Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan preventing me from connecting to internet


  • Please log in to reply
9 replies to this topic

#1 Vijmail_99

Vijmail_99

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:14 AM

Posted 26 April 2012 - 10:21 PM

Hi,

My computer is running on Windows Vista and suddenly my laptop started acting wierd. when I scanned with Norton Security Suite, It identified a zeroaccess trojan which it could not resolve. Things went worse when I am no longer able to connect to internet. please suggest a mechanism for me to get rid of the threat and recover my laptop and the internet connection.

Any help would greatly be appreciated.

Regards

Edited by Vijmail_99, 26 April 2012 - 10:37 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:14 AM

Posted 26 April 2012 - 11:26 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Vijmail_99

Vijmail_99
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:14 AM

Posted 27 April 2012 - 08:28 AM

Thanks for the quick response. I really appreciate that. Please find the log infor below:

TDSKiller Log:

07:43:49.0097 1324 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
07:43:49.0362 1324 ============================================================
07:43:49.0362 1324 Current date / time: 2012/04/27 07:43:49.0362
07:43:49.0362 1324 SystemInfo:
07:43:49.0362 1324
07:43:49.0362 1324 OS Version: 6.0.6002 ServicePack: 2.0
07:43:49.0362 1324 Product type: Workstation
07:43:49.0362 1324 ComputerName: HEXAWARE
07:43:49.0362 1324 UserName: huser
07:43:49.0362 1324 Windows directory: C:\Windows
07:43:49.0362 1324 System windows directory: C:\Windows
07:43:49.0362 1324 Processor architecture: Intel x86
07:43:49.0362 1324 Number of processors: 2
07:43:49.0362 1324 Page size: 0x1000
07:43:49.0362 1324 Boot type: Safe boot with network
07:43:49.0362 1324 ============================================================
07:43:49.0596 1324 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
07:43:49.0612 1324 ============================================================
07:43:49.0612 1324 \Device\Harddisk0\DR0:
07:43:49.0612 1324 MBR partitions:
07:43:49.0612 1324 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8CC72F1
07:43:49.0612 1324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8CC7800, BlocksNum 0x52CC800
07:43:49.0612 1324 ============================================================
07:43:49.0628 1324 C: <-> \Device\Harddisk0\DR0\Partition0
07:43:49.0674 1324 D: <-> \Device\Harddisk0\DR0\Partition1
07:43:49.0690 1324 ============================================================
07:43:49.0690 1324 Initialize success
07:43:49.0690 1324 ============================================================
07:43:56.0320 1960 ============================================================
07:43:56.0320 1960 Scan started
07:43:56.0320 1960 Mode: Manual;
07:43:56.0320 1960 ============================================================
07:43:56.0710 1960 87915819 (58169ffb207940d4d84b4e85db02cc1e) C:\Windows\system32\drivers\11784792.sys
07:43:56.0726 1960 acnusvc - ok
07:43:56.0772 1960 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
07:43:56.0788 1960 ACPI - ok
07:43:56.0850 1960 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
07:43:56.0850 1960 AdobeARMservice - ok
07:43:56.0944 1960 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:43:56.0944 1960 AdobeFlashPlayerUpdateSvc - ok
07:43:57.0038 1960 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
07:43:57.0038 1960 adp94xx - ok
07:43:57.0084 1960 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
07:43:57.0084 1960 adpahci - ok
07:43:57.0116 1960 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
07:43:57.0116 1960 adpu160m - ok
07:43:57.0147 1960 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
07:43:57.0147 1960 adpu320 - ok
07:43:57.0178 1960 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
07:43:57.0178 1960 AeLookupSvc - ok
07:43:57.0272 1960 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\tskB07A.tmp
07:43:57.0272 1960 Suspicious file (NoAccess): C:\Windows\system32\drivers\tskB07A.tmp. md5: 3911b972b55fea0478476b2e777b29fa
07:43:57.0318 1960 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
07:43:57.0318 1960 agp440 - ok
07:43:57.0350 1960 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
07:43:57.0365 1960 aic78xx - ok
07:43:57.0381 1960 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
07:43:57.0396 1960 ALG - ok
07:43:57.0412 1960 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
07:43:57.0412 1960 aliide - ok
07:43:57.0428 1960 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
07:43:57.0428 1960 amdagp - ok
07:43:57.0459 1960 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
07:43:57.0459 1960 amdide - ok
07:43:57.0490 1960 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
07:43:57.0490 1960 AmdK7 - ok
07:43:57.0521 1960 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
07:43:57.0521 1960 AmdK8 - ok
07:43:57.0568 1960 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
07:43:57.0568 1960 Appinfo - ok
07:43:57.0677 1960 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:43:57.0677 1960 Apple Mobile Device - ok
07:43:57.0771 1960 AppMgmt (0fe769cae5855b53c90e23f85e7e89ff) C:\Windows\System32\appmgmts.dll
07:43:57.0771 1960 AppMgmt - ok
07:43:57.0802 1960 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
07:43:57.0802 1960 arc - ok
07:43:57.0864 1960 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
07:43:57.0864 1960 arcsas - ok
07:43:57.0880 1960 AsIO - ok
07:43:57.0911 1960 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
07:43:57.0911 1960 AsyncMac - ok
07:43:57.0942 1960 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
07:43:57.0942 1960 atapi - ok
07:43:58.0005 1960 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:43:58.0005 1960 AudioEndpointBuilder - ok
07:43:58.0036 1960 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:43:58.0036 1960 Audiosrv - ok
07:43:58.0052 1960 bc_ngn - ok
07:43:58.0067 1960 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
07:43:58.0067 1960 Beep - ok
07:43:58.0410 1960 BHDrvx86 (83a2fec59a0a0fc73bf6598e901b2fbd) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20101123.003\BHDrvx86.sys
07:43:58.0426 1960 BHDrvx86 - ok
07:43:58.0535 1960 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
07:43:58.0535 1960 BITS - ok
07:43:58.0598 1960 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
07:43:58.0598 1960 blbdrive - ok
07:43:58.0707 1960 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
07:43:58.0707 1960 Bonjour Service - ok
07:43:58.0769 1960 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
07:43:58.0769 1960 bowser - ok
07:43:58.0785 1960 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
07:43:58.0785 1960 BrFiltLo - ok
07:43:58.0800 1960 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
07:43:58.0800 1960 BrFiltUp - ok
07:43:58.0832 1960 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
07:43:58.0832 1960 Browser - ok
07:43:58.0878 1960 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
07:43:58.0878 1960 Brserid - ok
07:43:58.0910 1960 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
07:43:58.0910 1960 BrSerWdm - ok
07:43:58.0941 1960 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
07:43:58.0941 1960 BrUsbMdm - ok
07:43:58.0941 1960 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
07:43:58.0941 1960 BrUsbSer - ok
07:43:58.0972 1960 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
07:43:58.0972 1960 BTHMODEM - ok
07:43:59.0019 1960 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
07:43:59.0019 1960 cdfs - ok
07:43:59.0066 1960 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
07:43:59.0066 1960 cdrom - ok
07:43:59.0112 1960 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:43:59.0112 1960 CertPropSvc - ok
07:43:59.0144 1960 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
07:43:59.0144 1960 circlass - ok
07:43:59.0144 1960 clcapsvc - ok
07:43:59.0206 1960 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
07:43:59.0206 1960 CLFS - ok
07:43:59.0300 1960 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:43:59.0300 1960 clr_optimization_v2.0.50727_32 - ok
07:43:59.0393 1960 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:43:59.0393 1960 clr_optimization_v4.0.30319_32 - ok
07:43:59.0456 1960 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
07:43:59.0456 1960 CmBatt - ok
07:43:59.0487 1960 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
07:43:59.0487 1960 cmdide - ok
07:43:59.0518 1960 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
07:43:59.0518 1960 Compbatt - ok
07:43:59.0518 1960 COMSysApp - ok
07:43:59.0534 1960 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
07:43:59.0534 1960 crcdisk - ok
07:43:59.0549 1960 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
07:43:59.0565 1960 Crusoe - ok
07:43:59.0627 1960 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
07:43:59.0627 1960 CryptSvc - ok
07:43:59.0705 1960 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
07:43:59.0705 1960 CSC - ok
07:43:59.0830 1960 CscService (0a2095f92f6ae4fe6484d911b0c21e95) C:\Windows\System32\cscsvc.dll
07:43:59.0846 1960 CscService - ok
07:43:59.0892 1960 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
07:43:59.0892 1960 CVirtA - ok
07:44:00.0142 1960 CVPND (30443eef52f5fb043654859eaa8e5247) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
07:44:00.0142 1960 CVPND - ok
07:44:00.0360 1960 CVPNDRVA (cb90b2762b1a1d0b40496400c55b6ade) C:\Windows\system32\Drivers\CVPNDRVA.sys
07:44:00.0360 1960 CVPNDRVA - ok
07:44:00.0485 1960 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:44:00.0485 1960 DcomLaunch - ok
07:44:00.0516 1960 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
07:44:00.0516 1960 DfsC - ok
07:44:00.0797 1960 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
07:44:00.0813 1960 DFSR - ok
07:44:01.0016 1960 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
07:44:01.0016 1960 Dhcp - ok
07:44:01.0031 1960 DirectUpdate - ok
07:44:01.0094 1960 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
07:44:01.0094 1960 disk - ok
07:44:01.0140 1960 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\Windows\system32\DRIVERS\dne2000.sys
07:44:01.0140 1960 DNE - ok
07:44:01.0187 1960 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
07:44:01.0187 1960 Dnscache - ok
07:44:01.0359 1960 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
07:44:01.0359 1960 dot3svc - ok
07:44:01.0390 1960 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
07:44:01.0390 1960 DPS - ok
07:44:01.0437 1960 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
07:44:01.0437 1960 drmkaud - ok
07:44:01.0530 1960 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
07:44:01.0530 1960 DXGKrnl - ok
07:44:01.0593 1960 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
07:44:01.0593 1960 e1express - ok
07:44:01.0655 1960 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
07:44:01.0655 1960 E1G60 - ok
07:44:01.0702 1960 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
07:44:01.0702 1960 EapHost - ok
07:44:01.0718 1960 eaps2kbd - ok
07:44:01.0764 1960 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
07:44:01.0764 1960 Ecache - ok
07:44:01.0889 1960 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
07:44:01.0905 1960 eeCtrl - ok
07:44:01.0983 1960 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
07:44:01.0983 1960 elxstor - ok
07:44:02.0092 1960 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
07:44:02.0092 1960 EMDMgmt - ok
07:44:02.0108 1960 entertainment - ok
07:44:02.0123 1960 EPSON_EB_RPCV4_01 - ok
07:44:02.0123 1960 EraserUtilDrv11122 - ok
07:44:02.0186 1960 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
07:44:02.0201 1960 EraserUtilRebootDrv - ok
07:44:02.0232 1960 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
07:44:02.0232 1960 ErrDev - ok
07:44:02.0310 1960 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
07:44:02.0310 1960 EventSystem - ok
07:44:02.0373 1960 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
07:44:02.0373 1960 exfat - ok
07:44:02.0420 1960 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
07:44:02.0420 1960 fastfat - ok
07:44:02.0529 1960 Fax (dfba0f60fa301e5b1bfb1403a93ee23e) C:\Windows\system32\fxssvc.exe
07:44:02.0529 1960 Fax - ok
07:44:02.0560 1960 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
07:44:02.0560 1960 fdc - ok
07:44:02.0576 1960 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
07:44:02.0576 1960 fdPHost - ok
07:44:02.0591 1960 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
07:44:02.0591 1960 FDResPub - ok
07:44:02.0622 1960 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
07:44:02.0622 1960 FileInfo - ok
07:44:02.0638 1960 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
07:44:02.0638 1960 Filetrace - ok
07:44:02.0654 1960 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
07:44:02.0654 1960 flpydisk - ok
07:44:02.0716 1960 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
07:44:02.0716 1960 FltMgr - ok
07:44:02.0856 1960 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
07:44:02.0872 1960 FontCache - ok
07:44:02.0934 1960 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:44:02.0934 1960 FontCache3.0.0.0 - ok
07:44:02.0950 1960 fsaa - ok
07:44:02.0966 1960 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
07:44:02.0966 1960 Fs_Rec - ok
07:44:02.0997 1960 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
07:44:02.0997 1960 gagp30kx - ok
07:44:03.0028 1960 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:44:03.0028 1960 GEARAspiWDM - ok
07:44:03.0075 1960 GIDv2 (20f6c49e2c410fcd32d781f521579bf5) C:\Windows\system32\drivers\GIDv2.sys
07:44:03.0075 1960 GIDv2 - ok
07:44:03.0184 1960 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
07:44:03.0184 1960 gpsvc - ok
07:44:03.0200 1960 ha10kx2k - ok
07:44:03.0262 1960 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
07:44:03.0262 1960 HdAudAddService - ok
07:44:03.0356 1960 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
07:44:03.0356 1960 HDAudBus - ok
07:44:03.0387 1960 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
07:44:03.0387 1960 HidBth - ok
07:44:03.0402 1960 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
07:44:03.0402 1960 HidIr - ok
07:44:03.0434 1960 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
07:44:03.0434 1960 hidserv - ok
07:44:03.0449 1960 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
07:44:03.0449 1960 HidUsb - ok
07:44:03.0496 1960 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
07:44:03.0496 1960 hkmsvc - ok
07:44:03.0512 1960 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
07:44:03.0512 1960 HpCISSs - ok
07:44:03.0590 1960 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
07:44:03.0590 1960 HSFHWAZL - ok
07:44:03.0714 1960 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
07:44:03.0730 1960 HSF_DPV - ok
07:44:03.0839 1960 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
07:44:03.0839 1960 HTTP - ok
07:44:03.0886 1960 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
07:44:03.0886 1960 i2omp - ok
07:44:03.0933 1960 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
07:44:03.0933 1960 i8042prt - ok
07:44:03.0995 1960 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
07:44:03.0995 1960 iaStorV - ok
07:44:04.0042 1960 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
07:44:04.0042 1960 IBMPMDRV - ok
07:44:04.0058 1960 IBMPMSVC (a75ce11915e4ecc5e1597d6e0f7bb2db) C:\Windows\system32\ibmpmsvc.exe
07:44:04.0058 1960 IBMPMSVC - ok
07:44:04.0229 1960 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:44:04.0245 1960 idsvc - ok
07:44:04.0541 1960 IDSVix86 (33ca0e61eab15d439a1f592ddc020712) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20101201.001\IDSVix86.sys
07:44:04.0541 1960 IDSVix86 - ok
07:44:04.0650 1960 IDVaultSvc (4b0bf79174fa2eb5f7385a439872ae57) C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe
07:44:04.0650 1960 IDVaultSvc - ok
07:44:04.0806 1960 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
07:44:04.0806 1960 iirsp - ok
07:44:04.0900 1960 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
07:44:04.0900 1960 IKEEXT - ok
07:44:04.0931 1960 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
07:44:04.0931 1960 intelide - ok
07:44:04.0962 1960 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
07:44:04.0962 1960 intelppm - ok
07:44:05.0009 1960 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
07:44:05.0009 1960 IPBusEnum - ok
07:44:05.0025 1960 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:44:05.0025 1960 IpFilterDriver - ok
07:44:05.0040 1960 IpInIp - ok
07:44:05.0072 1960 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
07:44:05.0072 1960 IPMIDRV - ok
07:44:05.0103 1960 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
07:44:05.0103 1960 IPNAT - ok
07:44:05.0243 1960 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
07:44:05.0259 1960 iPod Service - ok
07:44:05.0306 1960 irda (e50a95179211b12946f7e035d60af560) C:\Windows\system32\DRIVERS\irda.sys
07:44:05.0306 1960 irda - ok
07:44:05.0321 1960 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
07:44:05.0321 1960 IRENUM - ok
07:44:05.0352 1960 Irmon (cbb0d940221a281bcfeaea695bd1cda5) C:\Windows\System32\irmon.dll
07:44:05.0352 1960 Irmon - ok
07:44:05.0368 1960 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
07:44:05.0368 1960 isapnp - ok
07:44:05.0415 1960 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
07:44:05.0415 1960 iScsiPrt - ok
07:44:05.0446 1960 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
07:44:05.0446 1960 iteatapi - ok
07:44:05.0462 1960 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
07:44:05.0462 1960 iteraid - ok
07:44:05.0477 1960 ixiaendpoint - ok
07:44:05.0508 1960 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
07:44:05.0508 1960 kbdclass - ok
07:44:05.0524 1960 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
07:44:05.0524 1960 kbdhid - ok
07:44:05.0555 1960 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:05.0555 1960 KeyIso - ok
07:44:05.0618 1960 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
07:44:05.0633 1960 KSecDD - ok
07:44:05.0711 1960 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
07:44:05.0711 1960 KtmRm - ok
07:44:05.0758 1960 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
07:44:05.0758 1960 LanmanServer - ok
07:44:05.0805 1960 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
07:44:05.0805 1960 LanmanWorkstation - ok
07:44:05.0867 1960 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
07:44:05.0867 1960 lltdio - ok
07:44:05.0914 1960 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
07:44:05.0914 1960 lltdsvc - ok
07:44:05.0930 1960 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
07:44:05.0930 1960 lmhosts - ok
07:44:05.0961 1960 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
07:44:05.0961 1960 LSI_FC - ok
07:44:06.0008 1960 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
07:44:06.0008 1960 LSI_SAS - ok
07:44:06.0039 1960 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
07:44:06.0039 1960 LSI_SCSI - ok
07:44:06.0086 1960 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
07:44:06.0086 1960 luafv - ok
07:44:06.0101 1960 lvselsus - ok
07:44:06.0132 1960 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
07:44:06.0132 1960 MBAMProtector - ok
07:44:06.0257 1960 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
07:44:06.0257 1960 MBAMService - ok
07:44:06.0304 1960 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
07:44:06.0304 1960 megasas - ok
07:44:06.0538 1960 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
07:44:06.0538 1960 MegaSR - ok
07:44:06.0600 1960 Microsoft SharePoint Workspace Audit Service - ok
07:44:06.0632 1960 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:44:06.0632 1960 MMCSS - ok
07:44:06.0647 1960 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
07:44:06.0647 1960 Modem - ok
07:44:06.0678 1960 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
07:44:06.0678 1960 monitor - ok
07:44:06.0678 1960 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
07:44:06.0678 1960 mouclass - ok
07:44:06.0725 1960 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
07:44:06.0725 1960 mouhid - ok
07:44:06.0741 1960 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
07:44:06.0741 1960 MountMgr - ok
07:44:06.0741 1960 mozyFilter - ok
07:44:06.0788 1960 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
07:44:06.0788 1960 mpio - ok
07:44:06.0803 1960 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
07:44:06.0803 1960 mpsdrv - ok
07:44:06.0881 1960 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
07:44:06.0881 1960 Mraid35x - ok
07:44:06.0944 1960 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
07:44:06.0944 1960 MRxDAV - ok
07:44:06.0990 1960 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:44:06.0990 1960 mrxsmb - ok
07:44:07.0037 1960 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:44:07.0037 1960 mrxsmb10 - ok
07:44:07.0053 1960 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:44:07.0053 1960 mrxsmb20 - ok
07:44:07.0084 1960 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
07:44:07.0084 1960 msahci - ok
07:44:07.0193 1960 MSCamSvc (d98350792a7ce82e7459a7c36481beda) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
07:44:07.0193 1960 MSCamSvc - ok
07:44:07.0224 1960 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
07:44:07.0224 1960 msdsm - ok
07:44:07.0287 1960 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
07:44:07.0287 1960 MSDTC - ok
07:44:07.0302 1960 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
07:44:07.0302 1960 Msfs - ok
07:44:07.0334 1960 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
07:44:07.0334 1960 msisadrv - ok
07:44:07.0380 1960 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
07:44:07.0380 1960 MSiSCSI - ok
07:44:07.0380 1960 msiserver - ok
07:44:07.0412 1960 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
07:44:07.0412 1960 MSKSSRV - ok
07:44:07.0412 1960 msmframework - ok
07:44:07.0443 1960 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
07:44:07.0443 1960 MSPCLOCK - ok
07:44:07.0458 1960 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
07:44:07.0474 1960 MSPQM - ok
