Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Security Shield Hijack of computer


  • This topic is locked This topic is locked
43 replies to this topic

#1 tazbear

tazbear

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 20 April 2012 - 09:11 AM

Hello,
I had the virus Security Shild pop up on my computer to start. It gave me the standard critical errors and hard drive errors. I was on Internet Explorer. I was in the process of trying to delete history on my computer when everything started with the error messages, and then the screen went blank. I was able to start the computer in safe mode with networking, but nothing was there. Then the computer restarted again, and it went to a screen that showed the MAC address, guid:07D8811E 086 11DA A6B6 000EA68F733F. It then shows a DHCP prompt wiht ... The next line is PXE-E53: no boot file recieved. Is there a way around this?
Thank you for your help.
Lance

Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum, due to the absence of any malware logs. ~ Animal

BC AdBot (Login to Remove)

 


#2 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 35,758 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:10:09 PM

Posted 20 April 2012 - 10:04 AM

Please take a look here: Remove Security Shield 2012 or SecurityShield (Uninstall Guide)

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+

#3 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 20 April 2012 - 10:58 AM

Hi Animal,
I cannot get the computer to boot at this point. When it starts, it goes to a intel boot agent PXE base code and then the mac address apears with DHCP... below.

It then provides a message of no boot file received and a second line with no bootable device --- insert bood disck and press any key.

I cannot move past this to get to safe mode. Do you have any suggestions?

#4 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 24 April 2012 - 10:26 AM

Hello and sorry for the delay.

Try this please. You will need a USB drive.

Download GETxPUD.exe to the desktop of your clean computer
  • Run GETxPUD.exe
  • A new folder will appear on the desktop.
  • Open the GETxPUD folder and click on the get&burn.bat
  • The program will download xpud_0.9.2.iso, and upon finished will open BurnCDCC ready to burn the image.
  • Click on Start and follow the prompts to burn the image to a CD.
  • Remove the USB & CD and insert it in the sick computer
  • Boot the Sick computer with the CD you just burned
  • The computer must be set to boot from the CD
  • Gently tap F12 and choose to boot from the CD
  • Follow the prompts
  • A Welcome to xPUD screen will appear
  • Press File
  • Expand mnt
  • sda1,2...usually corresponds to your HDD
  • sdb1 is likely your USB
  • Click on the folder that represents your USB drive (sdb1 ?)
  • Press Tool at the top
  • Choose Open Terminal
  • Type the following and press enter:

    dd if=/dev/sda of=mbr.bin bs=512 count=1

  • Press Enter
  • After it has finished a file will be located on your USB drive named mbr.bin
  • Remove the USB drive and insert it back in your working computer and navigate to mbr.bin, zip it up and attach it to your next reply.

This will allow me to have a look at the MasterBootRecord of your drive and see if it is infected.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#5 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 24 April 2012 - 05:15 PM

Thank you very much. i will try this. i will be away from my computer for a few days. I was able to get it to boot, and identified a rootkit virus. The computer tries to start in safe mode after the virus was identified, but will only run the listing of frivers, and then stop. it will boot to regular mode, but the internet explorer and firefox still have redirection happening for websites. i do have a boot cd / restore cd. should i still do the process you recomended?

#6 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 25 April 2012 - 12:46 AM

In that case, please run the following tool from normal mode when you get back. :)

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#7 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 27 April 2012 - 08:53 AM

Hi Elise. Here is my log file from the TDSSkiller. My internet explorer keeps trying to open multiple sessions now. hopefully we can figure that out. I appreciate all of your help.
Lance

