Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

trojan.agent svchost.eve


  • Please log in to reply
7 replies to this topic

#1 firstuser

firstuser

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:10 AM

Posted 15 April 2012 - 06:40 PM

Hello, I just got networking back after removing the first time with malwarebytes anti malware... So after every scan with malwarebytes it tells me that I have these two risks. Posted Image I still cant get networking when I boot in normal mode but at least I can come here in safe mode with networking. I can run malwarebytes in normal mode but trying connect to my router and update malware bytes or anything internet with firefox the pc freezes. Please help.

Edited by firstuser, 15 April 2012 - 06:41 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:10 AM

Posted 15 April 2012 - 06:44 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 firstuser

firstuser
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:10 AM

Posted 15 April 2012 - 07:04 PM

Okay, downloaded TDSSkiller and aswMBR. Left out GMER because I do have sixty four bit win seven os. So I'll run tdsskiller first then aswmbr and repost. Thanks for the fast reply btw!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:10 AM

Posted 15 April 2012 - 09:14 PM

:thumbup2:

#5 firstuser

firstuser
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:10 AM

Posted 16 April 2012 - 04:59 AM

Okay, believe it or not but the reason why it took me so long to reply was because I was running and rerunning the scans because after running the two programs you recommended antimalware was saying that my pc was clean! Dude, it's cool. But here are the new logs that I ran once my pc was coming back clean.