07:44:07.0505 1960 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
07:44:07.0505 1960 MsRPC - ok
07:44:07.0536 1960 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
07:44:07.0536 1960 mssmbios - ok
07:44:07.0552 1960 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
07:44:07.0552 1960 MSTEE - ok
07:44:07.0599 1960 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
07:44:07.0599 1960 Mup - ok
07:44:07.0786 1960 N360 (18654d5e0dc33b7f0f895264a5de80da) C:\Program Files\Norton Security Suite\Engine\5.0.0.125\ccSvcHst.exe
07:44:07.0786 1960 N360 - ok
07:44:07.0864 1960 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
07:44:07.0864 1960 napagent - ok
07:44:07.0926 1960 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
07:44:07.0926 1960 NativeWifiP - ok
07:44:08.0207 1960 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120426.002\NAVENG.SYS
07:44:08.0207 1960 NAVENG - ok
07:44:08.0410 1960 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120426.002\NAVEX15.SYS
07:44:08.0410 1960 NAVEX15 - ok
07:44:08.0660 1960 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
07:44:08.0675 1960 NDIS - ok
07:44:08.0691 1960 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
07:44:08.0691 1960 NdisTapi - ok
07:44:08.0722 1960 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
07:44:08.0722 1960 Ndisuio - ok
07:44:08.0769 1960 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
07:44:08.0769 1960 NdisWan - ok
07:44:08.0784 1960 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
07:44:08.0800 1960 NDProxy - ok
07:44:08.0800 1960 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
07:44:08.0800 1960 NetBIOS - ok
07:44:08.0862 1960 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
07:44:08.0862 1960 netbt - ok
07:44:08.0894 1960 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:08.0894 1960 Netlogon - ok
07:44:08.0956 1960 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
07:44:08.0956 1960 Netman - ok
07:44:09.0003 1960 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
07:44:09.0003 1960 netprofm - ok
07:44:09.0096 1960 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:44:09.0096 1960 NetTcpPortSharing - ok
07:44:09.0393 1960 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
07:44:09.0408 1960 NETw3v32 - ok
07:44:09.0580 1960 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
07:44:09.0580 1960 nfrd960 - ok
07:44:09.0611 1960 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
07:44:09.0611 1960 NlaSvc - ok
07:44:09.0674 1960 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
07:44:09.0674 1960 Npfs - ok
07:44:09.0705 1960 NSCIRDA (6d8d2e5652fc2442c810c5d8be784148) C:\Windows\system32\DRIVERS\nscirda.sys
07:44:09.0705 1960 NSCIRDA - ok
07:44:09.0752 1960 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
07:44:09.0752 1960 nsi - ok
07:44:09.0767 1960 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
07:44:09.0767 1960 nsiproxy - ok
07:44:09.0954 1960 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
07:44:09.0954 1960 Ntfs - ok
07:44:09.0986 1960 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
07:44:09.0986 1960 ntrigdigi - ok
07:44:10.0001 1960 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
07:44:10.0001 1960 Null - ok
07:44:10.0017 1960 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
07:44:10.0017 1960 nvraid - ok
07:44:10.0064 1960 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
07:44:10.0064 1960 nvstor - ok
07:44:10.0079 1960 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
07:44:10.0079 1960 nv_agp - ok
07:44:10.0110 1960 NwlnkFlt - ok
07:44:10.0110 1960 NwlnkFwd - ok
07:44:10.0110 1960 nwlnkspx - ok
07:44:10.0157 1960 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
07:44:10.0157 1960 ohci1394 - ok
07:44:10.0235 1960 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:44:10.0235 1960 ose - ok
07:44:10.0859 1960 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:44:10.0890 1960 osppsvc - ok
07:44:11.0124 1960 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:11.0140 1960 p2pimsvc - ok
07:44:11.0140 1960 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:11.0156 1960 p2psvc - ok
07:44:11.0218 1960 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
07:44:11.0218 1960 Parport - ok
07:44:11.0249 1960 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
07:44:11.0249 1960 partmgr - ok
07:44:11.0280 1960 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
07:44:11.0280 1960 Parvdm - ok
07:44:11.0296 1960 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
07:44:11.0296 1960 PcaSvc - ok
07:44:11.0343 1960 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
07:44:11.0343 1960 pci - ok
07:44:11.0358 1960 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
07:44:11.0358 1960 pciide - ok
07:44:11.0405 1960 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
07:44:11.0421 1960 pcmcia - ok
07:44:11.0624 1960 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
07:44:11.0639 1960 PEAUTH - ok
07:44:11.0811 1960 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
07:44:11.0826 1960 pla - ok
07:44:12.0014 1960 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
07:44:12.0014 1960 PlugPlay - ok
07:44:12.0123 1960 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:12.0123 1960 PNRPAutoReg - ok
07:44:12.0138 1960 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:12.0138 1960 PNRPsvc - ok
07:44:12.0201 1960 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
07:44:12.0201 1960 PolicyAgent - ok
07:44:12.0279 1960 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
07:44:12.0279 1960 PptpMiniport - ok
07:44:12.0294 1960 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
07:44:12.0294 1960 Processor - ok
07:44:12.0357 1960 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
07:44:12.0357 1960 ProfSvc - ok
07:44:12.0388 1960 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:12.0388 1960 ProtectedStorage - ok
07:44:12.0435 1960 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
07:44:12.0435 1960 PSched - ok
07:44:12.0606 1960 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
07:44:12.0622 1960 ql2300 - ok
07:44:12.0653 1960 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
07:44:12.0653 1960 ql40xx - ok
07:44:12.0716 1960 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
07:44:12.0716 1960 QWAVE - ok
07:44:12.0731 1960 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
07:44:12.0731 1960 QWAVEdrv - ok
07:44:13.0059 1960 R300 (9afa62db7f553a0f1f52c70b738b0064) C:\Windows\system32\DRIVERS\atikmdag.sys
07:44:13.0074 1960 R300 - ok
07:44:13.0246 1960 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
07:44:13.0246 1960 RasAcd - ok
07:44:13.0277 1960 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
07:44:13.0277 1960 RasAuto - ok
07:44:13.0308 1960 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:44:13.0308 1960 Rasl2tp - ok
07:44:13.0355 1960 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
07:44:13.0371 1960 RasMan - ok
07:44:13.0402 1960 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
07:44:13.0402 1960 RasPppoe - ok
07:44:13.0433 1960 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
07:44:13.0433 1960 RasSstp - ok
07:44:13.0511 1960 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
07:44:13.0511 1960 rdbss - ok
07:44:13.0527 1960 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:44:13.0527 1960 RDPCDD - ok
07:44:13.0574 1960 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys
07:44:13.0574 1960 rdpdr - ok
07:44:13.0589 1960 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
07:44:13.0589 1960 RDPENCDD - ok
07:44:13.0636 1960 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
07:44:13.0636 1960 RDPWD - ok
07:44:13.0683 1960 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
07:44:13.0683 1960 RemoteAccess - ok
07:44:13.0730 1960 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
07:44:13.0730 1960 RemoteRegistry - ok
07:44:13.0745 1960 rpaservice - ok
07:44:13.0776 1960 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
07:44:13.0776 1960 RpcLocator - ok
07:44:13.0854 1960 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:44:13.0854 1960 RpcSs - ok
07:44:13.0886 1960 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
07:44:13.0886 1960 rspndr - ok
07:44:13.0901 1960 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:13.0917 1960 SamSs - ok
07:44:13.0948 1960 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
07:44:13.0948 1960 sbp2port - ok
07:44:13.0995 1960 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
07:44:13.0995 1960 SCardSvr - ok
07:44:14.0104 1960 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
07:44:14.0104 1960 Schedule - ok
07:44:14.0135 1960 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:44:14.0135 1960 SCPolicySvc - ok
07:44:14.0198 1960 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
07:44:14.0198 1960 SDRSVC - ok
07:44:14.0198 1960 se26nd5 - ok
07:44:14.0229 1960 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
07:44:14.0229 1960 secdrv - ok
07:44:14.0244 1960 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
07:44:14.0244 1960 seclogon - ok
07:44:14.0260 1960 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
07:44:14.0276 1960 SENS - ok
07:44:14.0307 1960 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
07:44:14.0307 1960 Serenum - ok
07:44:14.0338 1960 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
07:44:14.0338 1960 Serial - ok
07:44:14.0369 1960 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
07:44:14.0369 1960 sermouse - ok
07:44:14.0416 1960 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
07:44:14.0416 1960 SessionEnv - ok
07:44:14.0447 1960 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
07:44:14.0447 1960 sffdisk - ok
07:44:14.0463 1960 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
07:44:14.0463 1960 sffp_mmc - ok
07:44:14.0478 1960 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
07:44:14.0478 1960 sffp_sd - ok
07:44:14.0494 1960 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
07:44:14.0494 1960 sfloppy - ok
07:44:14.0556 1960 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
07:44:14.0572 1960 SharedAccess - ok
07:44:14.0634 1960 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
07:44:14.0634 1960 ShellHWDetection - ok
07:44:14.0650 1960 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
07:44:14.0650 1960 sisagp - ok
07:44:14.0697 1960 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
07:44:14.0697 1960 SiSRaid2 - ok
07:44:14.0712 1960 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
07:44:14.0712 1960 SiSRaid4 - ok
07:44:14.0728 1960 Slntamr - ok
07:44:15.0227 1960 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
07:44:15.0258 1960 slsvc - ok
07:44:15.0399 1960 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
07:44:15.0399 1960 SLUINotify - ok
07:44:15.0477 1960 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
07:44:15.0477 1960 Smb - ok
07:44:15.0524 1960 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
07:44:15.0524 1960 SNMPTRAP - ok
07:44:15.0648 1960 SplashtopRemoteService (ccf611a259882d8cf4dbabae2341ee31) C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
07:44:15.0648 1960 SplashtopRemoteService - ok
07:44:15.0680 1960 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
07:44:15.0680 1960 spldr - ok
07:44:15.0726 1960 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
07:44:15.0726 1960 Spooler - ok
07:44:15.0758 1960 sqlagent$soshome22 - ok
07:44:15.0898 1960 SRTSP (a7a104a61c4e30de9c58f8c372a5c209) C:\Windows\system32\drivers\N360\0500000.07D\SRTSP.SYS
07:44:15.0898 1960 SRTSP - ok
07:44:15.0929 1960 SRTSPX (2833445f786bd000bb14c84a9d91347a) C:\Windows\system32\drivers\N360\0500000.07D\SRTSPX.SYS
07:44:15.0929 1960 SRTSPX - ok
07:44:16.0007 1960 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
07:44:16.0007 1960 srv - ok
07:44:16.0038 1960 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
07:44:16.0038 1960 srv2 - ok
07:44:16.0054 1960 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
07:44:16.0054 1960 srvnet - ok
07:44:16.0116 1960 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
07:44:16.0116 1960 SSDPSRV - ok
07:44:16.0163 1960 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
07:44:16.0163 1960 SstpSvc - ok
07:44:16.0288 1960 SSUService (1cfa4a1f3c7bb4c8f299e00428eb8677) C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
07:44:16.0288 1960 SSUService - ok
07:44:16.0366 1960 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
07:44:16.0382 1960 stisvc - ok
07:44:16.0397 1960 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
07:44:16.0397 1960 swenum - ok
07:44:16.0460 1960 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
07:44:16.0460 1960 swprv - ok
07:44:16.0491 1960 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
07:44:16.0491 1960 Symc8xx - ok
07:44:16.0600 1960 SymDS (bdf077b897b5f9f929b6bf0cfd436962) C:\Windows\system32\drivers\N360\0500000.07D\SYMDS.SYS
07:44:16.0616 1960 SymDS - ok
07:44:16.0928 1960 SymEFA (7732298ad2eddd364c1d4f439d99ae7c) C:\Windows\system32\drivers\N360\0500000.07D\SYMEFA.SYS
07:44:16.0928 1960 SymEFA - ok
07:44:16.0990 1960 SymEvent (5c76a63fac8a5580c5a1c4a4ed827782) C:\Windows\system32\Drivers\SYMEVENT.SYS
07:44:16.0990 1960 SymEvent - ok
07:44:17.0037 1960 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0500000.07D\Ironx86.SYS
07:44:17.0037 1960 SymIRON - ok
07:44:17.0115 1960 SYMTDIv (c93e93bff7cba0cd1c1ea282d791b772) C:\Windows\system32\drivers\N360\0500000.07D\SYMTDIV.SYS
07:44:17.0115 1960 SYMTDIv - ok
07:44:17.0146 1960 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
07:44:17.0146 1960 Sym_hi - ok
07:44:17.0177 1960 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
07:44:17.0177 1960 Sym_u3 - ok
07:44:17.0286 1960 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
07:44:17.0302 1960 SysMain - ok
07:44:17.0333 1960 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
07:44:17.0333 1960 TabletInputService - ok
07:44:17.0396 1960 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
07:44:17.0411 1960 TapiSrv - ok
07:44:17.0442 1960 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
07:44:17.0442 1960 TBS - ok
07:44:17.0598 1960 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
07:44:17.0598 1960 Tcpip - ok
07:44:17.0614 1960 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
07:44:17.0614 1960 Tcpip6 - ok
07:44:17.0645 1960 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
07:44:17.0661 1960 tcpipreg - ok
07:44:17.0692 1960 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
07:44:17.0692 1960 TDPIPE - ok
07:44:17.0708 1960 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
07:44:17.0708 1960 TDTCP - ok
07:44:17.0754 1960 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
07:44:17.0754 1960 tdx - ok
07:44:17.0786 1960 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
07:44:17.0801 1960 TermDD - ok
07:44:17.0879 1960 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
07:44:17.0895 1960 TermService - ok
07:44:17.0942 1960 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
07:44:17.0942 1960 Themes - ok
07:44:17.0988 1960 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:44:17.0988 1960 THREADORDER - ok
07:44:17.0988 1960 toscosrv - ok
07:44:18.0035 1960 TPM (cb258c2f726f1be73c507022be33ebb3) C:\Windows\system32\drivers\tpm.sys
07:44:18.0035 1960 TPM - ok
07:44:18.0082 1960 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
07:44:18.0082 1960 TrkWks - ok
07:44:18.0144 1960 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
07:44:18.0144 1960 TrustedInstaller - ok
07:44:18.0176 1960 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:44:18.0176 1960 tssecsrv - ok
07:44:18.0207 1960 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
07:44:18.0207 1960 tunmp - ok
07:44:18.0254 1960 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
07:44:18.0254 1960 tunnel - ok
07:44:18.0269 1960 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
07:44:18.0269 1960 uagp35 - ok
07:44:18.0332 1960 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
07:44:18.0332 1960 udfs - ok
07:44:18.0378 1960 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
07:44:18.0378 1960 UI0Detect - ok
07:44:18.0410 1960 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
07:44:18.0410 1960 uliagpkx - ok
07:44:18.0456 1960 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
07:44:18.0456 1960 uliahci - ok
07:44:18.0488 1960 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
07:44:18.0488 1960 UlSata - ok
07:44:18.0519 1960 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
07:44:18.0519 1960 ulsata2 - ok
07:44:18.0550 1960 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
07:44:18.0550 1960 umbus - ok
07:44:18.0597 1960 UmRdpService (8a66360f38f81e960e2367b428cbd5d9) C:\Windows\System32\umrdp.dll
07:44:18.0612 1960 UmRdpService - ok
07:44:18.0675 1960 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
07:44:18.0675 1960 upnphost - ok
07:44:18.0706 1960 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
07:44:18.0706 1960 USBAAPL - ok
07:44:18.0753 1960 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
07:44:18.0753 1960 usbaudio - ok
07:44:18.0800 1960 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
07:44:18.0800 1960 usbccgp - ok
07:44:18.0846 1960 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
07:44:18.0846 1960 usbcir - ok
07:44:18.0878 1960 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
07:44:18.0878 1960 usbehci - ok
07:44:18.0909 1960 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
07:44:18.0924 1960 usbhub - ok
07:44:18.0940 1960 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
07:44:18.0940 1960 usbohci - ok
07:44:18.0956 1960 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
07:44:18.0956 1960 usbprint - ok
07:44:19.0018 1960 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:44:19.0018 1960 USBSTOR - ok
07:44:19.0049 1960 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
07:44:19.0049 1960 usbuhci - ok
07:44:19.0065 1960 useraccess7 - ok
07:44:19.0127 1960 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
07:44:19.0127 1960 UxSms - ok
07:44:19.0190 1960 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
07:44:19.0205 1960 vds - ok
07:44:19.0236 1960 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
07:44:19.0236 1960 vga - ok
07:44:19.0252 1960 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
07:44:19.0252 1960 VgaSave - ok
07:44:19.0283 1960 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
07:44:19.0283 1960 viaagp - ok
07:44:19.0299 1960 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
07:44:19.0314 1960 ViaC7 - ok
07:44:19.0330 1960 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
07:44:19.0330 1960 viaide - ok
07:44:19.0346 1960 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
07:44:19.0346 1960 volmgr - ok
07:44:19.0424 1960 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
07:44:19.0424 1960 volmgrx - ok
07:44:19.0470 1960 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
07:44:19.0470 1960 volsnap - ok
07:44:19.0611 1960 vpnagent (34756733f0480d68e519e80e22e05d12) C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
07:44:19.0626 1960 vpnagent - ok
07:44:19.0658 1960 vpnva (1b7c80c66742dafaa31f98af4c3a5bc2) C:\Windows\system32\DRIVERS\vpnva.sys
07:44:19.0658 1960 vpnva - ok
07:44:19.0720 1960 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
07:44:19.0720 1960 vsmraid - ok
07:44:19.0876 1960 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
07:44:19.0892 1960 VSS - ok
07:44:20.0157 1960 VX3000 (e26744e5dd71a16e80d4dd5a286b8423) C:\Windows\system32\DRIVERS\VX3000.sys
07:44:20.0172 1960 VX3000 - ok
07:44:20.0297 1960 w300mdm - ok
07:44:20.0360 1960 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
07:44:20.0360 1960 W32Time - ok
07:44:20.0375 1960 w810obex - ok
07:44:20.0422 1960 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
07:44:20.0422 1960 WacomPen - ok
07:44:20.0453 1960 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:44:20.0453 1960 Wanarp - ok
07:44:20.0453 1960 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:44:20.0453 1960 Wanarpv6 - ok
07:44:20.0594 1960 wbengine (20b23332885dfb93fe0185362ee811e9) C:\Windows\system32\wbengine.exe
07:44:20.0609 1960 wbengine - ok
07:44:20.0672 1960 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
07:44:20.0672 1960 wcncsvc - ok
07:44:20.0718 1960 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
07:44:20.0718 1960 WcsPlugInService - ok
07:44:20.0781 1960 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
07:44:20.0781 1960 Wd - ok
07:44:20.0859 1960 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
07:44:20.0874 1960 Wdf01000 - ok
07:44:20.0890 1960 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:44:20.0890 1960 WdiServiceHost - ok
07:44:20.0906 1960 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:44:20.0906 1960 WdiSystemHost - ok
07:44:20.0968 1960 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
07:44:20.0968 1960 WebClient - ok
07:44:21.0015 1960 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
07:44:21.0030 1960 Wecsvc - ok
07:44:21.0062 1960 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
07:44:21.0062 1960 wercplsupport - ok
07:44:21.0124 1960 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
07:44:21.0140 1960 WerSvc - ok
07:44:21.0249 1960 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
07:44:21.0249 1960 winachsf - ok
07:44:21.0264 1960 WinHttpAutoProxySvc - ok
07:44:21.0342 1960 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
07:44:21.0342 1960 Winmgmt - ok
07:44:21.0498 1960 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
07:44:21.0514 1960 WinRM - ok
07:44:21.0545 1960 wkscfgsrv - ok
07:44:21.0639 1960 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
07:44:21.0654 1960 Wlansvc - ok
07:44:21.0701 1960 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
07:44:21.0701 1960 WmiAcpi - ok
07:44:21.0779 1960 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
07:44:21.0779 1960 wmiApSrv - ok
07:44:22.0138 1960 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
07:44:22.0154 1960 WMPNetworkSvc - ok
07:44:22.0185 1960 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
07:44:22.0185 1960 WPDBusEnum - ok