09:21:34.0171 3064 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
09:21:35.0078 3064 ============================================================
09:21:35.0078 3064 Current date / time: 2012/04/27 09:21:35.0078
09:21:35.0078 3064 SystemInfo:
09:21:35.0078 3064
09:21:35.0078 3064 OS Version: 5.1.2600 ServicePack: 2.0
09:21:35.0078 3064 Product type: Workstation
09:21:35.0078 3064 ComputerName: HOME
09:21:35.0093 3064 UserName: Owner
09:21:35.0093 3064 Windows directory: C:\WINDOWS
09:21:35.0093 3064 System windows directory: C:\WINDOWS
09:21:35.0093 3064 Processor architecture: Intel x86
09:21:35.0093 3064 Number of processors: 2
09:21:35.0093 3064 Page size: 0x1000
09:21:35.0093 3064 Boot type: Normal boot
09:21:35.0093 3064 ============================================================
09:21:42.0546 3064 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:21:43.0031 3064 ============================================================
09:21:43.0031 3064 \Device\Harddisk0\DR0:
09:21:43.0187 3064 MBR partitions:
09:21:43.0187 3064 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x9391DA, BlocksNum 0x1C88B3A7
09:21:43.0187 3064 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x93919B
09:21:43.0187 3064 ============================================================
09:21:43.0406 3064 C: <-> \Device\Harddisk0\DR0\Partition0
09:21:43.0437 3064 D: <-> \Device\Harddisk0\DR0\Partition1
09:21:43.0437 3064 ============================================================
09:21:43.0437 3064 Initialize success
09:21:43.0437 3064 ============================================================
09:21:53.0875 4616 ============================================================
09:21:53.0875 4616 Scan started
09:21:53.0875 4616 Mode: Manual;
09:21:53.0875 4616 ============================================================
09:21:56.0906 4616 Abiosdsk - ok
09:21:57.0015 4616 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
09:21:57.0031 4616 abp480n5 - ok
09:21:57.0062 4616 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:21:57.0171 4616 ACPI - ok
09:21:57.0187 4616 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
09:21:57.0187 4616 ACPIEC - ok
09:21:57.0296 4616 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:21:57.0359 4616 AdobeFlashPlayerUpdateSvc - ok
09:21:57.0390 4616 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
09:21:57.0406 4616 adpu160m - ok
09:21:57.0468 4616 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
09:21:57.0484 4616 aec - ok
09:21:57.0531 4616 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
09:21:57.0546 4616 AFD - ok
09:21:57.0546 4616 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
09:21:57.0546 4616 agp440 - ok
09:21:57.0562 4616 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
09:21:57.0562 4616 agpCPQ - ok
09:21:57.0593 4616 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
09:21:57.0593 4616 Aha154x - ok
09:21:57.0609 4616 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
09:21:57.0609 4616 aic78u2 - ok
09:21:57.0625 4616 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
09:21:57.0625 4616 aic78xx - ok
09:21:57.0656 4616 Alerter (c7ae0fd3867db0d42b03b73c18f3d671) C:\WINDOWS\system32\alrsvc.dll
09:21:57.0671 4616 Alerter - ok
09:21:57.0687 4616 ALG (f1958fbf86d5c004cf19a5951a9514b7) C:\WINDOWS\System32\alg.exe
09:21:57.0687 4616 ALG - ok
09:21:57.0687 4616 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
09:21:57.0703 4616 AliIde - ok
09:21:57.0703 4616 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
09:21:57.0703 4616 alim1541 - ok
09:21:57.0750 4616 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
09:21:57.0750 4616 amdagp - ok
09:21:57.0750 4616 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
09:21:57.0765 4616 amsint - ok
09:21:57.0812 4616 AppMgmt (9c3c12975c97119412802b181fbeeffe) C:\WINDOWS\System32\appmgmts.dll
09:21:57.0875 4616 AppMgmt - ok
09:21:57.0890 4616 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:21:57.0890 4616 Arp1394 - ok
09:21:57.0968 4616 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
09:21:57.0984 4616 asc - ok
09:21:57.0984 4616 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
09:21:57.0984 4616 asc3350p - ok
09:21:58.0000 4616 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
09:21:58.0000 4616 asc3550 - ok
09:21:58.0046 4616 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
09:21:58.0046 4616 ASCTRM - ok
09:21:58.0250 4616 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
09:21:58.0281 4616 aspnet_state - ok
09:21:58.0296 4616 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:21:58.0296 4616 AsyncMac - ok
09:21:58.0375 4616 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
09:21:58.0406 4616 atapi - ok
09:21:58.0406 4616 Atdisk - ok
09:21:58.0453 4616 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:21:58.0453 4616 Atmarpc - ok
09:21:58.0484 4616 AudioSrv (db66db626e4882ebef55f136f12c1829) C:\WINDOWS\System32\audiosrv.dll
09:21:58.0484 4616 AudioSrv - ok
09:21:58.0500 4616 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
09:21:58.0500 4616 audstub - ok
09:21:58.0562 4616 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
09:21:58.0562 4616 Beep - ok
09:21:58.0828 4616 BITS (2c69ec7e5a311334d10dd95f338fccea) C:\WINDOWS\system32\qmgr.dll
09:21:59.0171 4616 BITS - ok
09:21:59.0421 4616 Browser (e3cfccdda4edd1d0dc9168b2e18f27b8) C:\WINDOWS\System32\browser.dll
09:21:59.0468 4616 Browser - ok
09:21:59.0500 4616 byjjhj - ok
09:21:59.0953 4616 catchme - ok
09:22:00.0000 4616 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
09:22:00.0000 4616 cbidf - ok
09:22:00.0015 4616 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
09:22:00.0015 4616 cbidf2k - ok
09:22:00.0046 4616 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
09:22:00.0046 4616 cd20xrnt - ok
09:22:00.0078 4616 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
09:22:00.0078 4616 Cdaudio - ok
09:22:00.0093 4616 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
09:22:00.0093 4616 Cdfs - ok
09:22:00.0140 4616 Cdr4_xp (2552670e5fbcfdb540eeb426af39704d) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
09:22:00.0140 4616 Cdr4_xp - ok
09:22:00.0171 4616 Cdralw2k (b761b10d6a541be69ea448a8429d30b0) C:\WINDOWS\system32\drivers\Cdralw2k.sys
09:22:00.0171 4616 Cdralw2k - ok
09:22:00.0187 4616 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:22:00.0187 4616 Cdrom - ok
09:22:00.0187 4616 Changer - ok
09:22:00.0250 4616 CiSvc (3192bd04d032a9c4a85a3278c268a13a) C:\WINDOWS\system32\cisvc.exe
09:22:00.0250 4616 CiSvc - ok
09:22:00.0312 4616 ClipSrv (c8dec22c4137d7a90f8bdf41ca4b82ae) C:\WINDOWS\system32\clipsrv.exe
09:22:00.0312 4616 ClipSrv - ok
09:22:00.0406 4616 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:22:00.0500 4616 clr_optimization_v2.0.50727_32 - ok
09:22:00.0531 4616 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
09:22:00.0531 4616 CmdIde - ok
09:22:00.0531 4616 COMSysApp - ok
09:22:00.0593 4616 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
09:22:00.0593 4616 Cpqarray - ok
09:22:01.0031 4616 CryptSvc (10654f9ddcea9c46cfb77554231be73b) C:\WINDOWS\System32\cryptsvc.dll
09:22:01.0031 4616 CryptSvc - ok
09:22:01.0078 4616 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
09:22:01.0093 4616 dac2w2k - ok
09:22:01.0140 4616 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
09:22:01.0140 4616 dac960nt - ok
09:22:01.0218 4616 DcomLaunch (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
09:22:01.0250 4616 DcomLaunch - ok
09:22:01.0265 4616 Dhcp (cb6ca3e5261d65f6f809eed23bf167aa) C:\WINDOWS\System32\dhcpcsvc.dll
09:22:01.0281 4616 Dhcp - ok
09:22:01.0312 4616 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
09:22:01.0312 4616 Disk - ok
09:22:01.0328 4616 dmadmin - ok
09:22:01.0468 4616 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
09:22:01.0500 4616 dmboot - ok
09:22:01.0531 4616 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
09:22:01.0531 4616 dmio - ok
09:22:01.0546 4616 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
09:22:01.0546 4616 dmload - ok
09:22:01.0578 4616 dmserver (1639d9964c9e1b2ecca95c8217d3e70d) C:\WINDOWS\System32\dmserver.dll
09:22:01.0578 4616 dmserver - ok
09:22:01.0812 4616 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
09:22:01.0812 4616 DMusic - ok
09:22:01.0828 4616 Dnscache (7379de06fd196e396a00aa97b990c00d) C:\WINDOWS\System32\dnsrslvr.dll
09:22:01.0828 4616 Dnscache - ok
09:22:01.0843 4616 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
09:22:01.0843 4616 dpti2o - ok
09:22:01.0859 4616 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
09:22:01.0859 4616 drmkaud - ok
09:22:01.0984 4616 E100B (6ca101f9aa3d845ba31f6e13c01301a8) C:\WINDOWS\system32\DRIVERS\e100b325.sys
09:22:01.0984 4616 E100B - ok
09:22:02.0125 4616 ehRecvr (63f371f0248e3732a4821f86e6d0e370) C:\WINDOWS\eHome\ehRecvr.exe
09:22:02.0140 4616 ehRecvr - ok
09:22:02.0171 4616 ehSched (16910f8b482919bb6035ed053b691692) C:\WINDOWS\eHome\ehSched.exe
09:22:02.0171 4616 ehSched - ok
09:22:02.0203 4616 ERSvc (67dff7bbbd0e80aab7b3cf061448db8a) C:\WINDOWS\System32\ersvc.dll
09:22:02.0203 4616 ERSvc - ok
09:22:02.0265 4616 Eventlog (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
09:22:02.0281 4616 Eventlog - ok
09:22:02.0375 4616 EventSystem (60d1a6342238378bfb7545c81ee3606c) C:\WINDOWS\system32\es.dll
09:22:02.0375 4616 EventSystem - ok
09:22:02.0437 4616 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
09:22:02.0437 4616 Fastfat - ok
09:22:02.0500 4616 FastUserSwitchingCompatibility (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
09:22:02.0531 4616 FastUserSwitchingCompatibility - ok
09:22:02.0546 4616 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
09:22:02.0562 4616 Fdc - ok
09:22:02.0562 4616 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
09:22:02.0562 4616 Fips - ok
09:22:02.0578 4616 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:22:02.0578 4616 Flpydisk - ok
09:22:02.0593 4616 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
09:22:02.0593 4616 FltMgr - ok
09:22:03.0062 4616 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
09:22:03.0109 4616 FontCache3.0.0.0 - ok
09:22:03.0140 4616 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:22:03.0140 4616 Fs_Rec - ok
09:22:03.0500 4616 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:22:03.0515 4616 Ftdisk - ok
09:22:03.0546 4616 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
09:22:03.0562 4616 giveio - ok
09:22:03.0609 4616 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:22:03.0625 4616 Gpc - ok
09:22:04.0156 4616 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
09:22:04.0171 4616 gupdate - ok
09:22:04.0187 4616 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
09:22:04.0187 4616 gupdatem - ok
09:22:04.0296 4616 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
09:22:04.0296 4616 HDAudBus - ok
09:22:04.0406 4616 helpsvc (8827911a8c37e40c027cbfc88e69d967) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:22:04.0406 4616 helpsvc - ok
09:22:04.0406 4616 HidServ - ok
09:22:04.0468 4616 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:22:04.0468 4616 HidUsb - ok
09:22:04.0515 4616 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
09:22:04.0515 4616 hpn - ok
09:22:04.0562 4616 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:22:04.0562 4616 HPZid412 - ok
09:22:04.0562 4616 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:22:04.0578 4616 HPZipr12 - ok
09:22:04.0593 4616 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:22:04.0593 4616 HPZius12 - ok
09:22:04.0921 4616 HSFHWBS2 (33dfc0afa95f9a2c753ff2adb7d4a21f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
09:22:05.0000 4616 HSFHWBS2 - ok
09:22:05.0187 4616 HSF_DP (b2dfc168d6f7512faea085253c5a37ad) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
09:22:05.0234 4616 HSF_DP - ok
09:22:05.0281 4616 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
09:22:05.0296 4616 HTTP - ok
09:22:05.0343 4616 HTTPFilter (064d8581adf77c25133e7d751d917d83) C:\WINDOWS\System32\w3ssl.dll
09:22:05.0359 4616 HTTPFilter - ok
09:22:05.0484 4616 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
09:22:05.0484 4616 i2omgmt - ok
09:22:05.0515 4616 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
09:22:05.0515 4616 i2omp - ok
09:22:05.0562 4616 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:22:05.0562 4616 i8042prt - ok
09:22:06.0015 4616 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:22:06.0078 4616 idsvc - ok
09:22:06.0250 4616 IHA_MessageCenter (7f82358baf1e5b940664e601037d0b0c) C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
09:22:06.0343 4616 IHA_MessageCenter - ok
09:22:06.0390 4616 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
09:22:06.0390 4616 Imapi - ok
09:22:06.0531 4616 ImapiService (fa788520bcac0f5d9d5cde5615c0d931) C:\WINDOWS\system32\imapi.exe
09:22:06.0546 4616 ImapiService - ok
09:22:06.0562 4616 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
09:22:06.0562 4616 ini910u - ok
09:22:06.0578 4616 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
09:22:06.0578 4616 IntelIde - ok
09:22:06.0609 4616 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:22:06.0609 4616 intelppm - ok
09:22:06.0609 4616 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
09:22:06.0703 4616 Ip6Fw - ok
09:22:07.0062 4616 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:22:07.0062 4616 IpFilterDriver - ok
09:22:07.0062 4616 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:22:07.0062 4616 IpInIp - ok
09:22:07.0140 4616 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:22:07.0171 4616 IpNat - ok
09:22:07.0234 4616 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:22:07.0234 4616 IPSec - ok
09:22:07.0250 4616 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
09:22:07.0250 4616 IRENUM - ok
09:22:07.0296 4616 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:22:07.0312 4616 isapnp - ok
09:22:08.0312 4616 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
09:22:08.0312 4616 JavaQuickStarterService - ok
09:22:08.0328 4616 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:22:08.0328 4616 Kbdclass - ok
09:22:08.0390 4616 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
09:22:08.0390 4616 kmixer - ok
09:22:08.0468 4616 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
09:22:08.0468 4616 KSecDD - ok
09:22:08.0515 4616 lanmanserver (0cb3af149a0bac0836022ca307c7a0f8) C:\WINDOWS\System32\srvsvc.dll
09:22:08.0515 4616 lanmanserver - ok
09:22:08.0578 4616 lanmanworkstation (e1f27cfcd114ec9f1e1f44674b2ff9f0) C:\WINDOWS\System32\wkssvc.dll
09:22:08.0593 4616 lanmanworkstation - ok
09:22:08.0593 4616 lbrtfdc - ok
09:22:08.0796 4616 LmHosts (b3eff6d938c572e90a07b3d87a3c7657) C:\WINDOWS\System32\lmhsvc.dll
09:22:08.0796 4616 LmHosts - ok
09:22:08.0953 4616 lxecCATSCustConnectService (6311f8863d898ce60c048779f9d86e74) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe
09:22:08.0984 4616 lxecCATSCustConnectService - ok
09:22:08.0984 4616 lxec_device - ok
09:22:09.0046 4616 McAfeeAntiSpyware (1f1f459e191fd540d0c4f306bdd500a9) C:\Program Files\McAfee\McAfee AntiSpyware\Msssrv.exe
09:22:09.0046 4616 McAfeeAntiSpyware - ok
09:22:09.0109 4616 mcupdmgr.exe (abd5b888af754e30a95b21ad885635b0) C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
09:22:09.0140 4616 mcupdmgr.exe - ok
09:22:09.0203 4616 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
09:22:09.0203 4616 mdmxsdk - ok
09:22:09.0250 4616 Messenger (95fd808e4ac22aba025a7b3eac0375d2) C:\WINDOWS\System32\msgsvc.dll
09:22:09.0250 4616 Messenger - ok
09:22:09.0312 4616 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
09:22:09.0328 4616 MHN - ok
09:22:09.0343 4616 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
09:22:09.0343 4616 MHNDRV - ok
09:22:09.0390 4616 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
09:22:09.0390 4616 mnmdd - ok
09:22:09.0406 4616 mnmsrvc (f6415361201915b9fe3896b0e4e724ff) C:\WINDOWS\system32\mnmsrvc.exe
09:22:09.0406 4616 mnmsrvc - ok
09:22:09.0421 4616 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
09:22:09.0421 4616 Modem - ok
09:22:09.0453 4616 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:22:09.0453 4616 Mouclass - ok
09:22:09.0500 4616 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:22:09.0500 4616 mouhid - ok
09:22:09.0531 4616 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
09:22:09.0531 4616 MountMgr - ok
09:22:09.0546 4616 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
09:22:09.0546 4616 mraid35x - ok
09:22:09.0562 4616 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:22:09.0578 4616 MRxDAV - ok
09:22:09.0968 4616 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:22:10.0031 4616 MRxSmb - ok
09:22:10.0062 4616 MSDTC (c7c3d89eb0a6f3dba622ea737fa335b1) C:\WINDOWS\system32\msdtc.exe
09:22:10.0062 4616 MSDTC - ok
09:22:10.0078 4616 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
09:22:10.0078 4616 Msfs - ok
09:22:10.0078 4616 MSIServer - ok
09:22:10.0125 4616 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:22:10.0125 4616 MSKSSRV - ok
09:22:10.0140 4616 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:22:10.0140 4616 MSPCLOCK - ok
09:22:10.0156 4616 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
09:22:10.0156 4616 MSPQM - ok
09:22:10.0171 4616 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:22:10.0187 4616 mssmbios - ok
09:22:10.0203 4616 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
09:22:10.0203 4616 Mup - ok
09:22:10.0234 4616 mxnic (e1cdf20697d992cf83ff86dd04df1285) C:\WINDOWS\system32\DRIVERS\mxnic.sys
09:22:10.0234 4616 mxnic - ok
09:22:10.0281 4616 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
09:22:10.0328 4616 NDIS - ok
09:22:10.0343 4616 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:22:10.0343 4616 NdisTapi - ok
09:22:10.0359 4616 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:22:10.0359 4616 Ndisuio - ok
09:22:10.0375 4616 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:22:10.0375 4616 NdisWan - ok
09:22:10.0375 4616 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
09:22:10.0390 4616 NDProxy - ok
09:22:10.0390 4616 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
09:22:10.0390 4616 NetBIOS - ok
09:22:10.0421 4616 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
09:22:10.0421 4616 NetBT - ok
09:22:10.0468 4616 NetDDE (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
09:22:10.0484 4616 NetDDE - ok
09:22:10.0484 4616 NetDDEdsdm (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
09:22:10.0484 4616 NetDDEdsdm - ok
09:22:10.0531 4616 Netlogon (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
09:22:10.0531 4616 Netlogon - ok
09:22:10.0562 4616 Netman (dab9e6c7105d2ef49876fe92c524f565) C:\WINDOWS\System32\netman.dll
09:22:10.0625 4616 Netman - ok
