Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help Virus Rootkit?


  • Please log in to reply
3 replies to this topic

#1 puckman

puckman

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:47 AM

Posted 08 June 2012 - 11:57 PM

I have been recently infected with an HDD virus variant. I've managed to remove most of the problems but I still can't turn on MS Essentials or Defender. I found and eliminated TDSS.F trojan. Im I still infected ?

aswmbr LOG:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-08 14:41:19
-----------------------------
14:41:19.430 OS Version: Windows 6.0.6002 Service Pack 2
14:41:19.430 Number of processors: 4 586 0x202
14:41:19.435 ComputerName: UserName:
14:41:59.723 Initialize success
14:42:24.063 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000062
14:42:24.068 Disk 0 Vendor: WDC_WD16 05.0 Size: 152627MB BusType: 8
14:42:24.073 Disk 0 MBR read successfully
14:42:24.078 Disk 0 MBR scan
14:42:24.083 Disk 0 Windows VISTA default MBR code
14:42:24.093 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152625 MB offset 2048
14:42:24.103 Disk 0 scanning sectors +312578048
14:42:24.226 Disk 0 scanning C:\Windows\system32\drivers
14:42:35.535 Service scanning
14:42:48.635 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
14:42:55.460 Modules scanning
14:43:02.463 Disk 0 trace - called modules:
14:43:02.494 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll >>UNKNOWN [0x856881f8]<<
14:43:02.510 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x861a6338]
14:43:02.717 3 CLASSPNP.SYS[88ba68b3] -> nt!IofCallDriver -> [0x856c4a10]
14:43:02.722 5 acpi.sys[807546bc] -> nt!IofCallDriver -> \Device\00000062[0x856b1c90]
14:43:02.753 \Driver\nvstor[0x856b08e8] -> IRP_MJ_CREATE -> 0x856881f8
14:43:02.769 Scan finished successfully
14:43:17.676 Disk 0 MBR has been saved successfully to "C:\Users\Ominiscious\Downloads\Desktop\MBR.dat"
14:43:17.691 The log file has been saved successfully to "C:\Users\Ominiscious\Downloads\Desktop\aswMBR.txt"

GMER:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-06-08 21:57:16
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\00000062 WDC_WD16 rev.05.0
Running: 6zf9rg87.exe; Driver: C:\Users\Omini\AppData\Local\Temp\fwddqpog.sys


---- System - GMER 1.0.15 ----

SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS ZwTerminateProcess [0x900C4640]

INT 0x52 ? 85680CC8
INT 0x53 ? 869BEF00
INT 0x62 ? 85681CC8
INT 0x72 ? 85681CC8

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!KeSetEvent + 621 828B6CE4 4 Bytes [40, 46, 0C, 90] {INC EAX; INC ESI; OR AL, 0x90}
.text sptd.sys 80604000 32 Bytes [06, 11, BD, 82, 60, 7F, BC, ...]
.text sptd.sys 80604024 4 Bytes [D2, 33, 73, 80] {SAL BYTE [EBX], CL; JAE 0xffffffffffffff84}
.text sptd.sys 8060402C 196 Bytes [02, 06, A2, 82, 23, 89, 9B, ...]
.text sptd.sys 806040F1 11 Bytes [FC, 84, 82, F0, F7, 84, 82, ...]
.text sptd.sys 806040FD 211 Bytes [93, 82, 82, 18, F5, 84, 82, ...]
.text ...
.sptd2 C:\Windows\System32\Drivers\sptd.sys entry point in ".sptd2" section [0x806FBD38]
? C:\Windows\System32\Drivers\sptd.sys The process cannot access the file because it is being used by another process.
.text USBPORT.SYS!DllUnload 889A341B 5 Bytes JMP 869BE410

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\MediaMall\MediaMallServer.exe[1504] KERNEL32.dll!GetFileAttributesExW 76979C55 6 Bytes JMP 71A90F5A
.text C:\Program Files\MediaMall\MediaMallServer.exe[1504] KERNEL32.dll!GetModuleFileNameW 769AB49E 6 Bytes JMP 71AF0F5A
.text C:\Program Files\SAMSUNG\Kies\External\FirmwareUpdate\KiesPDLR.exe[2956] ntdll.dll!DbgUiRemoteBreakin 76FECD44 1 Byte [C3]

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [80605FE0] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUlong] [80605574] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [806050C0] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [806061BC] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUshort] [806052A4] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [80605362] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [8061A312] \SystemRoot\System32\Drivers\sptd.sys

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Program Files\MediaMall\MediaMallServer.exe[1504] @ C:\Windows\system32\KERNEL32.dll [ntdll.dll!LdrLoadDll] 01C70000

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 856891F8
Device \Driver\PCI_PNP7093 \Device\00000050 sptd.sys
Device \Driver\usbohci \Device\USBPDO-0 869C31F8
Device \Driver\usbehci \Device\USBPDO-1 86A061F8
Device \Driver\nvstor \Device\00000062 856881F8
Device \Driver\cdrom \Device\CdRom0 86AB91F8
Device \Driver\cdrom \Device\CdRom1 86AB91F8
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 856871F8
Device \Driver\atapi \Device\Ide\IdePort0 856871F8
Device \Driver\atapi \Device\Ide\IdePort1 856871F8
Device \Driver\cdrom \Device\CdRom2 86AB91F8
Device \Driver\dtsoftbus01 \Device\00000067 86C591F8
Device \Driver\cdrom \Device\CdRom3 86AB91F8
Device \Driver\netbt \Device\NetBt_Wins_Export 871AD1F8
Device \Driver\dtsoftbus01 \Device\DTSoftBusCtl 86C591F8
Device \Driver\Smb \Device\NetbiosSmb 871AC1F8
Device \Driver\netbt \Device\NetBT_Tcpip_{414C8E15-93E1-4C82-8A0E-9D51959A0C0E} 871AD1F8
Device \Driver\nvstor \Device\RaidPort0 856881F8
Device \Driver\iScsiPrt \Device\RaidPort1 86AF9430
Device \Driver\usbohci \Device\USBFDO-0 869C31F8
Device \Driver\usbehci \Device\USBFDO-1 86A061F8
Device \Driver\USBSTOR \Device\0000006e 869CF430
Device \Driver\USBSTOR \Device\0000006f 869CF430
Device \Driver\alza03xt \Device\Scsi\alza03xt1Port4Path0Target0Lun0 86AF41F8
Device \Driver\alza03xt \Device\Scsi\alza03xt1 86AF41F8
Device \FileSystem\cdfs \Cdfs 877CE1F8

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 52\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x7E 0x1F 0xC0 0x3D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xC3 0x7A 0x02 0x37 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xCA 0x51 0xF1 0x4F ...
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 52\
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x7E 0x1F 0xC0 0x3D ...
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0xA0 0x02 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xC3 0x7A 0x02 0x37 ...
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0xCA 0x51 0xF1 0x4F ...

---- EOF - GMER 1.0.15 ----

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:47 PM

Posted 09 June 2012 - 05:47 AM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

Step 1

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Step 2

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.


Step 4

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Check the boxes next to Verify file digital signatures and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 puckman

puckman
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:47 AM

Posted 10 June 2012 - 12:53 AM

Here are the results:

