Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Dreaded Happili Also


  • Please log in to reply
1 reply to this topic

#1 bitterdecay

bitterdecay

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 11 April 2012 - 09:21 PM

i also have the same problem here are my logs


18:49:14.0422 3380 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
18:49:15.0172 3380 ============================================================
18:49:15.0172 3380 Current date / time: 2012/04/11 18:49:15.0172
18:49:15.0172 3380 SystemInfo:
18:49:15.0173 3380
18:49:15.0173 3380 OS Version: 6.1.7601 ServicePack: 1.0
18:49:15.0173 3380 Product type: Workstation
18:49:15.0173 3380 ComputerName: BITTERDECAY-HP
18:49:15.0173 3380 UserName: bitterdecay
18:49:15.0173 3380 Windows directory: C:\Windows
18:49:15.0173 3380 System windows directory: C:\Windows
18:49:15.0173 3380 Running under WOW64
18:49:15.0173 3380 Processor architecture: Intel x64
18:49:15.0173 3380 Number of processors: 2
18:49:15.0173 3380 Page size: 0x1000
18:49:15.0173 3380 Boot type: Normal boot
18:49:15.0173 3380 ============================================================
18:49:29.0959 3380 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:49:30.0041 3380 \Device\Harddisk0\DR0:
18:49:30.0042 3380 MBR used
18:49:30.0042 3380 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:49:30.0042 3380 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55E9D000
18:49:30.0042 3380 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x55ECF800, BlocksNum 0x1676000
18:49:30.0201 3380 Initialize success
18:49:30.0201 3380 ============================================================
18:49:50.0091 9588 ============================================================
18:49:50.0091 9588 Scan started
18:49:50.0091 9588 Mode: Manual; TDLFS;
18:49:50.0091 9588 ============================================================
18:49:51.0862 9588 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
18:49:51.0885 9588 1394ohci - ok
18:49:52.0012 9588 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:49:52.0043 9588 ACPI - ok
18:49:52.0081 9588 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:49:52.0083 9588 AcpiPmi - ok
18:49:52.0163 9588 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
18:49:52.0276 9588 adp94xx - ok
18:49:52.0351 9588 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
18:49:52.0365 9588 adpahci - ok
18:49:52.0533 9588 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
18:49:52.0582 9588 adpu320 - ok
18:49:52.0713 9588 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:49:52.0716 9588 AeLookupSvc - ok
18:49:53.0013 9588 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:49:53.0064 9588 AFD - ok
18:49:53.0258 9588 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:49:53.0283 9588 agp440 - ok
18:49:53.0396 9588 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:49:53.0440 9588 ALG - ok
18:49:53.0554 9588 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:49:53.0573 9588 aliide - ok
18:49:53.0737 9588 AMD External Events Utility (ca0d6c1390f4b3baf2a0a69d1a7f8332) C:\Windows\system32\atiesrxx.exe
18:49:53.0831 9588 AMD External Events Utility - ok
18:49:54.0066 9588 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:49:54.0076 9588 amdide - ok
18:49:54.0112 9588 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
18:49:54.0114 9588 AmdK8 - ok
18:49:54.0422 9588 amdkmdag (75e4baca583ae02c11e9ac8747e2abe0) C:\Windows\system32\DRIVERS\atikmdag.sys
18:49:54.0580 9588 amdkmdag - ok
18:49:54.0743 9588 amdkmdap (b765cf4b32f347be747b21ae22641025) C:\Windows\system32\DRIVERS\atikmpag.sys
18:49:54.0769 9588 amdkmdap - ok
18:49:54.0832 9588 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
18:49:54.0854 9588 AmdPPM - ok
18:49:55.0003 9588 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:49:55.0009 9588 amdsata - ok
18:49:55.0141 9588 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
18:49:55.0174 9588 amdsbs - ok
18:49:55.0216 9588 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:49:55.0228 9588 amdxata - ok
18:49:55.0273 9588 amd_sata (caee7c1afc9f1c9ee8dd11acd18d22e7) C:\Windows\system32\drivers\amd_sata.sys
18:49:55.0275 9588 amd_sata - ok
18:49:55.0327 9588 amd_xata (23726116b4fbcc84fc45b95157c08f5f) C:\Windows\system32\drivers\amd_xata.sys
18:49:55.0335 9588 amd_xata - ok
18:49:55.0455 9588 AMON (fe50c0a233f12d7058b44af2a496a739) C:\Windows\system32\drivers\amon.sys
18:49:55.0463 9588 AMON - ok
18:49:55.0601 9588 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:49:55.0606 9588 AppID - ok
18:49:55.0794 9588 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:49:55.0796 9588 AppIDSvc - ok
18:49:56.0045 9588 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:49:56.0047 9588 Appinfo - ok
18:49:56.0213 9588 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:49:56.0245 9588 Apple Mobile Device - ok
18:49:56.0390 9588 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
18:49:56.0409 9588 arc - ok
18:49:56.0474 9588 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
18:49:56.0495 9588 arcsas - ok
18:49:56.0753 9588 asdsrv (2be4aa54c7728b7a432713961b09fa89) C:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe
18:49:56.0857 9588 asdsrv - ok
18:49:57.0248 9588 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:49:57.0269 9588 aspnet_state - ok
18:49:57.0497 9588 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:49:57.0500 9588 AsyncMac - ok
18:49:57.0624 9588 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:49:57.0638 9588 atapi - ok
18:49:57.0808 9588 AtiPcie (e82e61f46d1336447f4deff8c074f13e) C:\Windows\system32\drivers\AtiPcie64.sys
18:49:57.0844 9588 AtiPcie - ok
18:49:57.0990 9588 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:49:58.0027 9588 AudioEndpointBuilder - ok
18:49:58.0140 9588 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:49:58.0151 9588 AudioSrv - ok
18:49:58.0300 9588 avfsmn (7f5ea096d5edbaa9caeedf07dfae65da) C:\Windows\system32\DRIVERS\avfsmn.sys
18:49:58.0316 9588 avfsmn - ok
18:49:58.0394 9588 avhips (e0edb0f31b9755fb8f8017f3326de033) C:\Windows\system32\DRIVERS\avhips.sys