09:22:11.0015 4616 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:22:11.0031 4616 NetTcpPortSharing - ok
09:22:11.0140 4616 NETw4v32 (11028c6a84a967070cb1286550f2058f) C:\WINDOWS\system32\pchost.dll
09:22:11.0140 4616 NETw4v32 ( Backdoor.Multi.ZAccess.gen ) - infected
09:22:11.0140 4616 NETw4v32 - detected Backdoor.Multi.ZAccess.gen (0)
09:22:11.0218 4616 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:22:11.0234 4616 NIC1394 - ok
09:22:11.0281 4616 Nla (097722f235a1fb698bf9234e01b52637) C:\WINDOWS\System32\mswsock.dll
09:22:11.0296 4616 Nla - ok
09:22:11.0312 4616 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
09:22:11.0312 4616 Npfs - ok
09:22:11.0375 4616 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
09:22:11.0390 4616 Ntfs - ok
09:22:11.0390 4616 NtLmSsp (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
09:22:11.0390 4616 NtLmSsp - ok
09:22:11.0453 4616 NtmsSvc (b62f29c00ac55a761b2e45877d85ea0f) C:\WINDOWS\system32\ntmssvc.dll
09:22:11.0468 4616 NtmsSvc - ok
09:22:11.0484 4616 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
09:22:11.0484 4616 Null - ok
09:22:12.0406 4616 nv (83780f3a86d2804912f22f6e37cd2254) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:22:12.0593 4616 nv - ok
09:22:13.0125 4616 NVSvc (42321ac5448078131903b272e6c49024) C:\WINDOWS\system32\nvsvc32.exe
09:22:13.0156 4616 NVSvc - ok
09:22:13.0375 4616 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:22:13.0375 4616 NwlnkFlt - ok
09:22:13.0390 4616 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:22:13.0390 4616 NwlnkFwd - ok
09:22:13.0453 4616 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:22:13.0453 4616 ohci1394 - ok
09:22:13.0546 4616 P3 (3e16eff2a6fed2d8d7f5a66dfe65d183) C:\WINDOWS\system32\DRIVERS\p3.sys
09:22:13.0546 4616 P3 - ok
09:22:13.0578 4616 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
09:22:13.0578 4616 Parport - ok
09:22:13.0578 4616 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
09:22:13.0578 4616 PartMgr - ok
09:22:13.0609 4616 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
09:22:13.0609 4616 ParVdm - ok
09:22:13.0921 4616 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
09:22:13.0937 4616 PCI - ok
09:22:13.0937 4616 PCIDump - ok
09:22:13.0953 4616 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
09:22:13.0953 4616 PCIIde - ok
09:22:13.0968 4616 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
09:22:13.0984 4616 Pcmcia - ok
09:22:14.0000 4616 PDCOMP - ok
09:22:14.0000 4616 PDFRAME - ok
09:22:14.0000 4616 PDRELI - ok
09:22:14.0015 4616 PDRFRAME - ok
09:22:14.0062 4616 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
09:22:14.0078 4616 perc2 - ok
09:22:14.0093 4616 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
09:22:14.0109 4616 perc2hib - ok
09:22:14.0125 4616 PEVSystemStart - ok
09:22:14.0187 4616 PlugPlay (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
09:22:14.0218 4616 PlugPlay - ok
09:22:14.0343 4616 Pml Driver HPZ12 (d31f88c5f19eefa366a415d6bc5f2abc) C:\WINDOWS\system32\HPZipm12.exe
09:22:14.0343 4616 Pml Driver HPZ12 - ok
09:22:14.0375 4616 PolicyAgent (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
09:22:14.0375 4616 PolicyAgent - ok
09:22:14.0421 4616 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:22:14.0421 4616 PptpMiniport - ok
09:22:14.0515 4616 PrismXL (33d7285f12d934268a34206dfc4ad1b3) C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
09:22:14.0531 4616 PrismXL - ok
09:22:14.0531 4616 ProtectedStorage (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
09:22:14.0531 4616 ProtectedStorage - ok
09:22:14.0546 4616 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
09:22:14.0546 4616 PSched - ok
09:22:14.0546 4616 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:22:14.0546 4616 Ptilink - ok
09:22:14.0890 4616 PxHelp20 (40f2031bd9148d3194353ea7dec97a07) C:\WINDOWS\system32\Drivers\PxHelp20.sys
09:22:14.0890 4616 PxHelp20 - ok
09:22:14.0937 4616 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
09:22:14.0937 4616 ql1080 - ok
09:22:14.0984 4616 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
09:22:14.0984 4616 Ql10wnt - ok
09:22:15.0000 4616 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
09:22:15.0000 4616 ql12160 - ok
09:22:15.0000 4616 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
09:22:15.0000 4616 ql1240 - ok
09:22:15.0031 4616 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
09:22:15.0031 4616 ql1280 - ok
09:22:15.0046 4616 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:22:15.0046 4616 RasAcd - ok
09:22:15.0140 4616 RasAuto (44db7a9bdd2fb58747d123fbf1d35adb) C:\WINDOWS\System32\rasauto.dll
09:22:15.0156 4616 RasAuto - ok
09:22:15.0171 4616 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:22:15.0171 4616 Rasl2tp - ok
09:22:15.0218 4616 RasMan (41a3c11e3517c962c9b44893bcec3b34) C:\WINDOWS\System32\rasmans.dll
09:22:15.0234 4616 RasMan - ok
09:22:15.0265 4616 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:22:15.0265 4616 RasPppoe - ok
09:22:15.0281 4616 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
09:22:15.0281 4616 Raspti - ok
09:22:15.0343 4616 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:22:15.0359 4616 Rdbss - ok
09:22:15.0359 4616 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:22:15.0359 4616 RDPCDD - ok
09:22:15.0421 4616 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
09:22:15.0421 4616 rdpdr - ok
09:22:15.0468 4616 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
09:22:15.0468 4616 RDPWD - ok
09:22:15.0531 4616 RDSessMgr (729798e0933076b8fcfcd9934698f164) C:\WINDOWS\system32\sessmgr.exe
09:22:15.0546 4616 RDSessMgr - ok
09:22:15.0609 4616 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
09:22:15.0609 4616 redbook - ok
09:22:15.0890 4616 RemoteAccess (3046db917e3cfa040632799dd9b14865) C:\WINDOWS\System32\mprdim.dll
09:22:15.0906 4616 RemoteAccess - ok
09:22:15.0984 4616 RemoteRegistry (3151427db7d87107d1c5be58fac53960) C:\WINDOWS\system32\regsvc.dll
09:22:16.0000 4616 RemoteRegistry - ok
09:22:16.0046 4616 RpcLocator (793f04a09b15e7c6c11dbdffaf06c0ab) C:\WINDOWS\system32\locator.exe
09:22:16.0046 4616 RpcLocator - ok
09:22:16.0109 4616 RpcSs (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
09:22:16.0125 4616 RpcSs - ok
09:22:16.0218 4616 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
09:22:16.0234 4616 RSVP - ok
09:22:16.0265 4616 SamSs (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
09:22:16.0265 4616 SamSs - ok
09:22:16.0281 4616 SCardSvr (25d8de134df108e3dbc8d7d23b1aa58e) C:\WINDOWS\System32\SCardSvr.exe
09:22:16.0296 4616 SCardSvr - ok
09:22:16.0343 4616 Schedule (92360854316611f6cc471612213c3d92) C:\WINDOWS\system32\schedsvc.dll
09:22:16.0359 4616 Schedule - ok
09:22:16.0406 4616 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:22:16.0406 4616 Secdrv - ok
09:22:16.0421 4616 seclogon (b1e0ce09895376871746f36dc5773b4f) C:\WINDOWS\System32\seclogon.dll
09:22:16.0421 4616 seclogon - ok
09:22:16.0437 4616 SENS (dfd9870cf39c791d86c4c209da9fa919) C:\WINDOWS\system32\sens.dll
09:22:16.0437 4616 SENS - ok
09:22:16.0500 4616 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
09:22:16.0500 4616 serenum - ok
09:22:16.0609 4616 Serial (938f07b61bf5ad5c403f09b3990dde13) C:\WINDOWS\system32\DRIVERS\serial.sys
09:22:16.0609 4616 Serial ( Virus.Win32.ZAccess.k ) - infected
09:22:16.0609 4616 Serial - detected Virus.Win32.ZAccess.k (0)
09:22:16.0890 4616 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
09:22:16.0890 4616 Sfloppy - ok
09:22:17.0000 4616 sfng32 (cecdd7cb5db385775790d30fa10f0507) C:\WINDOWS\system32\drivers\sfng32.sys
09:22:17.0015 4616 sfng32 - ok
09:22:17.0281 4616 SharedAccess (36cc8c01b5e50163037bef56cb96deff) C:\WINDOWS\System32\ipnathlp.dll
09:22:17.0296 4616 SharedAccess - ok
09:22:17.0609 4616 ShellHWDetection (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
09:22:17.0625 4616 ShellHWDetection - ok
09:22:17.0625 4616 Simbad - ok
09:22:17.0796 4616 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
09:22:17.0859 4616 sisagp - ok
09:22:17.0906 4616 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
09:22:17.0906 4616 Sparrow - ok
09:22:17.0968 4616 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
09:22:17.0968 4616 speedfan - ok
09:22:18.0015 4616 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
09:22:18.0015 4616 splitter - ok
09:22:18.0062 4616 Spooler (7435b108b935e42ea92ca94f59c8e717) C:\WINDOWS\system32\spoolsv.exe
09:22:18.0062 4616 Spooler - ok
09:22:18.0187 4616 sprtsvc_verizondm - ok
09:22:18.0203 4616 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
09:22:18.0203 4616 sr - ok
09:22:18.0234 4616 srservice (92bdf74f12d6cbec43c94d4b7f804838) C:\WINDOWS\system32\srsvc.dll
09:22:18.0234 4616 srservice - ok
09:22:18.0281 4616 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
09:22:18.0296 4616 Srv - ok
09:22:18.0328 4616 SSDPSRV (4b8d61792f7175bed48859cc18ce4e38) C:\WINDOWS\System32\ssdpsrv.dll
09:22:18.0328 4616 SSDPSRV - ok
09:22:18.0437 4616 STHDA (e459a674c2fccfbc69bfd86800791a5d) C:\WINDOWS\system32\drivers\sthda.sys
09:22:18.0468 4616 STHDA - ok
09:22:18.0515 4616 stisvc (d9f6c4f6b1e188adafc42b561d9bc2e6) C:\WINDOWS\system32\wiaservc.dll
09:22:18.0562 4616 stisvc - ok
09:22:18.0578 4616 SunkFilt (86ca1a5c15a5a98d5533945fb1120b05) C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:22:18.0593 4616 SunkFilt - ok
09:22:18.0890 4616 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
09:22:18.0906 4616 swenum - ok
09:22:18.0937 4616 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
09:22:18.0937 4616 swmidi - ok
09:22:18.0953 4616 SwPrv - ok
09:22:18.0968 4616 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
09:22:18.0968 4616 symc810 - ok
09:22:18.0968 4616 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
09:22:18.0968 4616 symc8xx - ok
09:22:19.0140 4616 SymWSC (a865bc7fd13e0dea3b699c388e19fb5e) C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
09:22:19.0171 4616 SymWSC - ok
09:22:19.0187 4616 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
09:22:19.0187 4616 sym_hi - ok
09:22:19.0203 4616 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
09:22:19.0203 4616 sym_u3 - ok
09:22:19.0250 4616 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
09:22:19.0250 4616 sysaudio - ok
09:22:19.0343 4616 SysmonLog (8b54aa346d1b1b113ffaa75501b8b1b2) C:\WINDOWS\system32\smlogsvc.exe
09:22:19.0343 4616 SysmonLog - ok
09:22:19.0390 4616 TapiSrv (eb4a4187d74a8efdcbea3ea2cb1bdfbd) C:\WINDOWS\System32\tapisrv.dll
09:22:19.0406 4616 TapiSrv - ok
09:22:19.0468 4616 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:22:19.0484 4616 Tcpip - ok
09:22:19.0531 4616 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
09:22:19.0531 4616 TDPIPE - ok
09:22:19.0531 4616 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
09:22:19.0531 4616 TDTCP - ok
09:22:19.0546 4616 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
09:22:19.0562 4616 TermDD - ok
09:22:20.0156 4616 TermService (b60c877d16d9c880b952fda04adf16e6) C:\WINDOWS\System32\termsrv.dll
09:22:20.0171 4616 TermService - ok
09:22:20.0375 4616 tgsrvc_verizondm - ok
09:22:20.0468 4616 Themes (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
09:22:20.0468 4616 Themes - ok
09:22:20.0500 4616 TlntSvr (37db0a7d097310e8b4de803fc3119c78) C:\WINDOWS\system32\tlntsvr.exe
09:22:20.0515 4616 TlntSvr - ok
09:22:20.0546 4616 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
09:22:20.0546 4616 TosIde - ok
09:22:20.0562 4616 TrkWks (6d9ac544b30f96c57f8206566c1fb6a1) C:\WINDOWS\system32\trkwks.dll
09:22:20.0578 4616 TrkWks - ok
09:22:21.0203 4616 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
09:22:21.0203 4616 Udfs - ok
09:22:21.0500 4616 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
09:22:21.0531 4616 ultra - ok
09:22:21.0578 4616 UMWdf (c81b8635dee0d3ef5f64b3dd643023a5) C:\WINDOWS\system32\wdfmgr.exe
09:22:21.0578 4616 UMWdf - ok
09:22:21.0625 4616 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
09:22:21.0750 4616 Update - ok
09:22:22.0156 4616 upnphost (0546477bde979e33294fe97f6b3de84a) C:\WINDOWS\System32\upnphost.dll
09:22:22.0156 4616 upnphost - ok
09:22:22.0218 4616 UPS (3f5df65b0758675f95a2d43918a740a3) C:\WINDOWS\System32\ups.exe
09:22:22.0250 4616 UPS - ok
09:22:22.0343 4616 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:22:22.0343 4616 usbccgp - ok
09:22:22.0390 4616 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:22:22.0406 4616 usbehci - ok
09:22:22.0421 4616 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:22:22.0421 4616 usbhub - ok
09:22:22.0468 4616 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:22:22.0468 4616 usbprint - ok
09:22:22.0500 4616 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:22:22.0500 4616 usbscan - ok
09:22:22.0578 4616 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:22:22.0578 4616 USBSTOR - ok
09:22:22.0609 4616 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:22:22.0609 4616 usbuhci - ok
09:22:22.0750 4616 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
09:22:22.0750 4616 VgaSave - ok
09:22:22.0843 4616 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
09:22:22.0843 4616 viaagp - ok
09:22:22.0859 4616 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
09:22:22.0859 4616 ViaIde - ok
09:22:22.0875 4616 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
09:22:22.0875 4616 VolSnap - ok
09:22:23.0187 4616 VSS (3ee00364ae0fd8d604f46cbaf512838a) C:\WINDOWS\System32\vssvc.exe
09:22:23.0203 4616 VSS - ok
09:22:23.0218 4616 W32Time (2b281958f5d0cf99ed626e3ef39d5c8d) C:\WINDOWS\system32\w32time.dll
09:22:23.0281 4616 W32Time - ok
09:22:23.0312 4616 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:22:23.0312 4616 Wanarp - ok
09:22:23.0359 4616 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
09:22:23.0359 4616 wanatw - ok
09:22:23.0375 4616 WDICA - ok
09:22:23.0421 4616 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
09:22:23.0421 4616 wdmaud - ok
09:22:23.0484 4616 WebClient (5d0a442864bfbf3b19dcca4cd29f6e99) C:\WINDOWS\System32\webclnt.dll
09:22:23.0500 4616 WebClient - ok
09:22:23.0578 4616 winachsf (2dc7c0b6175a0a8ed84a4f70199c93b5) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
09:22:23.0609 4616 winachsf - ok
09:22:24.0531 4616 winmgmt (f399242a80c4066fd155efa4cf96658e) C:\WINDOWS\system32\wbem\WMIsvc.dll
09:22:24.0578 4616 winmgmt - ok
09:22:24.0968 4616 WmdmPmSN (6eaa72fd9ef993ec1fa9a06de65105da) C:\WINDOWS\system32\mspmsnsv.dll
09:22:24.0968 4616 WmdmPmSN - ok
09:22:25.0078 4616 Wmi (1081c185aed0660b2b5f173c3e023b23) C:\WINDOWS\System32\advapi32.dll
09:22:25.0093 4616 Wmi - ok
09:22:25.0171 4616 WmiApSrv (ba8cecc3e813e1f7c441b20393d4f86c) C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:22:25.0218 4616 WmiApSrv - ok
09:22:25.0312 4616 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:22:25.0312 4616 WS2IFSL - ok
09:22:25.0328 4616 wuauserv (13d72740963cba12d9ff76a7f218bcd8) C:\WINDOWS\system32\wuauserv.dll
09:22:25.0343 4616 wuauserv - ok
09:22:25.0484 4616 WZCSVC (5a91e6feab9f901302fa7ff768c0120f) C:\WINDOWS\System32\wzcsvc.dll
09:22:25.0500 4616 WZCSVC - ok
09:22:25.0546 4616 xmlprov (eef46dab68229a14da3d8e73c99e2959) C:\WINDOWS\System32\xmlprov.dll
09:22:25.0546 4616 xmlprov - ok
09:22:25.0984 4616 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
09:22:26.0000 4616 YahooAUService - ok
09:22:26.0046 4616 MBR (0x1B8) (b20939cd98b7710036274839082ae757) \Device\Harddisk0\DR0
09:22:26.0046 4616 \Device\Harddisk0\DR0 - ok
09:22:26.0062 4616 Boot (0x1200) (4a1550c36354ca6b29eef4d5558b0242) \Device\Harddisk0\DR0\Partition0
09:22:26.0062 4616 \Device\Harddisk0\DR0\Partition0 - ok
09:22:26.0062 4616 Boot (0x1200) (5dfeb3f52e2f51aa6693ab664f095afe) \Device\Harddisk0\DR0\Partition1
09:22:26.0062 4616 \Device\Harddisk0\DR0\Partition1 - ok
09:22:26.0062 4616 ============================================================
09:22:26.0062 4616 Scan finished
09:22:26.0062 4616 ============================================================
09:22:26.0078 4608 Detected object count: 2
09:22:26.0078 4608 Actual detected object count: 2
09:24:06.0046 4608 C:\WINDOWS\system32\pchost.dll - copied to quarantine
09:24:06.0187 4608 HKLM\SYSTEM\ControlSet001\services\NETw4v32 - will be deleted on reboot
09:24:06.0593 4608 HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\svchost:netsvcs - cured
09:24:06.0593 4608 C:\WINDOWS\system32\pchost.dll - will be deleted on reboot
09:24:06.0593 4608 NETw4v32 ( Backdoor.Multi.ZAccess.gen ) - User select action: Delete
09:24:07.0250 4608 C:\WINDOWS\system32\DRIVERS\serial.sys - copied to quarantine
09:24:07.0765 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\@ - copied to quarantine
09:24:07.0812 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\cfg.ini - copied to quarantine
09:24:07.0843 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\Desktop.ini - copied to quarantine
09:24:07.0875 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\L\qilnwkjq - copied to quarantine
09:24:07.0890 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000001.@ - copied to quarantine
09:24:07.0953 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000002.@ - copied to quarantine
09:24:07.0968 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000004.@ - copied to quarantine
09:24:08.0031 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000000.@ - copied to quarantine
09:24:08.0046 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000004.@ - copied to quarantine
09:24:08.0125 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000032.@ - copied to quarantine
09:24:08.0171 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\version - copied to quarantine
09:24:09.0515 4608 VerifyFileNameVersionInfo: GetFileVersionInfoSizeW(C:\WINDOWS\system32\drivers\serial.sys) error 1813
09:24:36.0218 4608 Backup copy found, using it..
09:24:36.0718 4608 C:\WINDOWS\system32\DRIVERS\serial.sys - will be cured on reboot
09:24:50.0406 4608 C:\WINDOWS\$NtUninstallKB18729$\566199173 - will be deleted on reboot
09:24:50.0406 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\@ - will be deleted on reboot
09:24:50.0406 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\cfg.ini - will be deleted on reboot
09:24:50.0406 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\Desktop.ini - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000001.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000002.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\00000004.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000000.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000004.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\U\80000032.@ - will be deleted on reboot
09:24:50.0421 4608 C:\WINDOWS\$NtUninstallKB18729$\731407025\version - will be deleted on reboot
09:24:50.0453 4608 Serial ( Virus.Win32.ZAccess.k ) - User select action: Cure
09:25:04.0968 2564 Deinitialize success