20:21:33.0889 6048 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
20:21:34.0384 6048 ============================================================
20:21:34.0384 6048 Current date / time: 2012/06/09 20:21:34.0384
20:21:34.0384 6048 SystemInfo:
20:21:34.0384 6048
20:21:34.0384 6048 OS Version: 6.0.6002 ServicePack: 2.0
20:21:34.0384 6048 Product type: Workstation
20:21:34.0384 6048 ComputerName: PUCKMANSNOO-PC
20:21:34.0385 6048 UserName: Taylor EBjarrvi
20:21:34.0385 6048 Windows directory: C:\Windows
20:21:34.0385 6048 System windows directory: C:\Windows
20:21:34.0385 6048 Processor architecture: Intel x86
20:21:34.0385 6048 Number of processors: 4
20:21:34.0385 6048 Page size: 0x1000
20:21:34.0385 6048 Boot type: Normal boot
20:21:34.0385 6048 ============================================================
20:21:36.0104 6048 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:21:36.0107 6048 ============================================================
20:21:36.0107 6048 \Device\Harddisk0\DR0:
20:21:36.0107 6048 MBR partitions:
20:21:36.0107 6048 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A18800
20:21:36.0107 6048 ============================================================
20:21:36.0161 6048 C: <-> \Device\Harddisk0\DR0\Partition0
20:21:36.0161 6048 ============================================================
20:21:36.0161 6048 Initialize success
20:21:36.0161 6048 ============================================================
20:21:37.0742 6044 ============================================================
20:21:37.0742 6044 Scan started
20:21:37.0742 6044 Mode: Manual;
20:21:37.0742 6044 ============================================================
20:21:38.0790 6044 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
20:21:38.0794 6044 !SASCORE - ok
20:21:39.0069 6044 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:21:39.0084 6044 ACPI - ok
20:21:39.0137 6044 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:21:39.0154 6044 adp94xx - ok
20:21:39.0223 6044 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:21:39.0237 6044 adpahci - ok
20:21:39.0262 6044 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:21:39.0266 6044 adpu160m - ok
20:21:39.0294 6044 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:21:39.0305 6044 adpu320 - ok
20:21:39.0359 6044 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
20:21:39.0361 6044 AeLookupSvc - ok
20:21:39.0460 6044 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:21:39.0464 6044 AFD - ok
20:21:39.0527 6044 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:21:39.0529 6044 agp440 - ok
20:21:39.0556 6044 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:21:39.0558 6044 aic78xx - ok
20:21:39.0594 6044 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
20:21:39.0596 6044 ALG - ok
20:21:39.0622 6044 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:21:39.0623 6044 aliide - ok
20:21:39.0647 6044 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:21:39.0649 6044 amdagp - ok
20:21:39.0677 6044 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:21:39.0678 6044 amdide - ok
20:21:39.0695 6044 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:21:39.0697 6044 AmdK7 - ok
20:21:39.0715 6044 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:21:39.0717 6044 AmdK8 - ok
20:21:39.0775 6044 androidusb (dd8d9c597af7cd2f6b70a3d6a4a1acea) C:\Windows\system32\Drivers\ssadadb.sys
20:21:39.0777 6044 androidusb - ok
20:21:39.0837 6044 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
20:21:39.0839 6044 Appinfo - ok
20:21:40.0012 6044 Application Updater (ba916091087e6be21d3c30eec71ed338) C:\Program Files\Application Updater\ApplicationUpdater.exe
20:21:40.0037 6044 Application Updater - ok
20:21:40.0096 6044 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:21:40.0099 6044 arc - ok
20:21:40.0121 6044 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:21:40.0124 6044 arcsas - ok
20:21:40.0140 6044 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:21:40.0142 6044 AsyncMac - ok
20:21:40.0167 6044 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:21:40.0169 6044 atapi - ok
20:21:40.0202 6044 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:21:40.0248 6044 AudioEndpointBuilder - ok
20:21:40.0258 6044 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:21:40.0263 6044 Audiosrv - ok
20:21:40.0324 6044 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:21:40.0325 6044 Beep - ok
20:21:40.0418 6044 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
20:21:40.0422 6044 BFE - ok
20:21:40.0536 6044 BITS (0d4a07e5ac9998e4b251d603c96d4f20) C:\Windows\system32\qmgr.dll
20:21:40.0548 6044 BITS - ok
20:21:40.0636 6044 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:21:40.0663 6044 blbdrive - ok
20:21:40.0744 6044 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:21:40.0747 6044 bowser - ok
20:21:40.0781 6044 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:21:40.0782 6044 BrFiltLo - ok
20:21:40.0809 6044 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:21:40.0810 6044 BrFiltUp - ok
20:21:40.0834 6044 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
20:21:40.0837 6044 Browser - ok
20:21:40.0874 6044 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:21:40.0877 6044 Brserid - ok
20:21:40.0909 6044 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:21:40.0911 6044 BrSerWdm - ok
20:21:40.0943 6044 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:21:40.0945 6044 BrUsbMdm - ok
20:21:40.0980 6044 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:21:40.0982 6044 BrUsbSer - ok
20:21:41.0025 6044 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
20:21:41.0027 6044 BTHMODEM - ok
20:21:41.0286 6044 catchme - ok
20:21:41.0315 6044 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:21:41.0317 6044 cdfs - ok
20:21:41.0393 6044 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:21:41.0395 6044 cdrom - ok
20:21:41.0450 6044 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:21:41.0452 6044 CertPropSvc - ok
20:21:41.0485 6044 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
20:21:41.0487 6044 circlass - ok
20:21:41.0534 6044 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:21:41.0541 6044 CLFS - ok
20:21:41.0665 6044 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:21:41.0668 6044 clr_optimization_v2.0.50727_32 - ok
20:21:41.0777 6044 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:21:41.0788 6044 clr_optimization_v4.0.30319_32 - ok
20:21:41.0827 6044 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:21:41.0828 6044 cmdide - ok
20:21:41.0867 6044 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
20:21:41.0869 6044 Compbatt - ok
20:21:41.0876 6044 COMSysApp - ok
20:21:41.0902 6044 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:21:41.0904 6044 crcdisk - ok
20:21:41.0938 6044 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:21:41.0940 6044 Crusoe - ok
20:21:41.0994 6044 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
20:21:41.0997 6044 CryptSvc - ok
20:21:42.0103 6044 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:21:42.0115 6044 DcomLaunch - ok
20:21:42.0198 6044 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:21:42.0201 6044 DfsC - ok
20:21:42.0406 6044 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
20:21:42.0458 6044 DFSR - ok
20:21:42.0710 6044 dgderdrv (6216fd7fd227de454238a702b218cec7) C:\Windows\system32\drivers\dgderdrv.sys
20:21:42.0712 6044 dgderdrv - ok
20:21:42.0756 6044 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\Windows\system32\Drivers\DgiVecp.sys
20:21:42.0758 6044 DgiVecp - ok
20:21:42.0795 6044 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
20:21:42.0798 6044 Dhcp - ok
20:21:42.0858 6044 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:21:42.0860 6044 disk - ok
20:21:42.0921 6044 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
20:21:42.0924 6044 Dnscache - ok
20:21:42.0950 6044 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
20:21:42.0960 6044 dot3svc - ok
20:21:42.0985 6044 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
20:21:42.0996 6044 DPS - ok
20:21:43.0047 6044 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:21:43.0049 6044 drmkaud - ok
20:21:43.0155 6044 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:21:43.0195 6044 dtsoftbus01 - ok
20:21:43.0273 6044 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:21:43.0291 6044 DXGKrnl - ok
20:21:43.0354 6044 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:21:43.0358 6044 E1G60 - ok
20:21:43.0410 6044 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
20:21:43.0413 6044 EapHost - ok
20:21:43.0508 6044 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:21:43.0519 6044 Ecache - ok
20:21:43.0638 6044 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
20:21:43.0652 6044 ehRecvr - ok
20:21:43.0674 6044 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
20:21:43.0685 6044 ehSched - ok
20:21:43.0699 6044 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
20:21:43.0701 6044 ehstart - ok
20:21:43.0754 6044 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:21:43.0766 6044 elxstor - ok
20:21:43.0838 6044 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
20:21:43.0860 6044 EMDMgmt - ok
20:21:43.0885 6044 ErrDev (a81ab23eddb4693612014d87367d014c) C:\Windows\system32\drivers\errdev.sys
20:21:43.0886 6044 ErrDev - ok
20:21:43.0933 6044 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
20:21:43.0938 6044 EventSystem - ok
20:21:43.0964 6044 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:21:43.0975 6044 exfat - ok
20:21:44.0002 6044 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:21:44.0014 6044 fastfat - ok
20:21:44.0029 6044 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:21:44.0031 6044 fdc - ok
20:21:44.0045 6044 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
20:21:44.0048 6044 fdPHost - ok
20:21:44.0058 6044 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
20:21:44.0061 6044 FDResPub - ok
20:21:44.0078 6044 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:21:44.0081 6044 FileInfo - ok
20:21:44.0116 6044 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:21:44.0118 6044 Filetrace - ok
20:21:44.0127 6044 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:21:44.0128 6044 flpydisk - ok
20:21:44.0148 6044 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:21:44.0152 6044 FltMgr - ok
20:21:44.0305 6044 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
20:21:44.0331 6044 FontCache - ok
20:21:44.0492 6044 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:21:44.0493 6044 FontCache3.0.0.0 - ok
20:21:44.0533 6044 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
20:21:44.0535 6044 Fs_Rec - ok
20:21:44.0563 6044 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:21:44.0566 6044 gagp30kx - ok
20:21:44.0653 6044 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
20:21:44.0731 6044 gpsvc - ok
20:21:44.0800 6044 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
20:21:44.0808 6044 HdAudAddService - ok
20:21:44.0858 6044 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:21:44.0872 6044 HDAudBus - ok
20:21:44.0896 6044 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:21:44.0898 6044 HidBth - ok
20:21:44.0912 6044 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
20:21:44.0914 6044 HidIr - ok
20:21:44.0935 6044 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
20:21:44.0938 6044 hidserv - ok
20:21:44.0956 6044 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:21:44.0958 6044 HidUsb - ok
20:21:45.0023 6044 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
20:21:45.0027 6044 hkmsvc - ok
20:21:45.0062 6044 HpCISSs (7ebec5eb56b90ed65a8bbd91464e5cfb) C:\Windows\system32\drivers\hpcisss.sys
20:21:45.0064 6044 HpCISSs - ok
20:21:45.0132 6044 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:21:45.0150 6044 HTTP - ok
20:21:45.0231 6044 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:21:45.0233 6044 i2omp - ok
20:21:45.0271 6044 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:21:45.0273 6044 i8042prt - ok
20:21:45.0309 6044 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:21:45.0317 6044 iaStorV - ok
20:21:45.0536 6044 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:21:45.0564 6044 idsvc - ok
20:21:45.0610 6044 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:21:45.0612 6044 iirsp - ok
20:21:45.0690 6044 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
20:21:45.0742 6044 IKEEXT - ok
20:21:46.0069 6044 IntcAzAudAddService (39be782f9660545a491bf42320232aea) C:\Windows\system32\drivers\RTKVHDA.sys
20:21:46.0153 6044 IntcAzAudAddService - ok
20:21:46.0419 6044 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
20:21:46.0421 6044 intelide - ok
20:21:46.0456 6044 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:21:46.0458 6044 intelppm - ok
20:21:46.0498 6044 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
20:21:46.0503 6044 IPBusEnum - ok
20:21:46.0583 6044 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:21:46.0585 6044 IpFilterDriver - ok
20:21:46.0665 6044 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
20:21:46.0675 6044 iphlpsvc - ok
20:21:46.0682 6044 IpInIp - ok
20:21:46.0712 6044 IPMIDRV (4b9c0f4d4a3acc535f9771039ecd6365) C:\Windows\system32\drivers\ipmidrv.sys
20:21:46.0714 6044 IPMIDRV - ok
20:21:46.0738 6044 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:21:46.0742 6044 IPNAT - ok
20:21:46.0769 6044 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:21:46.0770 6044 IRENUM - ok
20:21:46.0800 6044 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:21:46.0802 6044 isapnp - ok
20:21:46.0839 6044 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:21:46.0848 6044 iScsiPrt - ok
20:21:46.0887 6044 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:21:46.0889 6044 iteatapi - ok
20:21:46.0903 6044 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:21:46.0905 6044 iteraid - ok
20:21:46.0940 6044 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:21:46.0942 6044 kbdclass - ok
20:21:46.0956 6044 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
20:21:46.0958 6044 kbdhid - ok