18:49:58.0397 9588 avhips - ok
18:49:58.0461 9588 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:49:58.0476 9588 AxInstSV - ok
18:49:58.0589 9588 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
18:49:58.0596 9588 b06bdrv - ok
18:49:58.0764 9588 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:49:58.0775 9588 b57nd60a - ok
18:49:58.0827 9588 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:49:58.0830 9588 BDESVC - ok
18:49:58.0904 9588 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:49:58.0911 9588 Beep - ok
18:49:59.0011 9588 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:49:59.0025 9588 BFE - ok
18:49:59.0254 9588 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
18:49:59.0293 9588 BITS - ok
18:49:59.0448 9588 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
18:49:59.0452 9588 blbdrive - ok
18:49:59.0554 9588 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
18:49:59.0653 9588 Bonjour Service - ok
18:49:59.0694 9588 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:49:59.0707 9588 bowser - ok
18:49:59.0787 9588 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
18:49:59.0805 9588 BrFiltLo - ok
18:49:59.0835 9588 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
18:49:59.0850 9588 BrFiltUp - ok
18:49:59.0891 9588 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:49:59.0896 9588 Browser - ok
18:49:59.0930 9588 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:49:59.0935 9588 Brserid - ok
18:49:59.0965 9588 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:49:59.0968 9588 BrSerWdm - ok
18:50:00.0016 9588 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:50:00.0018 9588 BrUsbMdm - ok
18:50:00.0041 9588 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:50:00.0056 9588 BrUsbSer - ok
18:50:00.0201 9588 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
18:50:00.0221 9588 BTHMODEM - ok
18:50:00.0307 9588 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:50:00.0316 9588 bthserv - ok
18:50:00.0346 9588 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:50:00.0350 9588 cdfs - ok
18:50:00.0440 9588 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
18:50:00.0445 9588 cdrom - ok
18:50:00.0498 9588 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:50:00.0502 9588 CertPropSvc - ok
18:50:00.0828 9588 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
18:50:00.0830 9588 circlass - ok
18:50:00.0876 9588 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:50:00.0883 9588 CLFS - ok
18:50:01.0026 9588 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:50:01.0059 9588 clr_optimization_v2.0.50727_32 - ok
18:50:01.0252 9588 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:50:01.0280 9588 clr_optimization_v2.0.50727_64 - ok
18:50:01.0530 9588 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:50:01.0545 9588 clr_optimization_v4.0.30319_32 - ok
18:50:01.0714 9588 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:50:01.0726 9588 clr_optimization_v4.0.30319_64 - ok
18:50:01.0958 9588 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
18:50:01.0966 9588 CmBatt - ok
18:50:02.0015 9588 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:50:02.0019 9588 cmdide - ok
18:50:02.0091 9588 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:50:02.0143 9588 CNG - ok
18:50:02.0261 9588 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
18:50:02.0279 9588 Compbatt - ok
18:50:02.0368 9588 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:50:02.0372 9588 CompositeBus - ok
18:50:02.0409 9588 COMSysApp - ok
18:50:02.0440 9588 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
18:50:02.0447 9588 crcdisk - ok
18:50:02.0603 9588 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
18:50:02.0622 9588 CryptSvc - ok
18:50:02.0675 9588 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:50:02.0683 9588 DcomLaunch - ok
18:50:02.0733 9588 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:50:02.0739 9588 defragsvc - ok
18:50:02.0763 9588 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:50:02.0767 9588 DfsC - ok
18:50:02.0900 9588 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:50:02.0911 9588 Dhcp - ok
18:50:02.0945 9588 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:50:02.0955 9588 discache - ok
18:50:03.0026 9588 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
18:50:03.0030 9588 Disk - ok
18:50:03.0096 9588 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:50:03.0106 9588 Dnscache - ok
18:50:03.0207 9588 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:50:03.0329 9588 dot3svc - ok
18:50:03.0372 9588 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:50:03.0401 9588 DPS - ok
18:50:03.0498 9588 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:50:03.0510 9588 drmkaud - ok
18:50:03.0666 9588 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:50:03.0785 9588 DXGKrnl - ok
18:50:03.0853 9588 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:50:03.0870 9588 EapHost - ok
18:50:04.0247 9588 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
18:50:04.0483 9588 ebdrv - ok
18:50:04.0737 9588 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:50:04.0753 9588 EFS - ok
18:50:04.0891 9588 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:50:04.0917 9588 ehRecvr - ok
18:50:04.0960 9588 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:50:04.0979 9588 ehSched - ok
18:50:05.0298 9588 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
18:50:05.0454 9588 elxstor - ok
18:50:05.0589 9588 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:50:05.0591 9588 ErrDev - ok
18:50:05.0705 9588 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:50:05.0743 9588 EventSystem - ok
18:50:05.0791 9588 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:50:05.0795 9588 exfat - ok
18:50:05.0818 9588 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:50:05.0851 9588 fastfat - ok
18:50:06.0006 9588 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:50:06.0036 9588 Fax - ok
18:50:06.0054 9588 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
18:50:06.0056 9588 fdc - ok