#8 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 27 April 2012 - 09:15 AM

Hello again,

COMBOFIX
---------------
Please download ComboFix from one of these locations:
Bleepingcomputer
ForoSpyware
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Double click on Combofix.exe and follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, or if you are running Vista, ComboFix will continue it's malware removal procedures.

Posted Image


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Posted Image


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\Combofix.txt in your next reply.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#9 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 27 April 2012 - 10:24 AM

I was able to download the combofix. It provides me with two alerts. The first says "RootKit Zero has been found" I just let it go. after about one munute that alert disappers, and a second alert "Rootkit detected. Be patient as this may take some moments." This then stalls the computer. The computer clock stops running. I was under the impression that the clock stopping is the indicator that combofix has stalled. It has been running for 40 minutes so far with the clock not moving. Any suggestions? Or should I just let it continue to run?
Thank you for your help. I just don't want to keep letting it go if stalled.

#10 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 27 April 2012 - 11:07 AM

Try to manually reboot the computer and see if it continues running after the reboot.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#11 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 27 April 2012 - 11:44 AM

The same thing happened. It stalled again.

#12 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 27 April 2012 - 11:49 AM

Press Windows key + R, type combofix /nombr and press enter. See if it runs like that.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#13 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 27 April 2012 - 12:31 PM

It begins to run, and makes it through the first message stating "You are infected with Rootkit.ZeroAccess." It seems to stall each time the second alert about hte RootKit starts.
a person I work with mentioned to try aswmbr, and bootkit. would those help you identify the issue?
I am not familiar with those.

#14 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,314 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:09 AM

Posted 27 April 2012 - 01:17 PM

Please try the following: click Start > Run, type cmd and press enter.

Type netsh winsock reset and press enter.
Rerun TDSSkiller and post me the new log.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#15 tazbear

tazbear
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 28 April 2012 - 07:53 AM

I did the above, and here is the file from the TDSSkiller.