20:21:46.0990 6044 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:46.0993 6044 KeyIso - ok
20:21:47.0043 6044 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
20:21:47.0084 6044 KSecDD - ok
20:21:47.0159 6044 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
20:21:47.0205 6044 KtmRm - ok
20:21:47.0267 6044 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
20:21:47.0279 6044 LanmanServer - ok
20:21:47.0359 6044 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
20:21:47.0370 6044 LanmanWorkstation - ok
20:21:47.0397 6044 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:21:47.0399 6044 lltdio - ok
20:21:47.0461 6044 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
20:21:47.0470 6044 lltdsvc - ok
20:21:47.0493 6044 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
20:21:47.0496 6044 lmhosts - ok
20:21:47.0529 6044 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:21:47.0532 6044 LSI_FC - ok
20:21:47.0560 6044 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:21:47.0564 6044 LSI_SAS - ok
20:21:47.0591 6044 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:21:47.0594 6044 LSI_SCSI - ok
20:21:47.0617 6044 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:21:47.0620 6044 luafv - ok
20:21:47.0650 6044 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
20:21:47.0654 6044 Mcx2Svc - ok
20:21:48.0093 6044 MediaMall Server (7a6c9bb994de98a75c172819dfaedd59) C:\Program Files\MediaMall\MediaMallServer.exe
20:21:48.0207 6044 MediaMall Server - ok
20:21:48.0431 6044 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:21:48.0433 6044 megasas - ok
20:21:48.0481 6044 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:21:48.0534 6044 MegaSR - ok
20:21:48.0554 6044 MEMSWEEP2 - ok
20:21:48.0761 6044 MFE_RR - ok
20:21:48.0821 6044 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:21:48.0826 6044 MMCSS - ok
20:21:48.0845 6044 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:21:48.0847 6044 Modem - ok
20:21:48.0873 6044 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:21:48.0875 6044 monitor - ok
20:21:49.0030 6044 MotoConnect Service (cbd0921e91f5d0806b21d529395fe8b9) C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
20:21:49.0033 6044 MotoConnect Service - ok
20:21:49.0059 6044 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:21:49.0061 6044 mouclass - ok
20:21:49.0073 6044 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:21:49.0075 6044 mouhid - ok
20:21:49.0092 6044 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:21:49.0094 6044 MountMgr - ok
20:21:49.0144 6044 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
20:21:49.0154 6044 MpFilter - ok
20:21:49.0220 6044 mpio (5da347912fd3af24d7bfb3de519d4bd0) C:\Windows\system32\drivers\mpio.sys
20:21:49.0224 6044 mpio - ok
20:21:49.0243 6044 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:21:49.0244 6044 mpsdrv - ok
20:21:49.0336 6044 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
20:21:49.0343 6044 MpsSvc - ok
20:21:49.0382 6044 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:21:49.0384 6044 Mraid35x - ok
20:21:49.0412 6044 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:21:49.0415 6044 MRxDAV - ok
20:21:49.0471 6044 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:21:49.0474 6044 mrxsmb - ok
20:21:49.0580 6044 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:21:49.0655 6044 mrxsmb10 - ok
20:21:49.0666 6044 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:21:49.0669 6044 mrxsmb20 - ok
20:21:49.0715 6044 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
20:21:49.0717 6044 msahci - ok
20:21:49.0761 6044 msdsm (2c563aef15b8d0014c36c5f27742ac7b) C:\Windows\system32\drivers\msdsm.sys
20:21:49.0765 6044 msdsm - ok
20:21:49.0790 6044 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
20:21:49.0804 6044 MSDTC - ok
20:21:49.0844 6044 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:21:49.0846 6044 Msfs - ok
20:21:49.0857 6044 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:21:49.0859 6044 msisadrv - ok
20:21:49.0911 6044 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
20:21:49.0916 6044 MSiSCSI - ok
20:21:49.0943 6044 msiserver - ok
20:21:49.0979 6044 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:21:49.0980 6044 MSKSSRV - ok
20:21:50.0118 6044 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:21:50.0119 6044 MsMpSvc - ok
20:21:50.0137 6044 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:21:50.0138 6044 MSPCLOCK - ok
20:21:50.0154 6044 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:21:50.0156 6044 MSPQM - ok
20:21:50.0225 6044 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:21:50.0235 6044 MsRPC - ok
20:21:50.0259 6044 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:21:50.0261 6044 mssmbios - ok
20:21:50.0285 6044 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:21:50.0287 6044 MSTEE - ok
20:21:50.0332 6044 msvad_simple (00c7b2306f1ca5389a1ac6d1df9c2e25) C:\Windows\system32\drivers\povrtdev.sys
20:21:50.0334 6044 msvad_simple - ok
20:21:50.0389 6044 MTsensor (dcdaab8697a47894a554050ce18d0b56) C:\Windows\system32\DRIVERS\ASACPI.sys
20:21:50.0390 6044 MTsensor - ok
20:21:50.0414 6044 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:21:50.0417 6044 Mup - ok
20:21:50.0488 6044 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
20:21:50.0560 6044 napagent - ok
20:21:50.0591 6044 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:21:50.0602 6044 NativeWifiP - ok
20:21:50.0654 6044 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:21:50.0666 6044 NDIS - ok
20:21:50.0679 6044 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:21:50.0681 6044 NdisTapi - ok
20:21:50.0700 6044 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:21:50.0702 6044 Ndisuio - ok
20:21:50.0730 6044 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:21:50.0742 6044 NdisWan - ok
20:21:50.0755 6044 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:21:50.0757 6044 NDProxy - ok
20:21:50.0880 6044 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:21:50.0926 6044 NetBIOS - ok
20:21:51.0023 6044 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:21:51.0028 6044 netbt - ok
20:21:51.0098 6044 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:51.0101 6044 Netlogon - ok
20:21:51.0205 6044 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
20:21:51.0214 6044 Netman - ok
20:21:51.0253 6044 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
20:21:51.0269 6044 netprofm - ok
20:21:51.0421 6044 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:21:51.0425 6044 NetTcpPortSharing - ok
20:21:51.0498 6044 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:21:51.0500 6044 nfrd960 - ok
20:21:51.0578 6044 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:21:51.0581 6044 NisDrv - ok
20:21:51.0713 6044 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:21:51.0721 6044 NisSrv - ok
20:21:51.0758 6044 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
20:21:51.0768 6044 NlaSvc - ok
20:21:51.0849 6044 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:21:51.0851 6044 Npfs - ok
20:21:51.0862 6044 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
20:21:51.0867 6044 nsi - ok
20:21:51.0874 6044 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:21:51.0875 6044 nsiproxy - ok
20:21:51.0963 6044 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:21:52.0022 6044 Ntfs - ok
20:21:52.0058 6044 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:21:52.0060 6044 ntrigdigi - ok
20:21:52.0090 6044 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:21:52.0091 6044 Null - ok
20:21:52.0180 6044 NVENETFD (1657f3fbd9061526c14ff37e79306f98) C:\Windows\system32\DRIVERS\nvm60x32.sys
20:21:52.0221 6044 NVENETFD - ok
20:21:52.0866 6044 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:21:53.0219 6044 nvlddmkm - ok
20:21:53.0431 6044 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:21:53.0435 6044 nvraid - ok
20:21:53.0489 6044 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:21:53.0491 6044 nvstor - ok
20:21:53.0626 6044 NVSvc (d122f7c5f79c68868f5dc28cefeb2ecf) C:\Windows\system32\nvvsvc.exe
20:21:53.0665 6044 NVSvc - ok
20:21:53.0940 6044 nvUpdatusService (003cb0a155568b4a53a301f07c734233) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:21:54.0027 6044 nvUpdatusService - ok
20:21:54.0293 6044 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:21:54.0296 6044 nv_agp - ok
20:21:54.0303 6044 NwlnkFlt - ok
20:21:54.0314 6044 NwlnkFwd - ok
20:21:54.0349 6044 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
20:21:54.0351 6044 ohci1394 - ok
20:21:54.0433 6044 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:54.0452 6044 p2pimsvc - ok
20:21:54.0466 6044 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:54.0477 6044 p2psvc - ok
20:21:54.0542 6044 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
20:21:54.0545 6044 Parport - ok
20:21:54.0590 6044 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
20:21:54.0592 6044 partmgr - ok
20:21:54.0625 6044 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
20:21:54.0627 6044 Parvdm - ok
20:21:54.0649 6044 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
20:21:54.0654 6044 PcaSvc - ok
20:21:54.0675 6044 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:21:54.0686 6044 pci - ok
20:21:54.0739 6044 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
20:21:54.0741 6044 pciide - ok
20:21:54.0774 6044 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:21:54.0784 6044 pcmcia - ok
20:21:54.0857 6044 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:21:54.0879 6044 PEAUTH - ok
20:21:55.0012 6044 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
20:21:55.0054 6044 pla - ok
20:21:55.0253 6044 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
20:21:55.0270 6044 PlugPlay - ok
20:21:55.0325 6044 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:55.0337 6044 PNRPAutoReg - ok
20:21:55.0351 6044 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:55.0362 6044 PNRPsvc - ok
20:21:55.0440 6044 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
20:21:55.0452 6044 PolicyAgent - ok
20:21:55.0563 6044 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:21:55.0565 6044 PptpMiniport - ok
20:21:55.0621 6044 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
20:21:55.0623 6044 Processor - ok
20:21:55.0692 6044 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
20:21:55.0698 6044 ProfSvc - ok
20:21:55.0731 6044 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:55.0734 6044 ProtectedStorage - ok
20:21:55.0926 6044 PS3 Media Server (eb21a4f28e4135498b3ce981883a0a44) C:\Program Files\PS3 Media Server\win32\service\wrapper.exe
20:21:55.0934 6044 PS3 Media Server - ok
20:21:55.0986 6044 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:21:55.0988 6044 PSched - ok
20:21:56.0098 6044 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:21:56.0127 6044 ql2300 - ok
20:21:56.0149 6044 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:21:56.0153 6044 ql40xx - ok
20:21:56.0218 6044 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
20:21:56.0258 6044 QWAVE - ok
20:21:56.0275 6044 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:21:56.0277 6044 QWAVEdrv - ok
20:21:56.0294 6044 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:21:56.0295 6044 RasAcd - ok
20:21:56.0319 6044 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
20:21:56.0332 6044 RasAuto - ok
20:21:56.0351 6044 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:21:56.0354 6044 Rasl2tp - ok
20:21:56.0384 6044 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
20:21:56.0393 6044 RasMan - ok
20:21:56.0470 6044 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:21:56.0472 6044 RasPppoe - ok
20:21:56.0483 6044 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:21:56.0486 6044 RasSstp - ok
20:21:56.0584 6044 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:21:56.0592 6044 rdbss - ok
20:21:56.0607 6044 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:21:56.0608 6044 RDPCDD - ok
20:21:56.0656 6044 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\drivers\rdpdr.sys
20:21:56.0672 6044 rdpdr - ok
20:21:56.0679 6044 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:21:56.0680 6044 RDPENCDD - ok
20:21:56.0734 6044 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
20:21:56.0743 6044 RDPWD - ok
20:21:56.0814 6044 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
20:21:56.0819 6044 RemoteAccess - ok
20:21:56.0839 6044 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
20:21:56.0851 6044 RemoteRegistry - ok
20:21:56.0936 6044 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\Windows\system32\Drivers\RimUsb.sys
20:21:56.0938 6044 RimUsb - ok
20:21:57.0022 6044 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\Windows\system32\DRIVERS\RimSerial.sys
20:21:57.0024 6044 RimVSerPort - ok
20:21:57.0061 6044 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
20:21:57.0063 6044 ROOTMODEM - ok
20:21:57.0115 6044 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
20:21:57.0118 6044 RpcLocator - ok
20:21:57.0160 6044 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:21:57.0171 6044 RpcSs - ok
20:21:57.0223 6044 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:21:57.0226 6044 rspndr - ok
20:21:57.0256 6044 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:57.0259 6044 SamSs - ok
20:21:57.0400 6044 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
20:21:57.0401 6044 SASDIFSV - ok
20:21:57.0469 6044 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
20:21:57.0472 6044 SASKUTIL - ok
20:21:57.0516 6044 SAVRKBootTasks (e5c587c0668f83e799d1c43bc53e5e37) C:\Windows\system32\SAVRKBootTasks.sys
20:21:57.0520 6044 SAVRKBootTasks - ok
20:21:57.0581 6044 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:21:57.0584 6044 sbp2port - ok
20:21:57.0655 6044 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
20:21:57.0668 6044 SCardSvr - ok
20:21:57.0768 6044 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
20:21:57.0788 6044 Schedule - ok
20:21:57.0841 6044 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:21:57.0843 6044 SCPolicySvc - ok