18:50:06.0158 9588 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:50:06.0163 9588 fdPHost - ok
18:50:06.0238 9588 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:50:06.0246 9588 FDResPub - ok
18:50:06.0275 9588 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:50:06.0277 9588 FileInfo - ok
18:50:06.0444 9588 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:50:06.0459 9588 Filetrace - ok
18:50:06.0538 9588 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
18:50:06.0548 9588 flpydisk - ok
18:50:06.0656 9588 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:50:06.0685 9588 FltMgr - ok
18:50:06.0750 9588 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:50:06.0775 9588 FontCache - ok
18:50:06.0900 9588 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:50:06.0971 9588 FontCache3.0.0.0 - ok
18:50:07.0018 9588 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:50:07.0021 9588 FsDepends - ok
18:50:07.0041 9588 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
18:50:07.0053 9588 Fs_Rec - ok
18:50:07.0110 9588 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:50:07.0129 9588 fvevol - ok
18:50:07.0228 9588 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
18:50:07.0248 9588 gagp30kx - ok
18:50:07.0387 9588 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:50:07.0461 9588 GEARAspiWDM - ok
18:50:07.0584 9588 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:50:07.0602 9588 gpsvc - ok
18:50:07.0650 9588 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:50:07.0652 9588 hcw85cir - ok
18:50:07.0722 9588 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:50:07.0748 9588 HdAudAddService - ok
18:50:07.0846 9588 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
18:50:07.0859 9588 HDAudBus - ok
18:50:07.0891 9588 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
18:50:07.0900 9588 HidBatt - ok
18:50:08.0002 9588 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
18:50:08.0020 9588 HidBth - ok
18:50:08.0101 9588 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
18:50:08.0110 9588 HidIr - ok
18:50:08.0193 9588 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
18:50:08.0213 9588 hidserv - ok
18:50:08.0363 9588 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
18:50:08.0372 9588 HidUsb - ok
18:50:08.0515 9588 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:50:08.0532 9588 hkmsvc - ok
18:50:08.0599 9588 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:50:08.0675 9588 HomeGroupListener - ok
18:50:08.0750 9588 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:50:08.0761 9588 HomeGroupProvider - ok
18:50:08.0981 9588 HP Support Assistant Service (170233b8d743efe35f462a5d516b93e3) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
18:50:08.0992 9588 HP Support Assistant Service - ok
18:50:09.0084 9588 HPClientSvc (6a181452d4e240b8ecc7614b9a19bde9) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
18:50:09.0102 9588 HPClientSvc - ok
18:50:09.0182 9588 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:50:09.0190 9588 HPDrvMntSvc.exe - ok
18:50:09.0267 9588 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:50:09.0314 9588 hpqwmiex - ok
18:50:09.0611 9588 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:50:09.0638 9588 HpSAMD - ok
18:50:09.0732 9588 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:50:09.0775 9588 HTTP - ok
18:50:09.0793 9588 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:50:09.0795 9588 hwpolicy - ok
18:50:09.0829 9588 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
18:50:09.0832 9588 i8042prt - ok
18:50:09.0886 9588 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:50:09.0906 9588 iaStorV - ok
18:50:10.0075 9588 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:50:10.0109 9588 idsvc - ok
18:50:10.0418 9588 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:50:10.0539 9588 igfx - ok
18:50:10.0711 9588 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
18:50:10.0714 9588 iirsp - ok
18:50:10.0791 9588 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:50:10.0806 9588 IKEEXT - ok
18:50:11.0202 9588 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys
18:50:11.0342 9588 IntcAzAudAddService - ok
18:50:11.0500 9588 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:50:11.0513 9588 intelide - ok
18:50:11.0968 9588 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
18:50:11.0980 9588 intelppm - ok
18:50:12.0083 9588 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:50:12.0112 9588 IPBusEnum - ok
18:50:12.0246 9588 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:50:12.0260 9588 IpFilterDriver - ok
18:50:12.0358 9588 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:50:12.0384 9588 iphlpsvc - ok
18:50:12.0451 9588 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:50:12.0462 9588 IPMIDRV - ok
18:50:12.0498 9588 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:50:12.0501 9588 IPNAT - ok
18:50:12.0790 9588 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
18:50:12.0924 9588 iPod Service - ok
18:50:12.0988 9588 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:50:12.0994 9588 IRENUM - ok
18:50:13.0099 9588 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:50:13.0104 9588 isapnp - ok
18:50:13.0207 9588 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:50:13.0221 9588 iScsiPrt - ok
18:50:13.0264 9588 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:50:13.0268 9588 kbdclass - ok
18:50:13.0316 9588 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:50:13.0327 9588 kbdhid - ok
18:50:13.0378 9588 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:13.0381 9588 KeyIso - ok
18:50:13.0408 9588 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:50:13.0414 9588 KSecDD - ok
18:50:13.0439 9588 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:50:13.0445 9588 KSecPkg - ok
18:50:13.0492 9588 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:50:13.0506 9588 ksthunk - ok
18:50:13.0631 9588 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:50:13.0762 9588 KtmRm - ok
18:50:13.0885 9588 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
18:50:13.0904 9588 LanmanServer - ok