07:44:22.0247 1960 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
07:44:22.0247 1960 WpdUsb - ok
07:44:22.0450 1960 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:44:22.0450 1960 WPFFontCache_v0400 - ok
07:44:22.0481 1960 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
07:44:22.0481 1960 ws2ifsl - ok
07:44:22.0481 1960 WSearch - ok
07:44:22.0715 1960 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
07:44:22.0731 1960 wuauserv - ok
07:44:22.0856 1960 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
07:44:22.0856 1960 wudfsvc - ok
07:44:22.0871 1960 XAudio - ok
07:44:22.0871 1960 zd1211u(zydas) - ok
07:44:22.0934 1960 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
07:44:22.0949 1960 \Device\Harddisk0\DR0 - ok
07:44:22.0980 1960 Boot (0x1200) (a926701e27d701eed6d5ae16202bbfb4) \Device\Harddisk0\DR0\Partition0
07:44:22.0980 1960 \Device\Harddisk0\DR0\Partition0 - ok
07:44:22.0996 1960 Boot (0x1200) (f263221de2a9035032c56528f3ea2a21) \Device\Harddisk0\DR0\Partition1
07:44:23.0012 1960 \Device\Harddisk0\DR0\Partition1 - ok
07:44:23.0012 1960 ============================================================
07:44:23.0012 1960 Scan finished
07:44:23.0012 1960 ============================================================
07:44:23.0012 1256 Detected object count: 0
07:44:23.0012 1256 Actual detected object count: 0
07:44:27.0926 1292 ============================================================
07:44:27.0926 1292 Scan started
07:44:27.0926 1292 Mode: Manual; TDLFS;
07:44:27.0926 1292 ============================================================
07:44:28.0238 1292 87915819 (58169ffb207940d4d84b4e85db02cc1e) C:\Windows\system32\drivers\11784792.sys
07:44:28.0238 1292 acnusvc - ok
07:44:28.0284 1292 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
07:44:28.0300 1292 ACPI - ok
07:44:28.0362 1292 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
07:44:28.0362 1292 AdobeARMservice - ok
07:44:28.0456 1292 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:44:28.0456 1292 AdobeFlashPlayerUpdateSvc - ok
07:44:28.0518 1292 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
07:44:28.0518 1292 adp94xx - ok
07:44:28.0581 1292 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
07:44:28.0581 1292 adpahci - ok
07:44:28.0628 1292 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
07:44:28.0628 1292 adpu160m - ok
07:44:28.0643 1292 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
07:44:28.0643 1292 adpu320 - ok
07:44:28.0690 1292 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
07:44:28.0690 1292 AeLookupSvc - ok
07:44:28.0752 1292 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\tskB07A.tmp
07:44:28.0752 1292 Suspicious file (NoAccess): C:\Windows\system32\drivers\tskB07A.tmp. md5: 3911b972b55fea0478476b2e777b29fa
07:44:28.0768 1292 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
07:44:28.0768 1292 agp440 - ok
07:44:28.0815 1292 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
07:44:28.0815 1292 aic78xx - ok
07:44:28.0830 1292 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
07:44:28.0830 1292 ALG - ok
07:44:28.0846 1292 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
07:44:28.0846 1292 aliide - ok
07:44:28.0877 1292 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
07:44:28.0877 1292 amdagp - ok
07:44:28.0908 1292 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
07:44:28.0908 1292 amdide - ok
07:44:28.0971 1292 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
07:44:28.0986 1292 AmdK7 - ok
07:44:29.0049 1292 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
07:44:29.0049 1292 AmdK8 - ok
07:44:29.0220 1292 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
07:44:29.0220 1292 Appinfo - ok
07:44:29.0314 1292 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:44:29.0314 1292 Apple Mobile Device - ok
07:44:29.0361 1292 AppMgmt (0fe769cae5855b53c90e23f85e7e89ff) C:\Windows\System32\appmgmts.dll
07:44:29.0361 1292 AppMgmt - ok
07:44:29.0392 1292 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
07:44:29.0392 1292 arc - ok
07:44:29.0439 1292 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
07:44:29.0439 1292 arcsas - ok
07:44:29.0454 1292 AsIO - ok
07:44:29.0470 1292 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
07:44:29.0470 1292 AsyncMac - ok
07:44:29.0517 1292 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
07:44:29.0517 1292 atapi - ok
07:44:29.0579 1292 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:44:29.0595 1292 AudioEndpointBuilder - ok
07:44:29.0610 1292 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:44:29.0610 1292 Audiosrv - ok
07:44:29.0610 1292 bc_ngn - ok
07:44:29.0626 1292 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
07:44:29.0626 1292 Beep - ok
07:44:29.0954 1292 BHDrvx86 (83a2fec59a0a0fc73bf6598e901b2fbd) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20101123.003\BHDrvx86.sys
07:44:29.0954 1292 BHDrvx86 - ok
07:44:30.0078 1292 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
07:44:30.0078 1292 BITS - ok
07:44:30.0141 1292 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
07:44:30.0141 1292 blbdrive - ok
07:44:30.0250 1292 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
07:44:30.0250 1292 Bonjour Service - ok
07:44:30.0297 1292 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
07:44:30.0297 1292 bowser - ok
07:44:30.0312 1292 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
07:44:30.0312 1292 BrFiltLo - ok
07:44:30.0344 1292 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
07:44:30.0344 1292 BrFiltUp - ok
07:44:30.0375 1292 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
07:44:30.0375 1292 Browser - ok
07:44:30.0422 1292 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
07:44:30.0422 1292 Brserid - ok
07:44:30.0437 1292 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
07:44:30.0437 1292 BrSerWdm - ok
07:44:30.0468 1292 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
07:44:30.0468 1292 BrUsbMdm - ok
07:44:30.0484 1292 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
07:44:30.0484 1292 BrUsbSer - ok
07:44:30.0500 1292 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
07:44:30.0500 1292 BTHMODEM - ok
07:44:30.0531 1292 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
07:44:30.0531 1292 cdfs - ok
07:44:30.0578 1292 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
07:44:30.0578 1292 cdrom - ok
07:44:30.0624 1292 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:44:30.0624 1292 CertPropSvc - ok
07:44:30.0640 1292 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
07:44:30.0640 1292 circlass - ok
07:44:30.0640 1292 clcapsvc - ok
07:44:30.0702 1292 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
07:44:30.0702 1292 CLFS - ok
07:44:30.0843 1292 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:44:30.0843 1292 clr_optimization_v2.0.50727_32 - ok
07:44:30.0936 1292 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:44:30.0936 1292 clr_optimization_v4.0.30319_32 - ok
07:44:31.0030 1292 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
07:44:31.0030 1292 CmBatt - ok
07:44:31.0077 1292 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
07:44:31.0077 1292 cmdide - ok
07:44:31.0092 1292 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
07:44:31.0092 1292 Compbatt - ok
07:44:31.0124 1292 COMSysApp - ok
07:44:31.0124 1292 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
07:44:31.0124 1292 crcdisk - ok
07:44:31.0139 1292 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
07:44:31.0139 1292 Crusoe - ok
07:44:31.0202 1292 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
07:44:31.0202 1292 CryptSvc - ok
07:44:31.0280 1292 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
07:44:31.0280 1292 CSC - ok
07:44:31.0404 1292 CscService (0a2095f92f6ae4fe6484d911b0c21e95) C:\Windows\System32\cscsvc.dll
07:44:31.0404 1292 CscService - ok
07:44:31.0436 1292 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
07:44:31.0436 1292 CVirtA - ok
07:44:31.0670 1292 CVPND (30443eef52f5fb043654859eaa8e5247) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
07:44:31.0685 1292 CVPND - ok
07:44:31.0888 1292 CVPNDRVA (cb90b2762b1a1d0b40496400c55b6ade) C:\Windows\system32\Drivers\CVPNDRVA.sys
07:44:31.0888 1292 CVPNDRVA - ok
07:44:31.0997 1292 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:44:31.0997 1292 DcomLaunch - ok
07:44:32.0559 1292 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
07:44:32.0559 1292 DfsC - ok
07:44:37.0660 1292 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
07:44:37.0676 1292 DFSR - ok
07:44:40.0250 1292 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
07:44:40.0265 1292 Dhcp - ok
07:44:40.0265 1292 DirectUpdate - ok
07:44:40.0702 1292 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
07:44:40.0702 1292 disk - ok
07:44:40.0858 1292 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\Windows\system32\DRIVERS\dne2000.sys
07:44:40.0858 1292 DNE - ok
07:44:41.0014 1292 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
07:44:41.0014 1292 Dnscache - ok
07:44:41.0451 1292 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
07:44:41.0466 1292 dot3svc - ok
07:44:41.0732 1292 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
07:44:41.0732 1292 DPS - ok
07:44:41.0794 1292 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
07:44:41.0794 1292 drmkaud - ok
07:44:42.0902 1292 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
07:44:42.0902 1292 DXGKrnl - ok
07:44:43.0479 1292 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
07:44:43.0479 1292 e1express - ok
07:44:43.0744 1292 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
07:44:43.0744 1292 E1G60 - ok
07:44:43.0931 1292 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
07:44:43.0947 1292 EapHost - ok
07:44:43.0947 1292 eaps2kbd - ok
07:44:44.0337 1292 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
07:44:44.0337 1292 Ecache - ok
07:44:45.0039 1292 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
07:44:45.0039 1292 eeCtrl - ok
07:44:45.0928 1292 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
07:44:45.0928 1292 elxstor - ok
07:44:46.0084 1292 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
07:44:46.0084 1292 EMDMgmt - ok
07:44:46.0100 1292 entertainment - ok
07:44:46.0100 1292 EPSON_EB_RPCV4_01 - ok
07:44:46.0115 1292 EraserUtilDrv11122 - ok
07:44:46.0162 1292 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
07:44:46.0162 1292 EraserUtilRebootDrv - ok
07:44:46.0193 1292 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
07:44:46.0193 1292 ErrDev - ok
07:44:46.0302 1292 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
07:44:46.0302 1292 EventSystem - ok
07:44:46.0349 1292 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
07:44:46.0349 1292 exfat - ok
07:44:46.0396 1292 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
07:44:46.0396 1292 fastfat - ok
07:44:46.0599 1292 Fax (dfba0f60fa301e5b1bfb1403a93ee23e) C:\Windows\system32\fxssvc.exe
07:44:46.0614 1292 Fax - ok
07:44:46.0630 1292 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
07:44:46.0630 1292 fdc - ok
07:44:46.0677 1292 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
07:44:46.0677 1292 fdPHost - ok
07:44:46.0692 1292 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
07:44:46.0692 1292 FDResPub - ok
07:44:46.0802 1292 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
07:44:46.0802 1292 FileInfo - ok
07:44:46.0848 1292 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
07:44:46.0848 1292 Filetrace - ok
07:44:46.0880 1292 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
07:44:46.0880 1292 flpydisk - ok
07:44:46.0973 1292 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
07:44:46.0989 1292 FltMgr - ok
07:44:47.0363 1292 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
07:44:47.0363 1292 FontCache - ok
07:44:47.0441 1292 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:44:47.0441 1292 FontCache3.0.0.0 - ok
07:44:47.0457 1292 fsaa - ok
07:44:47.0488 1292 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
07:44:47.0488 1292 Fs_Rec - ok
07:44:47.0582 1292 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
07:44:47.0582 1292 gagp30kx - ok
07:44:47.0613 1292 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:44:47.0613 1292 GEARAspiWDM - ok
07:44:47.0660 1292 GIDv2 (20f6c49e2c410fcd32d781f521579bf5) C:\Windows\system32\drivers\GIDv2.sys
07:44:47.0660 1292 GIDv2 - ok
07:44:47.0816 1292 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
07:44:47.0831 1292 gpsvc - ok
07:44:47.0831 1292 ha10kx2k - ok
07:44:47.0909 1292 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
07:44:47.0909 1292 HdAudAddService - ok
07:44:48.0018 1292 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
07:44:48.0034 1292 HDAudBus - ok
07:44:48.0065 1292 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
07:44:48.0065 1292 HidBth - ok
07:44:48.0081 1292 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
07:44:48.0081 1292 HidIr - ok
07:44:48.0128 1292 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
07:44:48.0128 1292 hidserv - ok
07:44:48.0143 1292 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
07:44:48.0143 1292 HidUsb - ok
07:44:48.0190 1292 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
07:44:48.0190 1292 hkmsvc - ok
07:44:48.0221 1292 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
07:44:48.0221 1292 HpCISSs - ok
07:44:48.0330 1292 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
07:44:48.0330 1292 HSFHWAZL - ok
07:44:48.0471 1292 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
07:44:48.0471 1292 HSF_DPV - ok
07:44:48.0627 1292 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
07:44:48.0642 1292 HTTP - ok
07:44:48.0674 1292 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
07:44:48.0674 1292 i2omp - ok
07:44:48.0705 1292 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
07:44:48.0705 1292 i8042prt - ok
07:44:48.0752 1292 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
07:44:48.0767 1292 iaStorV - ok
07:44:48.0798 1292 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
07:44:48.0798 1292 IBMPMDRV - ok
07:44:48.0830 1292 IBMPMSVC (a75ce11915e4ecc5e1597d6e0f7bb2db) C:\Windows\system32\ibmpmsvc.exe
07:44:48.0830 1292 IBMPMSVC - ok
07:44:49.0032 1292 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:44:49.0032 1292 idsvc - ok
07:44:49.0391 1292 IDSVix86 (33ca0e61eab15d439a1f592ddc020712) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20101201.001\IDSVix86.sys
07:44:49.0391 1292 IDSVix86 - ok
07:44:49.0578 1292 IDVaultSvc (4b0bf79174fa2eb5f7385a439872ae57) C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe
07:44:49.0594 1292 IDVaultSvc - ok
07:44:49.0906 1292 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
07:44:49.0906 1292 iirsp - ok
07:44:50.0031 1292 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
07:44:50.0031 1292 IKEEXT - ok
07:44:50.0093 1292 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
07:44:50.0093 1292 intelide - ok
07:44:50.0124 1292 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
07:44:50.0124 1292 intelppm - ok
07:44:50.0202 1292 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
07:44:50.0202 1292 IPBusEnum - ok
07:44:50.0234 1292 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:44:50.0234 1292 IpFilterDriver - ok
07:44:50.0249 1292 IpInIp - ok
07:44:50.0265 1292 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
07:44:50.0265 1292 IPMIDRV - ok
07:44:50.0296 1292 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
07:44:50.0296 1292 IPNAT - ok
07:44:50.0436 1292 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
07:44:50.0452 1292 iPod Service - ok
07:44:50.0483 1292 irda (e50a95179211b12946f7e035d60af560) C:\Windows\system32\DRIVERS\irda.sys
07:44:50.0483 1292 irda - ok
07:44:50.0499 1292 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
07:44:50.0499 1292 IRENUM - ok
07:44:50.0546 1292 Irmon (cbb0d940221a281bcfeaea695bd1cda5) C:\Windows\System32\irmon.dll
07:44:50.0546 1292 Irmon - ok
07:44:50.0577 1292 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
07:44:50.0577 1292 isapnp - ok
07:44:50.0639 1292 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
07:44:50.0639 1292 iScsiPrt - ok
07:44:50.0670 1292 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
07:44:50.0670 1292 iteatapi - ok
07:44:50.0702 1292 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
07:44:50.0702 1292 iteraid - ok
07:44:50.0702 1292 ixiaendpoint - ok
07:44:50.0748 1292 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
07:44:50.0748 1292 kbdclass - ok
07:44:50.0795 1292 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
07:44:50.0795 1292 kbdhid - ok
07:44:50.0826 1292 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:50.0826 1292 KeyIso - ok
07:44:51.0170 1292 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
07:44:51.0170 1292 KSecDD - ok
07:44:51.0232 1292 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
07:44:51.0232 1292 KtmRm - ok
07:44:51.0294 1292 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
07:44:51.0310 1292 LanmanServer - ok
07:44:51.0357 1292 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
07:44:51.0357 1292 LanmanWorkstation - ok
07:44:51.0404 1292 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
07:44:51.0404 1292 lltdio - ok
07:44:51.0466 1292 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
07:44:51.0482 1292 lltdsvc - ok
07:44:51.0497 1292 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
07:44:51.0497 1292 lmhosts - ok
07:44:51.0606 1292 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
07:44:51.0606 1292 LSI_FC - ok
07:44:51.0638 1292 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
07:44:51.0638 1292 LSI_SAS - ok
07:44:51.0669 1292 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
07:44:51.0669 1292 LSI_SCSI - ok
07:44:51.0716 1292 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
07:44:51.0716 1292 luafv - ok
07:44:51.0716 1292 lvselsus - ok
07:44:51.0794 1292 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
07:44:51.0794 1292 MBAMProtector - ok
07:44:52.0090 1292 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
07:44:52.0106 1292 MBAMService - ok
07:44:52.0121 1292 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
07:44:52.0121 1292 megasas - ok
07:44:52.0184 1292 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
07:44:52.0199 1292 MegaSR - ok
07:44:52.0246 1292 Microsoft SharePoint Workspace Audit Service - ok
07:44:52.0293 1292 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:44:52.0293 1292 MMCSS - ok
07:44:52.0308 1292 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
07:44:52.0308 1292 Modem - ok
07:44:52.0324 1292 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
07:44:52.0340 1292 monitor - ok
07:44:52.0355 1292 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
07:44:52.0355 1292 mouclass - ok
07:44:52.0386 1292 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
07:44:52.0386 1292 mouhid - ok
07:44:52.0402 1292 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
07:44:52.0402 1292 MountMgr - ok
07:44:52.0433 1292 mozyFilter - ok
07:44:52.0496 1292 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
07:44:52.0496 1292 mpio - ok
07:44:52.0558 1292 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
07:44:52.0558 1292 mpsdrv - ok
07:44:52.0589 1292 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
07:44:52.0589 1292 Mraid35x - ok
07:44:52.0652 1292 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
07:44:52.0667 1292 MRxDAV - ok
07:44:52.0714 1292 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:44:52.0714 1292 mrxsmb - ok
07:44:52.0776 1292 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:44:52.0776 1292 mrxsmb10 - ok
07:44:52.0823 1292 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:44:52.0823 1292 mrxsmb20 - ok
07:44:52.0854 1292 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
07:44:52.0854 1292 msahci - ok
07:44:52.0964 1292 MSCamSvc (d98350792a7ce82e7459a7c36481beda) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
07:44:52.0964 1292 MSCamSvc - ok
07:44:53.0010 1292 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
07:44:53.0010 1292 msdsm - ok
07:44:53.0057 1292 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
07:44:53.0057 1292 MSDTC - ok
07:44:53.0135 1292 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
07:44:53.0135 1292 Msfs - ok
07:44:53.0151 1292 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
07:44:53.0151 1292 msisadrv - ok
07:44:53.0198 1292 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
07:44:53.0198 1292 MSiSCSI - ok
07:44:53.0229 1292 msiserver - ok
07:44:53.0260 1292 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
07:44:53.0260 1292 MSKSSRV - ok
07:44:53.0260 1292 msmframework - ok
07:44:53.0276 1292 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
07:44:53.0276 1292 MSPCLOCK - ok
07:44:53.0307 1292 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
07:44:53.0307 1292 MSPQM - ok
07:44:53.0338 1292 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
07:44:53.0354 1292 MsRPC - ok
07:44:53.0369 1292 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
07:44:53.0369 1292 mssmbios - ok
07:44:53.0385 1292 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
07:44:53.0385 1292 MSTEE - ok
07:44:53.0447 1292 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
07:44:53.0447 1292 Mup - ok
07:44:53.0744 1292 N360 (18654d5e0dc33b7f0f895264a5de80da) C:\Program Files\Norton Security Suite\Engine\5.0.0.125\ccSvcHst.exe
07:44:53.0744 1292 N360 - ok
07:44:53.0837 1292 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
07:44:53.0837 1292 napagent - ok
07:44:53.0884 1292 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
07:44:53.0884 1292 NativeWifiP - ok
07:44:54.0149 1292 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120426.002\NAVENG.SYS
07:44:54.0165 1292 NAVENG - ok
07:44:54.0446 1292 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120426.002\NAVEX15.SYS
07:44:54.0446 1292 NAVEX15 - ok
07:44:54.0789 1292 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
07:44:54.0804 1292 NDIS - ok
07:44:54.0836 1292 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
07:44:54.0836 1292 NdisTapi - ok
07:44:54.0867 1292 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
07:44:54.0867 1292 Ndisuio - ok