20:21:57.0865 6044 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
20:21:57.0871 6044 SDRSVC - ok
20:21:57.0917 6044 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:21:57.0919 6044 secdrv - ok
20:21:57.0975 6044 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
20:21:57.0981 6044 seclogon - ok
20:21:57.0997 6044 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
20:21:58.0002 6044 SENS - ok
20:21:58.0058 6044 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
20:21:58.0060 6044 Serenum - ok
20:21:58.0085 6044 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:21:58.0086 6044 sermouse - ok
20:21:58.0126 6044 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
20:21:58.0140 6044 SessionEnv - ok
20:21:58.0170 6044 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
20:21:58.0172 6044 sffdisk - ok
20:21:58.0211 6044 sffp_mmc (e5eafe85815bd89095fef3144a09ab68) C:\Windows\system32\drivers\sffp_mmc.sys
20:21:58.0213 6044 sffp_mmc - ok
20:21:58.0246 6044 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\drivers\sffp_sd.sys
20:21:58.0248 6044 sffp_sd - ok
20:21:58.0282 6044 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:21:58.0284 6044 sfloppy - ok
20:21:58.0371 6044 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
20:21:58.0444 6044 SharedAccess - ok
20:21:58.0517 6044 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
20:21:58.0533 6044 ShellHWDetection - ok
20:21:58.0568 6044 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:21:58.0571 6044 sisagp - ok
20:21:58.0598 6044 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:21:58.0600 6044 SiSRaid2 - ok
20:21:58.0619 6044 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:21:58.0623 6044 SiSRaid4 - ok
20:21:58.0872 6044 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
20:21:58.0956 6044 slsvc - ok
20:21:59.0096 6044 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
20:21:59.0110 6044 SLUINotify - ok
20:21:59.0247 6044 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:21:59.0250 6044 Smb - ok
20:21:59.0306 6044 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
20:21:59.0311 6044 SNMPTRAP - ok
20:21:59.0370 6044 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:21:59.0372 6044 spldr - ok
20:21:59.0440 6044 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
20:21:59.0451 6044 Spooler - ok
20:21:59.0541 6044 sptd (a199171385be17973fd800fa91f8f78a) C:\Windows\system32\Drivers\sptd.sys
20:21:59.0541 6044 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
20:21:59.0543 6044 sptd ( LockedFile.Multi.Generic ) - warning
20:21:59.0543 6044 sptd - detected LockedFile.Multi.Generic (1)
20:21:59.0636 6044 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:21:59.0643 6044 srv - ok
20:21:59.0703 6044 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:21:59.0714 6044 srv2 - ok
20:21:59.0790 6044 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:21:59.0793 6044 srvnet - ok
20:21:59.0878 6044 ssadbus (64e44acd8c238fcbbb78f0ba4bdc4b05) C:\Windows\system32\DRIVERS\ssadbus.sys
20:21:59.0881 6044 ssadbus - ok
20:21:59.0958 6044 ssadmdfl (bb2c84a15c765da89fd832b0e73f26ce) C:\Windows\system32\DRIVERS\ssadmdfl.sys
20:21:59.0960 6044 ssadmdfl - ok
20:22:00.0028 6044 ssadmdm (6d0d132ddc6f43eda00dced6d8b1ca31) C:\Windows\system32\DRIVERS\ssadmdm.sys
20:22:00.0040 6044 ssadmdm - ok
20:22:00.0095 6044 ssadserd (1a5a397bc459f346ab56492b61ef79f6) C:\Windows\system32\DRIVERS\ssadserd.sys
20:22:00.0099 6044 ssadserd - ok
20:22:00.0157 6044 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
20:22:00.0209 6044 SSDPSRV - ok
20:22:00.0262 6044 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys
20:22:00.0264 6044 SSPORT - ok
20:22:00.0292 6044 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
20:22:00.0304 6044 SstpSvc - ok
20:22:00.0486 6044 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
20:22:00.0497 6044 StarWindServiceAE - ok
20:22:00.0605 6044 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:22:00.0640 6044 Stereo Service - ok
20:22:00.0714 6044 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
20:22:00.0730 6044 stisvc - ok
20:22:00.0831 6044 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:22:00.0833 6044 swenum - ok
20:22:00.0908 6044 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
20:22:00.0921 6044 swprv - ok
20:22:00.0946 6044 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:22:00.0948 6044 Symc8xx - ok
20:22:00.0970 6044 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:22:00.0972 6044 Sym_hi - ok
20:22:00.0993 6044 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:22:00.0996 6044 Sym_u3 - ok
20:22:01.0270 6044 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
20:22:01.0285 6044 SysMain - ok
20:22:01.0307 6044 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
20:22:01.0321 6044 TabletInputService - ok
20:22:01.0354 6044 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
20:22:01.0370 6044 TapiSrv - ok
20:22:01.0453 6044 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
20:22:01.0468 6044 TBS - ok
20:22:01.0566 6044 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
20:22:01.0578 6044 Tcpip - ok
20:22:01.0598 6044 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
20:22:01.0612 6044 Tcpip6 - ok
20:22:01.0673 6044 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
20:22:01.0675 6044 tcpipreg - ok
20:22:01.0728 6044 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:22:01.0729 6044 TDPIPE - ok
20:22:01.0743 6044 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:22:01.0745 6044 TDTCP - ok
20:22:01.0824 6044 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
20:22:01.0826 6044 tdx - ok
20:22:01.0841 6044 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:22:01.0844 6044 TermDD - ok
20:22:01.0886 6044 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
20:22:01.0902 6044 TermService - ok
20:22:01.0968 6044 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
20:22:01.0975 6044 Themes - ok
20:22:02.0038 6044 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:22:02.0042 6044 THREADORDER - ok
20:22:02.0064 6044 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
20:22:02.0079 6044 TrkWks - ok
20:22:02.0216 6044 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
20:22:02.0217 6044 TrustedInstaller - ok
20:22:02.0268 6044 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:22:02.0270 6044 tssecsrv - ok
20:22:02.0316 6044 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:22:02.0318 6044 tunmp - ok
20:22:02.0367 6044 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:22:02.0369 6044 tunnel - ok
20:22:02.0667 6044 TVersityMediaServer (12c9c0b2b6e9c7b2ae80eb7d2def2366) C:\ProgramData\TVersity\Media Server\MediaServer.exe
20:22:02.0701 6044 TVersityMediaServer - ok
20:22:02.0741 6044 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:22:02.0744 6044 uagp35 - ok
20:22:02.0793 6044 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:22:02.0801 6044 udfs - ok
20:22:02.0850 6044 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
20:22:02.0856 6044 UI0Detect - ok
20:22:02.0878 6044 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:22:02.0880 6044 uliagpkx - ok
20:22:02.0917 6044 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:22:02.0925 6044 uliahci - ok
20:22:02.0953 6044 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:22:02.0956 6044 UlSata - ok
20:22:03.0005 6044 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:22:03.0009 6044 ulsata2 - ok
20:22:03.0038 6044 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:22:03.0040 6044 umbus - ok
20:22:03.0071 6044 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
20:22:03.0086 6044 upnphost - ok
20:22:03.0167 6044 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
20:22:03.0170 6044 usbaudio - ok
20:22:03.0237 6044 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:22:03.0240 6044 usbccgp - ok
20:22:03.0267 6044 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:22:03.0270 6044 usbcir - ok
20:22:03.0293 6044 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:22:03.0295 6044 usbehci - ok
20:22:03.0313 6044 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:22:03.0317 6044 usbhub - ok
20:22:03.0373 6044 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
20:22:03.0375 6044 usbohci - ok
20:22:03.0429 6044 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:22:03.0431 6044 usbprint - ok
20:22:03.0488 6044 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:22:03.0491 6044 usbscan - ok
20:22:03.0516 6044 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:22:03.0518 6044 USBSTOR - ok
20:22:03.0574 6044 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:22:03.0576 6044 usbuhci - ok
20:22:03.0642 6044 usb_rndisx (35c9095fa7076466afbfc5b9ec4b779e) C:\Windows\system32\DRIVERS\usb8023x.sys
20:22:03.0644 6044 usb_rndisx - ok
20:22:03.0706 6044 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
20:22:03.0712 6044 UxSms - ok
20:22:03.0754 6044 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
20:22:03.0773 6044 vds - ok
20:22:03.0803 6044 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:22:03.0805 6044 vga - ok
20:22:03.0841 6044 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:22:03.0843 6044 VgaSave - ok
20:22:03.0866 6044 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:22:03.0869 6044 viaagp - ok
20:22:03.0890 6044 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:22:03.0892 6044 ViaC7 - ok
20:22:03.0916 6044 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:22:03.0918 6044 viaide - ok
20:22:03.0962 6044 vmci (15759158f7531853616b2b43af962fcb) C:\Windows\system32\DRIVERS\vmci.sys
20:22:03.0965 6044 vmci - ok
20:22:03.0988 6044 VMnetAdapter - ok
20:22:04.0029 6044 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:22:04.0032 6044 volmgr - ok
20:22:04.0062 6044 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:22:04.0076 6044 volmgrx - ok
20:22:04.0104 6044 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:22:04.0110 6044 volsnap - ok
20:22:04.0154 6044 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:22:04.0159 6044 vsmraid - ok
20:22:04.0301 6044 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
20:22:04.0320 6044 VSS - ok
20:22:04.0350 6044 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
20:22:04.0365 6044 W32Time - ok
20:22:04.0450 6044 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:22:04.0452 6044 WacomPen - ok
20:22:04.0495 6044 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:22:04.0497 6044 Wanarp - ok
20:22:04.0504 6044 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:22:04.0506 6044 Wanarpv6 - ok
20:22:04.0553 6044 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
20:22:04.0572 6044 wcncsvc - ok
20:22:04.0595 6044 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
20:22:04.0601 6044 WcsPlugInService - ok
20:22:04.0641 6044 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:22:04.0643 6044 Wd - ok
20:22:04.0716 6044 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:22:04.0734 6044 Wdf01000 - ok
20:22:04.0756 6044 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:22:04.0770 6044 WdiServiceHost - ok
20:22:04.0778 6044 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:22:04.0783 6044 WdiSystemHost - ok
20:22:04.0814 6044 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
20:22:04.0831 6044 WebClient - ok
20:22:04.0901 6044 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
20:22:04.0912 6044 Wecsvc - ok
20:22:04.0928 6044 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
20:22:04.0943 6044 wercplsupport - ok
20:22:04.0964 6044 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
20:22:04.0975 6044 WerSvc - ok
20:22:05.0023 6044 WinDefend - ok
20:22:05.0040 6044 WinHttpAutoProxySvc - ok
20:22:05.0140 6044 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
20:22:05.0143 6044 Winmgmt - ok
20:22:05.0306 6044 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
20:22:05.0342 6044 WinRM - ok
20:22:05.0436 6044 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
20:22:05.0499 6044 Wlansvc - ok
20:22:05.0791 6044 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:22:05.0831 6044 wlidsvc - ok
20:22:06.0050 6044 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
20:22:06.0052 6044 WmiAcpi - ok
20:22:06.0196 6044 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
20:22:06.0200 6044 wmiApSrv - ok
20:22:06.0461 6044 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:22:06.0482 6044 WMPNetworkSvc - ok
20:22:06.0549 6044 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
20:22:06.0560 6044 WPCSvc - ok
20:22:06.0621 6044 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
20:22:06.0635 6044 WPDBusEnum - ok
20:22:06.0918 6044 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:22:06.0938 6044 WPFFontCache_v0400 - ok
20:22:07.0038 6044 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:22:07.0040 6044 ws2ifsl - ok
20:22:07.0078 6044 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
20:22:07.0085 6044 wscsvc - ok
20:22:07.0092 6044 WSearch - ok
20:22:07.0316 6044 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
20:22:07.0345 6044 wuauserv - ok
20:22:07.0514 6044 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:22:07.0517 6044 WUDFRd - ok
20:22:07.0551 6044 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
20:22:07.0566 6044 wudfsvc - ok
20:22:07.0644 6044 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:22:07.0997 6044 \Device\Harddisk0\DR0 - ok
20:22:08.0004 6044 Boot (0x1200) (f72906b6f75089c7b38f61e9da8c24c1) \Device\Harddisk0\DR0\Partition0
20:22:08.0006 6044 \Device\Harddisk0\DR0\Partition0 - ok
20:22:08.0009 6044 ============================================================
20:22:08.0009 6044 Scan finished
20:22:08.0009 6044 ============================================================
20:22:08.0033 4476 Detected object count: 1
20:22:08.0034 4476 Actual detected object count: 1
20:25:59.0657 4476 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:25:59.0657 4476 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
20:26:08.0818 3788 ============================================================
