device\Harddisk0\DR0\Partition1
16:25:00.0726 2176 \Device\Harddisk0\DR0\Partition1 - ok
16:25:00.0757 2176 Boot (0x1200) (7891f6fcf1d0476f4073887967761350) \Device\Harddisk0\DR0\Partition2
16:25:00.0757 2176 \Device\Harddisk0\DR0\Partition2 - ok
16:25:00.0757 2176 ============================================================
16:25:00.0757 2176 Scan finished
16:25:00.0757 2176 ============================================================
16:25:00.0772 0636 Detected object count: 0
16:25:00.0772 0636 Actual detected object count: 0
16:38:32.0134 3516 Deinitialize success

#7 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 19 August 2012 - 01:06 PM

Here is the aswMBR. But was I meant to click on "Fix MBR"? It came up with a warning message so I thought I'd check with you first.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-19 16:52:51
-----------------------------
16:52:51.956 OS Version: Windows 6.0.6002 Service Pack 2
16:52:51.956 Number of processors: 2 586 0xF0D
16:52:51.956 ComputerName: USER-PC UserName: user
16:52:54.391 Initialize success
16:53:11.972 AVAST engine defs: 12081900
16:53:53.468 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
16:53:53.468 Disk 0 Vendor: WDC_WD25 01.0 Size: 238475MB BusType: 3
16:53:53.546 Disk 0 MBR read successfully
16:53:53.561 Disk 0 MBR scan
16:53:53.561 Disk 0 unknown MBR code
16:53:53.577 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 229993 MB offset 63
16:53:53.655 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 8479 MB offset 471025800
16:53:53.686 Disk 0 scanning sectors +488392065
16:53:53.780 Disk 0 scanning C:\Windows\system32\drivers
16:54:47.602 Service scanning
16:55:28.692 Service MpKslfa1b627c c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F60B0F39-F589-4717-B28F-1C9D9E76CBB5}\MpKslfa1b627c.sys **LOCKED** 32
16:56:45.588 Modules scanning
16:57:36.490 Disk 0 trace - called modules:
16:57:36.537 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll iaStor.sys
16:57:36.553 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86774aa0]
16:57:36.553 3 CLASSPNP.SYS[88bb58b3] -> nt!IofCallDriver -> [0x84c60f08]
16:57:36.553 5 acpi.sys[806a06bc] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x84c70028]
16:57:56.115 AVAST engine scan C:\Windows
16:58:12.698 AVAST engine scan C:\Windows\system32
17:07:54.774 AVAST engine scan C:\Windows\system32\drivers
17:08:25.085 AVAST engine scan C:\Users\user
17:10:33.145 File: C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D54XO3O3\InstallSecurityCentral_477[1].exe **INFECTED** Win32:Agent-ANAX [Trj]
17:48:00.880 AVAST engine scan C:\ProgramData
17:55:00.543 Scan finished successfully
18:52:03.419 Disk 0 MBR has been saved successfully to "C:\Users\user\Desktop\MBR.dat"
18:52:03.434 The log file has been saved successfully to "C:\Users\user\Desktop\aswMBR.txt"

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:43 PM

Posted 19 August 2012 - 10:06 PM

Do not click on FIXMBR?

I will wait for ESET logs?

#9 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 21 August 2012 - 05:59 PM

Here is the ESET log:

C:\ProgramData\cY1532y3.exe a variant of Win32/Kryptik.AKOF trojan cleaned by deleting - quarantined
C:\Users\user\0.6111735280644236.exe a variant of Win32/Kryptik.AKOF trojan cleaned by deleting - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2IB04SUQ\20[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2IB04SUQ\uk[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\D54XO3O3\20[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GTAEW2MF\index[1].html HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\HRA54OO2\20[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QMYV3XBZ\js[1].php JS/Kryptik.L.Gen trojan cleaned by deleting - quarantined

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:43 PM

Posted 21 August 2012 - 06:01 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#11 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 23 August 2012 - 03:04 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by user (administrator) on 23-08-2012 at 21:01:11
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 50370
"network.proxy.no_proxies_on", "*.local"

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Wireless WiFi Link 4965AGN = Wireless Network Connection (Connected)
Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0) = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : user-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Wireless WiFi Link 4965AGN
Physical Address. . . . . . . . . : 00-13-E8-B3-4F-45
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::c041:ba03:4fc2:3a83%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, August 23, 2012 8:34:48 PM
Lease Expires . . . . . . . . . . : Friday, August 24, 2012 8:34:47 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 268440552
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-84-6D-17-00-1B-24-AD-16-36
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0)
Physical Address. . . . . . . . . : 00-1B-24-AD-16-36
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{893A03BF-149A-46B7-9D54-472E9F69ED31}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{EC302945-AED3-4D1F-96C8-3D97C28F4FC1}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: www.routerlogin.com
Address: 192.168.0.1

Name: google.com
Addresses: 2a00:1450:4009:801::1007
173.194.34.98
173.194.34.99
173.194.34.100
173.194.34.101
173.194.34.102
173.194.34.103
173.194.34.104
173.194.34.105
173.194.34.110
173.194.34.96
173.194.34.97