07:44:54.0914 1292 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
07:44:54.0914 1292 NdisWan - ok
07:44:54.0976 1292 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
07:44:54.0976 1292 NDProxy - ok
07:44:55.0054 1292 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
07:44:55.0054 1292 NetBIOS - ok
07:44:55.0116 1292 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
07:44:55.0116 1292 netbt - ok
07:44:55.0148 1292 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:44:55.0148 1292 Netlogon - ok
07:44:55.0210 1292 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
07:44:55.0226 1292 Netman - ok
07:44:55.0257 1292 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
07:44:55.0257 1292 netprofm - ok
07:44:55.0366 1292 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:44:55.0366 1292 NetTcpPortSharing - ok
07:44:55.0850 1292 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
07:44:55.0865 1292 NETw3v32 - ok
07:44:56.0084 1292 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
07:44:56.0084 1292 nfrd960 - ok
07:44:56.0146 1292 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
07:44:56.0146 1292 NlaSvc - ok
07:44:56.0396 1292 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
07:44:56.0396 1292 Npfs - ok
07:44:56.0458 1292 NSCIRDA (6d8d2e5652fc2442c810c5d8be784148) C:\Windows\system32\DRIVERS\nscirda.sys
07:44:56.0458 1292 NSCIRDA - ok
07:44:56.0489 1292 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
07:44:56.0489 1292 nsi - ok
07:44:56.0505 1292 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
07:44:56.0505 1292 nsiproxy - ok
07:44:56.0708 1292 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
07:44:56.0723 1292 Ntfs - ok
07:44:56.0786 1292 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
07:44:56.0786 1292 ntrigdigi - ok
07:44:56.0801 1292 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
07:44:56.0801 1292 Null - ok
07:44:56.0864 1292 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
07:44:56.0864 1292 nvraid - ok
07:44:56.0895 1292 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
07:44:56.0910 1292 nvstor - ok
07:44:56.0926 1292 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
07:44:56.0926 1292 nv_agp - ok
07:44:56.0942 1292 NwlnkFlt - ok
07:44:56.0942 1292 NwlnkFwd - ok
07:44:56.0942 1292 nwlnkspx - ok
07:44:56.0988 1292 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
07:44:56.0988 1292 ohci1394 - ok
07:44:57.0066 1292 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:44:57.0066 1292 ose - ok
07:44:58.0080 1292 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:44:58.0112 1292 osppsvc - ok
07:44:58.0361 1292 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:58.0377 1292 p2pimsvc - ok
07:44:58.0377 1292 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:58.0392 1292 p2psvc - ok
07:44:58.0455 1292 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
07:44:58.0455 1292 Parport - ok
07:44:58.0502 1292 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
07:44:58.0502 1292 partmgr - ok
07:44:58.0548 1292 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
07:44:58.0548 1292 Parvdm - ok
07:44:58.0580 1292 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
07:44:58.0580 1292 PcaSvc - ok
07:44:58.0626 1292 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
07:44:58.0626 1292 pci - ok
07:44:58.0642 1292 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
07:44:58.0642 1292 pciide - ok
07:44:58.0704 1292 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
07:44:58.0704 1292 pcmcia - ok
07:44:58.0892 1292 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
07:44:58.0892 1292 PEAUTH - ok
07:44:59.0172 1292 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
07:44:59.0188 1292 pla - ok
07:44:59.0484 1292 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
07:44:59.0484 1292 PlugPlay - ok
07:44:59.0687 1292 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:59.0703 1292 PNRPAutoReg - ok
07:44:59.0703 1292 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:44:59.0718 1292 PNRPsvc - ok
07:44:59.0812 1292 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
07:44:59.0812 1292 PolicyAgent - ok
07:44:59.0890 1292 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
07:44:59.0890 1292 PptpMiniport - ok
07:44:59.0921 1292 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
07:44:59.0921 1292 Processor - ok
07:44:59.0952 1292 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
07:44:59.0952 1292 ProfSvc - ok
07:45:00.0030 1292 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:45:00.0030 1292 ProtectedStorage - ok
07:45:00.0093 1292 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
07:45:00.0108 1292 PSched - ok
07:45:00.0311 1292 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
07:45:00.0327 1292 ql2300 - ok
07:45:00.0374 1292 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
07:45:00.0374 1292 ql40xx - ok
07:45:00.0888 1292 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
07:45:00.0888 1292 QWAVE - ok
07:45:00.0998 1292 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
07:45:00.0998 1292 QWAVEdrv - ok
07:45:01.0372 1292 R300 (9afa62db7f553a0f1f52c70b738b0064) C:\Windows\system32\DRIVERS\atikmdag.sys
07:45:01.0388 1292 R300 - ok
07:45:01.0700 1292 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
07:45:01.0700 1292 RasAcd - ok
07:45:01.0778 1292 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
07:45:01.0778 1292 RasAuto - ok
07:45:01.0809 1292 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:45:01.0809 1292 Rasl2tp - ok
07:45:01.0887 1292 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
07:45:01.0887 1292 RasMan - ok
07:45:01.0980 1292 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
07:45:01.0980 1292 RasPppoe - ok
07:45:02.0043 1292 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
07:45:02.0043 1292 RasSstp - ok
07:45:02.0105 1292 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
07:45:02.0105 1292 rdbss - ok
07:45:02.0136 1292 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:45:02.0136 1292 RDPCDD - ok
07:45:02.0183 1292 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys
07:45:02.0183 1292 rdpdr - ok
07:45:02.0199 1292 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
07:45:02.0199 1292 RDPENCDD - ok
07:45:02.0230 1292 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
07:45:02.0246 1292 RDPWD - ok
07:45:02.0292 1292 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
07:45:02.0292 1292 RemoteAccess - ok
07:45:02.0355 1292 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
07:45:02.0355 1292 RemoteRegistry - ok
07:45:02.0355 1292 rpaservice - ok
07:45:02.0402 1292 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
07:45:02.0402 1292 RpcLocator - ok
07:45:02.0511 1292 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:45:02.0511 1292 RpcSs - ok
07:45:02.0542 1292 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
07:45:02.0542 1292 rspndr - ok
07:45:02.0558 1292 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:45:02.0558 1292 SamSs - ok
07:45:02.0589 1292 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
07:45:02.0589 1292 sbp2port - ok
07:45:02.0651 1292 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
07:45:02.0651 1292 SCardSvr - ok
07:45:02.0760 1292 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
07:45:02.0776 1292 Schedule - ok
07:45:02.0823 1292 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:45:02.0823 1292 SCPolicySvc - ok
07:45:02.0854 1292 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
07:45:02.0870 1292 SDRSVC - ok
07:45:02.0870 1292 se26nd5 - ok
07:45:02.0885 1292 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
07:45:02.0885 1292 secdrv - ok
07:45:02.0901 1292 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
07:45:02.0901 1292 seclogon - ok
07:45:02.0916 1292 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
07:45:02.0932 1292 SENS - ok
07:45:02.0948 1292 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
07:45:02.0948 1292 Serenum - ok
07:45:02.0979 1292 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
07:45:02.0979 1292 Serial - ok
07:45:02.0994 1292 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
07:45:02.0994 1292 sermouse - ok
07:45:03.0026 1292 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
07:45:03.0026 1292 SessionEnv - ok
07:45:03.0057 1292 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
07:45:03.0057 1292 sffdisk - ok
07:45:03.0072 1292 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
07:45:03.0072 1292 sffp_mmc - ok
07:45:03.0088 1292 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
07:45:03.0088 1292 sffp_sd - ok
07:45:03.0104 1292 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
07:45:03.0104 1292 sfloppy - ok
07:45:03.0166 1292 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
07:45:03.0166 1292 SharedAccess - ok
07:45:03.0213 1292 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
07:45:03.0228 1292 ShellHWDetection - ok
07:45:03.0244 1292 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
07:45:03.0244 1292 sisagp - ok
07:45:03.0260 1292 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
07:45:03.0260 1292 SiSRaid2 - ok
07:45:03.0275 1292 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
07:45:03.0275 1292 SiSRaid4 - ok
07:45:03.0291 1292 Slntamr - ok
07:45:03.0712 1292 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
07:45:03.0759 1292 slsvc - ok
07:45:04.0055 1292 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
07:45:04.0055 1292 SLUINotify - ok
07:45:04.0102 1292 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
07:45:04.0102 1292 Smb - ok
07:45:04.0149 1292 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
07:45:04.0149 1292 SNMPTRAP - ok
07:45:04.0258 1292 SplashtopRemoteService (ccf611a259882d8cf4dbabae2341ee31) C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
07:45:04.0258 1292 SplashtopRemoteService - ok
07:45:04.0289 1292 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
07:45:04.0289 1292 spldr - ok
07:45:04.0320 1292 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
07:45:04.0336 1292 Spooler - ok
07:45:04.0336 1292 sqlagent$soshome22 - ok
07:45:04.0476 1292 SRTSP (a7a104a61c4e30de9c58f8c372a5c209) C:\Windows\system32\drivers\N360\0500000.07D\SRTSP.SYS
07:45:04.0476 1292 SRTSP - ok
07:45:04.0508 1292 SRTSPX (2833445f786bd000bb14c84a9d91347a) C:\Windows\system32\drivers\N360\0500000.07D\SRTSPX.SYS
07:45:04.0508 1292 SRTSPX - ok
07:45:04.0570 1292 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
07:45:04.0570 1292 srv - ok
07:45:04.0601 1292 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
07:45:04.0601 1292 srv2 - ok
07:45:04.0617 1292 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
07:45:04.0632 1292 srvnet - ok
07:45:04.0679 1292 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
07:45:04.0679 1292 SSDPSRV - ok
07:45:04.0695 1292 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
07:45:04.0695 1292 SstpSvc - ok
07:45:04.0866 1292 SSUService (1cfa4a1f3c7bb4c8f299e00428eb8677) C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
07:45:04.0866 1292 SSUService - ok
07:45:04.0976 1292 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
07:45:04.0976 1292 stisvc - ok
07:45:05.0007 1292 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
07:45:05.0007 1292 swenum - ok
07:45:05.0116 1292 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
07:45:05.0116 1292 swprv - ok
07:45:05.0147 1292 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
07:45:05.0147 1292 Symc8xx - ok
07:45:05.0256 1292 SymDS (bdf077b897b5f9f929b6bf0cfd436962) C:\Windows\system32\drivers\N360\0500000.07D\SYMDS.SYS
07:45:05.0272 1292 SymDS - ok
07:45:05.0381 1292 SymEFA (7732298ad2eddd364c1d4f439d99ae7c) C:\Windows\system32\drivers\N360\0500000.07D\SYMEFA.SYS
07:45:05.0381 1292 SymEFA - ok
07:45:05.0490 1292 SymEvent (5c76a63fac8a5580c5a1c4a4ed827782) C:\Windows\system32\Drivers\SYMEVENT.SYS
07:45:05.0490 1292 SymEvent - ok
07:45:05.0553 1292 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0500000.07D\Ironx86.SYS
07:45:05.0553 1292 SymIRON - ok
07:45:05.0646 1292 SYMTDIv (c93e93bff7cba0cd1c1ea282d791b772) C:\Windows\system32\drivers\N360\0500000.07D\SYMTDIV.SYS
07:45:05.0646 1292 SYMTDIv - ok
07:45:05.0693 1292 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
07:45:05.0693 1292 Sym_hi - ok
07:45:05.0709 1292 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
07:45:05.0709 1292 Sym_u3 - ok
07:45:05.0834 1292 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
07:45:05.0834 1292 SysMain - ok
07:45:05.0880 1292 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
07:45:05.0880 1292 TabletInputService - ok
07:45:05.0943 1292 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
07:45:05.0943 1292 TapiSrv - ok
07:45:05.0974 1292 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
07:45:05.0974 1292 TBS - ok
07:45:06.0270 1292 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
07:45:06.0270 1292 Tcpip - ok
07:45:06.0286 1292 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
07:45:06.0286 1292 Tcpip6 - ok
07:45:06.0317 1292 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
07:45:06.0317 1292 tcpipreg - ok
07:45:06.0348 1292 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
07:45:06.0348 1292 TDPIPE - ok
07:45:06.0364 1292 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
07:45:06.0364 1292 TDTCP - ok
07:45:06.0395 1292 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
07:45:06.0395 1292 tdx - ok
07:45:06.0442 1292 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
07:45:06.0442 1292 TermDD - ok
07:45:06.0520 1292 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
07:45:06.0520 1292 TermService - ok
07:45:06.0567 1292 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
07:45:06.0582 1292 Themes - ok
07:45:06.0598 1292 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:45:06.0614 1292 THREADORDER - ok
07:45:06.0614 1292 toscosrv - ok
07:45:06.0723 1292 TPM (cb258c2f726f1be73c507022be33ebb3) C:\Windows\system32\drivers\tpm.sys
07:45:06.0723 1292 TPM - ok
07:45:06.0832 1292 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
07:45:06.0832 1292 TrkWks - ok
07:45:06.0879 1292 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
07:45:06.0879 1292 TrustedInstaller - ok
07:45:06.0910 1292 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:45:06.0910 1292 tssecsrv - ok
07:45:06.0972 1292 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
07:45:06.0972 1292 tunmp - ok
07:45:06.0988 1292 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
07:45:06.0988 1292 tunnel - ok
07:45:07.0035 1292 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
07:45:07.0035 1292 uagp35 - ok
07:45:07.0097 1292 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
07:45:07.0097 1292 udfs - ok
07:45:07.0128 1292 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
07:45:07.0128 1292 UI0Detect - ok
07:45:07.0160 1292 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
07:45:07.0160 1292 uliagpkx - ok
07:45:07.0206 1292 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
07:45:07.0206 1292 uliahci - ok
07:45:07.0238 1292 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
07:45:07.0238 1292 UlSata - ok
07:45:07.0253 1292 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
07:45:07.0253 1292 ulsata2 - ok
07:45:07.0284 1292 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
07:45:07.0284 1292 umbus - ok
07:45:07.0331 1292 UmRdpService (8a66360f38f81e960e2367b428cbd5d9) C:\Windows\System32\umrdp.dll
07:45:07.0347 1292 UmRdpService - ok
07:45:07.0409 1292 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
07:45:07.0409 1292 upnphost - ok
07:45:07.0440 1292 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
07:45:07.0440 1292 USBAAPL - ok
07:45:07.0472 1292 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
07:45:07.0472 1292 usbaudio - ok
07:45:07.0503 1292 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
07:45:07.0503 1292 usbccgp - ok
07:45:07.0550 1292 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
07:45:07.0550 1292 usbcir - ok
07:45:07.0581 1292 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
07:45:07.0581 1292 usbehci - ok
07:45:07.0612 1292 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
07:45:07.0612 1292 usbhub - ok
07:45:07.0628 1292 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
07:45:07.0628 1292 usbohci - ok
07:45:07.0643 1292 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
07:45:07.0643 1292 usbprint - ok
07:45:07.0659 1292 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:45:07.0674 1292 USBSTOR - ok
07:45:07.0690 1292 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
07:45:07.0690 1292 usbuhci - ok
07:45:07.0690 1292 useraccess7 - ok
07:45:07.0721 1292 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
07:45:07.0721 1292 UxSms - ok
07:45:07.0815 1292 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
07:45:07.0815 1292 vds - ok
07:45:07.0846 1292 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
07:45:07.0846 1292 vga - ok
07:45:07.0893 1292 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
07:45:07.0893 1292 VgaSave - ok
07:45:07.0924 1292 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
07:45:07.0924 1292 viaagp - ok
07:45:07.0940 1292 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
07:45:07.0940 1292 ViaC7 - ok
07:45:07.0971 1292 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
07:45:07.0971 1292 viaide - ok
07:45:07.0971 1292 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
07:45:07.0971 1292 volmgr - ok
07:45:08.0049 1292 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
07:45:08.0049 1292 volmgrx - ok
07:45:08.0111 1292 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
07:45:08.0111 1292 volsnap - ok
07:45:08.0236 1292 vpnagent (34756733f0480d68e519e80e22e05d12) C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
07:45:08.0252 1292 vpnagent - ok
07:45:08.0267 1292 vpnva (1b7c80c66742dafaa31f98af4c3a5bc2) C:\Windows\system32\DRIVERS\vpnva.sys
07:45:08.0267 1292 vpnva - ok
07:45:08.0330 1292 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
07:45:08.0330 1292 vsmraid - ok
07:45:08.0532 1292 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
07:45:08.0548 1292 VSS - ok
07:45:08.0813 1292 VX3000 (e26744e5dd71a16e80d4dd5a286b8423) C:\Windows\system32\DRIVERS\VX3000.sys
07:45:08.0829 1292 VX3000 - ok
07:45:08.0985 1292 w300mdm - ok
07:45:09.0047 1292 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
07:45:09.0063 1292 W32Time - ok
07:45:09.0063 1292 w810obex - ok
07:45:09.0094 1292 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
07:45:09.0094 1292 WacomPen - ok
07:45:09.0125 1292 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:45:09.0125 1292 Wanarp - ok
07:45:09.0125 1292 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:45:09.0141 1292 Wanarpv6 - ok
07:45:09.0266 1292 wbengine (20b23332885dfb93fe0185362ee811e9) C:\Windows\system32\wbengine.exe
07:45:09.0281 1292 wbengine - ok
07:45:09.0344 1292 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
07:45:09.0344 1292 wcncsvc - ok
07:45:09.0375 1292 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
07:45:09.0375 1292 WcsPlugInService - ok
07:45:09.0437 1292 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
07:45:09.0437 1292 Wd - ok
07:45:09.0515 1292 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
07:45:09.0515 1292 Wdf01000 - ok
07:45:09.0531 1292 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:45:09.0531 1292 WdiServiceHost - ok
07:45:09.0531 1292 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:45:09.0546 1292 WdiSystemHost - ok
07:45:09.0593 1292 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
07:45:09.0609 1292 WebClient - ok
07:45:09.0640 1292 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
07:45:09.0640 1292 Wecsvc - ok
07:45:09.0671 1292 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
07:45:09.0671 1292 wercplsupport - ok
07:45:09.0718 1292 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
07:45:09.0718 1292 WerSvc - ok
07:45:09.0843 1292 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
07:45:09.0843 1292 winachsf - ok
07:45:09.0843 1292 WinHttpAutoProxySvc - ok
07:45:09.0921 1292 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
07:45:09.0921 1292 Winmgmt - ok
07:45:10.0108 1292 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
07:45:10.0108 1292 WinRM - ok
07:45:10.0124 1292 wkscfgsrv - ok
07:45:10.0217 1292 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
07:45:10.0217 1292 Wlansvc - ok
07:45:10.0264 1292 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
07:45:10.0264 1292 WmiAcpi - ok
07:45:10.0342 1292 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
07:45:10.0358 1292 wmiApSrv - ok
07:45:10.0545 1292 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
07:45:10.0545 1292 WMPNetworkSvc - ok
07:45:10.0592 1292 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
07:45:10.0592 1292 WPDBusEnum - ok
07:45:10.0623 1292 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
07:45:10.0638 1292 WpdUsb - ok
07:45:10.0872 1292 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:45:10.0872 1292 WPFFontCache_v0400 - ok
07:45:10.0919 1292 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
07:45:10.0919 1292 ws2ifsl - ok
07:45:10.0919 1292 WSearch - ok
07:45:11.0184 1292 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
07:45:11.0200 1292 wuauserv - ok
07:45:11.0340 1292 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
07:45:11.0340 1292 wudfsvc - ok
07:45:11.0340 1292 XAudio - ok
07:45:11.0356 1292 zd1211u(zydas) - ok
07:45:11.0372 1292 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
07:45:11.0481 1292 \Device\Harddisk0\DR0 - ok
07:45:11.0481 1292 Boot (0x1200) (a926701e27d701eed6d5ae16202bbfb4) \Device\Harddisk0\DR0\Partition0
07:45:11.0481 1292 \Device\Harddisk0\DR0\Partition0 - ok
07:45:11.0496 1292 Boot (0x1200) (f263221de2a9035032c56528f3ea2a21) \Device\Harddisk0\DR0\Partition1
07:45:11.0512 1292 \Device\Harddisk0\DR0\Partition1 - ok
07:45:11.0512 1292 ============================================================
07:45:11.0512 1292 Scan finished
07:45:11.0512 1292 ============================================================
07:45:11.0512 1552 Detected object count: 0
07:45:11.0512 1552 Actual detected object count: 0
07:45:31.0074 1860 Deinitialize success