20:26:08.0818 3788 Scan started
20:26:08.0818 3788 Mode: Manual; SigCheck; TDLFS;
20:26:08.0818 3788 ============================================================
20:26:09.0343 3788 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
20:26:09.0550 3788 !SASCORE - ok
20:26:09.0645 3788 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:26:09.0678 3788 ACPI - ok
20:26:09.0738 3788 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:26:09.0777 3788 adp94xx - ok
20:26:09.0816 3788 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:26:09.0847 3788 adpahci - ok
20:26:09.0872 3788 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:26:09.0898 3788 adpu160m - ok
20:26:09.0930 3788 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:26:09.0955 3788 adpu320 - ok
20:26:10.0003 3788 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
20:26:10.0063 3788 AeLookupSvc - ok
20:26:10.0145 3788 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:26:10.0221 3788 AFD - ok
20:26:10.0254 3788 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:26:10.0277 3788 agp440 - ok
20:26:10.0315 3788 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:26:10.0339 3788 aic78xx - ok
20:26:10.0371 3788 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
20:26:10.0443 3788 ALG - ok
20:26:10.0482 3788 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:26:10.0503 3788 aliide - ok
20:26:10.0524 3788 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:26:10.0547 3788 amdagp - ok
20:26:10.0571 3788 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:26:10.0593 3788 amdide - ok
20:26:10.0613 3788 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:26:10.0675 3788 AmdK7 - ok
20:26:10.0700 3788 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:26:10.0765 3788 AmdK8 - ok
20:26:10.0810 3788 androidusb (dd8d9c597af7cd2f6b70a3d6a4a1acea) C:\Windows\system32\Drivers\ssadadb.sys
20:26:10.0995 3788 androidusb - ok
20:26:11.0039 3788 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
20:26:11.0088 3788 Appinfo - ok
20:26:11.0222 3788 Application Updater (ba916091087e6be21d3c30eec71ed338) C:\Program Files\Application Updater\ApplicationUpdater.exe
20:26:11.0270 3788 Application Updater - ok
20:26:11.0306 3788 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:26:11.0331 3788 arc - ok
20:26:11.0381 3788 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:26:11.0405 3788 arcsas - ok
20:26:11.0425 3788 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:26:11.0470 3788 AsyncMac - ok
20:26:11.0492 3788 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:26:11.0515 3788 atapi - ok
20:26:11.0545 3788 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:26:11.0609 3788 AudioEndpointBuilder - ok
20:26:11.0619 3788 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:26:11.0661 3788 Audiosrv - ok
20:26:11.0692 3788 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:26:11.0765 3788 Beep - ok
20:26:11.0811 3788 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
20:26:11.0900 3788 BFE - ok
20:26:11.0980 3788 BITS (0d4a07e5ac9998e4b251d603c96d4f20) C:\Windows\system32\qmgr.dll
20:26:12.0084 3788 BITS - ok
20:26:12.0117 3788 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:26:12.0165 3788 blbdrive - ok
20:26:12.0221 3788 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:26:12.0266 3788 bowser - ok
20:26:12.0282 3788 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:26:12.0324 3788 BrFiltLo - ok
20:26:12.0352 3788 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:26:12.0403 3788 BrFiltUp - ok
20:26:12.0452 3788 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
20:26:12.0499 3788 Browser - ok
20:26:12.0534 3788 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:26:12.0636 3788 Brserid - ok
20:26:12.0669 3788 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:26:12.0774 3788 BrSerWdm - ok
20:26:12.0803 3788 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:26:12.0901 3788 BrUsbMdm - ok
20:26:12.0924 3788 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:26:13.0024 3788 BrUsbSer - ok
20:26:13.0060 3788 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
20:26:13.0168 3788 BTHMODEM - ok
20:26:13.0371 3788 catchme - ok
20:26:13.0408 3788 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:26:13.0476 3788 cdfs - ok
20:26:13.0536 3788 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:26:13.0591 3788 cdrom - ok
20:26:13.0635 3788 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:26:13.0696 3788 CertPropSvc - ok
20:26:13.0720 3788 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
20:26:13.0782 3788 circlass - ok
20:26:13.0827 3788 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:26:13.0857 3788 CLFS - ok
20:26:13.0984 3788 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:26:14.0005 3788 clr_optimization_v2.0.50727_32 - ok
20:26:14.0112 3788 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:26:14.0134 3788 clr_optimization_v4.0.30319_32 - ok
20:26:14.0170 3788 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:26:14.0193 3788 cmdide - ok
20:26:14.0244 3788 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
20:26:14.0267 3788 Compbatt - ok
20:26:14.0273 3788 COMSysApp - ok
20:26:14.0296 3788 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:26:14.0319 3788 crcdisk - ok
20:26:14.0382 3788 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:26:14.0427 3788 Crusoe - ok
20:26:14.0496 3788 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
20:26:14.0533 3788 CryptSvc - ok
20:26:14.0622 3788 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:26:14.0710 3788 DcomLaunch - ok
20:26:14.0782 3788 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:26:14.0819 3788 DfsC - ok
20:26:14.0999 3788 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
20:26:15.0150 3788 DFSR - ok
20:26:15.0370 3788 dgderdrv (6216fd7fd227de454238a702b218cec7) C:\Windows\system32\drivers\dgderdrv.sys
20:26:15.0414 3788 dgderdrv - ok
20:26:15.0458 3788 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\Windows\system32\Drivers\DgiVecp.sys
20:26:15.0484 3788 DgiVecp ( UnsignedFile.Multi.Generic ) - warning
20:26:15.0484 3788 DgiVecp - detected UnsignedFile.Multi.Generic (1)
20:26:15.0530 3788 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
20:26:15.0595 3788 Dhcp - ok
20:26:15.0643 3788 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:26:15.0667 3788 disk - ok
20:26:15.0731 3788 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
20:26:15.0799 3788 Dnscache - ok
20:26:15.0827 3788 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
20:26:15.0885 3788 dot3svc - ok
20:26:15.0920 3788 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
20:26:15.0990 3788 DPS - ok
20:26:16.0024 3788 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:26:16.0072 3788 drmkaud - ok
20:26:16.0156 3788 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
20:26:16.0182 3788 dtsoftbus01 - ok
20:26:16.0275 3788 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:26:16.0320 3788 DXGKrnl - ok
20:26:16.0372 3788 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:26:16.0439 3788 E1G60 - ok
20:26:16.0469 3788 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
20:26:16.0507 3788 EapHost - ok
20:26:16.0535 3788 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:26:16.0561 3788 Ecache - ok
20:26:16.0681 3788 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
20:26:16.0706 3788 ehRecvr - ok
20:26:16.0725 3788 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
20:26:16.0770 3788 ehSched - ok
20:26:16.0801 3788 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
20:26:16.0846 3788 ehstart - ok
20:26:16.0880 3788 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:26:16.0915 3788 elxstor - ok
20:26:16.0991 3788 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
20:26:17.0031 3788 EMDMgmt - ok
20:26:17.0061 3788 ErrDev (a81ab23eddb4693612014d87367d014c) C:\Windows\system32\drivers\errdev.sys
20:26:17.0095 3788 ErrDev - ok
20:26:17.0143 3788 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
20:26:17.0205 3788 EventSystem - ok
20:26:17.0240 3788 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:26:17.0280 3788 exfat - ok
20:26:17.0312 3788 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:26:17.0378 3788 fastfat - ok
20:26:17.0422 3788 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:26:17.0468 3788 fdc - ok
20:26:17.0480 3788 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
20:26:17.0527 3788 fdPHost - ok
20:26:17.0543 3788 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
20:26:17.0649 3788 FDResPub - ok
20:26:17.0680 3788 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:26:17.0703 3788 FileInfo - ok
20:26:17.0743 3788 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:26:17.0813 3788 Filetrace - ok
20:26:17.0821 3788 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:26:17.0875 3788 flpydisk - ok
20:26:17.0892 3788 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:26:17.0920 3788 FltMgr - ok
20:26:18.0015 3788 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
20:26:18.0126 3788 FontCache - ok
20:26:18.0268 3788 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:26:18.0288 3788 FontCache3.0.0.0 - ok
20:26:18.0326 3788 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
20:26:18.0390 3788 Fs_Rec - ok
20:26:18.0440 3788 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:26:18.0463 3788 gagp30kx - ok
20:26:18.0545 3788 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
20:26:18.0641 3788 gpsvc - ok
20:26:18.0693 3788 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
20:26:18.0740 3788 HdAudAddService - ok
20:26:18.0801 3788 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:26:18.0914 3788 HDAudBus - ok
20:26:18.0948 3788 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:26:19.0048 3788 HidBth - ok
20:26:19.0080 3788 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
20:26:19.0179 3788 HidIr - ok
20:26:19.0212 3788 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
20:26:19.0260 3788 hidserv - ok
20:26:19.0291 3788 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:26:19.0350 3788 HidUsb - ok
20:26:19.0478 3788 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
20:26:19.0527 3788 hkmsvc - ok
20:26:19.0563 3788 HpCISSs (7ebec5eb56b90ed65a8bbd91464e5cfb) C:\Windows\system32\drivers\hpcisss.sys
20:26:19.0587 3788 HpCISSs - ok
20:26:19.0658 3788 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:26:19.0773 3788 HTTP - ok
20:26:19.0832 3788 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:26:19.0854 3788 i2omp - ok
20:26:19.0897 3788 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:26:19.0942 3788 i8042prt - ok
20:26:19.0977 3788 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:26:20.0007 3788 iaStorV - ok
20:26:20.0205 3788 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:26:20.0285 3788 idsvc - ok
20:26:20.0320 3788 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:26:20.0342 3788 iirsp - ok
20:26:20.0416 3788 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
20:26:20.0464 3788 IKEEXT - ok
20:26:20.0723 3788 IntcAzAudAddService (39be782f9660545a491bf42320232aea) C:\Windows\system32\drivers\RTKVHDA.sys
20:26:20.0913 3788 IntcAzAudAddService - ok
20:26:21.0146 3788 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
20:26:21.0169 3788 intelide - ok
20:26:21.0199 3788 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:26:21.0259 3788 intelppm - ok
20:26:21.0300 3788 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
20:26:21.0369 3788 IPBusEnum - ok
20:26:21.0401 3788 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:26:21.0447 3788 IpFilterDriver - ok
20:26:21.0500 3788 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
20:26:21.0570 3788 iphlpsvc - ok
20:26:21.0576 3788 IpInIp - ok
20:26:21.0606 3788 IPMIDRV (4b9c0f4d4a3acc535f9771039ecd6365) C:\Windows\system32\drivers\ipmidrv.sys
20:26:21.0664 3788 IPMIDRV - ok
20:26:21.0698 3788 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:26:21.0746 3788 IPNAT - ok
20:26:21.0770 3788 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:26:21.0823 3788 IRENUM - ok
20:26:21.0851 3788 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:26:21.0875 3788 isapnp - ok
20:26:21.0915 3788 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:26:21.0943 3788 iScsiPrt - ok
20:26:21.0980 3788 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:26:22.0001 3788 iteatapi - ok
20:26:22.0021 3788 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:26:22.0042 3788 iteraid - ok
20:26:22.0074 3788 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:26:22.0098 3788 kbdclass - ok
20:26:22.0107 3788 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
20:26:22.0141 3788 kbdhid - ok
20:26:22.0174 3788 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:26:22.0237 3788 KeyIso - ok
20:26:22.0285 3788 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
20:26:22.0322 3788 KSecDD - ok
20:26:22.0393 3788 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
20:26:22.0520 3788 KtmRm - ok
20:26:22.0568 3788 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
20:26:22.0595 3788 LanmanServer - ok
20:26:22.0644 3788 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
20:26:22.0698 3788 LanmanWorkstation - ok
20:26:22.0732 3788 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:26:22.0777 3788 lltdio - ok
20:26:22.0838 3788 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
20:26:22.0912 3788 lltdsvc - ok
20:26:22.0944 3788 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
20:26:23.0029 3788 lmhosts - ok
20:26:23.0063 3788 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:26:23.0088 3788 LSI_FC - ok
20:26:23.0112 3788 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:26:23.0137 3788 LSI_SAS - ok
20:26:23.0159 3788 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:26:23.0184 3788 LSI_SCSI - ok
20:26:23.0212 3788 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:26:23.0260 3788 luafv - ok
20:26:23.0284 3788 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
20:26:23.0329 3788 Mcx2Svc - ok
20:26:23.0719 3788 MediaMall Server (7a6c9bb994de98a75c172819dfaedd59) C:\Program Files\MediaMall\MediaMallServer.exe