08:48:06.0000 3472 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
08:48:06.0328 3472 ============================================================
08:48:06.0328 3472 Current date / time: 2012/04/28 08:48:06.0328
08:48:06.0328 3472 SystemInfo:
08:48:06.0328 3472
08:48:06.0328 3472 OS Version: 5.1.2600 ServicePack: 2.0
08:48:06.0328 3472 Product type: Workstation
08:48:06.0796 3472 ComputerName: HOME
08:48:06.0796 3472 UserName: Owner
08:48:06.0796 3472 Windows directory: C:\WINDOWS
08:48:06.0796 3472 System windows directory: C:\WINDOWS
08:48:06.0796 3472 Processor architecture: Intel x86
08:48:06.0796 3472 Number of processors: 2
08:48:06.0796 3472 Page size: 0x1000
08:48:06.0796 3472 Boot type: Normal boot
08:48:06.0796 3472 ============================================================
08:48:09.0218 3472 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
08:48:09.0468 3472 ============================================================
08:48:09.0468 3472 \Device\Harddisk0\DR0:
08:48:09.0625 3472 MBR partitions:
08:48:09.0625 3472 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x9391DA, BlocksNum 0x1C88B3A7
08:48:09.0625 3472 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x93919B
08:48:09.0625 3472 ============================================================
08:48:10.0046 3472 C: <-> \Device\Harddisk0\DR0\Partition0
08:48:10.0078 3472 D: <-> \Device\Harddisk0\DR0\Partition1
08:48:10.0093 3472 ============================================================
08:48:10.0093 3472 Initialize success
08:48:10.0093 3472 ============================================================
08:48:14.0218 4080 ============================================================
08:48:14.0218 4080 Scan started
08:48:14.0218 4080 Mode: Manual;
08:48:14.0218 4080 ============================================================
08:48:15.0343 4080 Scan interrupted by user!
08:48:15.0343 4080 Scan interrupted by user!
08:48:15.0343 4080 Scan interrupted by user!
08:48:15.0343 4080 ============================================================
08:48:15.0343 4080 Scan finished
08:48:15.0343 4080 ============================================================
08:48:15.0359 4072 Detected object count: 0
08:48:15.0359 4072 Actual detected object count: 0
08:48:23.0453 0948 ============================================================
08:48:23.0453 0948 Scan started
08:48:23.0453 0948 Mode: Manual;
08:48:23.0453 0948 ============================================================
08:48:23.0859 0948 52512866 - ok
08:48:23.0875 0948 Abiosdsk - ok
08:48:23.0968 0948 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:48:23.0968 0948 abp480n5 - ok
08:48:24.0000 0948 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:48:24.0015 0948 ACPI - ok
08:48:24.0031 0948 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
08:48:24.0031 0948 ACPIEC - ok
08:48:24.0093 0948 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:48:24.0125 0948 AdobeFlashPlayerUpdateSvc - ok
08:48:24.0156 0948 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:48:24.0156 0948 adpu160m - ok
08:48:24.0203 0948 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
08:48:24.0218 0948 aec - ok
08:48:24.0250 0948 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
08:48:24.0265 0948 AFD - ok
08:48:24.0265 0948 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
08:48:24.0265 0948 agp440 - ok
08:48:24.0281 0948 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:48:24.0281 0948 agpCPQ - ok
08:48:24.0312 0948 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:48:24.0312 0948 Aha154x - ok
08:48:24.0343 0948 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:48:24.0343 0948 aic78u2 - ok
08:48:24.0343 0948 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:48:24.0359 0948 aic78xx - ok
08:48:24.0359 0948 Alerter (c7ae0fd3867db0d42b03b73c18f3d671) C:\WINDOWS\system32\alrsvc.dll
08:48:24.0359 0948 Alerter - ok
08:48:24.0375 0948 ALG (f1958fbf86d5c004cf19a5951a9514b7) C:\WINDOWS\System32\alg.exe
08:48:24.0375 0948 ALG - ok
08:48:24.0406 0948 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
08:48:24.0406 0948 AliIde - ok
08:48:24.0406 0948 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:48:24.0406 0948 alim1541 - ok
08:48:24.0421 0948 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:48:24.0421 0948 amdagp - ok
08:48:24.0421 0948 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
08:48:24.0421 0948 amsint - ok
08:48:24.0453 0948 AppMgmt (9c3c12975c97119412802b181fbeeffe) C:\WINDOWS\System32\appmgmts.dll
08:48:24.0468 0948 AppMgmt - ok
08:48:24.0484 0948 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:48:24.0484 0948 Arp1394 - ok
08:48:24.0500 0948 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
08:48:24.0500 0948 asc - ok
08:48:24.0500 0948 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:48:24.0500 0948 asc3350p - ok
08:48:24.0515 0948 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:48:24.0515 0948 asc3550 - ok
08:48:24.0546 0948 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
08:48:24.0546 0948 ASCTRM - ok
08:48:24.0703 0948 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:48:24.0750 0948 aspnet_state - ok
08:48:24.0765 0948 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:48:24.0765 0948 AsyncMac - ok
08:48:24.0812 0948 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
08:48:24.0812 0948 atapi - ok
08:48:24.0828 0948 Atdisk - ok
08:48:24.0843 0948 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:48:24.0843 0948 Atmarpc - ok
08:48:24.0875 0948 AudioSrv (db66db626e4882ebef55f136f12c1829) C:\WINDOWS\System32\audiosrv.dll
08:48:24.0875 0948 AudioSrv - ok
08:48:24.0890 0948 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
08:48:24.0890 0948 audstub - ok
08:48:24.0906 0948 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
08:48:24.0906 0948 Beep - ok
08:48:24.0968 0948 BITS (2c69ec7e5a311334d10dd95f338fccea) C:\WINDOWS\system32\qmgr.dll
08:48:25.0062 0948 BITS - ok
08:48:25.0078 0948 Browser (e3cfccdda4edd1d0dc9168b2e18f27b8) C:\WINDOWS\System32\browser.dll
08:48:25.0078 0948 Browser - ok
08:48:25.0078 0948 byjjhj - ok
08:48:25.0203 0948 catchme - ok
08:48:25.0265 0948 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:48:25.0265 0948 cbidf - ok
08:48:25.0265 0948 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
08:48:25.0265 0948 cbidf2k - ok
08:48:25.0265 0948 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:48:25.0265 0948 cd20xrnt - ok
08:48:25.0281 0948 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
08:48:25.0296 0948 Cdaudio - ok
08:48:25.0296 0948 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
08:48:25.0296 0948 Cdfs - ok
08:48:25.0343 0948 Cdr4_xp (2552670e5fbcfdb540eeb426af39704d) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
08:48:25.0343 0948 Cdr4_xp - ok
08:48:25.0375 0948 Cdralw2k (b761b10d6a541be69ea448a8429d30b0) C:\WINDOWS\system32\drivers\Cdralw2k.sys
08:48:25.0375 0948 Cdralw2k - ok
08:48:25.0390 0948 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:48:25.0390 0948 Cdrom - ok
08:48:25.0390 0948 Changer - ok
08:48:25.0406 0948 CiSvc (3192bd04d032a9c4a85a3278c268a13a) C:\WINDOWS\system32\cisvc.exe
08:48:25.0406 0948 CiSvc - ok
08:48:25.0421 0948 ClipSrv (c8dec22c4137d7a90f8bdf41ca4b82ae) C:\WINDOWS\system32\clipsrv.exe
08:48:25.0421 0948 ClipSrv - ok
08:48:25.0453 0948 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:48:25.0578 0948 clr_optimization_v2.0.50727_32 - ok
08:48:25.0640 0948 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:48:25.0640 0948 CmdIde - ok
08:48:25.0640 0948 COMSysApp - ok
08:48:25.0687 0948 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:48:25.0687 0948 Cpqarray - ok
08:48:25.0703 0948 CryptSvc (10654f9ddcea9c46cfb77554231be73b) C:\WINDOWS\System32\cryptsvc.dll
08:48:25.0703 0948 CryptSvc - ok
08:48:25.0734 0948 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:48:25.0734 0948 dac2w2k - ok
08:48:25.0750 0948 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:48:25.0750 0948 dac960nt - ok
08:48:25.0812 0948 DcomLaunch (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
08:48:25.0828 0948 DcomLaunch - ok
08:48:25.0843 0948 Dhcp (cb6ca3e5261d65f6f809eed23bf167aa) C:\WINDOWS\System32\dhcpcsvc.dll
08:48:25.0843 0948 Dhcp - ok
08:48:25.0859 0948 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
08:48:25.0859 0948 Disk - ok
08:48:25.0875 0948 dmadmin - ok
08:48:25.0921 0948 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
08:48:25.0937 0948 dmboot - ok
08:48:25.0953 0948 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
08:48:25.0953 0948 dmio - ok
08:48:25.0953 0948 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
08:48:25.0953 0948 dmload - ok
08:48:25.0968 0948 dmserver (1639d9964c9e1b2ecca95c8217d3e70d) C:\WINDOWS\System32\dmserver.dll
08:48:25.0968 0948 dmserver - ok
08:48:26.0015 0948 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
08:48:26.0015 0948 DMusic - ok
08:48:26.0031 0948 Dnscache (7379de06fd196e396a00aa97b990c00d) C:\WINDOWS\System32\dnsrslvr.dll
08:48:26.0046 0948 Dnscache - ok
08:48:26.0046 0948 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:48:26.0046 0948 dpti2o - ok
08:48:26.0062 0948 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
08:48:26.0062 0948 drmkaud - ok
08:48:26.0109 0948 E100B (6ca101f9aa3d845ba31f6e13c01301a8) C:\WINDOWS\system32\DRIVERS\e100b325.sys
08:48:26.0109 0948 E100B - ok
08:48:26.0203 0948 ehRecvr (63f371f0248e3732a4821f86e6d0e370) C:\WINDOWS\eHome\ehRecvr.exe
08:48:26.0203 0948 ehRecvr - ok
08:48:26.0234 0948 ehSched (16910f8b482919bb6035ed053b691692) C:\WINDOWS\eHome\ehSched.exe
08:48:26.0234 0948 ehSched - ok
08:48:26.0265 0948 ERSvc (67dff7bbbd0e80aab7b3cf061448db8a) C:\WINDOWS\System32\ersvc.dll
08:48:26.0265 0948 ERSvc - ok
08:48:26.0312 0948 Eventlog (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
08:48:26.0328 0948 Eventlog - ok
08:48:26.0375 0948 EventSystem (60d1a6342238378bfb7545c81ee3606c) C:\WINDOWS\system32\es.dll
08:48:26.0390 0948 EventSystem - ok
08:48:26.0437 0948 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
08:48:26.0437 0948 Fastfat - ok
08:48:26.0500 0948 FastUserSwitchingCompatibility (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:48:26.0500 0948 FastUserSwitchingCompatibility - ok
08:48:26.0500 0948 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
08:48:26.0500 0948 Fdc - ok
08:48:26.0515 0948 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
08:48:26.0515 0948 Fips - ok
08:48:26.0531 0948 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:48:26.0531 0948 Flpydisk - ok
08:48:26.0546 0948 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:48:26.0546 0948 FltMgr - ok
08:48:26.0671 0948 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:48:26.0671 0948 FontCache3.0.0.0 - ok
08:48:26.0671 0948 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:48:26.0671 0948 Fs_Rec - ok
08:48:26.0703 0948 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:48:26.0703 0948 Ftdisk - ok
08:48:26.0734 0948 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
08:48:26.0734 0948 giveio - ok
08:48:26.0750 0948 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:48:26.0750 0948 Gpc - ok
08:48:26.0843 0948 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:48:26.0843 0948 gupdate - ok
08:48:26.0843 0948 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:48:26.0859 0948 gupdatem - ok
08:48:26.0906 0948 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:48:26.0906 0948 HDAudBus - ok
08:48:26.0953 0948 helpsvc (8827911a8c37e40c027cbfc88e69d967) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:48:26.0953 0948 helpsvc - ok
08:48:26.0953 0948 HidServ - ok
08:48:27.0000 0948 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:48:27.0000 0948 HidUsb - ok
08:48:27.0062 0948 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
08:48:27.0062 0948 hpn - ok
08:48:27.0109 0948 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:48:27.0125 0948 HPZid412 - ok
08:48:27.0140 0948 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:48:27.0140 0948 HPZipr12 - ok
08:48:27.0171 0948 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:48:27.0171 0948 HPZius12 - ok
08:48:27.0203 0948 HSFHWBS2 (33dfc0afa95f9a2c753ff2adb7d4a21f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
08:48:27.0203 0948 HSFHWBS2 - ok
08:48:27.0281 0948 HSF_DP (b2dfc168d6f7512faea085253c5a37ad) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
08:48:27.0312 0948 HSF_DP - ok
08:48:27.0359 0948 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
08:48:27.0359 0948 HTTP - ok
08:48:27.0406 0948 HTTPFilter (064d8581adf77c25133e7d751d917d83) C:\WINDOWS\System32\w3ssl.dll
08:48:27.0406 0948 HTTPFilter - ok
08:48:27.0453 0948 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
08:48:27.0453 0948 i2omgmt - ok
08:48:27.0468 0948 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:48:27.0468 0948 i2omp - ok
08:48:27.0484 0948 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:48:27.0484 0948 i8042prt - ok
08:48:27.0671 0948 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:48:27.0718 0948 idsvc - ok
08:48:27.0828 0948 IHA_MessageCenter (7f82358baf1e5b940664e601037d0b0c) C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
08:48:27.0843 0948 IHA_MessageCenter - ok
08:48:27.0875 0948 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
08:48:27.0875 0948 Imapi - ok
08:48:27.0921 0948 ImapiService (fa788520bcac0f5d9d5cde5615c0d931) C:\WINDOWS\system32\imapi.exe
08:48:27.0937 0948 ImapiService - ok
08:48:27.0953 0948 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:48:27.0953 0948 ini910u - ok
08:48:27.0953 0948 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
08:48:27.0953 0948 IntelIde - ok
08:48:27.0984 0948 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:48:27.0984 0948 intelppm - ok
08:48:27.0984 0948 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
08:48:27.0984 0948 Ip6Fw - ok
08:48:28.0000 0948 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:48:28.0000 0948 IpFilterDriver - ok
08:48:28.0000 0948 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:48:28.0000 0948 IpInIp - ok
08:48:28.0031 0948 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:48:28.0031 0948 IpNat - ok
08:48:28.0046 0948 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:48:28.0046 0948 IPSec - ok
08:48:28.0046 0948 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
08:48:28.0046 0948 IRENUM - ok
08:48:28.0093 0948 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:48:28.0093 0948 isapnp - ok
08:48:28.0250 0948 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
08:48:28.0250 0948 JavaQuickStarterService - ok
08:48:28.0281 0948 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:48:28.0281 0948 Kbdclass - ok
08:48:28.0328 0948 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
08:48:28.0328 0948 kmixer - ok
08:48:28.0359 0948 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
08:48:28.0359 0948 KSecDD - ok
08:48:28.0390 0948 lanmanserver (0cb3af149a0bac0836022ca307c7a0f8) C:\WINDOWS\System32\srvsvc.dll
08:48:28.0406 0948 lanmanserver - ok
08:48:28.0453 0948 lanmanworkstation (e1f27cfcd114ec9f1e1f44674b2ff9f0) C:\WINDOWS\System32\wkssvc.dll
08:48:28.0453 0948 lanmanworkstation - ok
08:48:28.0453 0948 lbrtfdc - ok
08:48:28.0500 0948 LmHosts (b3eff6d938c572e90a07b3d87a3c7657) C:\WINDOWS\System32\lmhsvc.dll
08:48:28.0500 0948 LmHosts - ok
08:48:28.0609 0948 lxecCATSCustConnectService (6311f8863d898ce60c048779f9d86e74) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe
08:48:28.0625 0948 lxecCATSCustConnectService - ok
08:48:28.0625 0948 lxec_device - ok
08:48:28.0671 0948 McAfeeAntiSpyware (1f1f459e191fd540d0c4f306bdd500a9) C:\Program Files\McAfee\McAfee AntiSpyware\Msssrv.exe
08:48:28.0671 0948 McAfeeAntiSpyware - ok
08:48:28.0734 0948 mcupdmgr.exe (abd5b888af754e30a95b21ad885635b0) C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
08:48:28.0750 0948 mcupdmgr.exe - ok
08:48:28.0796 0948 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:48:28.0796 0948 mdmxsdk - ok
08:48:28.0843 0948 Messenger (95fd808e4ac22aba025a7b3eac0375d2) C:\WINDOWS\System32\msgsvc.dll
08:48:28.0843 0948 Messenger - ok
08:48:28.0890 0948 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
08:48:28.0906 0948 MHN - ok
08:48:28.0937 0948 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
08:48:28.0937 0948 MHNDRV - ok
08:48:28.0984 0948 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
08:48:28.0984 0948 mnmdd - ok
08:48:29.0015 0948 mnmsrvc (f6415361201915b9fe3896b0e4e724ff) C:\WINDOWS\system32\mnmsrvc.exe
08:48:29.0015 0948 mnmsrvc - ok
08:48:29.0031 0948 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
08:48:29.0031 0948 Modem - ok
08:48:29.0046 0948 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:48:29.0046 0948 Mouclass - ok
08:48:29.0093 0948 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:48:29.0093 0948 mouhid - ok
08:48:29.0109 0948 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
08:48:29.0109 0948 MountMgr - ok