02:12:07.0907 6092 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
02:12:08.0406 6092 ============================================================
02:12:08.0406 6092 Current date / time: 2012/04/16 02:12:08.0406
02:12:08.0406 6092 SystemInfo:
02:12:08.0406 6092
02:12:08.0406 6092 OS Version: 6.1.7600 ServicePack: 0.0
02:12:08.0406 6092 Product type: Workstation
02:12:08.0406 6092 ComputerName: POCKETPAL-PC
02:12:08.0406 6092 UserName: phillip
02:12:08.0406 6092 Windows directory: C:\Windows
02:12:08.0406 6092 System windows directory: C:\Windows
02:12:08.0406 6092 Running under WOW64
02:12:08.0406 6092 Processor architecture: Intel x64
02:12:08.0406 6092 Number of processors: 4
02:12:08.0406 6092 Page size: 0x1000
02:12:08.0406 6092 Boot type: Normal boot
02:12:08.0406 6092 ============================================================
02:12:08.0983 6092 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:12:08.0983 6092 \Device\Harddisk0\DR0:
02:12:08.0983 6092 MBR used
02:12:08.0983 6092 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1964800, BlocksNum 0x32000
02:12:08.0983 6092 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1996800, BlocksNum 0x389EF030
02:12:09.0015 6092 Initialize success
02:12:09.0015 6092 ============================================================
02:12:28.0088 6116 ============================================================
02:12:28.0088 6116 Scan started
02:12:28.0088 6116 Mode: Manual; TDLFS;
02:12:28.0088 6116 ============================================================
02:12:28.0588 6116 0155691334514530mcinstcleanup - ok
02:12:28.0712 6116 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
02:12:28.0712 6116 1394ohci - ok
02:12:28.0822 6116 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
02:12:28.0822 6116 ACPI - ok
02:12:28.0931 6116 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
02:12:28.0931 6116 AcpiPmi - ok
02:12:29.0180 6116 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
02:12:29.0196 6116 adp94xx - ok
02:12:29.0321 6116 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
02:12:29.0321 6116 adpahci - ok
02:12:29.0446 6116 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
02:12:29.0446 6116 adpu320 - ok
02:12:29.0539 6116 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
02:12:29.0539 6116 AeLookupSvc - ok
02:12:29.0664 6116 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
02:12:29.0680 6116 AFD - ok
02:12:29.0789 6116 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
02:12:29.0804 6116 agp440 - ok
02:12:29.0882 6116 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
02:12:29.0882 6116 ALG - ok
02:12:29.0992 6116 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
02:12:29.0992 6116 aliide - ok
02:12:30.0085 6116 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
02:12:30.0085 6116 amdide - ok
02:12:30.0179 6116 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
02:12:30.0179 6116 AmdK8 - ok
02:12:30.0272 6116 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
02:12:30.0288 6116 AmdPPM - ok
02:12:30.0382 6116 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
02:12:30.0382 6116 amdsata - ok
02:12:30.0491 6116 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
02:12:30.0491 6116 amdsbs - ok
02:12:30.0600 6116 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
02:12:30.0600 6116 amdxata - ok
02:12:30.0694 6116 ApfiltrService (6f9ef180bb9cec92d3e8ec9163748de5) C:\Windows\system32\DRIVERS\Apfiltr.sys
02:12:30.0709 6116 ApfiltrService - ok
02:12:30.0803 6116 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
02:12:30.0803 6116 AppID - ok
02:12:30.0896 6116 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
02:12:30.0896 6116 AppIDSvc - ok
02:12:31.0006 6116 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
02:12:31.0006 6116 Appinfo - ok
02:12:31.0115 6116 Apple Mobile Device (018857ead9a077a56aedfc0e5ef7a24a) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:12:31.0115 6116 Apple Mobile Device - ok
02:12:31.0240 6116 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
02:12:31.0240 6116 arc - ok
02:12:31.0333 6116 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
02:12:31.0349 6116 arcsas - ok
02:12:31.0458 6116 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
02:12:31.0458 6116 AsyncMac - ok
02:12:31.0552 6116 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
02:12:31.0552 6116 atapi - ok
02:12:31.0661 6116 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
02:12:31.0676 6116 AudioEndpointBuilder - ok
02:12:31.0692 6116 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
02:12:31.0708 6116 AudioSrv - ok
02:12:31.0817 6116 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
02:12:31.0817 6116 AxInstSV - ok
02:12:31.0942 6116 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
02:12:31.0957 6116 b06bdrv - ok
02:12:32.0082 6116 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
02:12:32.0098 6116 b57nd60a - ok
02:12:32.0285 6116 BCM43XX (fde8c8dc07e75347e4c6b455a0964217) C:\Windows\system32\DRIVERS\bcmwl664.sys
02:12:32.0300 6116 BCM43XX - ok
02:12:32.0410 6116 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
02:12:32.0410 6116 BDESVC - ok
02:12:32.0519 6116 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
02:12:32.0519 6116 Beep - ok
02:12:32.0644 6116 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
02:12:32.0659 6116 BFE - ok
02:12:32.0800 6116 BITCOMET_HELPER_SERVICE - ok
02:12:32.0924 6116 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\system32\qmgr.dll
02:12:32.0956 6116 BITS - ok
02:12:33.0080 6116 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
02:12:33.0080 6116 blbdrive - ok
02:12:33.0205 6116 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
02:12:33.0205 6116 Bonjour Service - ok
02:12:33.0330 6116 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
02:12:33.0330 6116 bowser - ok
02:12:33.0455 6116 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:12:33.0455 6116 BrFiltLo - ok
02:12:33.0564 6116 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:12:33.0564 6116 BrFiltUp - ok
02:12:33.0704 6116 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
02:12:33.0704 6116 BridgeMP - ok
02:12:33.0814 6116 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
02:12:33.0814 6116 Browser - ok
02:12:33.0938 6116 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
02:12:33.0938 6116 Brserid - ok
02:12:34.0063 6116 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
02:12:34.0063 6116 BrSerWdm - ok
02:12:34.0172 6116 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
02:12:34.0172 6116 BrUsbMdm - ok
02:12:34.0266 6116 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
02:12:34.0266 6116 BrUsbSer - ok
02:12:34.0406 6116 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
02:12:34.0406 6116 BthEnum - ok
02:12:34.0500 6116 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
02:12:34.0500 6116 BTHMODEM - ok
02:12:34.0625 6116 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
02:12:34.0625 6116 BthPan - ok
02:12:34.0765 6116 BTHPORT (21084ceb85280468c9aca3c805c0f8cf) C:\Windows\System32\Drivers\BTHport.sys
02:12:34.0765 6116 BTHPORT - ok
02:12:34.0890 6116 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
02:12:34.0890 6116 bthserv - ok
02:12:34.0984 6116 BTHUSB (8504842634dd144c075b6b0c982ccec4) C:\Windows\System32\Drivers\BTHUSB.sys
02:12:34.0999 6116 BTHUSB - ok
02:12:35.0108 6116 btwampfl (380b798d30c56ede4af58619d0e86ccb) C:\Windows\system32\drivers\btwampfl.sys
02:12:35.0108 6116 btwampfl - ok
02:12:35.0249 6116 btwaudio (ba5622f5544c6c445dff1a05acc8b19d) C:\Windows\system32\drivers\btwaudio.sys
02:12:35.0249 6116 btwaudio - ok
02:12:35.0389 6116 btwavdt (a11905d0f4bd34771f195217b6aa5ae0) C:\Windows\system32\DRIVERS\btwavdt.sys
02:12:35.0389 6116 btwavdt - ok
02:12:35.0514 6116 btwdins (3930e53ee0bed9dff9afa09f505d0cae) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
02:12:35.0530 6116 btwdins - ok
02:12:35.0623 6116 btwl2cap (07096d2bc22ccb6cea5a532df0be8a75) C:\Windows\system32\DRIVERS\btwl2cap.sys
02:12:35.0639 6116 btwl2cap - ok
02:12:35.0717 6116 btwrchid (bd776f32d64ec615be4563dc2747224e) C:\Windows\system32\DRIVERS\btwrchid.sys
02:12:35.0717 6116 btwrchid - ok
02:12:35.0732 6116 catchme - ok
02:12:35.0873 6116 CBDisk (b99d91e4cd9017f213645aa2e80eb425) C:\Windows\system32\drivers\CBDisk.sys
02:12:35.0873 6116 CBDisk - ok
02:12:35.0966 6116 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
02:12:35.0966 6116 cdfs - ok
02:12:36.0091 6116 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
02:12:36.0091 6116 cdrom - ok
02:12:36.0200 6116 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
02:12:36.0200 6116 CertPropSvc - ok
02:12:36.0310 6116 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