GMER Log:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-04-27 08:32:44
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2 TOSHIBA_MK1234GSX rev.AH002E
Running: 0kjcvd22.exe; Driver: C:\Users\huser\AppData\Local\Temp\kwdyipow.sys


---- Kernel code sections - GMER 1.0.15 ----

? C:\Windows\system32\drivers\afd.sys suspicious PE modification
? system32\drivers\53922571.sys The system cannot find the path specified. !

---- Processes - GMER 1.0.15 ----

Process PING.EXE (*** hidden *** ) 1840

---- Files - GMER 1.0.15 ----

File C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\YI66A7C5.txt 0 bytes

---- EOF - GMER 1.0.15 ----

ASWMBR Log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-27 08:33:16
-----------------------------
08:33:16.369 OS Version: Windows 6.0.6002 Service Pack 2
08:33:16.369 Number of processors: 2 586 0xE08
08:33:16.369 ComputerName: HEXAWARE UserName: huser
08:33:19.989 Initialize success
08:37:09.699 AVAST engine defs: 12042700
08:37:54.143 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2
08:37:54.143 Disk 0 Vendor: TOSHIBA_MK1234GSX AH002E Size: 114473MB BusType: 3
08:37:54.299 Disk 0 MBR read successfully
08:37:54.315 Disk 0 MBR scan
08:37:54.330 Disk 0 Windows VISTA default MBR code
08:37:54.330 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 72078 MB offset 63
08:37:54.377 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 42393 MB offset 147617792
08:37:54.439 Disk 0 scanning sectors +234438656
08:37:54.705 Disk 0 scanning C:\Windows\system32\drivers
08:37:56.639 File: C:\Windows\system32\drivers\afd.sys **INFECTED** Win32:Aluroot-D [Rtk]
08:39:25.372 Disk 0 trace - called modules:
08:39:25.465 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x867b0fd0]<<
08:39:25.481 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84b670e8]
08:39:25.481 3 CLASSPNP.SYS[87fa78b3] -> nt!IofCallDriver -> [0x866ae5b8]
08:39:25.497 \Driver\00000764[0x866ae168] -> IRP_MJ_CREATE -> 0x867b0fd0
08:39:28.227 AVAST engine scan C:\Windows
08:40:06.556 AVAST engine scan C:\Windows\system32
08:41:29.345 File: C:\Windows\system32\cpqfws2e.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:43:43.645 File: C:\Windows\system32\GTF32BUS.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:48:15.351 File: C:\Windows\system32\oracle_load_balancer_60_client-forms6ip9.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:48:54.631 File: C:\Windows\system32\s116mgmt.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:49:16.596 File: C:\Windows\system32\SWNC8U51.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:50:30.072 File: C:\Windows\system32\owstimer.dll **INFECTED** Win32:Sirefef-SM [Trj]
08:50:30.088 File: C:\Windows\system32\owstimer.dll **HIDDEN**
08:52:46.338 AVAST engine scan C:\Windows\system32\drivers
08:52:46.931 File: C:\Windows\system32\drivers\afd.sys **INFECTED** Win32:Aluroot-D [Rtk]
08:53:20.377 AVAST engine scan C:\Users\huser
08:55:05.490 AVAST engine scan C:\ProgramData
08:56:15.378 Scan finished successfully
09:25:30.320 Disk 0 MBR has been saved successfully to "C:\scanresult\MBR.dat"
09:25:30.382 The log file has been saved successfully to "C:\scanresult\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:14 AM

Posted 27 April 2012 - 08:57 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log



Download

Fix zero access

launch it,allow it to restart the PC,repair if it finds a rootkit


Now run TDSSkiller and aswmbr once again and post the new logs

good luck

#5 Vijmail_99

Vijmail_99
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:14 AM

Posted 27 April 2012 - 09:29 AM

Thanks. I am currently running the Malware bytes utility for full scan. If the utility identifies system files that are infected, is it ok to remove the files ?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:14 AM

Posted 27 April 2012 - 10:17 AM

Go ahead.

#7 Vijmail_99

Vijmail_99
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:14 AM

Posted 27 April 2012 - 11:12 AM

Thanks for the response.

I ran the MBAM and removed the infections. As you mentioned, I got the log from TDSSkiller and aswmbr. Please find the enclosed log:

TDSKiller:

11:55:17.0510 1160 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
11:55:17.0510 1160 ============================================================
11:55:17.0510 1160 Current date / time: 2012/04/27 11:55:17.0510
11:55:17.0510 1160 SystemInfo:
11:55:17.0510 1160
11:55:17.0510 1160 OS Version: 6.0.6002 ServicePack: 2.0
11:55:17.0510 1160 Product type: Workstation
11:55:17.0510 1160 ComputerName: HEXAWARE
11:55:17.0510 1160 UserName: huser
11:55:17.0510 1160 Windows directory: C:\Windows
11:55:17.0510 1160 System windows directory: C:\Windows
11:55:17.0510 1160 Processor architecture: Intel x86
11:55:17.0510 1160 Number of processors: 2
11:55:17.0510 1160 Page size: 0x1000
11:55:17.0510 1160 Boot type: Safe boot
11:55:17.0510 1160 ============================================================
11:55:18.0868 1160 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
11:55:18.0883 1160 ============================================================
11:55:18.0883 1160 \Device\Harddisk0\DR0:
11:55:18.0883 1160 MBR partitions:
11:55:18.0883 1160 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8CC72F1
11:55:18.0883 1160 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x8CC7800, BlocksNum 0x52CC800
11:55:18.0883 1160 ============================================================
11:55:18.0914 1160 C: <-> \Device\Harddisk0\DR0\Partition0
11:55:18.0961 1160 D: <-> \Device\Harddisk0\DR0\Partition1
11:55:18.0961 1160 ============================================================
11:55:18.0961 1160 Initialize success
11:55:18.0961 1160 ============================================================
11:55:25.0607 1228 ============================================================
11:55:25.0607 1228 Scan started
11:55:25.0607 1228 Mode: Manual; TDLFS;
11:55:25.0607 1228 ============================================================
11:55:26.0730 1228 acnusvc - ok
11:55:26.0808 1228 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
11:55:26.0808 1228 ACPI - ok
11:55:26.0886 1228 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:55:26.0886 1228 AdobeARMservice - ok
11:55:26.0980 1228 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:55:26.0995 1228 AdobeFlashPlayerUpdateSvc - ok
11:55:27.0089 1228 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
11:55:27.0089 1228 adp94xx - ok
11:55:27.0136 1228 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
11:55:27.0151 1228 adpahci - ok
11:55:27.0182 1228 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
11:55:27.0182 1228 adpu160m - ok
11:55:27.0214 1228 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
11:55:27.0229 1228 adpu320 - ok
11:55:27.0260 1228 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
11:55:27.0260 1228 AeLookupSvc - ok
11:55:27.0338 1228 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
11:55:27.0338 1228 AFD - ok
11:55:27.0385 1228 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
11:55:27.0385 1228 agp440 - ok
11:55:27.0432 1228 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
11:55:27.0432 1228 aic78xx - ok
11:55:27.0448 1228 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
11:55:27.0448 1228 ALG - ok
11:55:27.0463 1228 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
11:55:27.0463 1228 aliide - ok
11:55:27.0479 1228 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
11:55:27.0494 1228 amdagp - ok
11:55:27.0510 1228 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
11:55:27.0510 1228 amdide - ok
11:55:27.0541 1228 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
11:55:27.0541 1228 AmdK7 - ok
11:55:27.0557 1228 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
11:55:27.0557 1228 AmdK8 - ok
11:55:27.0619 1228 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
11:55:27.0619 1228 Appinfo - ok
11:55:27.0728 1228 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:55:27.0728 1228 Apple Mobile Device - ok
11:55:27.0822 1228 AppMgmt (0fe769cae5855b53c90e23f85e7e89ff) C:\Windows\System32\appmgmts.dll
11:55:27.0822 1228 AppMgmt - ok
11:55:27.0869 1228 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
11:55:27.0869 1228 arc - ok
11:55:27.0931 1228 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
11:55:27.0931 1228 arcsas - ok
11:55:27.0947 1228 AsIO - ok
11:55:27.0994 1228 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
11:55:27.0994 1228 AsyncMac - ok
11:55:28.0009 1228 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
11:55:28.0009 1228 atapi - ok
11:55:28.0087 1228 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:55:28.0087 1228 AudioEndpointBuilder - ok
11:55:28.0103 1228 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
11:55:28.0103 1228 Audiosrv - ok
11:55:28.0134 1228 bc_ngn - ok
11:55:28.0150 1228 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
11:55:28.0150 1228 Beep - ok
11:55:28.0540 1228 BHDrvx86 (a503d32ae26f77cb942aed530112edaa) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20120413.001\BHDrvx86.sys
11:55:28.0540 1228 BHDrvx86 - ok
11:55:28.0680 1228 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
11:55:28.0680 1228 BITS - ok
11:55:28.0742 1228 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
11:55:28.0742 1228 blbdrive - ok
11:55:28.0883 1228 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
11:55:28.0883 1228 Bonjour Service - ok
11:55:28.0930 1228 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
11:55:28.0930 1228 bowser - ok
11:55:28.0945 1228 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
11:55:28.0945 1228 BrFiltLo - ok
11:55:28.0976 1228 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
11:55:28.0976 1228 BrFiltUp - ok
11:55:29.0008 1228 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
11:55:29.0008 1228 Browser - ok
11:55:29.0070 1228 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
11:55:29.0070 1228 Brserid - ok
11:55:29.0086 1228 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
11:55:29.0086 1228 BrSerWdm - ok
11:55:29.0117 1228 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
11:55:29.0117 1228 BrUsbMdm - ok
11:55:29.0132 1228 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
11:55:29.0132 1228 BrUsbSer - ok
11:55:29.0148 1228 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
11:55:29.0148 1228 BTHMODEM - ok
11:55:29.0195 1228 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
11:55:29.0195 1228 cdfs - ok
11:55:29.0226 1228 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
11:55:29.0242 1228 cdrom - ok
11:55:29.0273 1228 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:55:29.0273 1228 CertPropSvc - ok
11:55:29.0288 1228 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
11:55:29.0304 1228 circlass - ok
11:55:29.0320 1228 clcapsvc - ok
11:55:29.0366 1228 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
11:55:29.0382 1228 CLFS - ok
11:55:29.0476 1228 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:55:29.0476 1228 clr_optimization_v2.0.50727_32 - ok
11:55:29.0569 1228 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:55:29.0569 1228 clr_optimization_v4.0.30319_32 - ok
11:55:29.0616 1228 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
11:55:29.0616 1228 CmBatt - ok
11:55:29.0647 1228 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
11:55:29.0647 1228 cmdide - ok
11:55:29.0663 1228 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
11:55:29.0663 1228 Compbatt - ok
11:55:29.0678 1228 COMSysApp - ok
11:55:29.0678 1228 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
11:55:29.0678 1228 crcdisk - ok
11:55:29.0710 1228 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
11:55:29.0710 1228 Crusoe - ok
11:55:29.0788 1228 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
11:55:29.0788 1228 CryptSvc - ok
11:55:29.0850 1228 CSC (9bdb2e89be8d0ef37b1f25c3d3fc192c) C:\Windows\system32\drivers\csc.sys
11:55:29.0850 1228 CSC - ok
11:55:29.0944 1228 CscService (0a2095f92f6ae4fe6484d911b0c21e95) C:\Windows\System32\cscsvc.dll
11:55:29.0944 1228 CscService - ok
11:55:29.0990 1228 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
11:55:29.0990 1228 CVirtA - ok
11:55:30.0256 1228 CVPND (30443eef52f5fb043654859eaa8e5247) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
11:55:30.0271 1228 CVPND - ok
11:55:30.0490 1228 CVPNDRVA (cb90b2762b1a1d0b40496400c55b6ade) C:\Windows\system32\Drivers\CVPNDRVA.sys
11:55:30.0490 1228 CVPNDRVA - ok
11:55:30.0614 1228 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:55:30.0614 1228 DcomLaunch - ok
11:55:30.0661 1228 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
11:55:30.0661 1228 DfsC - ok
11:55:30.0926 1228 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
11:55:30.0942 1228 DFSR - ok
11:55:31.0129 1228 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
11:55:31.0145 1228 Dhcp - ok
11:55:31.0145 1228 DirectUpdate - ok
11:55:31.0207 1228 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
11:55:31.0207 1228 disk - ok
11:55:31.0254 1228 DNE (b5aa5aa5ac327bd7c1aec0c58f0c1144) C:\Windows\system32\DRIVERS\dne2000.sys
11:55:31.0254 1228 DNE - ok
11:55:31.0316 1228 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
11:55:31.0316 1228 Dnscache - ok
11:55:31.0363 1228 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
11:55:31.0363 1228 dot3svc - ok
11:55:31.0410 1228 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
11:55:31.0410 1228 DPS - ok
11:55:31.0441 1228 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
11:55:31.0441 1228 drmkaud - ok
11:55:31.0550 1228 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
11:55:31.0566 1228 DXGKrnl - ok
11:55:31.0628 1228 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
11:55:31.0628 1228 e1express - ok
11:55:31.0675 1228 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
11:55:31.0675 1228 E1G60 - ok
11:55:31.0738 1228 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
11:55:31.0738 1228 EapHost - ok
11:55:31.0738 1228 eaps2kbd - ok
11:55:31.0800 1228 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
11:55:31.0800 1228 Ecache - ok
11:55:31.0925 1228 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
11:55:31.0925 1228 eeCtrl - ok
11:55:32.0003 1228 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
11:55:32.0003 1228 elxstor - ok
11:55:32.0112 1228 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
11:55:32.0112 1228 EMDMgmt - ok
11:55:32.0112 1228 entertainment - ok
11:55:32.0143 1228 EPSON_EB_RPCV4_01 - ok
11:55:32.0159 1228 EraserUtilDrv11122 - ok
11:55:32.0206 1228 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:55:32.0206 1228 EraserUtilRebootDrv - ok
11:55:32.0252 1228 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
11:55:32.0252 1228 ErrDev - ok
11:55:32.0346 1228 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
11:55:32.0346 1228 EventSystem - ok
11:55:32.0393 1228 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
11:55:32.0393 1228 exfat - ok
11:55:32.0440 1228 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
11:55:32.0440 1228 fastfat - ok
11:55:32.0533 1228 Fax (dfba0f60fa301e5b1bfb1403a93ee23e) C:\Windows\system32\fxssvc.exe
11:55:32.0533 1228 Fax - ok
11:55:32.0549 1228 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
11:55:32.0549 1228 fdc - ok
11:55:32.0564 1228 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
11:55:32.0564 1228 fdPHost - ok
11:55:32.0580 1228 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
11:55:32.0580 1228 FDResPub - ok
11:55:32.0596 1228 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
11:55:32.0596 1228 FileInfo - ok
11:55:32.0627 1228 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
11:55:32.0627 1228 Filetrace - ok
11:55:32.0658 1228 FixZeroAccess (d75afe00f1a248d52ab72c991048105c) C:\Windows\system32\drivers\FixZeroAccess.sys
11:55:32.0674 1228 FixZeroAccess - ok
11:55:32.0674 1228 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
11:55:32.0674 1228 flpydisk - ok
11:55:32.0752 1228 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
11:55:32.0752 1228 FltMgr - ok
11:55:32.0892 1228 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
11:55:32.0892 1228 FontCache - ok
11:55:32.0954 1228 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:55:32.0954 1228 FontCache3.0.0.0 - ok
11:55:32.0970 1228 fsaa - ok
11:55:32.0986 1228 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
11:55:32.0986 1228 Fs_Rec - ok
11:55:33.0017 1228 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
11:55:33.0017 1228 gagp30kx - ok
11:55:33.0064 1228 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:55:33.0064 1228 GEARAspiWDM - ok
11:55:33.0110 1228 GIDv2 (20f6c49e2c410fcd32d781f521579bf5) C:\Windows\system32\drivers\GIDv2.sys
11:55:33.0110 1228 GIDv2 - ok
11:55:33.0220 1228 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
11:55:33.0220 1228 gpsvc - ok
11:55:33.0235 1228 ha10kx2k - ok
11:55:33.0282 1228 hchgxnx (e6d35f3aa51a65eb35c1f2340154a25e) C:\Windows\system32\drivers\ielav.sys
11:55:33.0282 1228 hchgxnx - ok
11:55:33.0360 1228 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
11:55:33.0360 1228 HdAudAddService - ok
11:55:33.0454 1228 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
11:55:33.0469 1228 HDAudBus - ok
11:55:33.0500 1228 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
11:55:33.0500 1228 HidBth - ok
11:55:33.0516 1228 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
11:55:33.0516 1228 HidIr - ok
11:55:33.0563 1228 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
11:55:33.0563 1228 hidserv - ok
11:55:33.0578 1228 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
11:55:33.0578 1228 HidUsb - ok
11:55:33.0610 1228 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
11:55:33.0610 1228 hkmsvc - ok
11:55:33.0641 1228 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
11:55:33.0641 1228 HpCISSs - ok
11:55:33.0703 1228 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
11:55:33.0703 1228 HSFHWAZL - ok
11:55:33.0828 1228 HSF_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
11:55:33.0828 1228 HSF_DPV - ok
11:55:33.0906 1228 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
11:55:33.0906 1228 HTTP - ok
11:55:33.0937 1228 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
11:55:33.0937 1228 i2omp - ok
11:55:33.0984 1228 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
11:55:33.0984 1228 i8042prt - ok
11:55:34.0031 1228 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
11:55:34.0031 1228 iaStorV - ok
11:55:34.0078 1228 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:55:34.0078 1228 IBMPMDRV - ok
11:55:34.0093 1228 IBMPMSVC (a75ce11915e4ecc5e1597d6e0f7bb2db) C:\Windows\system32\ibmpmsvc.exe
11:55:34.0093 1228 IBMPMSVC - ok
11:55:34.0265 1228 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:55:34.0265 1228 idsvc - ok
11:55:34.0608 1228 IDSVix86 (b6662611e8fa3a71473c4a9bd0d23755) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120426.001\IDSvix86.sys
11:55:34.0608 1228 IDSVix86 - ok
11:55:34.0717 1228 IDVaultSvc (4b0bf79174fa2eb5f7385a439872ae57) C:\Program Files\Constant Guard Protection Suite\IDVaultSvc.exe
11:55:34.0717 1228 IDVaultSvc - ok
11:55:34.0858 1228 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
11:55:34.0858 1228 iirsp - ok
11:55:34.0951 1228 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
11:55:34.0951 1228 IKEEXT - ok
11:55:34.0998 1228 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
11:55:34.0998 1228 intelide - ok
11:55:35.0014 1228 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
11:55:35.0014 1228 intelppm - ok
11:55:35.0060 1228 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
11:55:35.0060 1228 IPBusEnum - ok
11:55:35.0092 1228 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:55:35.0092 1228 IpFilterDriver - ok
11:55:35.0107 1228 IpInIp - ok
11:55:35.0123 1228 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
11:55:35.0138 1228 IPMIDRV - ok
11:55:35.0154 1228 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
11:55:35.0170 1228 IPNAT - ok
11:55:35.0310 1228 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
11:55:35.0310 1228 iPod Service - ok
11:55:35.0357 1228 irda (e50a95179211b12946f7e035d60af560) C:\Windows\system32\DRIVERS\irda.sys
11:55:35.0357 1228 irda - ok
11:55:35.0372 1228 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
11:55:35.0372 1228 IRENUM - ok
11:55:35.0404 1228 Irmon (cbb0d940221a281bcfeaea695bd1cda5) C:\Windows\System32\irmon.dll
11:55:35.0404 1228 Irmon - ok
11:55:35.0435 1228 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
11:55:35.0435 1228 isapnp - ok
11:55:35.0466 1228 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
11:55:35.0482 1228 iScsiPrt - ok
11:55:35.0497 1228 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
11:55:35.0497 1228 iteatapi - ok
11:55:35.0513 1228 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
11:55:35.0513 1228 iteraid - ok
11:55:35.0528 1228 ixiaendpoint - ok
11:55:35.0560 1228 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
11:55:35.0560 1228 kbdclass - ok
11:55:35.0591 1228 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
11:55:35.0591 1228 kbdhid - ok
11:55:35.0622 1228 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:55:35.0622 1228 KeyIso - ok
11:55:35.0716 1228 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
11:55:35.0716 1228 KSecDD - ok
11:55:35.0809 1228 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
11:55:35.0809 1228 KtmRm - ok
11:55:35.0856 1228 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
11:55:35.0872 1228 LanmanServer - ok
11:55:35.0918 1228 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
11:55:35.0918 1228 LanmanWorkstation - ok
11:55:35.0965 1228 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
11:55:35.0965 1228 lltdio - ok
11:55:36.0012 1228 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
11:55:36.0012 1228 lltdsvc - ok
11:55:36.0043 1228 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
11:55:36.0043 1228 lmhosts - ok
11:55:36.0074 1228 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
11:55:36.0074 1228 LSI_FC - ok
11:55:36.0106 1228 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
11:55:36.0106 1228 LSI_SAS - ok
11:55:36.0152 1228 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
11:55:36.0152 1228 LSI_SCSI - ok
11:55:36.0184 1228 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
11:55:36.0184 1228 luafv - ok
11:55:36.0199 1228 lvselsus - ok
11:55:36.0246 1228 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
11:55:36.0246 1228 MBAMProtector - ok
11:55:36.0386 1228 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:55:36.0402 1228 MBAMService - ok
11:55:36.0433 1228 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
11:55:36.0433 1228 megasas - ok
11:55:36.0511 1228 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
11:55:36.0511 1228 MegaSR - ok
11:55:36.0574 1228 Microsoft SharePoint Workspace Audit Service - ok
11:55:36.0605 1228 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:55:36.0605 1228 MMCSS - ok
11:55:36.0620 1228 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
11:55:36.0620 1228 Modem - ok
11:55:36.0652 1228 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
11:55:36.0652 1228 monitor - ok
11:55:36.0683 1228 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
11:55:36.0683 1228 mouclass - ok
11:55:36.0698 1228 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
11:55:36.0698 1228 mouhid - ok
11:55:36.0714 1228 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
11:55:36.0714 1228 MountMgr - ok
11:55:36.0730 1228 mozyFilter - ok
11:55:36.0776 1228 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
11:55:36.0776 1228 mpio - ok
11:55:36.0823 1228 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
11:55:36.0823 1228 mpsdrv - ok
11:55:36.0839 1228 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
11:55:36.0839 1228 Mraid35x - ok
11:55:36.0886 1228 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
11:55:36.0886 1228 MRxDAV - ok
11:55:36.0932 1228 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:55:36.0932 1228 mrxsmb - ok
11:55:36.0964 1228 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:55:36.0964 1228 mrxsmb10 - ok
11:55:36.0979 1228 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:55:36.0979 1228 mrxsmb20 - ok
11:55:37.0010 1228 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
11:55:37.0010 1228 msahci - ok
11:55:37.0120 1228 MSCamSvc (d98350792a7ce82e7459a7c36481beda) C:\Program Files\Microsoft LifeCam\MSCamS32.exe
11:55:37.0120 1228 MSCamSvc - ok
11:55:37.0166 1228 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
11:55:37.0182 1228 msdsm - ok
11:55:37.0229 1228 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
11:55:37.0229 1228 MSDTC - ok
11:55:37.0260 1228 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
11:55:37.0260 1228 Msfs - ok
11:55:37.0291 1228 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
11:55:37.0291 1228 msisadrv - ok
11:55:37.0338 1228 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
11:55:37.0338 1228 MSiSCSI - ok
11:55:37.0338 1228 msiserver - ok
11:55:37.0369 1228 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
11:55:37.0369 1228 MSKSSRV - ok
11:55:37.0385 1228 msmframework - ok
11:55:37.0416 1228 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
11:55:37.0416 1228 MSPCLOCK - ok
11:55:37.0432 1228 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
11:55:37.0432 1228 MSPQM - ok
11:55:37.0478 1228 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
11:55:37.0478 1228 MsRPC - ok
11:55:37.0525 1228 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
11:55:37.0525 1228 mssmbios - ok
11:55:37.0541 1228 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
11:55:37.0541 1228 MSTEE - ok
11:55:37.0572 1228 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
11:55:37.0572 1228 Mup - ok
11:55:37.0759 1228 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files\Norton Security Suite\Engine\5.1.0.29\ccSvcHst.exe
11:55:37.0775 1228 N360 - ok
11:55:37.0837 1228 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
11:55:37.0837 1228 napagent - ok
11:55:37.0900 1228 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
11:55:37.0900 1228 NativeWifiP - ok
11:55:38.0165 1228 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120427.002\NAVENG.SYS
11:55:38.0165 1228 NAVENG - ok
11:55:38.0399 1228 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120427.002\NAVEX15.SYS
11:55:38.0399 1228 NAVEX15 - ok
11:55:38.0617 1228 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
11:55:38.0617 1228 NDIS - ok
11:55:38.0664 1228 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
11:55:38.0664 1228 NdisTapi - ok