08:48:29.0125 0948 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:48:29.0125 0948 mraid35x - ok
08:48:29.0140 0948 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:48:29.0140 0948 MRxDAV - ok
08:48:29.0203 0948 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:48:29.0218 0948 MRxSmb - ok
08:48:29.0250 0948 MSDTC (c7c3d89eb0a6f3dba622ea737fa335b1) C:\WINDOWS\system32\msdtc.exe
08:48:29.0250 0948 MSDTC - ok
08:48:29.0265 0948 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
08:48:29.0265 0948 Msfs - ok
08:48:29.0265 0948 MSIServer - ok
08:48:29.0312 0948 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:48:29.0312 0948 MSKSSRV - ok
08:48:29.0328 0948 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:48:29.0328 0948 MSPCLOCK - ok
08:48:29.0343 0948 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
08:48:29.0343 0948 MSPQM - ok
08:48:29.0359 0948 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:48:29.0375 0948 mssmbios - ok
08:48:29.0375 0948 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
08:48:29.0375 0948 Mup - ok
08:48:29.0390 0948 mxnic (e1cdf20697d992cf83ff86dd04df1285) C:\WINDOWS\system32\DRIVERS\mxnic.sys
08:48:29.0390 0948 mxnic - ok
08:48:29.0406 0948 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
08:48:29.0421 0948 NDIS - ok
08:48:29.0421 0948 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:48:29.0421 0948 NdisTapi - ok
08:48:29.0437 0948 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:48:29.0437 0948 Ndisuio - ok
08:48:29.0437 0948 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:48:29.0453 0948 NdisWan - ok
08:48:29.0453 0948 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
08:48:29.0453 0948 NDProxy - ok
08:48:29.0453 0948 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
08:48:29.0468 0948 NetBIOS - ok
08:48:29.0484 0948 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
08:48:29.0484 0948 NetBT - ok
08:48:29.0531 0948 NetDDE (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
08:48:29.0546 0948 NetDDE - ok
08:48:29.0546 0948 NetDDEdsdm (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
08:48:29.0546 0948 NetDDEdsdm - ok
08:48:29.0640 0948 Netlogon (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:48:29.0640 0948 Netlogon - ok
08:48:29.0718 0948 Netman (dab9e6c7105d2ef49876fe92c524f565) C:\WINDOWS\System32\netman.dll
08:48:29.0718 0948 Netman - ok
08:48:29.0859 0948 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:48:29.0875 0948 NetTcpPortSharing - ok
08:48:29.0875 0948 NETw4v32 - ok
08:48:29.0921 0948 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:48:29.0921 0948 NIC1394 - ok
08:48:29.0984 0948 Nla (097722f235a1fb698bf9234e01b52637) C:\WINDOWS\System32\mswsock.dll
08:48:29.0984 0948 Nla - ok
08:48:30.0000 0948 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
08:48:30.0000 0948 Npfs - ok
08:48:30.0031 0948 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
08:48:30.0046 0948 Ntfs - ok
08:48:30.0046 0948 NtLmSsp (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:48:30.0046 0948 NtLmSsp - ok
08:48:30.0109 0948 NtmsSvc (b62f29c00ac55a761b2e45877d85ea0f) C:\WINDOWS\system32\ntmssvc.dll
08:48:30.0125 0948 NtmsSvc - ok
08:48:30.0140 0948 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
08:48:30.0140 0948 Null - ok
08:48:30.0406 0948 nv (83780f3a86d2804912f22f6e37cd2254) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:48:30.0562 0948 nv - ok
08:48:30.0687 0948 NVSvc (42321ac5448078131903b272e6c49024) C:\WINDOWS\system32\nvsvc32.exe
08:48:30.0687 0948 NVSvc - ok
08:48:30.0750 0948 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:48:30.0750 0948 NwlnkFlt - ok
08:48:30.0750 0948 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:48:30.0765 0948 NwlnkFwd - ok
08:48:30.0796 0948 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:48:30.0796 0948 ohci1394 - ok
08:48:30.0812 0948 P3 (3e16eff2a6fed2d8d7f5a66dfe65d183) C:\WINDOWS\system32\DRIVERS\p3.sys
08:48:30.0812 0948 P3 - ok
08:48:30.0828 0948 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
08:48:30.0828 0948 Parport - ok
08:48:30.0828 0948 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
08:48:30.0828 0948 PartMgr - ok
08:48:30.0843 0948 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
08:48:30.0843 0948 ParVdm - ok
08:48:30.0875 0948 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
08:48:30.0890 0948 PCI - ok
08:48:30.0890 0948 PCIDump - ok
08:48:30.0890 0948 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
08:48:30.0890 0948 PCIIde - ok
08:48:30.0921 0948 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
08:48:30.0937 0948 Pcmcia - ok
08:48:30.0937 0948 PDCOMP - ok
08:48:30.0937 0948 PDFRAME - ok
08:48:30.0953 0948 PDRELI - ok
08:48:30.0953 0948 PDRFRAME - ok
08:48:31.0000 0948 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
08:48:31.0000 0948 perc2 - ok
08:48:31.0015 0948 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:48:31.0015 0948 perc2hib - ok
08:48:31.0078 0948 PlugPlay (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
08:48:31.0093 0948 PlugPlay - ok
08:48:31.0125 0948 Pml Driver HPZ12 (d31f88c5f19eefa366a415d6bc5f2abc) C:\WINDOWS\system32\HPZipm12.exe
08:48:31.0125 0948 Pml Driver HPZ12 - ok
08:48:31.0156 0948 PolicyAgent (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:48:31.0156 0948 PolicyAgent - ok
08:48:31.0187 0948 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:48:31.0187 0948 PptpMiniport - ok
08:48:31.0265 0948 PrismXL (33d7285f12d934268a34206dfc4ad1b3) C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
08:48:31.0265 0948 PrismXL - ok
08:48:31.0281 0948 ProtectedStorage (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:48:31.0281 0948 ProtectedStorage - ok
08:48:31.0281 0948 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
08:48:31.0281 0948 PSched - ok
08:48:31.0296 0948 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:48:31.0296 0948 Ptilink - ok
08:48:31.0328 0948 PxHelp20 (40f2031bd9148d3194353ea7dec97a07) C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:48:31.0343 0948 PxHelp20 - ok
08:48:31.0343 0948 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:48:31.0343 0948 ql1080 - ok
08:48:31.0375 0948 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:48:31.0375 0948 Ql10wnt - ok
08:48:31.0375 0948 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:48:31.0375 0948 ql12160 - ok
08:48:31.0390 0948 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:48:31.0390 0948 ql1240 - ok
08:48:31.0406 0948 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:48:31.0421 0948 ql1280 - ok
08:48:31.0421 0948 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:48:31.0437 0948 RasAcd - ok
08:48:31.0468 0948 RasAuto (44db7a9bdd2fb58747d123fbf1d35adb) C:\WINDOWS\System32\rasauto.dll
08:48:31.0484 0948 RasAuto - ok
08:48:31.0500 0948 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:48:31.0500 0948 Rasl2tp - ok
08:48:31.0531 0948 RasMan (41a3c11e3517c962c9b44893bcec3b34) C:\WINDOWS\System32\rasmans.dll
08:48:31.0546 0948 RasMan - ok
08:48:31.0546 0948 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:48:31.0546 0948 RasPppoe - ok
08:48:31.0546 0948 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
08:48:31.0546 0948 Raspti - ok
08:48:31.0609 0948 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:48:31.0609 0948 Rdbss - ok
08:48:31.0609 0948 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:48:31.0609 0948 RDPCDD - ok
08:48:31.0640 0948 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:48:31.0656 0948 rdpdr - ok
08:48:31.0671 0948 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
08:48:31.0687 0948 RDPWD - ok
08:48:31.0734 0948 RDSessMgr (729798e0933076b8fcfcd9934698f164) C:\WINDOWS\system32\sessmgr.exe
08:48:31.0734 0948 RDSessMgr - ok
08:48:31.0750 0948 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
08:48:31.0750 0948 redbook - ok
08:48:31.0812 0948 RemoteAccess (3046db917e3cfa040632799dd9b14865) C:\WINDOWS\System32\mprdim.dll
08:48:31.0812 0948 RemoteAccess - ok
08:48:31.0828 0948 RemoteRegistry (3151427db7d87107d1c5be58fac53960) C:\WINDOWS\system32\regsvc.dll
08:48:31.0828 0948 RemoteRegistry - ok
08:48:31.0859 0948 RpcLocator (793f04a09b15e7c6c11dbdffaf06c0ab) C:\WINDOWS\system32\locator.exe
08:48:31.0859 0948 RpcLocator - ok
08:48:31.0921 0948 RpcSs (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
08:48:31.0921 0948 RpcSs - ok
08:48:31.0937 0948 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
08:48:31.0953 0948 RSVP - ok
08:48:31.0968 0948 SamSs (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:48:31.0968 0948 SamSs - ok
08:48:31.0984 0948 SCardSvr (25d8de134df108e3dbc8d7d23b1aa58e) C:\WINDOWS\System32\SCardSvr.exe
08:48:32.0000 0948 SCardSvr - ok
08:48:32.0015 0948 Schedule (92360854316611f6cc471612213c3d92) C:\WINDOWS\system32\schedsvc.dll
08:48:32.0031 0948 Schedule - ok
08:48:32.0078 0948 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:48:32.0078 0948 Secdrv - ok
08:48:32.0093 0948 seclogon (b1e0ce09895376871746f36dc5773b4f) C:\WINDOWS\System32\seclogon.dll
08:48:32.0093 0948 seclogon - ok
08:48:32.0093 0948 SENS (dfd9870cf39c791d86c4c209da9fa919) C:\WINDOWS\system32\sens.dll
08:48:32.0109 0948 SENS - ok
08:48:32.0140 0948 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
08:48:32.0140 0948 serenum - ok
08:48:32.0156 0948 Serial - ok
08:48:32.0171 0948 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
08:48:32.0171 0948 Sfloppy - ok
08:48:32.0203 0948 sfng32 (cecdd7cb5db385775790d30fa10f0507) C:\WINDOWS\system32\drivers\sfng32.sys
08:48:32.0203 0948 sfng32 - ok
08:48:32.0265 0948 SharedAccess (36cc8c01b5e50163037bef56cb96deff) C:\WINDOWS\System32\ipnathlp.dll
08:48:32.0265 0948 SharedAccess - ok
08:48:32.0328 0948 ShellHWDetection (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:48:32.0328 0948 ShellHWDetection - ok
08:48:32.0328 0948 Simbad - ok
08:48:32.0343 0948 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:48:32.0343 0948 sisagp - ok
08:48:32.0390 0948 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:48:32.0390 0948 Sparrow - ok
08:48:32.0421 0948 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
08:48:32.0421 0948 speedfan - ok
08:48:32.0468 0948 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
08:48:32.0468 0948 splitter - ok
08:48:32.0484 0948 Spooler (7435b108b935e42ea92ca94f59c8e717) C:\WINDOWS\system32\spoolsv.exe
08:48:32.0484 0948 Spooler - ok
08:48:32.0578 0948 sprtsvc_verizondm - ok
08:48:32.0593 0948 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
08:48:32.0593 0948 sr - ok
08:48:32.0609 0948 srservice (92bdf74f12d6cbec43c94d4b7f804838) C:\WINDOWS\system32\srsvc.dll
08:48:32.0625 0948 srservice - ok
08:48:32.0687 0948 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
08:48:32.0687 0948 Srv - ok
08:48:32.0703 0948 SSDPSRV (4b8d61792f7175bed48859cc18ce4e38) C:\WINDOWS\System32\ssdpsrv.dll
08:48:32.0703 0948 SSDPSRV - ok
08:48:32.0796 0948 STHDA (e459a674c2fccfbc69bfd86800791a5d) C:\WINDOWS\system32\drivers\sthda.sys
08:48:32.0796 0948 STHDA - ok
08:48:32.0875 0948 stisvc (d9f6c4f6b1e188adafc42b561d9bc2e6) C:\WINDOWS\system32\wiaservc.dll
08:48:32.0890 0948 stisvc - ok
08:48:32.0906 0948 SunkFilt (86ca1a5c15a5a98d5533945fb1120b05) C:\WINDOWS\System32\Drivers\sunkfilt.sys
08:48:32.0906 0948 SunkFilt - ok
08:48:32.0937 0948 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
08:48:32.0953 0948 swenum - ok
08:48:32.0984 0948 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
08:48:32.0984 0948 swmidi - ok
08:48:32.0984 0948 SwPrv - ok
08:48:33.0015 0948 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
08:48:33.0015 0948 symc810 - ok
08:48:33.0015 0948 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:48:33.0015 0948 symc8xx - ok
08:48:33.0171 0948 SymWSC (a865bc7fd13e0dea3b699c388e19fb5e) C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
08:48:33.0171 0948 SymWSC - ok
08:48:33.0171 0948 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:48:33.0171 0948 sym_hi - ok
08:48:33.0187 0948 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:48:33.0187 0948 sym_u3 - ok
08:48:33.0203 0948 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
08:48:33.0203 0948 sysaudio - ok
08:48:33.0234 0948 SysmonLog (8b54aa346d1b1b113ffaa75501b8b1b2) C:\WINDOWS\system32\smlogsvc.exe
08:48:33.0250 0948 SysmonLog - ok
08:48:33.0296 0948 TapiSrv (eb4a4187d74a8efdcbea3ea2cb1bdfbd) C:\WINDOWS\System32\tapisrv.dll
08:48:33.0312 0948 TapiSrv - ok
08:48:33.0359 0948 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:48:33.0375 0948 Tcpip - ok
08:48:33.0406 0948 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
08:48:33.0406 0948 TDPIPE - ok
08:48:33.0406 0948 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
08:48:33.0421 0948 TDTCP - ok
08:48:33.0421 0948 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
08:48:33.0437 0948 TermDD - ok
08:48:33.0453 0948 TermService (b60c877d16d9c880b952fda04adf16e6) C:\WINDOWS\System32\termsrv.dll
08:48:33.0468 0948 TermService - ok
08:48:33.0546 0948 tgsrvc_verizondm - ok
08:48:33.0593 0948 Themes (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:48:33.0593 0948 Themes - ok
08:48:33.0640 0948 TlntSvr (37db0a7d097310e8b4de803fc3119c78) C:\WINDOWS\system32\tlntsvr.exe
08:48:33.0640 0948 TlntSvr - ok
08:48:33.0656 0948 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
08:48:33.0656 0948 TosIde - ok
08:48:33.0671 0948 TrkWks (6d9ac544b30f96c57f8206566c1fb6a1) C:\WINDOWS\system32\trkwks.dll
08:48:33.0687 0948 TrkWks - ok
08:48:33.0734 0948 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
08:48:33.0734 0948 Udfs - ok
08:48:33.0750 0948 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
08:48:33.0750 0948 ultra - ok
08:48:33.0812 0948 UMWdf (c81b8635dee0d3ef5f64b3dd643023a5) C:\WINDOWS\system32\wdfmgr.exe
08:48:33.0828 0948 UMWdf - ok
08:48:33.0843 0948 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
08:48:33.0859 0948 Update - ok
08:48:33.0875 0948 upnphost (0546477bde979e33294fe97f6b3de84a) C:\WINDOWS\System32\upnphost.dll
08:48:33.0890 0948 upnphost - ok
08:48:33.0921 0948 UPS (3f5df65b0758675f95a2d43918a740a3) C:\WINDOWS\System32\ups.exe
08:48:33.0937 0948 UPS - ok
08:48:33.0968 0948 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:48:33.0968 0948 usbccgp - ok
08:48:34.0015 0948 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:48:34.0015 0948 usbehci - ok
08:48:34.0015 0948 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:48:34.0031 0948 usbhub - ok
08:48:34.0046 0948 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:48:34.0046 0948 usbprint - ok
08:48:34.0078 0948 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:48:34.0078 0948 usbscan - ok
08:48:34.0109 0948 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:48:34.0109 0948 USBSTOR - ok
08:48:34.0125 0948 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:48:34.0125 0948 usbuhci - ok
08:48:34.0156 0948 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
08:48:34.0156 0948 VgaSave - ok
08:48:34.0171 0948 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:48:34.0171 0948 viaagp - ok
08:48:34.0187 0948 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
08:48:34.0187 0948 ViaIde - ok
08:48:34.0203 0948 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
08:48:34.0203 0948 VolSnap - ok
08:48:34.0281 0948 VSS (3ee00364ae0fd8d604f46cbaf512838a) C:\WINDOWS\System32\vssvc.exe
08:48:34.0296 0948 VSS - ok
08:48:34.0312 0948 W32Time (2b281958f5d0cf99ed626e3ef39d5c8d) C:\WINDOWS\system32\w32time.dll
08:48:34.0328 0948 W32Time - ok
08:48:34.0343 0948 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:48:34.0343 0948 Wanarp - ok
08:48:34.0390 0948 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
08:48:34.0390 0948 wanatw - ok
08:48:34.0390 0948 WDICA - ok
08:48:34.0437 0948 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
08:48:34.0437 0948 wdmaud - ok
08:48:34.0484 0948 WebClient (5d0a442864bfbf3b19dcca4cd29f6e99) C:\WINDOWS\System32\webclnt.dll
08:48:34.0484 0948 WebClient - ok
08:48:34.0546 0948 winachsf (2dc7c0b6175a0a8ed84a4f70199c93b5) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
08:48:34.0578 0948 winachsf - ok
08:48:34.0703 0948 winmgmt (f399242a80c4066fd155efa4cf96658e) C:\WINDOWS\system32\wbem\WMIsvc.dll
08:48:34.0703 0948 winmgmt - ok
08:48:34.0750 0948 WmdmPmSN (6eaa72fd9ef993ec1fa9a06de65105da) C:\WINDOWS\system32\mspmsnsv.dll
08:48:34.0765 0948 WmdmPmSN - ok
08:48:34.0812 0948 Wmi (1081c185aed0660b2b5f173c3e023b23) C:\WINDOWS\System32\advapi32.dll
08:48:34.0843 0948 Wmi - ok
08:48:34.0875 0948 WmiApSrv (ba8cecc3e813e1f7c441b20393d4f86c) C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:48:34.0890 0948 WmiApSrv - ok
08:48:34.0937 0948 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:48:34.0937 0948 WS2IFSL - ok
08:48:34.0984 0948 wscsvc (4d59daa66c60858cdf4f67a900f42d4a) C:\WINDOWS\system32\wscsvc.dll
08:48:34.0984 0948 wscsvc - ok
08:48:34.0984 0948 wuauserv (13d72740963cba12d9ff76a7f218bcd8) C:\WINDOWS\system32\wuauserv.dll
08:48:35.0000 0948 wuauserv - ok
08:48:35.0015 0948 WZCSVC (5a91e6feab9f901302fa7ff768c0120f) C:\WINDOWS\System32\wzcsvc.dll