02:12:36.0310 6116 circlass - ok
02:12:36.0419 6116 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
02:12:36.0419 6116 CLFS - ok
02:12:36.0528 6116 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:12:36.0528 6116 clr_optimization_v2.0.50727_32 - ok
02:12:36.0637 6116 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:12:36.0637 6116 clr_optimization_v2.0.50727_64 - ok
02:12:36.0809 6116 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:12:36.0809 6116 clr_optimization_v4.0.30319_32 - ok
02:12:36.0980 6116 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:12:36.0980 6116 clr_optimization_v4.0.30319_64 - ok
02:12:37.0105 6116 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
02:12:37.0105 6116 CmBatt - ok
02:12:37.0214 6116 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
02:12:37.0214 6116 cmdide - ok
02:12:37.0355 6116 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys
02:12:37.0370 6116 CNG - ok
02:12:37.0511 6116 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
02:12:37.0511 6116 Compbatt - ok
02:12:37.0636 6116 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
02:12:37.0651 6116 CompositeBus - ok
02:12:37.0698 6116 COMSysApp - ok
02:12:37.0807 6116 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
02:12:37.0823 6116 crcdisk - ok
02:12:37.0932 6116 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
02:12:37.0932 6116 CryptSvc - ok
02:12:38.0041 6116 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
02:12:38.0057 6116 DcomLaunch - ok
02:12:38.0182 6116 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
02:12:38.0182 6116 defragsvc - ok
02:12:38.0338 6116 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
02:12:38.0338 6116 DfsC - ok
02:12:38.0447 6116 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
02:12:38.0462 6116 Dhcp - ok
02:12:38.0587 6116 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
02:12:38.0587 6116 discache - ok
02:12:38.0712 6116 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
02:12:38.0712 6116 Disk - ok
02:12:38.0821 6116 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
02:12:38.0837 6116 Dnscache - ok
02:12:38.0930 6116 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
02:12:38.0930 6116 dot3svc - ok
02:12:39.0086 6116 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
02:12:39.0086 6116 Dot4 - ok
02:12:39.0227 6116 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys
02:12:39.0227 6116 Dot4Print - ok
02:12:39.0352 6116 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
02:12:39.0352 6116 dot4usb - ok
02:12:39.0461 6116 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
02:12:39.0461 6116 DPS - ok
02:12:39.0586 6116 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
02:12:39.0586 6116 drmkaud - ok
02:12:39.0679 6116 DsiWMIService (e2b2853a0210d6edab2261870bd80c1a) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
02:12:39.0679 6116 DsiWMIService - ok
02:12:39.0835 6116 DXGKrnl (ebce0b0924835f635f620d19f0529dce) C:\Windows\System32\drivers\dxgkrnl.sys
02:12:39.0835 6116 DXGKrnl - ok
02:12:39.0976 6116 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
02:12:39.0976 6116 EapHost - ok
02:12:40.0178 6116 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
02:12:40.0288 6116 ebdrv - ok
02:12:40.0412 6116 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
02:12:40.0412 6116 EFS - ok
02:12:40.0490 6116 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
02:12:40.0506 6116 ehRecvr - ok
02:12:40.0537 6116 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
02:12:40.0537 6116 ehSched - ok
02:12:40.0646 6116 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
02:12:40.0662 6116 elxstor - ok
02:12:40.0802 6116 ePowerSvc (91c2e6234f6884c6feef9658d8ede6b6) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
02:12:40.0818 6116 ePowerSvc - ok
02:12:40.0958 6116 EpsonBidirectionalService (abdd5ad016affd34ad40e944ce94bf59) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
02:12:40.0958 6116 EpsonBidirectionalService - ok
02:12:41.0052 6116 EpsonCustomerParticipation (757305c7ad34222f4a46d86fe0bee241) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
02:12:41.0052 6116 EpsonCustomerParticipation - ok
02:12:41.0130 6116 EPSON_EB_RPCV4_04 (7c5bfaac8dce7292b0c04ebf892e71f9) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
02:12:41.0130 6116 EPSON_EB_RPCV4_04 - ok
02:12:41.0161 6116 EPSON_PM_RPCV4_04 (d4615670cd49a1679e6067f155c47c68) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
02:12:41.0161 6116 EPSON_PM_RPCV4_04 - ok
02:12:41.0270 6116 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
02:12:41.0270 6116 ErrDev - ok
02:12:41.0395 6116 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
02:12:41.0411 6116 EventSystem - ok
02:12:41.0582 6116 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
02:12:41.0598 6116 exfat - ok
02:12:41.0692 6116 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
02:12:41.0692 6116 fastfat - ok
02:12:41.0832 6116 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
02:12:41.0848 6116 Fax - ok
02:12:42.0019 6116 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
02:12:42.0019 6116 fdc - ok
02:12:42.0113 6116 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
02:12:42.0113 6116 fdPHost - ok
02:12:42.0160 6116 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
02:12:42.0160 6116 FDResPub - ok
02:12:42.0284 6116 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
02:12:42.0284 6116 FileInfo - ok
02:12:42.0362 6116 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
02:12:42.0362 6116 Filetrace - ok
02:12:42.0487 6116 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
02:12:42.0487 6116 flpydisk - ok
02:12:42.0581 6116 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
02:12:42.0581 6116 FltMgr - ok
02:12:42.0690 6116 FontCache (8ac4cb4ea61e41009fae9ae7b2b5da3a) C:\Windows\system32\FntCache.dll
02:12:42.0721 6116 FontCache - ok
02:12:42.0877 6116 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:12:42.0877 6116 FontCache3.0.0.0 - ok
02:12:42.0986 6116 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
02:12:43.0002 6116 FsDepends - ok
02:12:43.0111 6116 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
02:12:43.0111 6116 Fs_Rec - ok
02:12:43.0267 6116 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
02:12:43.0283 6116 fvevol - ok
02:12:43.0423 6116 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
02:12:43.0423 6116 gagp30kx - ok
02:12:43.0564 6116 GameConsoleService (6858c318e8daa40e747e6fb9b214e104) C:\Program Files (x86)\Acer Games\Acer Game Console\GameConsoleService.exe
02:12:43.0564 6116 GameConsoleService - ok
02:12:43.0720 6116 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:12:43.0720 6116 GEARAspiWDM - ok
02:12:43.0844 6116 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
02:12:43.0876 6116 gpsvc - ok
02:12:44.0047 6116 GREGService (0191dee9b9eb7902af2cf4f67301095d) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
02:12:44.0047 6116 GREGService - ok
02:12:44.0203 6116 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:12:44.0203 6116 gupdate - ok
02:12:44.0250 6116 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:12:44.0250 6116 gupdatem - ok
02:12:44.0390 6116 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
02:12:44.0390 6116 gusvc - ok
02:12:44.0531 6116 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
02:12:44.0531 6116 hcw85cir - ok
02:12:44.0671 6116 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
02:12:44.0671 6116 HdAudAddService - ok
02:12:44.0874 6116 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
02:12:44.0874 6116 HDAudBus - ok
02:12:45.0014 6116 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
02:12:45.0014 6116 HECIx64 - ok
02:12:45.0139 6116 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
02:12:45.0139 6116 HidBatt - ok
02:12:45.0280 6116 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
02:12:45.0280 6116 HidBth - ok
02:12:45.0420 6116 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
02:12:45.0420 6116 HidIr - ok
02:12:45.0529 6116 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
02:12:45.0545 6116 hidserv - ok
02:12:45.0670 6116 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
02:12:45.0670 6116 HidUsb - ok
02:12:45.0779 6116 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
02:12:45.0794 6116 hkmsvc - ok
02:12:45.0904 6116 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
02:12:45.0904 6116 HomeGroupListener - ok
02:12:45.0997 6116 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
02:12:46.0013 6116 HomeGroupProvider - ok
02:12:46.0169 6116 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
02:12:46.0169 6116 hpqcxs08 - ok