Pinging google.com [173.194.34.97] with 32 bytes of data:

Reply from 173.194.34.97: bytes=32 time=15ms TTL=56

Reply from 173.194.34.97: bytes=32 time=14ms TTL=56



Ping statistics for 173.194.34.97:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 14ms, Maximum = 15ms, Average = 14ms

Server: www.routerlogin.com
Address: 192.168.0.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=288ms TTL=47

Reply from 98.138.253.109: bytes=32 time=306ms TTL=47



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 288ms, Maximum = 306ms, Average = 297ms

Server: www.routerlogin.com
Address: 192.168.0.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 13 e8 b3 4f 45 ...... Intel® Wireless WiFi Link 4965AGN
8 ...00 1b 24 ad 16 36 ...... Realtek RTL8101 Family PCI-E Fast Ethernet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
16 ...00 00 00 00 00 00 00 e0 isatap.{893A03BF-149A-46B7-9D54-472E9F69ED31}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 isatap.{EC302945-AED3-4D1F-96C8-3D97C28F4FC1}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.5 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.5 281
192.168.0.5 255.255.255.255 On-link 192.168.0.5 281
192.168.0.255 255.255.255.255 On-link 192.168.0.5 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.5 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.5 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
9 281 fe80::/64 On-link
9 281 fe80::c041:ba03:4fc2:3a83/128
On-link
1 306 ff00::/8 On-link
9 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/21/2012 09:20:05 PM) (Source: Application Error) (User: )
Description: Faulting application Explorer.EXE, version 6.0.6002.18005, time stamp 0x49e01da5, faulting module ntdll.dll, version 6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0x80000003, fault offset 0x0004878e,
process id 0x7ac, application start time 0xExplorer.EXE0.

Error: (08/21/2012 09:19:39 PM) (Source: Application Error) (User: )
Description: Faulting application Explorer.EXE, version 6.0.6002.18005, time stamp 0x49e01da5, faulting module QuickTime.qts, version 7.72.80.56, time stamp 0x4f8f8aa7, exception code 0xc0000005, fault offset 0x008cbe42,
process id 0x7ac, application start time 0xExplorer.EXE0.

Error: (08/20/2012 08:35:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 88102641

Error: (08/20/2012 08:35:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 88102641

Error: (08/20/2012 08:35:34 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/20/2012 08:35:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 88099115

Error: (08/20/2012 08:35:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 88099115

Error: (08/20/2012 08:35:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/20/2012 08:35:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 88097742

Error: (08/20/2012 08:35:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 88097742


System errors:
=============
Error: (08/23/2012 08:57:59 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.131.2322.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (08/23/2012 08:35:07 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (08/23/2012 08:35:07 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (08/23/2012 08:35:07 PM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (08/23/2012 08:35:07 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (08/23/2012 09:13:36 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.131.2322.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (08/23/2012 09:03:30 AM) (Source: Service Control Manager) (User: )
Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86

Error: (08/23/2012 09:01:13 AM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (08/23/2012 09:01:13 AM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (08/23/2012 09:01:13 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058