20:26:23.0975 3788 MediaMall Server - ok
20:26:24.0202 3788 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:26:24.0226 3788 megasas - ok
20:26:24.0282 3788 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:26:24.0318 3788 MegaSR - ok
20:26:24.0325 3788 MEMSWEEP2 - ok
20:26:24.0528 3788 MFE_RR - ok
20:26:24.0606 3788 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:26:24.0676 3788 MMCSS - ok
20:26:24.0705 3788 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:26:24.0769 3788 Modem - ok
20:26:24.0799 3788 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:26:24.0872 3788 monitor - ok
20:26:24.0998 3788 MotoConnect Service (cbd0921e91f5d0806b21d529395fe8b9) C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
20:26:25.0018 3788 MotoConnect Service - ok
20:26:25.0043 3788 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:26:25.0066 3788 mouclass - ok
20:26:25.0083 3788 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:26:25.0128 3788 mouhid - ok
20:26:25.0143 3788 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:26:25.0168 3788 MountMgr - ok
20:26:25.0221 3788 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
20:26:25.0256 3788 MpFilter - ok
20:26:25.0288 3788 mpio (5da347912fd3af24d7bfb3de519d4bd0) C:\Windows\system32\drivers\mpio.sys
20:26:25.0314 3788 mpio - ok
20:26:25.0336 3788 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:26:25.0396 3788 mpsdrv - ok
20:26:25.0462 3788 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
20:26:25.0561 3788 MpsSvc - ok
20:26:25.0583 3788 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:26:25.0604 3788 Mraid35x - ok
20:26:25.0630 3788 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:26:25.0656 3788 MRxDAV - ok
20:26:25.0706 3788 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:26:25.0778 3788 mrxsmb - ok
20:26:25.0873 3788 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:26:25.0921 3788 mrxsmb10 - ok
20:26:25.0932 3788 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:26:25.0955 3788 mrxsmb20 - ok
20:26:25.0991 3788 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
20:26:26.0014 3788 msahci - ok
20:26:26.0054 3788 msdsm (2c563aef15b8d0014c36c5f27742ac7b) C:\Windows\system32\drivers\msdsm.sys
20:26:26.0079 3788 msdsm - ok
20:26:26.0108 3788 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
20:26:26.0176 3788 MSDTC - ok
20:26:26.0229 3788 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:26:26.0302 3788 Msfs - ok
20:26:26.0333 3788 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:26:26.0356 3788 msisadrv - ok
20:26:26.0412 3788 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
20:26:26.0470 3788 MSiSCSI - ok
20:26:26.0476 3788 msiserver - ok
20:26:26.0497 3788 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:26:26.0556 3788 MSKSSRV - ok
20:26:26.0669 3788 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
20:26:26.0692 3788 MsMpSvc - ok
20:26:26.0713 3788 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:26:26.0777 3788 MSPCLOCK - ok
20:26:26.0797 3788 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:26:26.0843 3788 MSPQM - ok
20:26:26.0885 3788 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:26:26.0912 3788 MsRPC - ok
20:26:26.0936 3788 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:26:26.0959 3788 mssmbios - ok
20:26:26.0987 3788 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:26:27.0034 3788 MSTEE - ok
20:26:27.0075 3788 msvad_simple (00c7b2306f1ca5389a1ac6d1df9c2e25) C:\Windows\system32\drivers\povrtdev.sys
20:26:27.0092 3788 msvad_simple - ok
20:26:27.0132 3788 MTsensor (dcdaab8697a47894a554050ce18d0b56) C:\Windows\system32\DRIVERS\ASACPI.sys
20:26:27.0164 3788 MTsensor - ok
20:26:27.0190 3788 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:26:27.0214 3788 Mup - ok
20:26:27.0289 3788 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
20:26:27.0339 3788 napagent - ok
20:26:27.0368 3788 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:26:27.0411 3788 NativeWifiP - ok
20:26:27.0472 3788 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:26:27.0548 3788 NDIS - ok
20:26:27.0589 3788 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:26:27.0647 3788 NdisTapi - ok
20:26:27.0676 3788 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:26:27.0723 3788 Ndisuio - ok
20:26:27.0748 3788 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:26:27.0794 3788 NdisWan - ok
20:26:27.0806 3788 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:26:27.0842 3788 NDProxy - ok
20:26:27.0923 3788 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:26:27.0969 3788 NetBIOS - ok
20:26:27.0995 3788 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:26:28.0053 3788 netbt - ok
20:26:28.0099 3788 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:26:28.0122 3788 Netlogon - ok
20:26:28.0190 3788 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
20:26:28.0253 3788 Netman - ok
20:26:28.0279 3788 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
20:26:28.0343 3788 netprofm - ok
20:26:28.0498 3788 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:26:28.0521 3788 NetTcpPortSharing - ok
20:26:28.0566 3788 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:26:28.0587 3788 nfrd960 - ok
20:26:28.0629 3788 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
20:26:28.0651 3788 NisDrv - ok
20:26:28.0781 3788 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
20:26:28.0814 3788 NisSrv - ok
20:26:28.0851 3788 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
20:26:28.0930 3788 NlaSvc - ok
20:26:29.0000 3788 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:26:29.0058 3788 Npfs - ok
20:26:29.0097 3788 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
20:26:29.0145 3788 nsi - ok
20:26:29.0152 3788 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:26:29.0222 3788 nsiproxy - ok
20:26:29.0315 3788 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:26:29.0433 3788 Ntfs - ok
20:26:29.0468 3788 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:26:29.0557 3788 ntrigdigi - ok
20:26:29.0608 3788 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:26:29.0655 3788 Null - ok
20:26:29.0846 3788 NVENETFD (1657f3fbd9061526c14ff37e79306f98) C:\Windows\system32\DRIVERS\nvm60x32.sys
20:26:29.0983 3788 NVENETFD - ok
20:26:30.0669 3788 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:26:32.0055 3788 nvlddmkm - ok
20:26:32.0274 3788 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:26:32.0299 3788 nvraid - ok
20:26:32.0332 3788 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:26:32.0356 3788 nvstor - ok
20:26:32.0478 3788 NVSvc (d122f7c5f79c68868f5dc28cefeb2ecf) C:\Windows\system32\nvvsvc.exe
20:26:32.0590 3788 NVSvc - ok
20:26:32.0865 3788 nvUpdatusService (003cb0a155568b4a53a301f07c734233) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
20:26:33.0065 3788 nvUpdatusService - ok
20:26:33.0286 3788 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:26:33.0311 3788 nv_agp - ok
20:26:33.0318 3788 NwlnkFlt - ok
20:26:33.0329 3788 NwlnkFwd - ok
20:26:33.0350 3788 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
20:26:33.0437 3788 ohci1394 - ok
20:26:33.0519 3788 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:26:33.0615 3788 p2pimsvc - ok
20:26:33.0629 3788 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:26:33.0670 3788 p2psvc - ok
20:26:33.0718 3788 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
20:26:33.0766 3788 Parport - ok
20:26:33.0808 3788 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
20:26:33.0831 3788 partmgr - ok
20:26:33.0860 3788 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
20:26:33.0923 3788 Parvdm - ok
20:26:33.0959 3788 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
20:26:33.0985 3788 PcaSvc - ok
20:26:34.0009 3788 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:26:34.0036 3788 pci - ok
20:26:34.0049 3788 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
20:26:34.0072 3788 pciide - ok
20:26:34.0109 3788 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:26:34.0133 3788 pcmcia - ok
20:26:34.0208 3788 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:26:34.0396 3788 PEAUTH - ok
20:26:34.0540 3788 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
20:26:34.0718 3788 pla - ok
20:26:34.0963 3788 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
20:26:35.0035 3788 PlugPlay - ok
20:26:35.0102 3788 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:26:35.0144 3788 PNRPAutoReg - ok
20:26:35.0158 3788 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:26:35.0218 3788 PNRPsvc - ok
20:26:35.0307 3788 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
20:26:35.0394 3788 PolicyAgent - ok
20:26:35.0497 3788 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:26:35.0545 3788 PptpMiniport - ok
20:26:35.0606 3788 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
20:26:35.0653 3788 Processor - ok
20:26:35.0676 3788 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
20:26:35.0744 3788 ProfSvc - ok
20:26:35.0782 3788 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:26:35.0805 3788 ProtectedStorage - ok
20:26:35.0977 3788 PS3 Media Server (eb21a4f28e4135498b3ce981883a0a44) C:\Program Files\PS3 Media Server\win32\service\wrapper.exe
20:26:35.0993 3788 PS3 Media Server ( UnsignedFile.Multi.Generic ) - warning
20:26:35.0994 3788 PS3 Media Server - detected UnsignedFile.Multi.Generic (1)
20:26:36.0046 3788 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:26:36.0106 3788 PSched - ok
20:26:36.0199 3788 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:26:36.0310 3788 ql2300 - ok
20:26:36.0350 3788 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:26:36.0373 3788 ql40xx - ok
20:26:36.0444 3788 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
20:26:36.0503 3788 QWAVE - ok
20:26:36.0534 3788 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:26:36.0583 3788 QWAVEdrv - ok
20:26:36.0611 3788 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:26:36.0682 3788 RasAcd - ok
20:26:36.0720 3788 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
20:26:36.0778 3788 RasAuto - ok
20:26:36.0793 3788 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:26:36.0863 3788 Rasl2tp - ok
20:26:36.0910 3788 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
20:26:36.0982 3788 RasMan - ok
20:26:37.0030 3788 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:26:37.0087 3788 RasPppoe - ok
20:26:37.0098 3788 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:26:37.0121 3788 RasSstp - ok
20:26:37.0210 3788 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:26:37.0272 3788 rdbss - ok
20:26:37.0299 3788 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:26:37.0369 3788 RDPCDD - ok
20:26:37.0424 3788 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\drivers\rdpdr.sys
20:26:37.0477 3788 rdpdr - ok
20:26:37.0484 3788 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:26:37.0531 3788 RDPENCDD - ok
20:26:37.0593 3788 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
20:26:37.0641 3788 RDPWD - ok
20:26:37.0690 3788 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
20:26:37.0741 3788 RemoteAccess - ok
20:26:37.0798 3788 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
20:26:37.0862 3788 RemoteRegistry - ok
20:26:37.0912 3788 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\Windows\system32\Drivers\RimUsb.sys
20:26:37.0951 3788 RimUsb - ok
20:26:38.0015 3788 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\Windows\system32\DRIVERS\RimSerial.sys
20:26:38.0069 3788 RimVSerPort - ok
20:26:38.0145 3788 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
20:26:38.0212 3788 ROOTMODEM - ok
20:26:38.0250 3788 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
20:26:38.0272 3788 RpcLocator - ok
20:26:38.0320 3788 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:26:38.0380 3788 RpcSs - ok
20:26:38.0416 3788 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:26:38.0479 3788 rspndr - ok
20:26:38.0523 3788 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:26:38.0546 3788 SamSs - ok
20:26:38.0676 3788 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
20:26:38.0694 3788 SASDIFSV - ok
20:26:38.0737 3788 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
20:26:38.0757 3788 SASKUTIL - ok
20:26:38.0800 3788 SAVRKBootTasks (e5c587c0668f83e799d1c43bc53e5e37) C:\Windows\system32\SAVRKBootTasks.sys
20:26:38.0833 3788 SAVRKBootTasks ( UnsignedFile.Multi.Generic ) - warning
20:26:38.0833 3788 SAVRKBootTasks - detected UnsignedFile.Multi.Generic (1)
20:26:38.0865 3788 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:26:38.0887 3788 sbp2port - ok
20:26:38.0915 3788 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
20:26:38.0987 3788 SCardSvr - ok
20:26:39.0060 3788 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
20:26:39.0111 3788 Schedule - ok
20:26:39.0167 3788 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:26:39.0203 3788 SCPolicySvc - ok
20:26:39.0241 3788 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
20:26:39.0297 3788 SDRSVC - ok
20:26:39.0335 3788 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:26:39.0432 3788 secdrv - ok
20:26:39.0460 3788 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
20:26:39.0510 3788 seclogon - ok
20:26:39.0523 3788 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
20:26:39.0601 3788 SENS - ok
20:26:39.0643 3788 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
20:26:39.0718 3788 Serenum - ok
20:26:39.0744 3788 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:26:39.0789 3788 sermouse - ok
20:26:39.0835 3788 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
20:26:39.0895 3788 SessionEnv - ok
20:26:39.0970 3788 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
20:26:40.0035 3788 sffdisk - ok
20:26:40.0062 3788 sffp_mmc (e5eafe85815bd89095fef3144a09ab68) C:\Windows\system32\drivers\sffp_mmc.sys
20:26:40.0097 3788 sffp_mmc - ok
20:26:40.0130 3788 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\drivers\sffp_sd.sys
20:26:40.0183 3788 sffp_sd - ok
20:26:40.0208 3788 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:26:40.0291 3788 sfloppy - ok