08:48:35.0046 0948 WZCSVC - ok
08:48:35.0062 0948 xmlprov (eef46dab68229a14da3d8e73c99e2959) C:\WINDOWS\System32\xmlprov.dll
08:48:35.0078 0948 xmlprov - ok
08:48:35.0218 0948 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
08:48:35.0218 0948 YahooAUService - ok
08:48:35.0250 0948 MBR (0x1B8) (b20939cd98b7710036274839082ae757) \Device\Harddisk0\DR0
08:48:35.0250 0948 \Device\Harddisk0\DR0 - ok
08:48:35.0265 0948 Boot (0x1200) (4a1550c36354ca6b29eef4d5558b0242) \Device\Harddisk0\DR0\Partition0
08:48:35.0265 0948 \Device\Harddisk0\DR0\Partition0 - ok
08:48:35.0265 0948 Boot (0x1200) (bd6c1f32195c6d8eafa1a768d7899b67) \Device\Harddisk0\DR0\Partition1
08:48:35.0265 0948 \Device\Harddisk0\DR0\Partition1 - ok
08:48:35.0265 0948 ============================================================
08:48:35.0265 0948 Scan finished
08:48:35.0265 0948 ============================================================
08:48:35.0281 0916 Detected object count: 0
08:48:35.0281 0916 Actual detected object count: 0
08:49:01.0125 2072 ============================================================
08:49:01.0125 2072 Scan started
08:49:01.0125 2072 Mode: Manual;
08:49:01.0125 2072 ============================================================
08:49:01.0281 2072 52512866 - ok
08:49:01.0281 2072 Abiosdsk - ok
08:49:01.0328 2072 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:49:01.0328 2072 abp480n5 - ok
08:49:01.0359 2072 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:49:01.0359 2072 ACPI - ok
08:49:01.0375 2072 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
08:49:01.0375 2072 ACPIEC - ok
08:49:01.0468 2072 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:49:01.0468 2072 AdobeFlashPlayerUpdateSvc - ok
08:49:01.0484 2072 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:49:01.0484 2072 adpu160m - ok
08:49:01.0531 2072 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
08:49:01.0531 2072 aec - ok
08:49:01.0578 2072 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
08:49:01.0578 2072 AFD - ok
08:49:01.0578 2072 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
08:49:01.0578 2072 agp440 - ok
08:49:01.0593 2072 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:49:01.0593 2072 agpCPQ - ok
08:49:01.0593 2072 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:49:01.0593 2072 Aha154x - ok
08:49:01.0593 2072 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:49:01.0593 2072 aic78u2 - ok
08:49:01.0609 2072 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:49:01.0609 2072 aic78xx - ok
08:49:01.0609 2072 Alerter (c7ae0fd3867db0d42b03b73c18f3d671) C:\WINDOWS\system32\alrsvc.dll
08:49:01.0609 2072 Alerter - ok
08:49:01.0625 2072 ALG (f1958fbf86d5c004cf19a5951a9514b7) C:\WINDOWS\System32\alg.exe
08:49:01.0625 2072 ALG - ok
08:49:01.0625 2072 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
08:49:01.0625 2072 AliIde - ok
08:49:01.0640 2072 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:49:01.0640 2072 alim1541 - ok
08:49:01.0656 2072 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:49:01.0656 2072 amdagp - ok
08:49:01.0656 2072 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
08:49:01.0656 2072 amsint - ok
08:49:01.0687 2072 AppMgmt (9c3c12975c97119412802b181fbeeffe) C:\WINDOWS\System32\appmgmts.dll
08:49:01.0687 2072 AppMgmt - ok
08:49:01.0703 2072 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:49:01.0703 2072 Arp1394 - ok
08:49:01.0703 2072 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
08:49:01.0703 2072 asc - ok
08:49:01.0703 2072 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:49:01.0703 2072 asc3350p - ok
08:49:01.0718 2072 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:49:01.0718 2072 asc3550 - ok
08:49:01.0750 2072 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
08:49:01.0750 2072 ASCTRM - ok
08:49:01.0906 2072 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:49:01.0906 2072 aspnet_state - ok
08:49:01.0921 2072 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:49:01.0921 2072 AsyncMac - ok
08:49:01.0968 2072 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
08:49:01.0968 2072 atapi - ok
08:49:01.0968 2072 Atdisk - ok
08:49:02.0000 2072 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:49:02.0000 2072 Atmarpc - ok
08:49:02.0031 2072 AudioSrv (db66db626e4882ebef55f136f12c1829) C:\WINDOWS\System32\audiosrv.dll
08:49:02.0031 2072 AudioSrv - ok
08:49:02.0046 2072 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
08:49:02.0046 2072 audstub - ok
08:49:02.0062 2072 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
08:49:02.0062 2072 Beep - ok
08:49:02.0109 2072 BITS (2c69ec7e5a311334d10dd95f338fccea) C:\WINDOWS\system32\qmgr.dll
08:49:02.0109 2072 BITS - ok
08:49:02.0140 2072 Browser (e3cfccdda4edd1d0dc9168b2e18f27b8) C:\WINDOWS\System32\browser.dll
08:49:02.0140 2072 Browser - ok
08:49:02.0140 2072 byjjhj - ok
08:49:02.0250 2072 catchme - ok
08:49:02.0265 2072 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:49:02.0265 2072 cbidf - ok
08:49:02.0265 2072 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
08:49:02.0265 2072 cbidf2k - ok
08:49:02.0281 2072 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:49:02.0281 2072 cd20xrnt - ok
08:49:02.0281 2072 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
08:49:02.0296 2072 Cdaudio - ok
08:49:02.0296 2072 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
08:49:02.0296 2072 Cdfs - ok
08:49:02.0343 2072 Cdr4_xp (2552670e5fbcfdb540eeb426af39704d) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
08:49:02.0343 2072 Cdr4_xp - ok
08:49:02.0375 2072 Cdralw2k (b761b10d6a541be69ea448a8429d30b0) C:\WINDOWS\system32\drivers\Cdralw2k.sys
08:49:02.0375 2072 Cdralw2k - ok
08:49:02.0390 2072 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:49:02.0390 2072 Cdrom - ok
08:49:02.0406 2072 Changer - ok
08:49:02.0421 2072 CiSvc (3192bd04d032a9c4a85a3278c268a13a) C:\WINDOWS\system32\cisvc.exe
08:49:02.0421 2072 CiSvc - ok
08:49:02.0421 2072 ClipSrv (c8dec22c4137d7a90f8bdf41ca4b82ae) C:\WINDOWS\system32\clipsrv.exe
08:49:02.0421 2072 ClipSrv - ok
08:49:02.0468 2072 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:49:02.0468 2072 clr_optimization_v2.0.50727_32 - ok
08:49:02.0468 2072 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:49:02.0468 2072 CmdIde - ok
08:49:02.0484 2072 COMSysApp - ok
08:49:02.0484 2072 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:49:02.0484 2072 Cpqarray - ok
08:49:02.0500 2072 CryptSvc (10654f9ddcea9c46cfb77554231be73b) C:\WINDOWS\System32\cryptsvc.dll
08:49:02.0500 2072 CryptSvc - ok
08:49:02.0531 2072 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:49:02.0531 2072 dac2w2k - ok
08:49:02.0531 2072 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:49:02.0531 2072 dac960nt - ok
08:49:02.0593 2072 DcomLaunch (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
08:49:02.0593 2072 DcomLaunch - ok
08:49:02.0609 2072 Dhcp (cb6ca3e5261d65f6f809eed23bf167aa) C:\WINDOWS\System32\dhcpcsvc.dll
08:49:02.0609 2072 Dhcp - ok
08:49:02.0625 2072 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
08:49:02.0625 2072 Disk - ok
08:49:02.0625 2072 dmadmin - ok
08:49:02.0671 2072 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
08:49:02.0687 2072 dmboot - ok
08:49:02.0687 2072 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
08:49:02.0687 2072 dmio - ok
08:49:02.0703 2072 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
08:49:02.0703 2072 dmload - ok
08:49:02.0703 2072 dmserver (1639d9964c9e1b2ecca95c8217d3e70d) C:\WINDOWS\System32\dmserver.dll
08:49:02.0703 2072 dmserver - ok
08:49:02.0750 2072 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
08:49:02.0750 2072 DMusic - ok
08:49:02.0750 2072 Dnscache (7379de06fd196e396a00aa97b990c00d) C:\WINDOWS\System32\dnsrslvr.dll
08:49:02.0750 2072 Dnscache - ok
08:49:02.0781 2072 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:49:02.0781 2072 dpti2o - ok
08:49:02.0796 2072 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
08:49:02.0796 2072 drmkaud - ok
08:49:02.0828 2072 E100B (6ca101f9aa3d845ba31f6e13c01301a8) C:\WINDOWS\system32\DRIVERS\e100b325.sys
08:49:02.0843 2072 E100B - ok
08:49:02.0921 2072 ehRecvr (63f371f0248e3732a4821f86e6d0e370) C:\WINDOWS\eHome\ehRecvr.exe
08:49:02.0921 2072 ehRecvr - ok
08:49:02.0953 2072 ehSched (16910f8b482919bb6035ed053b691692) C:\WINDOWS\eHome\ehSched.exe
08:49:02.0953 2072 ehSched - ok
08:49:02.0984 2072 ERSvc (67dff7bbbd0e80aab7b3cf061448db8a) C:\WINDOWS\System32\ersvc.dll
08:49:02.0984 2072 ERSvc - ok
08:49:03.0031 2072 Eventlog (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
08:49:03.0031 2072 Eventlog - ok
08:49:03.0078 2072 EventSystem (60d1a6342238378bfb7545c81ee3606c) C:\WINDOWS\system32\es.dll
08:49:03.0093 2072 EventSystem - ok
08:49:03.0109 2072 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
08:49:03.0109 2072 Fastfat - ok
08:49:03.0156 2072 FastUserSwitchingCompatibility (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:49:03.0156 2072 FastUserSwitchingCompatibility - ok
08:49:03.0171 2072 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
08:49:03.0171 2072 Fdc - ok
08:49:03.0171 2072 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
08:49:03.0171 2072 Fips - ok
08:49:03.0187 2072 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:49:03.0187 2072 Flpydisk - ok
08:49:03.0203 2072 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:49:03.0203 2072 FltMgr - ok
08:49:03.0328 2072 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:49:03.0328 2072 FontCache3.0.0.0 - ok
08:49:03.0359 2072 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:49:03.0359 2072 Fs_Rec - ok
08:49:03.0359 2072 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:49:03.0359 2072 Ftdisk - ok
08:49:03.0375 2072 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys
08:49:03.0375 2072 giveio - ok
08:49:03.0406 2072 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:49:03.0406 2072 Gpc - ok
08:49:03.0546 2072 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:49:03.0546 2072 gupdate - ok
08:49:03.0546 2072 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
08:49:03.0546 2072 gupdatem - ok
08:49:03.0593 2072 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:49:03.0593 2072 HDAudBus - ok
08:49:03.0671 2072 helpsvc (8827911a8c37e40c027cbfc88e69d967) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:49:03.0671 2072 helpsvc - ok
08:49:03.0687 2072 HidServ - ok
08:49:03.0718 2072 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:49:03.0718 2072 HidUsb - ok
08:49:03.0765 2072 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
08:49:03.0765 2072 hpn - ok
08:49:03.0796 2072 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:49:03.0796 2072 HPZid412 - ok
08:49:03.0828 2072 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:49:03.0828 2072 HPZipr12 - ok
08:49:03.0843 2072 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:49:03.0843 2072 HPZius12 - ok
08:49:03.0890 2072 HSFHWBS2 (33dfc0afa95f9a2c753ff2adb7d4a21f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
08:49:03.0890 2072 HSFHWBS2 - ok
08:49:03.0953 2072 HSF_DP (b2dfc168d6f7512faea085253c5a37ad) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
08:49:03.0953 2072 HSF_DP - ok
08:49:04.0015 2072 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
08:49:04.0015 2072 HTTP - ok
08:49:04.0046 2072 HTTPFilter (064d8581adf77c25133e7d751d917d83) C:\WINDOWS\System32\w3ssl.dll
08:49:04.0046 2072 HTTPFilter - ok
08:49:04.0062 2072 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
08:49:04.0062 2072 i2omgmt - ok
08:49:04.0078 2072 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:49:04.0078 2072 i2omp - ok
08:49:04.0093 2072 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:49:04.0093 2072 i8042prt - ok
08:49:04.0265 2072 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:49:04.0281 2072 idsvc - ok
08:49:04.0375 2072 IHA_MessageCenter (7f82358baf1e5b940664e601037d0b0c) C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
08:49:04.0375 2072 IHA_MessageCenter - ok
08:49:04.0421 2072 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
08:49:04.0421 2072 Imapi - ok
08:49:04.0468 2072 ImapiService (fa788520bcac0f5d9d5cde5615c0d931) C:\WINDOWS\system32\imapi.exe
08:49:04.0468 2072 ImapiService - ok
08:49:04.0484 2072 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:49:04.0484 2072 ini910u - ok
08:49:04.0484 2072 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
08:49:04.0484 2072 IntelIde - ok
08:49:04.0515 2072 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:49:04.0515 2072 intelppm - ok
08:49:04.0515 2072 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
08:49:04.0515 2072 Ip6Fw - ok
08:49:04.0531 2072 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:49:04.0531 2072 IpFilterDriver - ok
08:49:04.0531 2072 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:49:04.0531 2072 IpInIp - ok
08:49:04.0562 2072 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:49:04.0562 2072 IpNat - ok
08:49:04.0562 2072 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:49:04.0562 2072 IPSec - ok
08:49:04.0578 2072 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
08:49:04.0578 2072 IRENUM - ok
08:49:04.0609 2072 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:49:04.0609 2072 isapnp - ok
08:49:04.0781 2072 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
08:49:04.0781 2072 JavaQuickStarterService - ok
08:49:04.0796 2072 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:49:04.0796 2072 Kbdclass - ok
08:49:04.0843 2072 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
08:49:04.0843 2072 kmixer - ok
08:49:04.0875 2072 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
08:49:04.0875 2072 KSecDD - ok
08:49:04.0906 2072 lanmanserver (0cb3af149a0bac0836022ca307c7a0f8) C:\WINDOWS\System32\srvsvc.dll
08:49:04.0906 2072 lanmanserver - ok
08:49:04.0953 2072 lanmanworkstation (e1f27cfcd114ec9f1e1f44674b2ff9f0) C:\WINDOWS\System32\wkssvc.dll
08:49:04.0953 2072 lanmanworkstation - ok
08:49:04.0953 2072 lbrtfdc - ok
08:49:05.0000 2072 LmHosts (b3eff6d938c572e90a07b3d87a3c7657) C:\WINDOWS\System32\lmhsvc.dll
08:49:05.0000 2072 LmHosts - ok
08:49:05.0109 2072 lxecCATSCustConnectService (6311f8863d898ce60c048779f9d86e74) C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxecserv.exe
08:49:05.0109 2072 lxecCATSCustConnectService - ok
08:49:05.0109 2072 lxec_device - ok
08:49:05.0171 2072 McAfeeAntiSpyware (1f1f459e191fd540d0c4f306bdd500a9) C:\Program Files\McAfee\McAfee AntiSpyware\Msssrv.exe
08:49:05.0171 2072 McAfeeAntiSpyware - ok
08:49:05.0203 2072 mcupdmgr.exe (abd5b888af754e30a95b21ad885635b0) C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
08:49:05.0203 2072 mcupdmgr.exe - ok
08:49:05.0234 2072 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
08:49:05.0234 2072 mdmxsdk - ok
08:49:05.0281 2072 Messenger (95fd808e4ac22aba025a7b3eac0375d2) C:\WINDOWS\System32\msgsvc.dll
08:49:05.0281 2072 Messenger - ok
08:49:05.0328 2072 MHN (b7521f69c0a9b29d356157229376fb21) C:\WINDOWS\System32\mhn.dll
08:49:05.0328 2072 MHN - ok
08:49:05.0343 2072 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
08:49:05.0343 2072 MHNDRV - ok
08:49:05.0390 2072 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
08:49:05.0390 2072 mnmdd - ok
08:49:05.0406 2072 mnmsrvc (f6415361201915b9fe3896b0e4e724ff) C:\WINDOWS\system32\mnmsrvc.exe
08:49:05.0406 2072 mnmsrvc - ok
08:49:05.0421 2072 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
08:49:05.0421 2072 Modem - ok
08:49:05.0437 2072 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:49:05.0437 2072 Mouclass - ok
08:49:05.0468 2072 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:49:05.0468 2072 mouhid - ok
08:49:05.0500 2072 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
08:49:05.0500 2072 MountMgr - ok
08:49:05.0500 2072 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:49:05.0500 2072 mraid35x - ok
08:49:05.0515 2072 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:49:05.0515 2072 MRxDAV - ok
08:49:05.0578 2072 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:49:05.0593 2072 MRxSmb - ok
08:49:05.0625 2072 MSDTC (c7c3d89eb0a6f3dba622ea737fa335b1) C:\WINDOWS\system32\msdtc.exe
08:49:05.0625 2072 MSDTC - ok
08:49:05.0640 2072 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
08:49:05.0640 2072 Msfs - ok
08:49:05.0640 2072 MSIServer - ok
08:49:05.0687 2072 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:49:05.0687 2072 MSKSSRV - ok
08:49:05.0687 2072 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:49:05.0687 2072 MSPCLOCK - ok
08:49:05.0703 2072 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
08:49:05.0703 2072 MSPQM - ok
08:49:05.0718 2072 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:49:05.0718 2072 mssmbios - ok
08:49:05.0734 2072 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
08:49:05.0734 2072 Mup - ok
08:49:05.0750 2072 mxnic (e1cdf20697d992cf83ff86dd04df1285) C:\WINDOWS\system32\DRIVERS\mxnic.sys
08:49:05.0750 2072 mxnic - ok