18:50:14.0015 9588 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:50:14.0031 9588 LanmanWorkstation - ok
18:50:14.0212 9588 LightScribeService (fa4a45c179ab0e0f1a31b9751d4b18d7) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
18:50:14.0232 9588 LightScribeService - ok
18:50:14.0384 9588 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:50:14.0399 9588 lltdio - ok
18:50:14.0448 9588 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:50:14.0464 9588 lltdsvc - ok
18:50:14.0522 9588 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:50:14.0527 9588 lmhosts - ok
18:50:14.0599 9588 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
18:50:14.0606 9588 LSI_FC - ok
18:50:14.0633 9588 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
18:50:14.0638 9588 LSI_SAS - ok
18:50:14.0671 9588 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
18:50:14.0674 9588 LSI_SAS2 - ok
18:50:14.0761 9588 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
18:50:14.0768 9588 LSI_SCSI - ok
18:50:14.0816 9588 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:50:14.0823 9588 luafv - ok
18:50:14.0872 9588 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:50:14.0900 9588 Mcx2Svc - ok
18:50:14.0983 9588 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
18:50:14.0986 9588 megasas - ok
18:50:15.0037 9588 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
18:50:15.0047 9588 MegaSR - ok
18:50:15.0094 9588 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:50:15.0098 9588 MMCSS - ok
18:50:15.0125 9588 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:50:15.0129 9588 Modem - ok
18:50:15.0211 9588 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:50:15.0216 9588 monitor - ok
18:50:15.0243 9588 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:50:15.0247 9588 mouclass - ok
18:50:15.0284 9588 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:50:15.0287 9588 mouhid - ok
18:50:15.0329 9588 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:50:15.0333 9588 mountmgr - ok
18:50:15.0356 9588 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:50:15.0363 9588 mpio - ok
18:50:15.0387 9588 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:50:15.0390 9588 mpsdrv - ok
18:50:15.0496 9588 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:50:15.0559 9588 MpsSvc - ok
18:50:15.0584 9588 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:50:15.0589 9588 MRxDAV - ok
18:50:15.0644 9588 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:50:15.0649 9588 mrxsmb - ok
18:50:15.0696 9588 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:50:15.0702 9588 mrxsmb10 - ok
18:50:15.0751 9588 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:50:15.0755 9588 mrxsmb20 - ok
18:50:15.0842 9588 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:50:15.0847 9588 msahci - ok
18:50:15.0871 9588 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:50:15.0878 9588 msdsm - ok
18:50:15.0912 9588 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:50:15.0945 9588 MSDTC - ok
18:50:16.0027 9588 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:50:16.0029 9588 Msfs - ok
18:50:16.0114 9588 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:50:16.0117 9588 mshidkmdf - ok
18:50:16.0179 9588 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:50:16.0182 9588 msisadrv - ok
18:50:16.0260 9588 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:50:16.0283 9588 MSiSCSI - ok
18:50:16.0308 9588 msiserver - ok
18:50:16.0408 9588 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:50:16.0411 9588 MSKSSRV - ok
18:50:16.0467 9588 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:50:16.0469 9588 MSPCLOCK - ok
18:50:16.0573 9588 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:50:16.0576 9588 MSPQM - ok
18:50:16.0638 9588 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:50:16.0644 9588 MsRPC - ok
18:50:16.0718 9588 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:50:16.0721 9588 mssmbios - ok
18:50:16.0764 9588 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:50:16.0766 9588 MSTEE - ok
18:50:16.0858 9588 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
18:50:16.0874 9588 MTConfig - ok
18:50:16.0926 9588 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:50:16.0930 9588 Mup - ok
18:50:17.0056 9588 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:50:17.0077 9588 napagent - ok
18:50:17.0172 9588 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:50:17.0211 9588 NativeWifiP - ok
18:50:17.0276 9588 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:50:17.0295 9588 NDIS - ok
18:50:17.0329 9588 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:50:17.0344 9588 NdisCap - ok
18:50:17.0424 9588 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:50:17.0430 9588 NdisTapi - ok
18:50:17.0508 9588 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:50:17.0510 9588 Ndisuio - ok
18:50:17.0530 9588 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:50:17.0533 9588 NdisWan - ok
18:50:17.0552 9588 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:50:17.0554 9588 NDProxy - ok
18:50:17.0584 9588 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:50:17.0595 9588 NetBIOS - ok
18:50:17.0725 9588 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:50:17.0749 9588 NetBT - ok
18:50:17.0816 9588 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:17.0826 9588 Netlogon - ok
18:50:18.0013 9588 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:50:18.0040 9588 Netman - ok
18:50:18.0281 9588 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:50:18.0359 9588 NetMsmqActivator - ok
18:50:18.0399 9588 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:50:18.0412 9588 NetPipeActivator - ok
18:50:18.0697 9588 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:50:18.0744 9588 netprofm - ok
18:50:19.0126 9588 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:50:19.0140 9588 NetTcpActivator - ok
18:50:19.0156 9588 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:50:19.0162 9588 NetTcpPortSharing - ok
18:50:19.0418 9588 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