20:26:40.0363 3788 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
20:26:40.0452 3788 SharedAccess - ok
20:26:40.0502 3788 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
20:26:40.0539 3788 ShellHWDetection - ok
20:26:40.0569 3788 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:26:40.0593 3788 sisagp - ok
20:26:40.0624 3788 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:26:40.0648 3788 SiSRaid2 - ok
20:26:40.0662 3788 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:26:40.0686 3788 SiSRaid4 - ok
20:26:40.0940 3788 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
20:26:41.0208 3788 slsvc - ok
20:26:41.0339 3788 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
20:26:41.0388 3788 SLUINotify - ok
20:26:41.0524 3788 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:26:41.0582 3788 Smb - ok
20:26:41.0624 3788 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
20:26:41.0670 3788 SNMPTRAP - ok
20:26:41.0713 3788 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:26:41.0735 3788 spldr - ok
20:26:41.0799 3788 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
20:26:41.0831 3788 Spooler - ok
20:26:41.0883 3788 sptd (a199171385be17973fd800fa91f8f78a) C:\Windows\system32\Drivers\sptd.sys
20:26:41.0884 3788 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
20:26:41.0885 3788 sptd ( LockedFile.Multi.Generic ) - warning
20:26:41.0885 3788 sptd - detected LockedFile.Multi.Generic (1)
20:26:41.0962 3788 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:26:42.0037 3788 srv - ok
20:26:42.0096 3788 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:26:42.0165 3788 srv2 - ok
20:26:42.0216 3788 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:26:42.0264 3788 srvnet - ok
20:26:42.0320 3788 ssadbus (64e44acd8c238fcbbb78f0ba4bdc4b05) C:\Windows\system32\DRIVERS\ssadbus.sys
20:26:42.0365 3788 ssadbus - ok
20:26:42.0417 3788 ssadmdfl (bb2c84a15c765da89fd832b0e73f26ce) C:\Windows\system32\DRIVERS\ssadmdfl.sys
20:26:42.0440 3788 ssadmdfl - ok
20:26:42.0504 3788 ssadmdm (6d0d132ddc6f43eda00dced6d8b1ca31) C:\Windows\system32\DRIVERS\ssadmdm.sys
20:26:42.0546 3788 ssadmdm - ok
20:26:42.0580 3788 ssadserd (1a5a397bc459f346ab56492b61ef79f6) C:\Windows\system32\DRIVERS\ssadserd.sys
20:26:42.0606 3788 ssadserd - ok
20:26:42.0666 3788 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
20:26:42.0723 3788 SSDPSRV - ok
20:26:42.0772 3788 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys
20:26:42.0803 3788 SSPORT ( UnsignedFile.Multi.Generic ) - warning
20:26:42.0803 3788 SSPORT - detected UnsignedFile.Multi.Generic (1)
20:26:42.0843 3788 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
20:26:42.0876 3788 SstpSvc - ok
20:26:43.0046 3788 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
20:26:43.0106 3788 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
20:26:43.0106 3788 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
20:26:43.0197 3788 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:26:43.0235 3788 Stereo Service - ok
20:26:43.0306 3788 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
20:26:43.0352 3788 stisvc - ok
20:26:43.0449 3788 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:26:43.0471 3788 swenum - ok
20:26:43.0559 3788 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
20:26:43.0609 3788 swprv - ok
20:26:43.0630 3788 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:26:43.0652 3788 Symc8xx - ok
20:26:43.0671 3788 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:26:43.0693 3788 Sym_hi - ok
20:26:43.0711 3788 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:26:43.0732 3788 Sym_u3 - ok
20:26:43.0784 3788 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
20:26:43.0899 3788 SysMain - ok
20:26:43.0932 3788 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
20:26:43.0969 3788 TabletInputService - ok
20:26:44.0005 3788 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
20:26:44.0056 3788 TapiSrv - ok
20:26:44.0079 3788 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
20:26:44.0130 3788 TBS - ok
20:26:44.0237 3788 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
20:26:44.0348 3788 Tcpip - ok
20:26:44.0371 3788 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
20:26:44.0439 3788 Tcpip6 - ok
20:26:44.0499 3788 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
20:26:44.0569 3788 tcpipreg - ok
20:26:44.0620 3788 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:26:44.0684 3788 TDPIPE - ok
20:26:44.0711 3788 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:26:44.0777 3788 TDTCP - ok
20:26:44.0850 3788 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
20:26:44.0905 3788 tdx - ok
20:26:44.0934 3788 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:26:44.0958 3788 TermDD - ok
20:26:45.0058 3788 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
20:26:45.0149 3788 TermService - ok
20:26:45.0218 3788 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
20:26:45.0247 3788 Themes - ok
20:26:45.0305 3788 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:26:45.0353 3788 THREADORDER - ok
20:26:45.0374 3788 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
20:26:45.0434 3788 TrkWks - ok
20:26:45.0539 3788 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
20:26:45.0596 3788 TrustedInstaller - ok
20:26:45.0644 3788 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:26:45.0716 3788 tssecsrv - ok
20:26:45.0743 3788 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:26:45.0763 3788 tunmp - ok
20:26:45.0809 3788 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:26:45.0853 3788 tunnel - ok
20:26:46.0076 3788 TVersityMediaServer (12c9c0b2b6e9c7b2ae80eb7d2def2366) C:\ProgramData\TVersity\Media Server\MediaServer.exe
20:26:46.0185 3788 TVersityMediaServer - ok
20:26:46.0217 3788 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:26:46.0242 3788 uagp35 - ok
20:26:46.0286 3788 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:26:46.0325 3788 udfs - ok
20:26:46.0376 3788 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
20:26:46.0427 3788 UI0Detect - ok
20:26:46.0453 3788 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:26:46.0477 3788 uliagpkx - ok
20:26:46.0510 3788 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:26:46.0543 3788 uliahci - ok
20:26:46.0570 3788 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:26:46.0593 3788 UlSata - ok
20:26:46.0618 3788 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:26:46.0641 3788 ulsata2 - ok
20:26:46.0663 3788 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:26:46.0711 3788 umbus - ok
20:26:46.0738 3788 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
20:26:46.0801 3788 upnphost - ok
20:26:46.0866 3788 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
20:26:46.0902 3788 usbaudio - ok
20:26:46.0946 3788 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:26:46.0984 3788 usbccgp - ok
20:26:47.0010 3788 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:26:47.0094 3788 usbcir - ok
20:26:47.0119 3788 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:26:47.0176 3788 usbehci - ok
20:26:47.0193 3788 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:26:47.0240 3788 usbhub - ok
20:26:47.0283 3788 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
20:26:47.0318 3788 usbohci - ok
20:26:47.0372 3788 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:26:47.0438 3788 usbprint - ok
20:26:47.0481 3788 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:26:47.0516 3788 usbscan - ok
20:26:47.0541 3788 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:26:47.0576 3788 USBSTOR - ok
20:26:47.0616 3788 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:26:47.0652 3788 usbuhci - ok
20:26:47.0702 3788 usb_rndisx (35c9095fa7076466afbfc5b9ec4b779e) C:\Windows\system32\DRIVERS\usb8023x.sys
20:26:47.0756 3788 usb_rndisx - ok
20:26:47.0807 3788 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
20:26:47.0872 3788 UxSms - ok
20:26:47.0921 3788 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
20:26:47.0970 3788 vds - ok
20:26:47.0995 3788 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:26:48.0058 3788 vga - ok
20:26:48.0091 3788 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:26:48.0160 3788 VgaSave - ok
20:26:48.0192 3788 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:26:48.0216 3788 viaagp - ok
20:26:48.0233 3788 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:26:48.0280 3788 ViaC7 - ok
20:26:48.0300 3788 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:26:48.0324 3788 viaide - ok
20:26:48.0371 3788 vmci (15759158f7531853616b2b43af962fcb) C:\Windows\system32\DRIVERS\vmci.sys
20:26:48.0392 3788 vmci - ok
20:26:48.0401 3788 VMnetAdapter - ok
20:26:48.0438 3788 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:26:48.0462 3788 volmgr - ok
20:26:48.0488 3788 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:26:48.0520 3788 volmgrx - ok
20:26:48.0547 3788 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:26:48.0577 3788 volsnap - ok
20:26:48.0622 3788 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:26:48.0648 3788 vsmraid - ok
20:26:48.0761 3788 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
20:26:48.0890 3788 VSS - ok
20:26:48.0959 3788 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
20:26:49.0038 3788 W32Time - ok
20:26:49.0117 3788 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:26:49.0200 3788 WacomPen - ok
20:26:49.0238 3788 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:26:49.0273 3788 Wanarp - ok
20:26:49.0280 3788 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:26:49.0315 3788 Wanarpv6 - ok
20:26:49.0363 3788 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
20:26:49.0516 3788 wcncsvc - ok
20:26:49.0546 3788 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
20:26:49.0608 3788 WcsPlugInService - ok
20:26:49.0634 3788 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:26:49.0656 3788 Wd - ok
20:26:49.0726 3788 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:26:49.0763 3788 Wdf01000 - ok
20:26:49.0798 3788 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:26:49.0879 3788 WdiServiceHost - ok
20:26:49.0886 3788 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:26:49.0937 3788 WdiSystemHost - ok
20:26:49.0982 3788 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
20:26:50.0024 3788 WebClient - ok
20:26:50.0215 3788 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
20:26:50.0246 3788 Wecsvc - ok
20:26:50.0262 3788 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
20:26:50.0335 3788 wercplsupport - ok
20:26:50.0373 3788 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
20:26:50.0439 3788 WerSvc - ok
20:26:50.0474 3788 WinDefend - ok
20:26:50.0489 3788 WinHttpAutoProxySvc - ok
20:26:50.0591 3788 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
20:26:50.0636 3788 Winmgmt - ok
20:26:50.0764 3788 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
20:26:50.0932 3788 WinRM - ok
20:26:51.0060 3788 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
20:26:51.0153 3788 Wlansvc - ok
20:26:51.0440 3788 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:26:51.0567 3788 wlidsvc - ok
20:26:51.0801 3788 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
20:26:51.0856 3788 WmiAcpi - ok
20:26:51.0966 3788 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
20:26:52.0012 3788 wmiApSrv - ok
20:26:52.0204 3788 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:26:52.0321 3788 WMPNetworkSvc - ok
20:26:52.0375 3788 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
20:26:52.0407 3788 WPCSvc - ok
20:26:52.0464 3788 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
20:26:52.0522 3788 WPDBusEnum - ok
20:26:52.0761 3788 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:26:52.0816 3788 WPFFontCache_v0400 - ok
20:26:52.0914 3788 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:26:52.0960 3788 ws2ifsl - ok
20:26:52.0996 3788 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
20:26:53.0032 3788 wscsvc - ok
20:26:53.0039 3788 WSearch - ok
20:26:53.0224 3788 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
20:26:53.0374 3788 wuauserv - ok
20:26:53.0523 3788 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:26:53.0570 3788 WUDFRd - ok
20:26:53.0602 3788 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
20:26:53.0662 3788 wudfsvc - ok
20:26:53.0695 3788 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:26:54.0070 3788 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:26:54.0070 3788 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:26:54.0078 3788 Boot (0x1200) (f72906b6f75089c7b38f61e9da8c24c1) \Device\Harddisk0\DR0\Partition0
20:26:54.0080 3788 \Device\Harddisk0\DR0\Partition0 - ok
20:26:54.0083 3788 ============================================================
20:26:54.0083 3788 Scan finished
20:26:54.0083 3788 ============================================================
20:26:54.0104 4776 Detected object count: 7
20:26:54.0104 4776 Actual detected object count: 7
20:29:28.0779 4776 DgiVecp ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:28.0779 4776 DgiVecp ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:28.0784 4776 PS3 Media Server ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:28.0784 4776 PS3 Media Server ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:28.0788 4776 SAVRKBootTasks ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:28.0788 4776 SAVRKBootTasks ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:28.0792 4776 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:29:28.0792 4776 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
20:29:28.0796 4776 SSPORT ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:28.0796 4776 SSPORT ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:28.0800 4776 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
20:29:28.0800 4776 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:29:28.0804 4776 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:29:28.0804 4776 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:29:32.0149 5712 Deinitialize success