08:49:05.0765 2072 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
08:49:05.0765 2072 NDIS - ok
08:49:05.0765 2072 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:49:05.0765 2072 NdisTapi - ok
08:49:05.0781 2072 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:49:05.0781 2072 Ndisuio - ok
08:49:05.0781 2072 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:49:05.0781 2072 NdisWan - ok
08:49:05.0796 2072 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
08:49:05.0796 2072 NDProxy - ok
08:49:05.0796 2072 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
08:49:05.0796 2072 NetBIOS - ok
08:49:05.0812 2072 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
08:49:05.0828 2072 NetBT - ok
08:49:05.0859 2072 NetDDE (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
08:49:05.0875 2072 NetDDE - ok
08:49:05.0875 2072 NetDDEdsdm (05afb5ad06462257bea7495283c86d50) C:\WINDOWS\system32\netdde.exe
08:49:05.0875 2072 NetDDEdsdm - ok
08:49:05.0921 2072 Netlogon (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:49:05.0921 2072 Netlogon - ok
08:49:05.0937 2072 Netman (dab9e6c7105d2ef49876fe92c524f565) C:\WINDOWS\System32\netman.dll
08:49:05.0937 2072 Netman - ok
08:49:06.0078 2072 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:49:06.0078 2072 NetTcpPortSharing - ok
08:49:06.0093 2072 NETw4v32 - ok
08:49:06.0140 2072 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:49:06.0140 2072 NIC1394 - ok
08:49:06.0187 2072 Nla (097722f235a1fb698bf9234e01b52637) C:\WINDOWS\System32\mswsock.dll
08:49:06.0203 2072 Nla - ok
08:49:06.0203 2072 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
08:49:06.0203 2072 Npfs - ok
08:49:06.0234 2072 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
08:49:06.0234 2072 Ntfs - ok
08:49:06.0234 2072 NtLmSsp (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:49:06.0234 2072 NtLmSsp - ok
08:49:06.0296 2072 NtmsSvc (b62f29c00ac55a761b2e45877d85ea0f) C:\WINDOWS\system32\ntmssvc.dll
08:49:06.0296 2072 NtmsSvc - ok
08:49:06.0312 2072 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
08:49:06.0328 2072 Null - ok
08:49:06.0593 2072 nv (83780f3a86d2804912f22f6e37cd2254) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:49:06.0640 2072 nv - ok
08:49:06.0750 2072 NVSvc (42321ac5448078131903b272e6c49024) C:\WINDOWS\system32\nvsvc32.exe
08:49:06.0750 2072 NVSvc - ok
08:49:06.0796 2072 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:49:06.0796 2072 NwlnkFlt - ok
08:49:06.0796 2072 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:49:06.0796 2072 NwlnkFwd - ok
08:49:06.0843 2072 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:49:06.0843 2072 ohci1394 - ok
08:49:06.0859 2072 P3 (3e16eff2a6fed2d8d7f5a66dfe65d183) C:\WINDOWS\system32\DRIVERS\p3.sys
08:49:06.0859 2072 P3 - ok
08:49:06.0859 2072 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
08:49:06.0859 2072 Parport - ok
08:49:06.0875 2072 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
08:49:06.0875 2072 PartMgr - ok
08:49:06.0890 2072 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
08:49:06.0890 2072 ParVdm - ok
08:49:06.0906 2072 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
08:49:06.0906 2072 PCI - ok
08:49:06.0906 2072 PCIDump - ok
08:49:06.0921 2072 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
08:49:06.0921 2072 PCIIde - ok
08:49:06.0953 2072 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
08:49:06.0953 2072 Pcmcia - ok
08:49:06.0953 2072 PDCOMP - ok
08:49:06.0953 2072 PDFRAME - ok
08:49:06.0968 2072 PDRELI - ok
08:49:06.0968 2072 PDRFRAME - ok
08:49:06.0984 2072 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
08:49:06.0984 2072 perc2 - ok
08:49:06.0984 2072 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:49:07.0000 2072 perc2hib - ok
08:49:07.0062 2072 PlugPlay (37561f8d4160d62da86d24ae41fae8de) C:\WINDOWS\system32\services.exe
08:49:07.0062 2072 PlugPlay - ok
08:49:07.0109 2072 Pml Driver HPZ12 (d31f88c5f19eefa366a415d6bc5f2abc) C:\WINDOWS\system32\HPZipm12.exe
08:49:07.0109 2072 Pml Driver HPZ12 - ok
08:49:07.0140 2072 PolicyAgent (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:49:07.0140 2072 PolicyAgent - ok
08:49:07.0171 2072 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:49:07.0171 2072 PptpMiniport - ok
08:49:07.0265 2072 PrismXL (33d7285f12d934268a34206dfc4ad1b3) C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
08:49:07.0265 2072 PrismXL - ok
08:49:07.0265 2072 ProtectedStorage (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:49:07.0265 2072 ProtectedStorage - ok
08:49:07.0281 2072 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
08:49:07.0281 2072 PSched - ok
08:49:07.0281 2072 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:49:07.0281 2072 Ptilink - ok
08:49:07.0328 2072 PxHelp20 (40f2031bd9148d3194353ea7dec97a07) C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:49:07.0343 2072 PxHelp20 - ok
08:49:07.0343 2072 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:49:07.0343 2072 ql1080 - ok
08:49:07.0359 2072 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:49:07.0359 2072 Ql10wnt - ok
08:49:07.0359 2072 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:49:07.0359 2072 ql12160 - ok
08:49:07.0359 2072 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:49:07.0359 2072 ql1240 - ok
08:49:07.0375 2072 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:49:07.0375 2072 ql1280 - ok
08:49:07.0390 2072 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:49:07.0390 2072 RasAcd - ok
08:49:07.0437 2072 RasAuto (44db7a9bdd2fb58747d123fbf1d35adb) C:\WINDOWS\System32\rasauto.dll
08:49:07.0437 2072 RasAuto - ok
08:49:07.0453 2072 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:49:07.0453 2072 Rasl2tp - ok
08:49:07.0468 2072 RasMan (41a3c11e3517c962c9b44893bcec3b34) C:\WINDOWS\System32\rasmans.dll
08:49:07.0484 2072 RasMan - ok
08:49:07.0484 2072 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:49:07.0484 2072 RasPppoe - ok
08:49:07.0484 2072 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
08:49:07.0484 2072 Raspti - ok
08:49:07.0546 2072 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:49:07.0546 2072 Rdbss - ok
08:49:07.0546 2072 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:49:07.0546 2072 RDPCDD - ok
08:49:07.0578 2072 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:49:07.0578 2072 rdpdr - ok
08:49:07.0593 2072 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys
08:49:07.0593 2072 RDPWD - ok
08:49:07.0640 2072 RDSessMgr (729798e0933076b8fcfcd9934698f164) C:\WINDOWS\system32\sessmgr.exe
08:49:07.0640 2072 RDSessMgr - ok
08:49:07.0656 2072 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
08:49:07.0656 2072 redbook - ok
08:49:07.0703 2072 RemoteAccess (3046db917e3cfa040632799dd9b14865) C:\WINDOWS\System32\mprdim.dll
08:49:07.0703 2072 RemoteAccess - ok
08:49:07.0750 2072 RemoteRegistry (3151427db7d87107d1c5be58fac53960) C:\WINDOWS\system32\regsvc.dll
08:49:07.0750 2072 RemoteRegistry - ok
08:49:07.0781 2072 RpcLocator (793f04a09b15e7c6c11dbdffaf06c0ab) C:\WINDOWS\system32\locator.exe
08:49:07.0781 2072 RpcLocator - ok
08:49:07.0828 2072 RpcSs (01095febf33beea00c2a0730b9b3ec28) C:\WINDOWS\system32\rpcss.dll
08:49:07.0828 2072 RpcSs - ok
08:49:07.0859 2072 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
08:49:07.0859 2072 RSVP - ok
08:49:07.0875 2072 SamSs (84885f9b82f4d55c6146ebf6065d75d2) C:\WINDOWS\system32\lsass.exe
08:49:07.0875 2072 SamSs - ok
08:49:07.0921 2072 SCardSvr (25d8de134df108e3dbc8d7d23b1aa58e) C:\WINDOWS\System32\SCardSvr.exe
08:49:07.0921 2072 SCardSvr - ok
08:49:07.0953 2072 Schedule (92360854316611f6cc471612213c3d92) C:\WINDOWS\system32\schedsvc.dll
08:49:07.0953 2072 Schedule - ok
08:49:08.0000 2072 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:49:08.0000 2072 Secdrv - ok
08:49:08.0015 2072 seclogon (b1e0ce09895376871746f36dc5773b4f) C:\WINDOWS\System32\seclogon.dll
08:49:08.0015 2072 seclogon - ok
08:49:08.0015 2072 SENS (dfd9870cf39c791d86c4c209da9fa919) C:\WINDOWS\system32\sens.dll
08:49:08.0015 2072 SENS - ok
08:49:08.0062 2072 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
08:49:08.0062 2072 serenum - ok
08:49:08.0062 2072 Serial - ok
08:49:08.0078 2072 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
08:49:08.0078 2072 Sfloppy - ok
08:49:08.0125 2072 sfng32 (cecdd7cb5db385775790d30fa10f0507) C:\WINDOWS\system32\drivers\sfng32.sys
08:49:08.0125 2072 sfng32 - ok
08:49:08.0187 2072 SharedAccess (36cc8c01b5e50163037bef56cb96deff) C:\WINDOWS\System32\ipnathlp.dll
08:49:08.0187 2072 SharedAccess - ok
08:49:08.0234 2072 ShellHWDetection (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:49:08.0250 2072 ShellHWDetection - ok
08:49:08.0250 2072 Simbad - ok
08:49:08.0265 2072 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:49:08.0265 2072 sisagp - ok
08:49:08.0265 2072 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:49:08.0265 2072 Sparrow - ok
08:49:08.0312 2072 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\WINDOWS\system32\speedfan.sys
08:49:08.0312 2072 speedfan - ok
08:49:08.0359 2072 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
08:49:08.0359 2072 splitter - ok
08:49:08.0375 2072 Spooler (7435b108b935e42ea92ca94f59c8e717) C:\WINDOWS\system32\spoolsv.exe
08:49:08.0375 2072 Spooler - ok
08:49:08.0453 2072 sprtsvc_verizondm - ok
08:49:08.0468 2072 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
08:49:08.0468 2072 sr - ok
08:49:08.0484 2072 srservice (92bdf74f12d6cbec43c94d4b7f804838) C:\WINDOWS\system32\srsvc.dll
08:49:08.0484 2072 srservice - ok
08:49:08.0546 2072 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
08:49:08.0546 2072 Srv - ok
08:49:08.0562 2072 SSDPSRV (4b8d61792f7175bed48859cc18ce4e38) C:\WINDOWS\System32\ssdpsrv.dll
08:49:08.0562 2072 SSDPSRV - ok
08:49:08.0640 2072 STHDA (e459a674c2fccfbc69bfd86800791a5d) C:\WINDOWS\system32\drivers\sthda.sys
08:49:08.0656 2072 STHDA - ok
08:49:08.0703 2072 stisvc (d9f6c4f6b1e188adafc42b561d9bc2e6) C:\WINDOWS\system32\wiaservc.dll
08:49:08.0718 2072 stisvc - ok
08:49:08.0734 2072 SunkFilt (86ca1a5c15a5a98d5533945fb1120b05) C:\WINDOWS\System32\Drivers\sunkfilt.sys
08:49:08.0734 2072 SunkFilt - ok
08:49:08.0765 2072 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
08:49:08.0765 2072 swenum - ok
08:49:08.0812 2072 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
08:49:08.0812 2072 swmidi - ok
08:49:08.0812 2072 SwPrv - ok
08:49:08.0828 2072 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
08:49:08.0828 2072 symc810 - ok
08:49:08.0843 2072 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:49:08.0843 2072 symc8xx - ok
08:49:08.0984 2072 SymWSC (a865bc7fd13e0dea3b699c388e19fb5e) C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
08:49:08.0984 2072 SymWSC - ok
08:49:09.0000 2072 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:49:09.0000 2072 sym_hi - ok
08:49:09.0000 2072 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:49:09.0000 2072 sym_u3 - ok
08:49:09.0015 2072 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
08:49:09.0015 2072 sysaudio - ok
08:49:09.0062 2072 SysmonLog (8b54aa346d1b1b113ffaa75501b8b1b2) C:\WINDOWS\system32\smlogsvc.exe
08:49:09.0062 2072 SysmonLog - ok
08:49:09.0125 2072 TapiSrv (eb4a4187d74a8efdcbea3ea2cb1bdfbd) C:\WINDOWS\System32\tapisrv.dll
08:49:09.0125 2072 TapiSrv - ok
08:49:09.0171 2072 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:49:09.0187 2072 Tcpip - ok
08:49:09.0218 2072 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
08:49:09.0218 2072 TDPIPE - ok
08:49:09.0218 2072 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
08:49:09.0218 2072 TDTCP - ok
08:49:09.0234 2072 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
08:49:09.0234 2072 TermDD - ok
08:49:09.0250 2072 TermService (b60c877d16d9c880b952fda04adf16e6) C:\WINDOWS\System32\termsrv.dll
08:49:09.0265 2072 TermService - ok
08:49:09.0343 2072 tgsrvc_verizondm - ok
08:49:09.0390 2072 Themes (e7518dc542d3ebdcb80edd98462c7821) C:\WINDOWS\System32\shsvcs.dll
08:49:09.0390 2072 Themes - ok
08:49:09.0437 2072 TlntSvr (37db0a7d097310e8b4de803fc3119c78) C:\WINDOWS\system32\tlntsvr.exe
08:49:09.0437 2072 TlntSvr - ok
08:49:09.0453 2072 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
08:49:09.0453 2072 TosIde - ok
08:49:09.0468 2072 TrkWks (6d9ac544b30f96c57f8206566c1fb6a1) C:\WINDOWS\system32\trkwks.dll
08:49:09.0468 2072 TrkWks - ok
08:49:09.0484 2072 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
08:49:09.0484 2072 Udfs - ok
08:49:09.0484 2072 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
08:49:09.0484 2072 ultra - ok
08:49:09.0531 2072 UMWdf (c81b8635dee0d3ef5f64b3dd643023a5) C:\WINDOWS\system32\wdfmgr.exe
08:49:09.0531 2072 UMWdf - ok
08:49:09.0562 2072 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
08:49:09.0562 2072 Update - ok
08:49:09.0593 2072 upnphost (0546477bde979e33294fe97f6b3de84a) C:\WINDOWS\System32\upnphost.dll
08:49:09.0593 2072 upnphost - ok
08:49:09.0609 2072 UPS (3f5df65b0758675f95a2d43918a740a3) C:\WINDOWS\System32\ups.exe
08:49:09.0609 2072 UPS - ok
08:49:09.0656 2072 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:49:09.0656 2072 usbccgp - ok
08:49:09.0687 2072 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:49:09.0687 2072 usbehci - ok
08:49:09.0703 2072 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:49:09.0703 2072 usbhub - ok
08:49:09.0718 2072 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:49:09.0718 2072 usbprint - ok
08:49:09.0750 2072 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:49:09.0765 2072 usbscan - ok
08:49:09.0781 2072 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:49:09.0781 2072 USBSTOR - ok
08:49:09.0812 2072 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:49:09.0812 2072 usbuhci - ok
08:49:09.0828 2072 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
08:49:09.0828 2072 VgaSave - ok
08:49:09.0859 2072 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:49:09.0859 2072 viaagp - ok
08:49:09.0859 2072 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
08:49:09.0859 2072 ViaIde - ok
08:49:09.0875 2072 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
08:49:09.0875 2072 VolSnap - ok
08:49:09.0953 2072 VSS (3ee00364ae0fd8d604f46cbaf512838a) C:\WINDOWS\System32\vssvc.exe
08:49:09.0953 2072 VSS - ok
08:49:09.0968 2072 W32Time (2b281958f5d0cf99ed626e3ef39d5c8d) C:\WINDOWS\system32\w32time.dll
08:49:09.0984 2072 W32Time - ok
08:49:10.0000 2072 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:49:10.0000 2072 Wanarp - ok
08:49:10.0031 2072 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
08:49:10.0031 2072 wanatw - ok
08:49:10.0046 2072 WDICA - ok
08:49:10.0078 2072 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
08:49:10.0078 2072 wdmaud - ok
08:49:10.0125 2072 WebClient (5d0a442864bfbf3b19dcca4cd29f6e99) C:\WINDOWS\System32\webclnt.dll
08:49:10.0125 2072 WebClient - ok
08:49:10.0203 2072 winachsf (2dc7c0b6175a0a8ed84a4f70199c93b5) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
08:49:10.0203 2072 winachsf - ok
08:49:10.0250 2072 winmgmt (f399242a80c4066fd155efa4cf96658e) C:\WINDOWS\system32\wbem\WMIsvc.dll
08:49:10.0250 2072 winmgmt - ok
08:49:10.0296 2072 WmdmPmSN (6eaa72fd9ef993ec1fa9a06de65105da) C:\WINDOWS\system32\mspmsnsv.dll
08:49:10.0296 2072 WmdmPmSN - ok
08:49:10.0359 2072 Wmi (1081c185aed0660b2b5f173c3e023b23) C:\WINDOWS\System32\advapi32.dll
08:49:10.0359 2072 Wmi - ok
08:49:10.0406 2072 WmiApSrv (ba8cecc3e813e1f7c441b20393d4f86c) C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:49:10.0406 2072 WmiApSrv - ok
08:49:10.0468 2072 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:49:10.0468 2072 WS2IFSL - ok
08:49:10.0515 2072 wscsvc (4d59daa66c60858cdf4f67a900f42d4a) C:\WINDOWS\system32\wscsvc.dll
08:49:10.0515 2072 wscsvc - ok
08:49:10.0531 2072 wuauserv (13d72740963cba12d9ff76a7f218bcd8) C:\WINDOWS\system32\wuauserv.dll
08:49:10.0531 2072 wuauserv - ok
08:49:10.0562 2072 WZCSVC (5a91e6feab9f901302fa7ff768c0120f) C:\WINDOWS\System32\wzcsvc.dll
08:49:10.0562 2072 WZCSVC - ok
08:49:10.0578 2072 xmlprov (eef46dab68229a14da3d8e73c99e2959) C:\WINDOWS\System32\xmlprov.dll
08:49:10.0593 2072 xmlprov - ok
08:49:10.0734 2072 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
08:49:10.0734 2072 YahooAUService - ok
08:49:10.0781 2072 MBR (0x1B8) (b20939cd98b7710036274839082ae757) \Device\Harddisk0\DR0
08:49:10.0781 2072 \Device\Harddisk0\DR0 - ok
08:49:10.0796 2072 Boot (0x1200) (4a1550c36354ca6b29eef4d5558b0242) \Device\Harddisk0\DR0\Partition0
08:49:10.0796 2072 \Device\Harddisk0\DR0\Partition0 - ok
08:49:10.0796 2072 Boot (0x1200) (bd6c1f32195c6d8eafa1a768d7899b67) \Device\Harddisk0\DR0\Partition1
08:49:10.0796 2072 \Device\Harddisk0\DR0\Partition1 - ok
08:49:10.0796 2072 ============================================================
08:49:10.0796 2072 Scan finished
08:49:10.0796 2072 ============================================================
08:49:10.0812 2692 Detected object count: 0
08:49:10.0812 2692 Actual detected object count: 0




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users