18:50:19.0431 9588 nfrd960 - ok
18:50:19.0597 9588 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:50:19.0611 9588 NlaSvc - ok
18:50:19.0809 9588 NOD32krn (c0c81a2be22f496b26b3e1ef3f559b83) C:\Program Files (x86)\Eset\nod32krn.exe
18:50:20.0007 9588 NOD32krn - ok
18:50:20.0101 9588 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:50:20.0116 9588 Npfs - ok
18:50:20.0251 9588 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:50:20.0264 9588 nsi - ok
18:50:20.0374 9588 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:50:20.0391 9588 nsiproxy - ok
18:50:20.0538 9588 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:50:20.0623 9588 Ntfs - ok
18:50:20.0739 9588 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:50:20.0756 9588 Null - ok
18:50:20.0889 9588 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:50:20.0902 9588 nvraid - ok
18:50:21.0084 9588 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:50:21.0125 9588 nvstor - ok
18:50:21.0181 9588 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:50:21.0185 9588 nv_agp - ok
18:50:21.0231 9588 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:50:21.0251 9588 ohci1394 - ok
18:50:21.0388 9588 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:50:21.0432 9588 p2pimsvc - ok
18:50:21.0586 9588 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:50:21.0642 9588 p2psvc - ok
18:50:21.0795 9588 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
18:50:21.0810 9588 Parport - ok
18:50:21.0891 9588 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
18:50:21.0897 9588 partmgr - ok
18:50:21.0940 9588 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:50:21.0945 9588 PcaSvc - ok
18:50:21.0978 9588 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:50:21.0982 9588 pci - ok
18:50:22.0060 9588 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:50:22.0074 9588 pciide - ok
18:50:22.0190 9588 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
18:50:22.0222 9588 pcmcia - ok
18:50:22.0277 9588 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:50:22.0280 9588 pcw - ok
18:50:22.0368 9588 pdfcDispatcher - ok
18:50:22.0482 9588 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:50:22.0497 9588 PEAUTH - ok
18:50:22.0666 9588 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:50:22.0700 9588 PerfHost - ok
18:50:22.0916 9588 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:50:22.0997 9588 pla - ok
18:50:23.0206 9588 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:50:23.0225 9588 PlugPlay - ok
18:50:23.0320 9588 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:50:23.0349 9588 PNRPAutoReg - ok
18:50:23.0395 9588 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:50:23.0399 9588 PNRPsvc - ok
18:50:23.0532 9588 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:50:23.0542 9588 PolicyAgent - ok
18:50:23.0601 9588 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:50:23.0605 9588 Power - ok
18:50:23.0700 9588 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:50:23.0708 9588 PptpMiniport - ok
18:50:23.0765 9588 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
18:50:23.0767 9588 Processor - ok
18:50:23.0801 9588 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
18:50:23.0806 9588 ProfSvc - ok
18:50:23.0851 9588 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:23.0855 9588 ProtectedStorage - ok
18:50:23.0893 9588 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:50:23.0896 9588 Psched - ok
18:50:24.0164 9588 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
18:50:24.0265 9588 ql2300 - ok
18:50:24.0295 9588 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
18:50:24.0325 9588 ql40xx - ok
18:50:24.0443 9588 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:50:24.0471 9588 QWAVE - ok
18:50:24.0522 9588 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:50:24.0525 9588 QWAVEdrv - ok
18:50:24.0543 9588 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:50:24.0545 9588 RasAcd - ok
18:50:24.0607 9588 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:50:24.0621 9588 RasAgileVpn - ok
18:50:24.0667 9588 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:50:24.0699 9588 RasAuto - ok
18:50:24.0739 9588 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:50:24.0742 9588 Rasl2tp - ok
18:50:24.0827 9588 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:50:24.0838 9588 RasMan - ok
18:50:24.0859 9588 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:50:24.0861 9588 RasPppoe - ok
18:50:24.0906 9588 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:50:24.0989 9588 RasSstp - ok
18:50:25.0027 9588 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:50:25.0034 9588 rdbss - ok
18:50:25.0075 9588 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
18:50:25.0077 9588 rdpbus - ok
18:50:25.0105 9588 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:50:25.0136 9588 RDPCDD - ok
18:50:25.0232 9588 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:50:25.0237 9588 RDPENCDD - ok
18:50:25.0313 9588 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:50:25.0319 9588 RDPREFMP - ok
18:50:25.0375 9588 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:50:25.0380 9588 RDPWD - ok
18:50:25.0478 9588 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:50:25.0484 9588 rdyboost - ok
18:50:25.0562 9588 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:50:25.0580 9588 RemoteAccess - ok
18:50:25.0614 9588 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:50:25.0637 9588 RemoteRegistry - ok
18:50:25.0761 9588 RoxioNow Service (085d18c71ab2611a3d61528132b6501e) C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
18:50:25.0858 9588 RoxioNow Service - ok
18:50:25.0906 9588 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:50:25.0935 9588 RpcEptMapper - ok
18:50:25.0982 9588 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:50:25.0999 9588 RpcLocator - ok
18:50:26.0089 9588 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:50:26.0101 9588 RpcSs - ok
18:50:26.0389 9588 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:50:26.0426 9588 rspndr - ok