11:55:38.0680 1228 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
11:55:38.0680 1228 Ndisuio - ok
11:55:38.0726 1228 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
11:55:38.0726 1228 NdisWan - ok
11:55:38.0742 1228 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
11:55:38.0742 1228 NDProxy - ok
11:55:38.0758 1228 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
11:55:38.0758 1228 NetBIOS - ok
11:55:38.0820 1228 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
11:55:38.0820 1228 netbt - ok
11:55:38.0867 1228 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:55:38.0867 1228 Netlogon - ok
11:55:38.0914 1228 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
11:55:38.0914 1228 Netman - ok
11:55:38.0960 1228 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
11:55:38.0960 1228 netprofm - ok
11:55:39.0054 1228 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:55:39.0054 1228 NetTcpPortSharing - ok
11:55:39.0350 1228 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys
11:55:39.0366 1228 NETw3v32 - ok
11:55:39.0538 1228 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
11:55:39.0538 1228 nfrd960 - ok
11:55:39.0584 1228 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
11:55:39.0584 1228 NlaSvc - ok
11:55:39.0631 1228 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
11:55:39.0631 1228 Npfs - ok
11:55:39.0662 1228 NSCIRDA (6d8d2e5652fc2442c810c5d8be784148) C:\Windows\system32\DRIVERS\nscirda.sys
11:55:39.0662 1228 NSCIRDA - ok
11:55:39.0678 1228 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
11:55:39.0678 1228 nsi - ok
11:55:39.0694 1228 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
11:55:39.0694 1228 nsiproxy - ok
11:55:39.0865 1228 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
11:55:39.0865 1228 Ntfs - ok
11:55:39.0896 1228 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
11:55:39.0896 1228 ntrigdigi - ok
11:55:39.0912 1228 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
11:55:39.0912 1228 Null - ok
11:55:39.0943 1228 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
11:55:39.0943 1228 nvraid - ok
11:55:39.0974 1228 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
11:55:39.0974 1228 nvstor - ok
11:55:40.0006 1228 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
11:55:40.0006 1228 nv_agp - ok
11:55:40.0021 1228 NwlnkFlt - ok
11:55:40.0021 1228 NwlnkFwd - ok
11:55:40.0037 1228 nwlnkspx - ok
11:55:40.0068 1228 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
11:55:40.0068 1228 ohci1394 - ok
11:55:40.0146 1228 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:55:40.0146 1228 ose - ok
11:55:40.0770 1228 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:55:40.0801 1228 osppsvc - ok
11:55:41.0020 1228 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:55:41.0035 1228 p2pimsvc - ok
11:55:41.0035 1228 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:55:41.0051 1228 p2psvc - ok
11:55:41.0113 1228 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
11:55:41.0113 1228 Parport - ok
11:55:41.0160 1228 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
11:55:41.0160 1228 partmgr - ok
11:55:41.0176 1228 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
11:55:41.0176 1228 Parvdm - ok
11:55:41.0191 1228 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
11:55:41.0191 1228 PcaSvc - ok
11:55:41.0238 1228 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
11:55:41.0238 1228 pci - ok
11:55:41.0254 1228 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
11:55:41.0254 1228 pciide - ok
11:55:41.0300 1228 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
11:55:41.0300 1228 pcmcia - ok
11:55:41.0425 1228 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
11:55:41.0441 1228 PEAUTH - ok
11:55:41.0628 1228 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
11:55:41.0644 1228 pla - ok
11:55:41.0831 1228 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
11:55:41.0831 1228 PlugPlay - ok
11:55:41.0940 1228 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:55:41.0940 1228 PNRPAutoReg - ok
11:55:41.0956 1228 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
11:55:41.0956 1228 PNRPsvc - ok
11:55:42.0002 1228 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
11:55:42.0018 1228 PolicyAgent - ok
11:55:42.0096 1228 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
11:55:42.0096 1228 PptpMiniport - ok
11:55:42.0112 1228 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
11:55:42.0112 1228 Processor - ok
11:55:42.0158 1228 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
11:55:42.0158 1228 ProfSvc - ok
11:55:42.0205 1228 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:55:42.0205 1228 ProtectedStorage - ok
11:55:42.0252 1228 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
11:55:42.0252 1228 PSched - ok
11:55:42.0408 1228 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
11:55:42.0424 1228 ql2300 - ok
11:55:42.0455 1228 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
11:55:42.0455 1228 ql40xx - ok
11:55:42.0517 1228 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
11:55:42.0533 1228 QWAVE - ok
11:55:42.0564 1228 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
11:55:42.0564 1228 QWAVEdrv - ok
11:55:42.0860 1228 R300 (9afa62db7f553a0f1f52c70b738b0064) C:\Windows\system32\DRIVERS\atikmdag.sys
11:55:42.0876 1228 R300 - ok
11:55:43.0048 1228 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
11:55:43.0048 1228 RasAcd - ok
11:55:43.0079 1228 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
11:55:43.0094 1228 RasAuto - ok
11:55:43.0126 1228 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:55:43.0126 1228 Rasl2tp - ok
11:55:43.0188 1228 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
11:55:43.0188 1228 RasMan - ok
11:55:43.0219 1228 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
11:55:43.0219 1228 RasPppoe - ok
11:55:43.0266 1228 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
11:55:43.0266 1228 RasSstp - ok
11:55:43.0328 1228 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
11:55:43.0328 1228 rdbss - ok
11:55:43.0328 1228 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:55:43.0344 1228 RDPCDD - ok
11:55:43.0391 1228 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\DRIVERS\rdpdr.sys
11:55:43.0391 1228 rdpdr - ok
11:55:43.0406 1228 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
11:55:43.0406 1228 RDPENCDD - ok
11:55:43.0453 1228 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
11:55:43.0453 1228 RDPWD - ok
11:55:43.0500 1228 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
11:55:43.0500 1228 RemoteAccess - ok
11:55:43.0547 1228 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
11:55:43.0547 1228 RemoteRegistry - ok
11:55:43.0547 1228 rpaservice - ok
11:55:43.0578 1228 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
11:55:43.0578 1228 RpcLocator - ok
11:55:43.0656 1228 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
11:55:43.0672 1228 RpcSs - ok
11:55:43.0687 1228 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
11:55:43.0703 1228 rspndr - ok
11:55:43.0718 1228 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
11:55:43.0718 1228 SamSs - ok
11:55:43.0750 1228 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
11:55:43.0750 1228 sbp2port - ok
11:55:43.0796 1228 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
11:55:43.0796 1228 SCardSvr - ok
11:55:43.0890 1228 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
11:55:43.0890 1228 Schedule - ok
11:55:43.0952 1228 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
11:55:43.0952 1228 SCPolicySvc - ok
11:55:43.0984 1228 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
11:55:43.0984 1228 SDRSVC - ok
11:55:43.0999 1228 se26nd5 - ok
11:55:44.0015 1228 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
11:55:44.0015 1228 secdrv - ok
11:55:44.0030 1228 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
11:55:44.0030 1228 seclogon - ok
11:55:44.0046 1228 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
11:55:44.0046 1228 SENS - ok
11:55:44.0077 1228 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
11:55:44.0077 1228 Serenum - ok
11:55:44.0108 1228 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
11:55:44.0108 1228 Serial - ok
11:55:44.0124 1228 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
11:55:44.0124 1228 sermouse - ok
11:55:44.0171 1228 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
11:55:44.0171 1228 SessionEnv - ok
11:55:44.0218 1228 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
11:55:44.0218 1228 sffdisk - ok
11:55:44.0233 1228 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
11:55:44.0233 1228 sffp_mmc - ok
11:55:44.0249 1228 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
11:55:44.0249 1228 sffp_sd - ok
11:55:44.0264 1228 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
11:55:44.0264 1228 sfloppy - ok
11:55:44.0327 1228 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
11:55:44.0342 1228 SharedAccess - ok
11:55:44.0389 1228 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
11:55:44.0389 1228 ShellHWDetection - ok
11:55:44.0405 1228 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
11:55:44.0420 1228 sisagp - ok
11:55:44.0436 1228 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
11:55:44.0436 1228 SiSRaid2 - ok
11:55:44.0467 1228 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
11:55:44.0467 1228 SiSRaid4 - ok
11:55:44.0483 1228 Slntamr - ok
11:55:44.0920 1228 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
11:55:44.0951 1228 slsvc - ok
11:55:45.0091 1228 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
11:55:45.0107 1228 SLUINotify - ok
11:55:45.0169 1228 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
11:55:45.0169 1228 Smb - ok
11:55:45.0216 1228 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
11:55:45.0216 1228 SNMPTRAP - ok
11:55:45.0341 1228 SplashtopRemoteService (ccf611a259882d8cf4dbabae2341ee31) C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
11:55:45.0341 1228 SplashtopRemoteService - ok
11:55:45.0372 1228 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
11:55:45.0372 1228 spldr - ok
11:55:45.0419 1228 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
11:55:45.0419 1228 Spooler - ok
11:55:45.0450 1228 sqlagent$soshome22 - ok
11:55:45.0606 1228 SRTSP (a7a104a61c4e30de9c58f8c372a5c209) C:\Windows\system32\drivers\N360\0500000.07D\SRTSP.SYS
11:55:45.0606 1228 SRTSP - ok
11:55:45.0684 1228 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\Windows\system32\drivers\N360\0501000.01D\SRTSPX.SYS
11:55:45.0700 1228 SRTSPX - ok
11:55:45.0980 1228 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
11:55:45.0980 1228 srv - ok
11:55:46.0012 1228 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
11:55:46.0012 1228 srv2 - ok
11:55:46.0043 1228 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
11:55:46.0043 1228 srvnet - ok
11:55:46.0090 1228 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
11:55:46.0090 1228 SSDPSRV - ok
11:55:46.0121 1228 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
11:55:46.0121 1228 SstpSvc - ok
11:55:46.0339 1228 SSUService (1cfa4a1f3c7bb4c8f299e00428eb8677) C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
11:55:46.0339 1228 SSUService - ok
11:55:46.0433 1228 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
11:55:46.0433 1228 stisvc - ok
11:55:46.0448 1228 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
11:55:46.0464 1228 swenum - ok
11:55:46.0526 1228 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
11:55:46.0542 1228 swprv - ok
11:55:46.0558 1228 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
11:55:46.0558 1228 Symc8xx - ok
11:55:46.0682 1228 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\Windows\system32\drivers\N360\0501000.01D\SYMDS.SYS
11:55:46.0698 1228 SymDS - ok
11:55:46.0792 1228 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\Windows\system32\drivers\N360\0501000.01D\SYMEFA.SYS
11:55:46.0807 1228 SymEFA - ok
11:55:46.0838 1228 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\Windows\system32\Drivers\SYMEVENT.SYS
11:55:46.0838 1228 SymEvent - ok
11:55:46.0885 1228 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0501000.01D\Ironx86.SYS
11:55:46.0885 1228 SymIRON - ok
11:55:46.0994 1228 SYMTDIv (c93e93bff7cba0cd1c1ea282d791b772) C:\Windows\system32\drivers\N360\0500000.07D\SYMTDIV.SYS
11:55:46.0994 1228 SYMTDIv - ok
11:55:47.0041 1228 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
11:55:47.0041 1228 Sym_hi - ok
11:55:47.0057 1228 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
11:55:47.0057 1228 Sym_u3 - ok
11:55:47.0166 1228 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
11:55:47.0166 1228 SysMain - ok
11:55:47.0197 1228 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
11:55:47.0213 1228 TabletInputService - ok
11:55:47.0275 1228 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
11:55:47.0275 1228 TapiSrv - ok
11:55:47.0291 1228 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
11:55:47.0291 1228 TBS - ok
11:55:47.0462 1228 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
11:55:47.0462 1228 Tcpip - ok
11:55:47.0478 1228 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
11:55:47.0478 1228 Tcpip6 - ok
11:55:47.0509 1228 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
11:55:47.0509 1228 tcpipreg - ok
11:55:47.0540 1228 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
11:55:47.0540 1228 TDPIPE - ok
11:55:47.0556 1228 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
11:55:47.0556 1228 TDTCP - ok
11:55:47.0603 1228 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
11:55:47.0603 1228 tdx - ok
11:55:47.0634 1228 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
11:55:47.0634 1228 TermDD - ok
11:55:47.0728 1228 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
11:55:47.0728 1228 TermService - ok
11:55:47.0774 1228 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
11:55:47.0774 1228 Themes - ok
11:55:47.0806 1228 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
11:55:47.0806 1228 THREADORDER - ok
11:55:47.0821 1228 toscosrv - ok
11:55:47.0852 1228 TPM (cb258c2f726f1be73c507022be33ebb3) C:\Windows\system32\drivers\tpm.sys
11:55:47.0852 1228 TPM - ok
11:55:47.0899 1228 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
11:55:47.0899 1228 TrkWks - ok
11:55:47.0946 1228 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
11:55:47.0946 1228 TrustedInstaller - ok
11:55:47.0977 1228 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:55:47.0977 1228 tssecsrv - ok
11:55:48.0024 1228 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
11:55:48.0024 1228 tunmp - ok
11:55:48.0055 1228 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
11:55:48.0055 1228 tunnel - ok
11:55:48.0086 1228 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
11:55:48.0086 1228 uagp35 - ok
11:55:48.0118 1228 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
11:55:48.0133 1228 udfs - ok
11:55:48.0164 1228 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
11:55:48.0164 1228 UI0Detect - ok
11:55:48.0196 1228 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
11:55:48.0196 1228 uliagpkx - ok
11:55:48.0242 1228 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
11:55:48.0242 1228 uliahci - ok
11:55:48.0274 1228 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
11:55:48.0274 1228 UlSata - ok
11:55:48.0305 1228 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
11:55:48.0305 1228 ulsata2 - ok
11:55:48.0320 1228 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
11:55:48.0320 1228 umbus - ok
11:55:48.0398 1228 UmRdpService (8a66360f38f81e960e2367b428cbd5d9) C:\Windows\System32\umrdp.dll
11:55:48.0398 1228 UmRdpService - ok
11:55:48.0461 1228 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
11:55:48.0461 1228 upnphost - ok
11:55:48.0508 1228 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
11:55:48.0508 1228 USBAAPL - ok
11:55:48.0554 1228 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
11:55:48.0570 1228 usbaudio - ok
11:55:48.0601 1228 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
11:55:48.0601 1228 usbccgp - ok
11:55:48.0648 1228 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
11:55:48.0648 1228 usbcir - ok
11:55:48.0695 1228 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
11:55:48.0695 1228 usbehci - ok
11:55:48.0726 1228 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
11:55:48.0726 1228 usbhub - ok
11:55:48.0742 1228 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
11:55:48.0742 1228 usbohci - ok
11:55:48.0788 1228 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
11:55:48.0788 1228 usbprint - ok
11:55:48.0804 1228 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:55:48.0804 1228 USBSTOR - ok
11:55:48.0820 1228 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
11:55:48.0820 1228 usbuhci - ok
11:55:48.0835 1228 useraccess7 - ok
11:55:48.0866 1228 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
11:55:48.0882 1228 UxSms - ok
11:55:48.0960 1228 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
11:55:48.0960 1228 vds - ok
11:55:48.0991 1228 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
11:55:48.0991 1228 vga - ok
11:55:49.0007 1228 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
11:55:49.0007 1228 VgaSave - ok
11:55:49.0054 1228 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
11:55:49.0054 1228 viaagp - ok
11:55:49.0069 1228 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
11:55:49.0085 1228 ViaC7 - ok
11:55:49.0116 1228 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
11:55:49.0116 1228 viaide - ok
11:55:49.0116 1228 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
11:55:49.0132 1228 volmgr - ok
11:55:49.0194 1228 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
11:55:49.0210 1228 volmgrx - ok
11:55:49.0272 1228 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
11:55:49.0272 1228 volsnap - ok
11:55:49.0412 1228 vpnagent (34756733f0480d68e519e80e22e05d12) C:\Program Files\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
11:55:49.0412 1228 vpnagent - ok
11:55:49.0459 1228 vpnva (1b7c80c66742dafaa31f98af4c3a5bc2) C:\Windows\system32\DRIVERS\vpnva.sys
11:55:49.0459 1228 vpnva - ok
11:55:49.0522 1228 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
11:55:49.0522 1228 vsmraid - ok
11:55:49.0678 1228 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
11:55:49.0678 1228 VSS - ok
11:55:49.0943 1228 VX3000 (e26744e5dd71a16e80d4dd5a286b8423) C:\Windows\system32\DRIVERS\VX3000.sys
11:55:49.0958 1228 VX3000 - ok
11:55:50.0083 1228 w300mdm - ok
11:55:50.0161 1228 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
11:55:50.0177 1228 W32Time - ok
11:55:50.0192 1228 w810obex - ok
11:55:50.0239 1228 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
11:55:50.0239 1228 WacomPen - ok
11:55:50.0270 1228 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:55:50.0270 1228 Wanarp - ok
11:55:50.0286 1228 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
11:55:50.0286 1228 Wanarpv6 - ok
11:55:50.0395 1228 wbengine (20b23332885dfb93fe0185362ee811e9) C:\Windows\system32\wbengine.exe
11:55:50.0411 1228 wbengine - ok
11:55:50.0473 1228 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
11:55:50.0473 1228 wcncsvc - ok
11:55:50.0504 1228 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
11:55:50.0504 1228 WcsPlugInService - ok
11:55:50.0551 1228 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
11:55:50.0551 1228 Wd - ok
11:55:50.0645 1228 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
11:55:50.0645 1228 Wdf01000 - ok
11:55:50.0660 1228 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:55:50.0676 1228 WdiServiceHost - ok
11:55:50.0692 1228 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
11:55:50.0692 1228 WdiSystemHost - ok
11:55:50.0754 1228 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
11:55:50.0754 1228 WebClient - ok
11:55:50.0801 1228 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
11:55:50.0801 1228 Wecsvc - ok
11:55:50.0832 1228 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
11:55:50.0848 1228 wercplsupport - ok
11:55:50.0894 1228 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
11:55:50.0894 1228 WerSvc - ok
11:55:50.0988 1228 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
11:55:51.0004 1228 winachsf - ok
11:55:51.0004 1228 WinHttpAutoProxySvc - ok
11:55:51.0082 1228 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
11:55:51.0097 1228 Winmgmt - ok
11:55:51.0269 1228 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
11:55:51.0269 1228 WinRM - ok
11:55:51.0284 1228 wkscfgsrv - ok
11:55:51.0378 1228 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
11:55:51.0394 1228 Wlansvc - ok
11:55:51.0440 1228 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
11:55:51.0440 1228 WmiAcpi - ok
11:55:51.0518 1228 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
11:55:51.0518 1228 wmiApSrv - ok
11:55:51.0706 1228 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
11:55:51.0721 1228 WMPNetworkSvc - ok
11:55:51.0768 1228 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
11:55:51.0768 1228 WPDBusEnum - ok
11:55:51.0815 1228 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
11:55:51.0830 1228 WpdUsb - ok
11:55:52.0049 1228 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:55:52.0064 1228 WPFFontCache_v0400 - ok
11:55:52.0080 1228 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
11:55:52.0080 1228 ws2ifsl - ok
11:55:52.0096 1228 WSearch - ok
11:55:52.0392 1228 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
11:55:52.0408 1228 wuauserv - ok
11:55:52.0548 1228 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
11:55:52.0548 1228 wudfsvc - ok
11:55:52.0564 1228 XAudio - ok
11:55:52.0564 1228 zd1211u(zydas) - ok
11:55:52.0626 1228 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
11:55:52.0720 1228 \Device\Harddisk0\DR0 - ok
11:55:52.0735 1228 Boot (0x1200) (a926701e27d701eed6d5ae16202bbfb4) \Device\Harddisk0\DR0\Partition0
11:55:52.0735 1228 \Device\Harddisk0\DR0\Partition0 - ok
11:55:52.0751 1228 Boot (0x1200) (f263221de2a9035032c56528f3ea2a21) \Device\Harddisk0\DR0\Partition1
11:55:52.0751 1228 \Device\Harddisk0\DR0\Partition1 - ok
11:55:52.0751 1228 ============================================================
11:55:52.0751 1228 Scan finished
11:55:52.0751 1228 ============================================================
11:55:52.0782 1192 Detected object count: 0
11:55:52.0782 1192 Actual detected object count: 0

ASWMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-27 11:57:01
-----------------------------
11:57:01.344 OS Version: Windows 6.0.6002 Service Pack 2
11:57:01.344 Number of processors: 2 586 0xE08
11:57:01.344 ComputerName: HEXAWARE UserName: huser
11:57:02.077 Initialize success
11:57:12.233 AVAST engine defs: 12042700
11:57:21.000 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-2
11:57:21.000 Disk 0 Vendor: TOSHIBA_MK1234GSX AH002E Size: 114473MB BusType: 3
11:57:21.031 Disk 0 MBR read successfully
11:57:21.031 Disk 0 MBR scan
11:57:21.047 Disk 0 Windows VISTA default MBR code
11:57:21.078 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 72078 MB offset 63
11:57:21.094 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 42393 MB offset 147617792
11:57:21.109 Disk 0 scanning sectors +234438656
11:57:21.172 Disk 0 scanning C:\Windows\system32\drivers
11:57:31.686 Service scanning
11:58:04.040 Modules scanning
11:58:08.081 Disk 0 trace - called modules:
11:58:08.096 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys tcpip.sys NETIO.SYS
11:58:08.112 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84d6dac8]
11:58:08.112 3 CLASSPNP.SYS[881aa8b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-2[0x84c8c390]
11:58:08.970 AVAST engine scan C:\Windows
11:58:10.780 AVAST engine scan C:\Windows\system32
12:01:03.862 AVAST engine scan C:\Windows\system32\drivers
12:01:17.371 AVAST engine scan C:\Users\huser
12:01:56.090 AVAST engine scan C:\ProgramData
12:02:38.803 Scan finished successfully
12:03:03.872 Disk 0 MBR has been saved successfully to "C:\scanresult\MBR.dat"
12:03:03.888 The log file has been saved successfully to "C:\scanresult\aswMBR_1.txt"


Please confirm the next steps.

Thanks again

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:14 AM

Posted 27 April 2012 - 12:13 PM

:thumbup2:

Download

http://go.microsoft.com/?linkid=9662461

Run the fixit,restart the PC

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#9 Vijmail_99

Vijmail_99
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:06:14 AM

Posted 27 April 2012 - 01:52 PM

Thanks for the suggestion. Have a quick question. When I ran the MBAM again, I did not see any infections on the report. Does that mean the computer doesn't have any virus or trojans ??

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:14 AM

Posted 27 April 2012 - 03:56 PM

Yes,but post the logs of other scans too. :thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users