02:12:46.0200 6116 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
02:12:46.0200 6116 hpqddsvc - ok
02:12:46.0325 6116 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
02:12:46.0340 6116 HpSAMD - ok
02:12:46.0496 6116 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
02:12:46.0512 6116 HPSLPSVC - ok
02:12:46.0652 6116 HTCAND64 (f47cec45fb85791d4ab237563ad0fa8f) C:\Windows\system32\Drivers\ANDROIDUSB.sys
02:12:46.0652 6116 HTCAND64 - ok
02:12:46.0808 6116 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
02:12:46.0808 6116 htcnprot - ok
02:12:46.0918 6116 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
02:12:46.0933 6116 HTTP - ok
02:12:46.0980 6116 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
02:12:46.0980 6116 hwpolicy - ok
02:12:47.0120 6116 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
02:12:47.0120 6116 i8042prt - ok
02:12:47.0276 6116 iaStor (42e00996dfc13c46366689c0ea8abc5e) C:\Windows\system32\DRIVERS\iaStor.sys
02:12:47.0276 6116 iaStor - ok
02:12:47.0448 6116 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
02:12:47.0448 6116 iaStorV - ok
02:12:47.0557 6116 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:12:47.0557 6116 idsvc - ok
02:12:47.0916 6116 igfx (09ce164afa8483e41808784d7fca154e) C:\Windows\system32\DRIVERS\igdkmd64.sys
02:12:48.0150 6116 igfx - ok
02:12:48.0275 6116 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
02:12:48.0290 6116 iirsp - ok
02:12:48.0400 6116 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
02:12:48.0431 6116 IKEEXT - ok
02:12:48.0571 6116 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
02:12:48.0571 6116 Impcd - ok
02:12:48.0805 6116 IntcAzAudAddService (e9befd8c6a1db3b544b61647dda35f62) C:\Windows\system32\drivers\RTKVHD64.sys
02:12:48.0821 6116 IntcAzAudAddService - ok
02:12:48.0992 6116 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
02:12:48.0992 6116 IntcDAud - ok
02:12:49.0117 6116 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
02:12:49.0117 6116 intelide - ok
02:12:49.0242 6116 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
02:12:49.0242 6116 intelppm - ok
02:12:49.0367 6116 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
02:12:49.0367 6116 IPBusEnum - ok
02:12:49.0507 6116 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:12:49.0507 6116 IpFilterDriver - ok
02:12:49.0648 6116 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
02:12:49.0663 6116 iphlpsvc - ok
02:12:49.0726 6116 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
02:12:49.0726 6116 IPMIDRV - ok
02:12:49.0804 6116 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
02:12:49.0804 6116 IPNAT - ok
02:12:49.0928 6116 iPod Service (9b812a3484d89eb934982d67fb7d9313) C:\Program Files\iPod\bin\iPodService.exe
02:12:49.0928 6116 iPod Service - ok
02:12:50.0022 6116 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
02:12:50.0022 6116 IRENUM - ok
02:12:50.0147 6116 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
02:12:50.0147 6116 isapnp - ok
02:12:50.0225 6116 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
02:12:50.0225 6116 iScsiPrt - ok
02:12:50.0350 6116 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
02:12:50.0350 6116 kbdclass - ok
02:12:50.0459 6116 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
02:12:50.0459 6116 kbdhid - ok
02:12:50.0584 6116 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:12:50.0584 6116 KeyIso - ok
02:12:50.0630 6116 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys
02:12:50.0630 6116 KSecDD - ok
02:12:50.0724 6116 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys
02:12:50.0724 6116 KSecPkg - ok
02:12:50.0849 6116 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
02:12:50.0849 6116 ksthunk - ok
02:12:50.0958 6116 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
02:12:50.0974 6116 KtmRm - ok
02:12:51.0114 6116 L1C (55480b9c63f3f91a8ebbadcbf28fe581) C:\Windows\system32\DRIVERS\L1C62x64.sys
02:12:51.0114 6116 L1C - ok
02:12:51.0239 6116 L1E (2ac603c3188c704cfce353659aa7ad71) C:\Windows\system32\DRIVERS\L1E62x64.sys
02:12:51.0239 6116 L1E - ok
02:12:51.0332 6116 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\System32\srvsvc.dll
02:12:51.0332 6116 LanmanServer - ok
02:12:51.0426 6116 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
02:12:51.0426 6116 LanmanWorkstation - ok
02:12:51.0551 6116 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
02:12:51.0551 6116 lltdio - ok
02:12:51.0644 6116 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
02:12:51.0644 6116 lltdsvc - ok
02:12:51.0707 6116 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
02:12:51.0707 6116 lmhosts - ok
02:12:51.0832 6116 LMS (7485fbcef9136f530953575e2977859d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
02:12:51.0832 6116 LMS - ok
02:12:51.0972 6116 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
02:12:51.0988 6116 LSI_FC - ok
02:12:52.0112 6116 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
02:12:52.0112 6116 LSI_SAS - ok
02:12:52.0253 6116 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:12:52.0253 6116 LSI_SAS2 - ok
02:12:52.0378 6116 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:12:52.0393 6116 LSI_SCSI - ok
02:12:52.0534 6116 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
02:12:52.0534 6116 luafv - ok
02:12:52.0658 6116 M4LIC (543080d7653128b1fa7cd8f7db22badb) C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE
02:12:52.0658 6116 M4LIC - ok
02:12:52.0768 6116 MacDrive8Service (95c395fdeaf6813a1dc974ddb7ee04b4) C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe
02:12:52.0768 6116 MacDrive8Service - ok
02:12:52.0924 6116 MarvinBus (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
02:12:52.0924 6116 MarvinBus - ok
02:12:53.0064 6116 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
02:12:53.0064 6116 Mcx2Svc - ok
02:12:53.0204 6116 MDFSYSNT (99875732a0c1373316af28ed79c168cc) C:\Windows\system32\drivers\MDFSYSNT.sys
02:12:53.0220 6116 MDFSYSNT - ok
02:12:53.0345 6116 MDPMGRNT (8d3b834090836a01f49b97f22ae9c83c) C:\Windows\system32\DRIVERS\MDPMGRNT.SYS
02:12:53.0345 6116 MDPMGRNT - ok
02:12:53.0470 6116 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
02:12:53.0470 6116 megasas - ok
02:12:53.0626 6116 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
02:12:53.0626 6116 MegaSR - ok
02:12:53.0766 6116 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:12:53.0766 6116 Microsoft Office Groove Audit Service - ok
02:12:53.0875 6116 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
02:12:53.0875 6116 MMCSS - ok
02:12:53.0984 6116 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
02:12:53.0984 6116 Modem - ok
02:12:54.0109 6116 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
02:12:54.0109 6116 monitor - ok
02:12:54.0265 6116 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
02:12:54.0265 6116 mouclass - ok
02:12:54.0406 6116 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
02:12:54.0406 6116 mouhid - ok
02:12:54.0546 6116 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
02:12:54.0546 6116 mountmgr - ok
02:12:54.0702 6116 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
02:12:54.0702 6116 mpio - ok
02:12:54.0827 6116 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
02:12:54.0827 6116 mpsdrv - ok
02:12:54.0983 6116 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
02:12:55.0014 6116 MpsSvc - ok
02:12:55.0139 6116 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
02:12:55.0154 6116 MRxDAV - ok
02:12:55.0264 6116 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
02:12:55.0264 6116 mrxsmb - ok
02:12:55.0342 6116 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:12:55.0357 6116 mrxsmb10 - ok
02:12:55.0420 6116 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:12:55.0420 6116 mrxsmb20 - ok
02:12:55.0513 6116 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
02:12:55.0529 6116 msahci - ok
02:12:55.0560 6116 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
02:12:55.0560 6116 msdsm - ok
02:12:55.0607 6116 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
02:12:55.0607 6116 MSDTC - ok
02:12:55.0732 6116 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
02:12:55.0732 6116 Msfs - ok
02:12:55.0810 6116 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
02:12:55.0810 6116 mshidkmdf - ok
02:12:55.0856 6116 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
02:12:55.0856 6116 msisadrv - ok
02:12:55.0919 6116 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
02:12:55.0919 6116 MSiSCSI - ok
02:12:55.0934 6116 msiserver - ok
02:12:55.0997 6116 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
02:12:55.0997 6116 MSKSSRV - ok
02:12:56.0090 6116 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
02:12:56.0090 6116 MSPCLOCK - ok