18:50:26.0573 9588 RTL8167 (afc12dfa4c7b089673ad67402ca19edb) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:50:26.0589 9588 RTL8167 - ok
18:50:26.0698 9588 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:26.0707 9588 SamSs - ok
18:50:26.0790 9588 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:50:26.0805 9588 sbp2port - ok
18:50:26.0911 9588 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:50:26.0952 9588 SCardSvr - ok
18:50:27.0025 9588 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:50:27.0033 9588 scfilter - ok
18:50:27.0129 9588 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:50:27.0156 9588 Schedule - ok
18:50:27.0304 9588 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:50:27.0309 9588 SCPolicySvc - ok
18:50:27.0391 9588 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:50:27.0396 9588 SDRSVC - ok
18:50:27.0547 9588 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
18:50:27.0576 9588 SeaPort - ok
18:50:27.0795 9588 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:50:27.0808 9588 secdrv - ok
18:50:27.0903 9588 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:50:27.0951 9588 seclogon - ok
18:50:28.0103 9588 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
18:50:28.0111 9588 SENS - ok
18:50:28.0216 9588 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:50:28.0298 9588 SensrSvc - ok
18:50:28.0473 9588 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
18:50:28.0490 9588 Serenum - ok
18:50:28.0583 9588 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
18:50:28.0589 9588 Serial - ok
18:50:28.0644 9588 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
18:50:28.0657 9588 sermouse - ok
18:50:28.0840 9588 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:50:28.0854 9588 SessionEnv - ok
18:50:28.0995 9588 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:50:29.0009 9588 sffdisk - ok
18:50:29.0058 9588 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:50:29.0073 9588 sffp_mmc - ok
18:50:29.0130 9588 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:50:29.0154 9588 sffp_sd - ok
18:50:29.0215 9588 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
18:50:29.0226 9588 sfloppy - ok
18:50:29.0379 9588 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:50:29.0403 9588 SharedAccess - ok
18:50:29.0541 9588 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:50:29.0573 9588 ShellHWDetection - ok
18:50:29.0782 9588 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
18:50:29.0811 9588 SiSRaid2 - ok
18:50:29.0929 9588 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
18:50:29.0949 9588 SiSRaid4 - ok
18:50:30.0096 9588 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:50:30.0107 9588 Smb - ok
18:50:30.0277 9588 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:50:30.0320 9588 SNMPTRAP - ok
18:50:30.0463 9588 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:50:30.0476 9588 spldr - ok
18:50:30.0618 9588 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:50:30.0726 9588 Spooler - ok
18:50:31.0035 9588 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:50:31.0161 9588 sppsvc - ok
18:50:31.0311 9588 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:50:31.0321 9588 sppuinotify - ok
18:50:31.0524 9588 sprtsvc_verizondm - ok
18:50:31.0698 9588 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:50:31.0743 9588 srv - ok
18:50:31.0845 9588 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:50:31.0858 9588 srv2 - ok
18:50:31.0948 9588 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:50:31.0983 9588 srvnet - ok
18:50:32.0132 9588 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:50:32.0162 9588 SSDPSRV - ok
18:50:32.0218 9588 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:50:32.0239 9588 SstpSvc - ok
18:50:32.0349 9588 Steam Client Service - ok
18:50:32.0536 9588 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
18:50:32.0539 9588 stexstor - ok
18:50:32.0599 9588 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:50:32.0607 9588 stisvc - ok
18:50:32.0652 9588 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:50:32.0654 9588 swenum - ok
18:50:32.0690 9588 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:50:32.0699 9588 swprv - ok
18:50:32.0858 9588 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:50:32.0903 9588 SysMain - ok
18:50:32.0938 9588 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:50:32.0950 9588 TabletInputService - ok
18:50:32.0979 9588 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:50:32.0985 9588 TapiSrv - ok
18:50:33.0006 9588 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:50:33.0010 9588 TBS - ok
18:50:33.0087 9588 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
18:50:33.0123 9588 Tcpip - ok
18:50:33.0284 9588 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
18:50:33.0300 9588 TCPIP6 - ok
18:50:33.0382 9588 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:50:33.0397 9588 tcpipreg - ok
18:50:33.0512 9588 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:50:33.0525 9588 TDPIPE - ok
18:50:33.0637 9588 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:50:33.0652 9588 TDTCP - ok
18:50:33.0769 9588 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:50:33.0785 9588 tdx - ok
18:50:33.0886 9588 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:50:33.0912 9588 TermDD - ok
18:50:34.0038 9588 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:50:34.0070 9588 TermService - ok
18:50:34.0189 9588 tgsrvc_verizondm - ok
18:50:34.0268 9588 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:50:34.0280 9588 Themes - ok
18:50:34.0374 9588 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:50:34.0376 9588 THREADORDER - ok
18:50:34.0566 9588 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:50:34.0581 9588 TrkWks - ok
18:50:34.0650 9588 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:50:34.0690 9588 TrustedInstaller - ok
18:50:34.0810 9588 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:50:34.0825 9588 tssecsrv - ok
18:50:34.0996 9588 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:50:34.0999 9588 TsUsbFlt - ok