Microsoft Office Sessions:
=========================
Error: (03/02/2008 02:51:05 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 13, Application Name: Microsoft Office OneNote, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
AAC Decoder (Version: 7.1.0)
Acrobat.com (Version: 1.7.186)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.3.300.271)
Adobe Reader 9.5.0 (Version: 9.5.0)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AutoUpdate (Version: 1.1)
Bonjour (Version: 3.0.0.10)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1)
Camera Window DS (Version: 5.3)
Camera Window DVC (Version: 5.4.4)
Camera Window DVC (Version: 6.0)
Camera Window MC (Version: 6.0)
Canon Camera Access Library (Version: 8.0.0.21)
Canon Camera Support Core Library (Version: 7.3.0.4)
Canon Camera Window DC_DV 5 for ZoomBrowser EX (Version: 5.4.4)
Canon Camera Window DC_DV 6 for ZoomBrowser EX (Version: 6.0)
Canon Camera Window DSLR 5 for ZoomBrowser EX (Version: 5.3)
Canon Camera Window MC 6 for ZoomBrowser EX (Version: 6.0)
Canon MovieEdit Task for ZoomBrowser EX (Version: 2.1.0.20)
Canon PhotoRecord (Version: 02.02.03002)
Canon RAW Image Task for ZoomBrowser EX (Version: 2.2)
Canon Utilities PhotoStitch 3.1 (Version: 3.1.16)
Canon ZoomBrowser EX (E) (Version: 5.05.0000)
DivX Codec (Version: 6.9.1)
DivX Converter (Version: 7.1.0)
DivX Player (Version: 7.2.0)
DivX Plus DirectShow Filters
DivX Plus Web Player (Version: 2.0.0)
DivX Version Checker (Version: 7.1.0.9)
ESET Online Scanner v3
ESU for Microsoft Vista (Version: 2.0.3.1)
FaceDub
ffdshow (remove only)
FLV Player 2.0, build 23 (Version: 2.0, build 23)
GIMP 2.6.8
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer
Google Update Helper (Version: 1.3.21.115)
Google Updater (Version: 2.4.2432.1652)
H.264 Decoder (Version: 1.1.0)
HP Active Support Library (Version: 3.1.9.1)
HP Active Support Library 32 bit components (Version: 1.0.9)
HP Customer Experience Enhancements (Version: 5.1.0.2278)
HP Doc Viewer (Version: 1.01.0005)
HP Easy Setup - Frontend (Version: 5.1.0.2279)
HP Help and Support (Version: 2.0.10.0)
HP Photosmart Essential 2.0 (Version: 2.0)
HP Photosmart Essential2.5 (Version: 1.00.0000)
HP Quick Launch Buttons 6.20 B1 (Version: 6.20 B1)
HP QuickPlay 3.2
HP Total Care Advisor (Version: 1.1.19)
HP Update (Version: 4.000.010.008)
HP User Guides 0057 (Version: 1.03.0000)
HP Wireless Assistant (Version: 3.00 F1)
HPAsset component for HP Active Support Library (Version: 3.0.0.7)
HPNetworkAssistant (Version: 1.1.70)
iCloud (Version: 1.1.0.40)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iPhone Explorer 2.100
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 5 (Version: 1.6.0.50)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
LightScribe 1.4.136.1 (Version: 1.4.136.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
MKV Splitter (Version: 1.0.1)
MobileMe Control Panel (Version: 3.1.8.0)
Motorola SM56 Data Fax Modem
MovieEdit Task (Version: 2.1.0.20)
Mozilla Firefox 7.0.1 (x86 en-US) (Version: 7.0.1)
MSCU for Microsoft Vista (Version: 1.0.1.1)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 6.0 (Version: 6.00.050)
My HP Games (Version: HPLAP0503)
Nokia Connectivity Cable Driver (Version: 7.1.23.0)
Nokia PC Suite (Version: 7.1.40.6)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenOffice.org 3.2 (Version: 3.2.9483)
PC Connectivity Solution (Version: 9.44.0.3)
PHOTOfunSTUDIO 5.2 HD Edition (Version: 5.02.126)
PhotoStitch (Version: 3.1.16)
PSSWCORE (Version: 2.00.5000)
QuickTime (Version: 7.72.80.56)
Rapport (Version: 3.5.1201.94)
RAW Image Task 2.2 (Version: 2.2)
Realtek High Definition Audio Driver (Version: 6.0.1.5384)
Rhapsody
Rhapsody Player Engine (Version: 1.0.604)
Roxio Activation Module (Version: 1.0)
Roxio Creator Audio (Version: 3.4.0)
Roxio Creator Basic v9 (Version: 3.4.0)
Roxio Creator Copy (Version: 3.4.0)
Roxio Creator Data (Version: 3.4.0)
Roxio Creator EasyArchive (Version: 3.4.0)
Roxio Creator Tools (Version: 3.4.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio MyDVD Basic v9 (Version: 9.0.551)
Safari (Version: 5.33.18.5)
SILKYPIX Developer Studio 3.1 SE (Version: 3)
Skype Click to Call (Version: 5.6.8312)
Skype™ 5.5 (Version: 5.5.119)
Spotify (Version: 0.3.12)
Spotify (Version: 0.8.3.222.g317ab79d)
Synaptics Pointing Device Driver (Version: 9.1.11.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VLC media player 1.0.1 (Version: 1.0.1)
VMware View Client (Version: 4.6.0.366101)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Xvid 1.2.1 final uninstall (Version: 1.2)

========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 2037.68 MB
Available physical RAM: 778.36 MB
Total Pagefile: 4316.65 MB
Available Pagefile: 2869.62 MB
Total Virtual: 2047.88 MB
Available Virtual: 1943.5 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:224.6 GB) (Free:103.47 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:8.28 GB) (Free:1.82 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator Guest user


**** End of log ****

#12 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 23 August 2012 - 03:08 PM

Here is FSS:

Farbar Service Scanner Version: 06-08-2012
Ran by user (administrator) on 23-08-2012 at 21:07:00
Running from "C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5LJIUA40"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-06-01 11:10] - [2008-01-19 08:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#13 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 23 August 2012 - 03:20 PM

# AdwCleaner v1.801 - Logfile created 08/23/2012 at 21:10:42
# Updated 14/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : user - USER-PC
# Boot Mode : Normal
# Running from : C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HLUVLWSG\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\Public\Desktop\eBay.lnk
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ClickpotatoliteSA
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Freeze.com

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v7.0.1 (en-US)

-\\ Google Chrome v [Unable to get version]

*************************

AdwCleaner[S1].txt - [1227 octets] - [23/08/2012 21:10:42]

########## EOF - C:\AdwCleaner[S1].txt - [1355 octets] ##########

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:43 PM

Posted 23 August 2012 - 03:24 PM

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache
Repair hosts


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the new FSS log


download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

#15 Trooperzet79

Trooperzet79
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:43 AM

Posted 23 August 2012 - 04:22 PM

Farbar Service Scanner Version: 06-08-2012
Ran by user (administrator) on 23-08-2012 at 22:21:42
Running from "C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HLUVLWSG"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-06-01 11:10] - [2008-01-19 08:34] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users