02:12:56.0184 6116 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
02:12:56.0184 6116 MSPQM - ok
02:12:56.0262 6116 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
02:12:56.0278 6116 MsRPC - ok
02:12:56.0402 6116 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
02:12:56.0402 6116 mssmbios - ok
02:12:56.0527 6116 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
02:12:56.0527 6116 MSTEE - ok
02:12:56.0636 6116 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
02:12:56.0636 6116 MTConfig - ok
02:12:56.0730 6116 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
02:12:56.0730 6116 Mup - ok
02:12:56.0855 6116 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
02:12:56.0855 6116 mwlPSDFilter - ok
02:12:56.0933 6116 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
02:12:56.0933 6116 mwlPSDNServ - ok
02:12:57.0058 6116 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
02:12:57.0058 6116 mwlPSDVDisk - ok
02:12:57.0167 6116 MWLService (22a4905c958beb68d78385b633c1351b) C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
02:12:57.0167 6116 MWLService - ok
02:12:57.0276 6116 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
02:12:57.0292 6116 napagent - ok
02:12:57.0432 6116 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
02:12:57.0448 6116 NativeWifiP - ok
02:12:57.0604 6116 NAUpdate (13aa2130f2a104dd775ead0f0ee5417b) C:\Program Files (x86)\Nero\Update\NASvc.exe
02:12:57.0604 6116 NAUpdate - ok
02:12:57.0744 6116 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
02:12:57.0775 6116 NDIS - ok
02:12:57.0916 6116 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
02:12:57.0916 6116 NdisCap - ok
02:12:58.0072 6116 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
02:12:58.0072 6116 NdisTapi - ok
02:12:58.0181 6116 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
02:12:58.0181 6116 Ndisuio - ok
02:12:58.0290 6116 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
02:12:58.0290 6116 NdisWan - ok
02:12:58.0399 6116 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
02:12:58.0399 6116 NDProxy - ok
02:12:58.0555 6116 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
02:12:58.0555 6116 Net Driver HPZ12 - ok
02:12:58.0633 6116 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
02:12:58.0633 6116 NetBIOS - ok
02:12:58.0696 6116 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
02:12:58.0696 6116 NetBT - ok
02:12:58.0820 6116 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:12:58.0820 6116 Netlogon - ok
02:12:58.0930 6116 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
02:12:58.0945 6116 Netman - ok
02:12:58.0976 6116 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
02:12:58.0992 6116 netprofm - ok
02:12:59.0086 6116 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:12:59.0086 6116 NetTcpPortSharing - ok
02:12:59.0226 6116 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
02:12:59.0226 6116 nfrd960 - ok
02:12:59.0366 6116 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
02:12:59.0366 6116 NlaSvc - ok
02:12:59.0491 6116 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
02:12:59.0491 6116 Npfs - ok
02:12:59.0554 6116 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
02:12:59.0554 6116 nsi - ok
02:12:59.0647 6116 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
02:12:59.0647 6116 nsiproxy - ok
02:12:59.0819 6116 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
02:12:59.0897 6116 Ntfs - ok
02:13:00.0022 6116 NTI IScheduleSvc (5b3ce960c62dbe864be9a0bd043a3e30) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
02:13:00.0022 6116 NTI IScheduleSvc - ok
02:13:00.0162 6116 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
02:13:00.0162 6116 NTIDrvr - ok
02:13:00.0287 6116 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
02:13:00.0287 6116 Null - ok
02:13:00.0427 6116 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
02:13:00.0427 6116 nvraid - ok
02:13:00.0521 6116 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
02:13:00.0536 6116 nvstor - ok
02:13:00.0646 6116 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
02:13:00.0646 6116 nv_agp - ok
02:13:00.0817 6116 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:13:00.0817 6116 odserv - ok
02:13:00.0942 6116 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
02:13:00.0942 6116 ohci1394 - ok
02:13:01.0067 6116 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:13:01.0067 6116 ose - ok
02:13:01.0192 6116 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
02:13:01.0192 6116 p2pimsvc - ok
02:13:01.0285 6116 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
02:13:01.0301 6116 p2psvc - ok
02:13:01.0394 6116 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
02:13:01.0394 6116 Parport - ok
02:13:01.0504 6116 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
02:13:01.0504 6116 partmgr - ok
02:13:01.0582 6116 PassThru Service (68139940b5ac84affb7eb1b713be66e7) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
02:13:01.0582 6116 PassThru Service - ok
02:13:01.0660 6116 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
02:13:01.0675 6116 PcaSvc - ok
02:13:01.0784 6116 PcdrNdisuio - ok
02:13:01.0909 6116 PCDSRVC{2CB8192B-513B7D03-06020101}_0 - ok
02:13:01.0987 6116 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
02:13:02.0003 6116 pci - ok
02:13:02.0128 6116 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
02:13:02.0128 6116 pciide - ok
02:13:02.0237 6116 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
02:13:02.0237 6116 pcmcia - ok
02:13:02.0284 6116 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
02:13:02.0284 6116 pcw - ok
02:13:02.0330 6116 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
02:13:02.0330 6116 PEAUTH - ok
02:13:02.0440 6116 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
02:13:02.0440 6116 PerfHost - ok
02:13:02.0549 6116 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
02:13:02.0596 6116 pla - ok
02:13:02.0736 6116 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
02:13:02.0752 6116 PlugPlay - ok
02:13:02.0892 6116 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
02:13:02.0892 6116 Pml Driver HPZ12 - ok
02:13:03.0001 6116 pnetmdm (06841f5cd8410b6bdc0b5a631b8f8787) C:\Windows\system32\DRIVERS\pnetmdm64.sys
02:13:03.0001 6116 pnetmdm - ok
02:13:03.0032 6116 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
02:13:03.0032 6116 PNRPAutoReg - ok
02:13:03.0126 6116 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
02:13:03.0142 6116 PNRPsvc - ok
02:13:03.0173 6116 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
02:13:03.0173 6116 PolicyAgent - ok
02:13:03.0266 6116 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
02:13:03.0282 6116 Power - ok
02:13:03.0329 6116 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
02:13:03.0344 6116 PptpMiniport - ok
02:13:03.0407 6116 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
02:13:03.0407 6116 Processor - ok
02:13:03.0454 6116 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
02:13:03.0469 6116 ProfSvc - ok
02:13:03.0532 6116 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:13:03.0532 6116 ProtectedStorage - ok
02:13:03.0578 6116 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
02:13:03.0594 6116 Psched - ok
02:13:03.0672 6116 PSI_SVC_2 (f036cfb275d0c55f4e45fbbf5f98b3c8) c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
02:13:03.0672 6116 PSI_SVC_2 - ok
02:13:03.0812 6116 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
02:13:03.0859 6116 ql2300 - ok
02:13:04.0000 6116 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
02:13:04.0000 6116 ql40xx - ok
02:13:04.0046 6116 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
02:13:04.0046 6116 QWAVE - ok
02:13:04.0093 6116 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
02:13:04.0093 6116 QWAVEdrv - ok
02:13:04.0218 6116 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
02:13:04.0218 6116 RasAcd - ok
02:13:04.0265 6116 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
02:13:04.0265 6116 RasAgileVpn - ok
02:13:04.0312 6116 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
02:13:04.0312 6116 RasAuto - ok
02:13:04.0374 6116 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
02:13:04.0374 6116 Rasl2tp - ok
02:13:04.0514 6116 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
02:13:04.0514 6116 RasMan - ok
02:13:04.0624 6116 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
02:13:04.0624 6116 RasPppoe - ok
02:13:04.0733 6116 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
02:13:04.0733 6116 RasSstp - ok
02:13:04.0858 6116 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
02:13:04.0858 6116 rdbss - ok
02:13:04.0982 6116 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
02:13:04.0982 6116 rdpbus - ok