18:50:35.0054 9588 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
18:50:35.0058 9588 TsUsbGD - ok
18:50:35.0207 9588 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:50:35.0210 9588 tunnel - ok
18:50:35.0301 9588 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
18:50:35.0306 9588 uagp35 - ok
18:50:35.0446 9588 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:50:35.0451 9588 udfs - ok
18:50:35.0627 9588 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:50:35.0657 9588 UI0Detect - ok
18:50:35.0817 9588 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:50:35.0831 9588 uliagpkx - ok
18:50:35.0987 9588 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:50:36.0003 9588 umbus - ok
18:50:36.0098 9588 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
18:50:36.0111 9588 UmPass - ok
18:50:36.0209 9588 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:50:36.0261 9588 upnphost - ok
18:50:36.0378 9588 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:50:36.0402 9588 USBAAPL64 - ok
18:50:36.0478 9588 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:50:36.0521 9588 usbccgp - ok
18:50:36.0739 9588 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:50:36.0745 9588 usbcir - ok
18:50:36.0822 9588 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:50:36.0828 9588 usbehci - ok
18:50:36.0944 9588 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\drivers\usbfilter.sys
18:50:36.0947 9588 usbfilter - ok
18:50:37.0045 9588 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:50:37.0067 9588 usbhub - ok
18:50:37.0174 9588 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
18:50:37.0188 9588 usbohci - ok
18:50:37.0346 9588 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
18:50:37.0351 9588 usbprint - ok
18:50:37.0408 9588 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:50:37.0411 9588 USBSTOR - ok
18:50:37.0510 9588 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
18:50:37.0518 9588 usbuhci - ok
18:50:37.0735 9588 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:50:37.0752 9588 UxSms - ok
18:50:37.0845 9588 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:50:37.0855 9588 VaultSvc - ok
18:50:37.0980 9588 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:50:37.0991 9588 vdrvroot - ok
18:50:38.0118 9588 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:50:38.0204 9588 vds - ok
18:50:38.0270 9588 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:50:38.0285 9588 vga - ok
18:50:38.0337 9588 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:50:38.0361 9588 VgaSave - ok
18:50:38.0431 9588 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:50:38.0446 9588 vhdmp - ok
18:50:38.0537 9588 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:50:38.0545 9588 viaide - ok
18:50:38.0741 9588 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:50:38.0747 9588 volmgr - ok
18:50:38.0784 9588 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:50:38.0792 9588 volmgrx - ok
18:50:38.0834 9588 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:50:38.0849 9588 volsnap - ok
18:50:38.0924 9588 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
18:50:38.0932 9588 vsmraid - ok
18:50:39.0031 9588 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:50:39.0173 9588 VSS - ok
18:50:39.0238 9588 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
18:50:39.0244 9588 vwifibus - ok
18:50:39.0265 9588 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:50:39.0272 9588 W32Time - ok
18:50:39.0312 9588 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
18:50:39.0327 9588 WacomPen - ok
18:50:39.0363 9588 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:50:39.0405 9588 WANARP - ok
18:50:39.0422 9588 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:50:39.0425 9588 Wanarpv6 - ok
18:50:39.0608 9588 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:50:39.0645 9588 WatAdminSvc - ok
18:50:40.0005 9588 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:50:40.0177 9588 wbengine - ok
18:50:40.0283 9588 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:50:40.0300 9588 WbioSrvc - ok
18:50:40.0418 9588 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:50:40.0447 9588 wcncsvc - ok
18:50:40.0515 9588 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:50:40.0533 9588 WcsPlugInService - ok
18:50:40.0637 9588 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
18:50:40.0649 9588 Wd - ok
18:50:40.0861 9588 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:50:40.0891 9588 Wdf01000 - ok
18:50:40.0967 9588 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:50:40.0988 9588 WdiServiceHost - ok
18:50:41.0018 9588 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:50:41.0022 9588 WdiSystemHost - ok
18:50:41.0170 9588 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:50:41.0203 9588 WebClient - ok
18:50:41.0292 9588 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:50:41.0305 9588 Wecsvc - ok
18:50:41.0376 9588 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:50:41.0387 9588 wercplsupport - ok
18:50:41.0520 9588 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:50:41.0531 9588 WerSvc - ok
18:50:41.0697 9588 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:50:41.0711 9588 WfpLwf - ok
18:50:41.0775 9588 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:50:41.0844 9588 WIMMount - ok
18:50:41.0880 9588 WinDefend - ok
18:50:41.0892 9588 WinHttpAutoProxySvc - ok
18:50:42.0064 9588 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:50:42.0081 9588 Winmgmt - ok
18:50:42.0256 9588 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:50:42.0317 9588 WinRM - ok
18:50:42.0568 9588 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:50:42.0573 9588 WinUsb - ok
18:50:42.0670 9588 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:50:42.0762 9588 Wlansvc - ok
18:50:42.0969 9588 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:50:42.0979 9588 wlcrasvc - ok
18:50:43.0125 9588 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:50:43.0286 9588 wlidsvc - ok
18:50:43.0564 9588 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:50:43.0566 9588 WmiAcpi - ok