02:13:05.0107 6116 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
02:13:05.0107 6116 RDPCDD - ok
02:13:05.0232 6116 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
02:13:05.0232 6116 RDPENCDD - ok
02:13:05.0357 6116 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
02:13:05.0357 6116 RDPREFMP - ok
02:13:05.0450 6116 RDPWD (074ac702d8b8b660b0e1371555995386) C:\Windows\system32\drivers\RDPWD.sys
02:13:05.0466 6116 RDPWD - ok
02:13:05.0591 6116 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
02:13:05.0606 6116 rdyboost - ok
02:13:05.0653 6116 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
02:13:05.0669 6116 RemoteAccess - ok
02:13:05.0778 6116 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
02:13:05.0794 6116 RemoteRegistry - ok
02:13:05.0918 6116 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
02:13:05.0918 6116 RFCOMM - ok
02:13:06.0043 6116 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
02:13:06.0043 6116 ROOTMODEM - ok
02:13:06.0106 6116 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
02:13:06.0106 6116 RpcEptMapper - ok
02:13:06.0184 6116 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
02:13:06.0184 6116 RpcLocator - ok
02:13:06.0246 6116 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
02:13:06.0262 6116 RpcSs - ok
02:13:06.0371 6116 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
02:13:06.0386 6116 rspndr - ok
02:13:06.0527 6116 RSUSBSTOR (ce2ef8030932b98832eb2f9580c5b1dd) C:\Windows\system32\Drivers\RtsUStor.sys
02:13:06.0527 6116 RSUSBSTOR - ok
02:13:06.0620 6116 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:13:06.0620 6116 SamSs - ok
02:13:06.0683 6116 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
02:13:06.0683 6116 sbp2port - ok
02:13:06.0714 6116 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
02:13:06.0730 6116 SCardSvr - ok
02:13:06.0776 6116 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
02:13:06.0776 6116 scfilter - ok
02:13:06.0839 6116 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
02:13:06.0870 6116 Schedule - ok
02:13:06.0995 6116 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
02:13:07.0010 6116 SCPolicySvc - ok
02:13:07.0057 6116 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
02:13:07.0057 6116 SDRSVC - ok
02:13:07.0151 6116 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
02:13:07.0151 6116 secdrv - ok
02:13:07.0198 6116 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
02:13:07.0198 6116 seclogon - ok
02:13:07.0229 6116 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
02:13:07.0229 6116 SENS - ok
02:13:07.0322 6116 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
02:13:07.0322 6116 SensrSvc - ok
02:13:07.0385 6116 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
02:13:07.0385 6116 Serenum - ok
02:13:07.0416 6116 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
02:13:07.0416 6116 Serial - ok
02:13:07.0478 6116 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
02:13:07.0478 6116 sermouse - ok
02:13:07.0525 6116 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
02:13:07.0525 6116 SessionEnv - ok
02:13:07.0572 6116 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
02:13:07.0572 6116 sffdisk - ok
02:13:07.0588 6116 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
02:13:07.0588 6116 sffp_mmc - ok
02:13:07.0603 6116 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
02:13:07.0603 6116 sffp_sd - ok
02:13:07.0650 6116 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
02:13:07.0650 6116 sfloppy - ok
02:13:07.0697 6116 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
02:13:07.0712 6116 SharedAccess - ok
02:13:07.0744 6116 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
02:13:07.0759 6116 ShellHWDetection - ok
02:13:07.0806 6116 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:13:07.0806 6116 SiSRaid2 - ok
02:13:07.0837 6116 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
02:13:07.0837 6116 SiSRaid4 - ok
02:13:07.0915 6116 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
02:13:07.0915 6116 SkypeUpdate - ok
02:13:08.0024 6116 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
02:13:08.0024 6116 Smb - ok
02:13:08.0165 6116 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
02:13:08.0165 6116 SNMPTRAP - ok
02:13:08.0243 6116 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
02:13:08.0243 6116 spldr - ok
02:13:08.0368 6116 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
02:13:08.0368 6116 Spooler - ok
02:13:08.0524 6116 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
02:13:08.0555 6116 sppsvc - ok
02:13:08.0648 6116 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
02:13:08.0648 6116 sppuinotify - ok
02:13:08.0804 6116 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
02:13:08.0804 6116 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
02:13:08.0804 6116 sptd ( LockedFile.Multi.Generic ) - warning
02:13:08.0804 6116 sptd - detected LockedFile.Multi.Generic (1)
02:13:08.0914 6116 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
02:13:08.0914 6116 srv - ok
02:13:09.0070 6116 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
02:13:09.0070 6116 srv2 - ok
02:13:09.0163 6116 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
02:13:09.0163 6116 srvnet - ok
02:13:09.0304 6116 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
02:13:09.0304 6116 SSDPSRV - ok
02:13:09.0382 6116 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
02:13:09.0382 6116 SstpSvc - ok
02:13:09.0460 6116 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
02:13:09.0460 6116 stexstor - ok
02:13:09.0584 6116 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
02:13:09.0616 6116 stisvc - ok
02:13:09.0725 6116 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
02:13:09.0725 6116 swenum - ok
02:13:09.0818 6116 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
02:13:09.0834 6116 swprv - ok
02:13:09.0990 6116 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
02:13:10.0021 6116 SysMain - ok
02:13:10.0130 6116 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
02:13:10.0146 6116 TabletInputService - ok
02:13:10.0193 6116 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
02:13:10.0208 6116 TapiSrv - ok
02:13:10.0318 6116 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
02:13:10.0318 6116 TBS - ok
02:13:10.0411 6116 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys
02:13:10.0458 6116 Tcpip - ok
02:13:10.0630 6116 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys
02:13:10.0645 6116 TCPIP6 - ok
02:13:10.0692 6116 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
02:13:10.0692 6116 tcpipreg - ok
02:13:10.0723 6116 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
02:13:10.0723 6116 TDPIPE - ok
02:13:10.0770 6116 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
02:13:10.0770 6116 TDTCP - ok
02:13:10.0801 6116 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
02:13:10.0801 6116 tdx - ok
02:13:10.0864 6116 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
02:13:10.0879 6116 TermDD - ok
02:13:10.0926 6116 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
02:13:10.0942 6116 TermService - ok
02:13:11.0051 6116 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
02:13:11.0051 6116 Themes - ok
02:13:11.0113 6116 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
02:13:11.0113 6116 THREADORDER - ok
02:13:11.0222 6116 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
02:13:11.0238 6116 TrkWks - ok
02:13:11.0300 6116 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
02:13:11.0300 6116 TrustedInstaller - ok
02:13:11.0394 6116 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
02:13:11.0394 6116 tssecsrv - ok
02:13:11.0519 6116 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
02:13:11.0519 6116 tunnel - ok
02:13:11.0659 6116 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
02:13:11.0659 6116 TurboB - ok
02:13:11.0737 6116 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
02:13:11.0737 6116 TurboBoost - ok
02:13:11.0846 6116 TVersityMediaServer (06bccb3bf0d06adccc4ebc8ef682dd59) C:\ProgramData\TVersity\Media Server\MediaServer.exe
02:13:11.0878 6116 TVersityMediaServer - ok
02:13:11.0987 6116 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
02:13:11.0987 6116 uagp35 - ok
02:13:12.0096 6116 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
02:13:12.0096 6116 UBHelper - ok
02:13:12.0190 6116 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
02:13:12.0205 6116 udfs - ok
02:13:12.0330 6116 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
02:13:12.0330 6116 UI0Detect - ok
02:13:12.0470 6116 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
02:13:12.0470 6116 uliagpkx - ok