18:50:43.0643 9588 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:50:43.0652 9588 wmiApSrv - ok
18:50:43.0715 9588 WMPNetworkSvc - ok
18:50:43.0823 9588 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:50:43.0842 9588 WPCSvc - ok
18:50:43.0957 9588 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:50:43.0973 9588 WPDBusEnum - ok
18:50:44.0154 9588 WRkrn (edda5fdfdd2ec7cfc836b34f71c5c3ee) C:\Windows\system32\drivers\WRkrn.sys
18:50:44.0170 9588 WRkrn - ok
18:50:44.0338 9588 WRSVC (28de272d52747b3abb7fd1b41c4867ce) C:\Program Files\Webroot\WRSA.exe
18:50:44.0426 9588 WRSVC - ok
18:50:44.0516 9588 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:50:44.0518 9588 ws2ifsl - ok
18:50:44.0577 9588 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
18:50:44.0634 9588 wscsvc - ok
18:50:44.0665 9588 WSearch - ok
18:50:44.0830 9588 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:50:44.0925 9588 wuauserv - ok
18:50:45.0067 9588 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:50:45.0086 9588 WudfPf - ok
18:50:45.0190 9588 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:50:45.0205 9588 WUDFRd - ok
18:50:45.0247 9588 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:50:45.0257 9588 wudfsvc - ok
18:50:45.0306 9588 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:50:45.0312 9588 WwanSvc - ok
18:50:45.0422 9588 MBR (0x1B8) (22a989b08cd088728d4e9fc470755d79) \Device\Harddisk0\DR0
18:50:45.0457 9588 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
18:50:45.0457 9588 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
18:50:45.0930 9588 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:50:45.0930 9588 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:50:45.0962 9588 Boot (0x1200) (c27dc9b2e071f4aab3ae86c3fabefaa7) \Device\Harddisk0\DR0\Partition0
18:50:45.0992 9588 \Device\Harddisk0\DR0\Partition0 - ok
18:50:46.0021 9588 Boot (0x1200) (68da76766f2d5662905b89bf455e297b) \Device\Harddisk0\DR0\Partition1
18:50:46.0023 9588 \Device\Harddisk0\DR0\Partition1 - ok
18:50:46.0049 9588 Boot (0x1200) (5ee961128eb605a99e2dd501be7f1217) \Device\Harddisk0\DR0\Partition2
18:50:46.0084 9588 \Device\Harddisk0\DR0\Partition2 - ok
18:50:46.0091 9588 ============================================================
18:50:46.0091 9588 Scan finished
18:50:46.0091 9588 ============================================================
18:50:46.0116 9980 Detected object count: 2
18:50:46.0116 9980 Actual detected object count: 2
18:51:06.0117 9980 \Device\Harddisk0\DR0\# - copied to quarantine
18:51:06.0121 9980 \Device\Harddisk0\DR0 - copied to quarantine
18:51:06.0347 9980 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
18:51:06.0453 9980 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
18:51:06.0460 9980 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
18:51:06.0491 9980 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
18:51:06.0558 9980 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
18:51:06.0646 9980 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
18:51:06.0675 9980 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
18:51:06.0719 9980 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
18:51:06.0758 9980 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
18:51:06.0786 9980 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
18:51:06.0797 9980 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
18:51:06.0803 9980 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
18:51:06.0866 9980 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
18:51:06.0876 9980 \Device\Harddisk0\DR0 - ok
18:51:07.0517 9980 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
18:51:07.0518 9980 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
18:51:07.0518 9980 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
18:51:55.0538 6680 Deinitialize success


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-11 18:53:57
-----------------------------
18:53:57.786 OS Version: Windows x64 6.1.7601 Service Pack 1
18:53:57.786 Number of processors: 2 586 0x603
18:53:57.787 ComputerName: BITTERDECAY-HP UserName: bitterdecay
18:54:06.745 Initialize success
18:54:38.800 AVAST engine defs: 12041101
18:55:05.438 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000050
18:55:05.444 Disk 0 Vendor: ST375052 HP40 Size: 715404MB BusType: 11
18:55:05.449 Device \Driver\amd_sata -> MajorFunction fffffa80043655c4
18:55:05.455 Disk 0 MBR read successfully
18:55:05.461 Disk 0 MBR scan
18:55:05.474 Disk 0 unknown MBR code
18:55:05.514 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
18:55:05.529 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 703802 MB offset 206848
18:55:05.565 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11500 MB offset 1441593344
18:55:05.617 Disk 0 scanning C:\Windows\system32\drivers
18:55:24.193 Service scanning
18:55:55.171 Modules scanning
18:55:55.173 Disk 0 trace - called modules:
18:55:55.179 ntoskrnl.exe CLASSPNP.SYS disk.sys amd_xata.sys >>UNKNOWN [0xfffffa80046fb520]<<92983997.sys >>UNKNOWN [0xfffffa80043655c4]<<
18:55:55.180 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003d80330]
18:55:55.181 3 CLASSPNP.SYS[fffff8800197543f] -> nt!IofCallDriver -> [0xfffffa8003d72ac0]
18:55:55.181 5 amd_xata.sys[fffff88000fd48b4] -> nt!IofCallDriver -> \Device\00000050[0xfffffa8003d6e060]
18:55:55.181 \Driver\amd_sata[0xfffffa8004dd4c60] -> IRP_MJ_CREATE -> 0xfffffa80043655c4
18:55:56.233 AVAST engine scan C:\Windows
18:56:02.062 AVAST engine scan C:\Windows\system32
19:01:18.332 AVAST engine scan C:\Windows\system32\drivers
19:01:47.255 AVAST engine scan C:\Users\bitterdecay
19:02:53.678 Disk 0 MBR has been saved successfully to "C:\Users\bitterdecay\Documents\MBR.dat"
19:02:53.690 The log file has been saved successfully to "C:\Users\bitterdecay\Documents\aswMBR.txt"

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:36 AM

Posted 11 April 2012 - 11:39 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Are you facing redirects on a specific browser?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users