02:13:12.0564 6116 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
02:13:12.0564 6116 umbus - ok
02:13:12.0689 6116 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
02:13:12.0689 6116 UmPass - ok
02:13:12.0829 6116 UNS (765f2dd351ba064f657751d8d75e58c0) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
02:13:12.0892 6116 UNS - ok
02:13:12.0985 6116 Updater Service (f9ec9acd504d823d9b9ca98a4f8d3ca2) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
02:13:12.0985 6116 Updater Service - ok
02:13:13.0094 6116 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
02:13:13.0094 6116 upnphost - ok
02:13:13.0188 6116 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
02:13:13.0188 6116 USBAAPL64 - ok
02:13:13.0328 6116 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
02:13:13.0344 6116 usbccgp - ok
02:13:13.0438 6116 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
02:13:13.0438 6116 usbcir - ok
02:13:13.0578 6116 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
02:13:13.0578 6116 usbehci - ok
02:13:13.0687 6116 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
02:13:13.0703 6116 usbhub - ok
02:13:13.0812 6116 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
02:13:13.0812 6116 usbohci - ok
02:13:13.0890 6116 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
02:13:13.0890 6116 usbprint - ok
02:13:13.0999 6116 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
02:13:13.0999 6116 usbscan - ok
02:13:14.0093 6116 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:13:14.0093 6116 USBSTOR - ok
02:13:14.0202 6116 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
02:13:14.0202 6116 usbuhci - ok
02:13:14.0280 6116 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys
02:13:14.0296 6116 usbvideo - ok
02:13:14.0374 6116 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
02:13:14.0374 6116 UxSms - ok
02:13:14.0483 6116 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
02:13:14.0483 6116 VaultSvc - ok
02:13:14.0592 6116 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
02:13:14.0592 6116 vdrvroot - ok
02:13:14.0717 6116 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
02:13:14.0732 6116 vds - ok
02:13:14.0888 6116 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
02:13:14.0888 6116 vga - ok
02:13:14.0951 6116 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
02:13:14.0951 6116 VgaSave - ok
02:13:15.0029 6116 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
02:13:15.0029 6116 vhdmp - ok
02:13:15.0122 6116 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
02:13:15.0122 6116 viaide - ok
02:13:15.0185 6116 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
02:13:15.0185 6116 volmgr - ok
02:13:15.0263 6116 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
02:13:15.0278 6116 volmgrx - ok
02:13:15.0310 6116 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
02:13:15.0310 6116 volsnap - ok
02:13:15.0388 6116 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
02:13:15.0388 6116 vsmraid - ok
02:13:15.0497 6116 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
02:13:15.0544 6116 VSS - ok
02:13:15.0668 6116 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
02:13:15.0668 6116 vwifibus - ok
02:13:15.0715 6116 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
02:13:15.0715 6116 vwififlt - ok
02:13:15.0840 6116 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
02:13:15.0856 6116 vwifimp - ok
02:13:15.0949 6116 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
02:13:15.0949 6116 W32Time - ok
02:13:16.0012 6116 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
02:13:16.0012 6116 WacomPen - ok
02:13:16.0043 6116 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
02:13:16.0043 6116 WANARP - ok
02:13:16.0058 6116 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
02:13:16.0058 6116 Wanarpv6 - ok
02:13:16.0246 6116 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
02:13:16.0292 6116 WatAdminSvc - ok
02:13:16.0433 6116 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
02:13:16.0480 6116 wbengine - ok
02:13:16.0604 6116 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
02:13:16.0604 6116 WbioSrvc - ok
02:13:16.0682 6116 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
02:13:16.0698 6116 wcncsvc - ok
02:13:16.0792 6116 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
02:13:16.0792 6116 WcsPlugInService - ok
02:13:16.0823 6116 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
02:13:16.0823 6116 Wd - ok
02:13:16.0963 6116 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
02:13:16.0963 6116 WDC_SAM - ok
02:13:17.0088 6116 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
02:13:17.0104 6116 Wdf01000 - ok
02:13:17.0213 6116 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
02:13:17.0228 6116 WdiServiceHost - ok
02:13:17.0228 6116 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
02:13:17.0228 6116 WdiSystemHost - ok
02:13:17.0338 6116 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
02:13:17.0338 6116 WebClient - ok
02:13:17.0462 6116 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
02:13:17.0462 6116 Wecsvc - ok
02:13:17.0587 6116 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
02:13:17.0587 6116 wercplsupport - ok
02:13:17.0712 6116 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
02:13:17.0728 6116 WerSvc - ok
02:13:17.0852 6116 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
02:13:17.0852 6116 WfpLwf - ok
02:13:17.0962 6116 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
02:13:17.0962 6116 WIMMount - ok
02:13:18.0008 6116 WinDefend - ok
02:13:18.0024 6116 WinHttpAutoProxySvc - ok
02:13:18.0118 6116 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
02:13:18.0133 6116 Winmgmt - ok
02:13:18.0289 6116 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
02:13:18.0352 6116 WinRM - ok
02:13:18.0476 6116 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
02:13:18.0476 6116 WinUsb - ok
02:13:18.0586 6116 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
02:13:18.0617 6116 Wlansvc - ok
02:13:18.0773 6116 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:13:18.0866 6116 wlidsvc - ok
02:13:18.0976 6116 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
02:13:18.0976 6116 WmiAcpi - ok
02:13:19.0022 6116 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
02:13:19.0038 6116 wmiApSrv - ok
02:13:19.0085 6116 WMPNetworkSvc - ok
02:13:19.0178 6116 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
02:13:19.0178 6116 WPCSvc - ok
02:13:19.0225 6116 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
02:13:19.0225 6116 WPDBusEnum - ok
02:13:19.0272 6116 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
02:13:19.0272 6116 ws2ifsl - ok
02:13:19.0350 6116 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\system32\wscsvc.dll
02:13:19.0350 6116 wscsvc - ok
02:13:19.0412 6116 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
02:13:19.0412 6116 WSDPrintDevice - ok
02:13:19.0522 6116 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys
02:13:19.0522 6116 WSDScan - ok
02:13:19.0537 6116 WSearch - ok
02:13:19.0615 6116 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
02:13:19.0678 6116 wuauserv - ok
02:13:19.0771 6116 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
02:13:19.0771 6116 WudfPf - ok
02:13:19.0912 6116 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
02:13:19.0912 6116 WUDFRd - ok
02:13:19.0958 6116 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
02:13:19.0974 6116 wudfsvc - ok
02:13:19.0990 6116 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
02:13:20.0005 6116 WwanSvc - ok
02:13:20.0036 6116 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
02:13:20.0177 6116 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
02:13:20.0177 6116 \Device\Harddisk0\DR0 - detected TDSS File System (1)
02:13:20.0192 6116 Boot (0x1200) (349fdeee12858b4bbd72e585f184ea48) \Device\Harddisk0\DR0\Partition0
02:13:20.0192 6116 \Device\Harddisk0\DR0\Partition0 - ok
02:13:20.0224 6116 Boot (0x1200) (b62f2222df957404fe13e9ba4c945478) \Device\Harddisk0\DR0\Partition1
02:13:20.0224 6116 \Device\Harddisk0\DR0\Partition1 - ok
02:13:20.0224 6116 ============================================================
02:13:20.0224 6116 Scan finished
02:13:20.0224 6116 ============================================================
02:13:20.0239 5132 Detected object count: 2
02:13:20.0239 5132 Actual detected object count: 2
02:13:37.0711 5132 sptd ( LockedFile.Multi.Generic ) - skipped by user
02:13:37.0711 5132 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
02:13:37.0711 5132 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
02:13:37.0711 5132 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
02:13:45.0371 3300 Deinitialize success


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-16 02:16:36
-----------------------------
02:16:36.468 OS Version: Windows x64 6.1.7600
02:16:36.468 Number of processors: 4 586 0x2505
02:16:36.468 ComputerName: POCKETPAL-PC UserName: phillip
02:16:38.153 Initialize success
02:16:44.658 AVAST engine defs: 12041502
02:16:58.199 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
02:16:58.215 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
02:16:58.230 Disk 0 MBR read successfully
02:16:58.230 Disk 0 MBR scan
02:16:58.230 Disk 0 Windows VISTA default MBR code
02:16:58.246 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13000 MB offset 2048
02:16:58.277 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 26626048
02:16:58.293 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 463838 MB offset 26830848
02:16:58.339 Disk 0 scanning C:\Windows\system32\drivers
02:17:08.869 Service scanning
02:17:51.988 Modules scanning
02:17:52.004 Disk 0 trace - called modules:
02:17:52.050 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys splg.sys hal.dll
02:17:52.050 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004cdd060]
02:17:52.066 3 CLASSPNP.SYS[fffff88001cda43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0xfffffa8004a1f050]
02:17:54.188 AVAST engine scan C:\Windows
02:17:58.852 AVAST engine scan C:\Windows\system32
02:20:53.713 AVAST engine scan C:\Windows\system32\drivers
02:21:07.612 AVAST engine scan C:\Users\phillip
02:26:23.356 Disk 0 MBR has been saved successfully to "C:\Users\phillip\Downloads\MBR.dat"
02:26:23.371 The log file has been saved successfully to "C:\Users\phillip\Downloads\aswMBR 02.txt"


and with the quick scan!!!

Posted Image

Thats dude, everything seems pretty good but the only thing that keeps it from perfect is that now every once in awhile my web browser or program is loading it just hiccups for like ten or fifteen seconds of "(not responding)" and then it's normal again.?? I dont know but the bigger problem is resolved so thanks! :clapping:

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:10 AM

Posted 16 April 2012 - 09:04 AM

Bigger issue was that you were infected by rootkit which has been removed now.

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#7 firstuser

firstuser
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:05:10 AM

Posted 17 April 2012 - 04:18 PM

Okay, well before I used those two new programs I fully scanned with antimalware and it finished with clean results. So thanks alot! I web surf on happily! :))) So I guess this case is closed. Thanks again!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:10 AM

Posted 17 April 2012 - 08:55 PM

Grt :thumbsup: but i still need your logs to make sure PC is clean

good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users