For the FSS:

Farbar Service Scanner Version: 09-06-2012
Ran by Taylor EBjarrvi (administrator) on 09-06-2012 at 20:07:26
Running from "C:\Users\Taylor EBjarrvi\Desktop"
Microsoft® Windows Vista™ Alienware Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-05-10 12:14] - [2012-03-30 05:39] - 0914304 ____A (Microsoft Corporation) EE7E10BED85C312C1D5D30C435BDDA9F

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2010-04-20 11:34] - [2010-04-20 11:34] - 0584704 ____A (Microsoft Corporation) 0D4A07E5AC9998E4B251D603C96D4F20

C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit

ATTENTION!=====> C:\Program Files\Windows Defender\MpSvc.dll FILE IS MISSING AND SHOULD BE RESTORED.

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

Minibox:

MiniToolBox by Farbar Version: 09-06-2012
Ran by Taylor EBjarrvi (administrator) on 09-06-2012 at 20:09:21
Microsoft® Windows Vista™ Alienware Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.254 metric=1
add address name="Local Area Connection" address=192.168.1.150


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : puckmansnoo-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-1D-60-E9-CE-6D
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::8981:ef48:b5f3:190c%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.150(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 234888544
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-FB-9B-22-00-1D-60-E9-CE-6D
DNS Servers . . . . . . . . . . . : 192.168.1.254
75.153.176.9
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{414C8E15-93E1-4C82-8A0E-9D51959A0C0E}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:30f0:29ab:3f57:fe69(Preferred)
Link-local IPv6 Address . . . . . : fe80::30f0:29ab:3f57:fe69%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:400a:801::1009
173.194.33.37
173.194.33.36
173.194.33.46
173.194.33.39
173.194.33.40
173.194.33.33
173.194.33.41
173.194.33.38
173.194.33.35
173.194.33.34
173.194.33.32



Pinging google.com [173.194.33.32] with 32 bytes of data:

Reply from 173.194.33.32: bytes=32 time=11ms TTL=58

Reply from 173.194.33.32: bytes=32 time=11ms TTL=58



Ping statistics for 173.194.33.32:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 11ms, Maximum = 11ms, Average = 11ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140
209.191.122.70
98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=64ms TTL=54

Reply from 209.191.122.70: bytes=32 time=64ms TTL=54



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 64ms, Maximum = 64ms, Average = 64ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
10 ...00 1d 60 e9 ce 6d ...... NVIDIA nForce Networking Controller
1 ........................... Software Loopback Interface 1
12 ...00 00 00 00 00 00 00 e0 isatap.{414C8E15-93E1-4C82-8A0E-9D51959A0C0E}
14 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.150 21
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.150 276
192.168.1.150 255.255.255.255 On-link 192.168.1.150 276
192.168.1.255 255.255.255.255 On-link 192.168.1.150 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.150 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.150 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.254 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 18 ::/0 On-link
1 306 ::1/128 On-link
14 18 2001::/32 On-link
14 266 2001:0:5ef5:79fb:30f0:29ab:3f57:fe69/128
On-link
10 276 fe80::/64 On-link
14 266 fe80::/64 On-link
14 266 fe80::30f0:29ab:3f57:fe69/128
On-link
10 276 fe80::8981:ef48:b5f3:190c/128
On-link
1 306 ff00::/8 On-link
14 266 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/09/2012 00:27:34 PM) (Source: Application Error) (User: )
Description: Faulting application MotoConnect.exe, version 1.1.31.0, time stamp 0x4c3a85d6, faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception code 0xe06d7363, fault offset 0x0003fc56,
process id 0xd5c, application start time 0xMotoConnect.exe0.

Error: (06/08/2012 07:58:34 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/08/2012 01:41:43 PM) (Source: Application Error) (User: )
Description: Faulting application MotoConnect.exe, version 1.1.31.0, time stamp 0x4c3a85d6, faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception code 0xe06d7363, fault offset 0x0003fc56,
process id 0x16d8, application start time 0xMotoConnect.exe0.

Error: (06/08/2012 02:42:33 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/08/2012 02:17:09 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2012 10:49:13 PM) (Source: Application Error) (User: )
Description: Faulting application MotoConnect.exe, version 1.1.31.0, time stamp 0x4c3a85d6, faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception code 0xe06d7363, fault offset 0x0003fc56,
process id 0x834, application start time 0xMotoConnect.exe0.

Error: (06/07/2012 08:59:43 PM) (Source: Application Error) (User: )
Description: Faulting application MotoConnect.exe, version 1.1.31.0, time stamp 0x4c3a85d6, faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47967, exception code 0xe06d7363, fault offset 0x0003fc56,
process id 0xac4, application start time 0xMotoConnect.exe0.

Error: (06/07/2012 02:49:13 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (06/07/2012 02:49:13 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/07/2012 02:49:12 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\system32\bitsperf.dll4


System errors:
=============
Error: (06/09/2012 07:51:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: 0x80070643Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.127.1692.0){88B7E731-92CE-410D-8569-40B80F4011C9}100

Error: (06/09/2012 07:50:42 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.127.1692.0

Update Source: %NT AUTHORITY51

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:42 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.127.1692.0

Update Source: %NT AUTHORITY51

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:42 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.127.1692.0

Update Source: %NT AUTHORITY51

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:42 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.127.1692.0

Update Source: %NT AUTHORITY51

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:41 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update the engine.

New Engine Version:

Previous Engine Version:

Engine Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Error Code: %NT AUTHORITY601

Error description: %NT AUTHORITY602

Error: (06/09/2012 07:50:41 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version:

Update Source: %NT AUTHORITY15

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\NETWORK SERVICE

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:14 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version: 1.127.1692.0

Update Source: %NT AUTHORITY59

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608

Error: (06/09/2012 07:50:13 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update the engine.

New Engine Version:

Previous Engine Version:

Engine Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Error Code: %NT AUTHORITY601

Error description: %NT AUTHORITY602

Error: (06/09/2012 07:50:13 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

New Signature Version:

Previous Signature Version:

Update Source: %NT AUTHORITY15

Update Stage: 4.0.1526.00

Source Path: 4.0.1526.01

Signature Type: %NT AUTHORITY602

Update Type: %NT AUTHORITY604

User: NT AUTHORITY\SYSTEM

Current Engine Version: %NT AUTHORITY605

Previous Engine Version: %NT AUTHORITY606

Error code: %NT AUTHORITY607

Error description: %NT AUTHORITY608


Microsoft Office Sessions:
=========================
Error: (06/09/2012 00:27:34 PM) (Source: Application Error)(User: )
Description: MotoConnect.exe1.1.31.04c3a85d6kernel32.dll6.0.6002.184494da47967e06d73630003fc56d5c01cd4675eb75dbe7

Error: (06/08/2012 07:58:34 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/08/2012 01:41:43 PM) (Source: Application Error)(User: )
Description: MotoConnect.exe1.1.31.04c3a85d6kernel32.dll6.0.6002.184494da47967e06d73630003fc5616d801cd45b71bee42d5

Error: (06/08/2012 02:42:33 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/08/2012 02:17:09 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2012 10:49:13 PM) (Source: Application Error)(User: )
Description: MotoConnect.exe1.1.31.04c3a85d6kernel32.dll6.0.6002.184494da47967e06d73630003fc5683401cd453a6e6316c5

Error: (06/07/2012 08:59:43 PM) (Source: Application Error)(User: )
Description: MotoConnect.exe1.1.31.04c3a85d6kernel32.dll6.0.6002.184494da47967e06d73630003fc56ac401cd452b21e78f16

Error: (06/07/2012 02:49:13 PM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (06/07/2012 02:49:13 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/07/2012 02:49:12 PM) (Source: Perflib)(User: )
Description: BITSC:\Windows\system32\bitsperf.dll4


=========================== Installed Programs ============================

µTorrent (Version: 2.2.0)
7-Zip 9.20
Adobe Digital Editions
Adobe Flash Player 10 ActiveX (Version: 10.3.183.10)
Adobe Flash Player 10 Plugin (Version: 10.3.183.10)
Adobe Reader X (10.0.1) (Version: 10.0.1)
Apache Havoc
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.12.2.0)
AviSynth 2.5
Babylon
Babylon toolbar on IE
Badaboom versionTRIAL_2.0.0.128 (Version: versionTRIAL_2.0.0.128)
Belarc Advisor 8.1
BlackBerry Desktop Software 6.1 (Version: 6.1.0.36)
BlackBerry Device Manager 7.0 (Version: 7.0.0.40)
calibre (Version: 0.8.14)
Canon MP Navigator EX 1.0
Canon MP210 series
Canon Utilities Easy-PhotoPrint EX
CCleaner (Version: 2.30)
CDisplay 1.8
Chronostorm (Version: 1.0)
City of Heroes
ConvertHelper 2.2
Cool Edit Pro 2.0
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.1.0236)
DAEMON Tools Toolbar (Version: 1.1.4.0024)
DC Universe Online Live
DDPB Installer (Version: 1.0.6)
DDPBInstaller (Version: 1.0.8)
DivX Setup (Version: 2.4.0.6)
eMule
eMule MorphXT 12.5
Enemy Engaged - Apache vs Havoc
Foxit Reader (Version: 4.3.1.218)
Free FLAC to MP3 Converter 1.0
FreeRIP Toolbar v5.8 (Version: 5.8)
FreeRIP v3.66 (Version: 3.66)
Game Booster (Version: 2.4.1.0)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.5.1)
HiJackThis (Version: 1.0.0)
ImgBurn (Version: 2.5.5.0)
IrfanView (remove only) (Version: 4.30)
IsoBuster 2.8 (Version: 2.8)
Java Auto Updater (Version: 2.1.5.3)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 7 Update 2 (Version: 7.0.20)
Java™ SE Development Kit 7 Update 2 (Version: 1.7.0.20)
JavaFX 2.0.2 (Version: 2.0.2)
JavaFX 2.0.2 SDK (Version: 2.0.2)
K-Lite Codec Pack 6.9.0 (Basic) (Version: 6.9.0)
Kindle Auto eBook Converter 0.4.50 (Version: 0.4.50)
Kingconvert PSP Video Converter (Version: 5.0)
MagicCute Data Recovery 2012.1 (Version: 2012.1)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mega Manager (Version: 3.4.0.9)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MotoConnect (Version: 1.1.31)
Motorola Driver Installation 4.6.0 (Version: 4.6.0)
Mozilla Firefox (3.6.13) (Version: 3.6.13 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4SP2 (Version: 1.00.0000)
NCsoft Launcher (Version: 1.5.25.1)
Notepad++
NVIDIA 3D Vision Controller Driver 285.62 (Version: 285.62)
NVIDIA 3D Vision Driver 285.62 (Version: 285.62)
NVIDIA Control Panel 285.62 (Version: 285.62)
NVIDIA Graphics Driver 285.62 (Version: 285.62)
NVIDIA Install Application (Version: 2.1002.46.235)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.8562)
NVIDIA Update 1.5.20 (Version: 1.5.20)
NVIDIA Update Components (Version: 1.5.20)
OpenAL
OpenOffice.org 3.3 (Version: 3.3.9567)
Opera 11.64 (Version: 11.64.1403)
OverDrive Media Console (Version: 3.2.5)
Pando Media Booster (Version: 2.6.0.7)
ParetoLogic DriverCure (Version: 1.6.1.0)
PDF to Kindle Converter 3.0.3
PlayOn (Version: 3.3.8)
Portforward Static IP Address 1.0.47 (Version: 1.0.47)
PS3 Media Server
PSPVC :: PSP Video Converter v3.91
QuickTime (Version: 7.71.80.42)
RAR Password Cracker 4.12
RAR Password Recovery v1.1 RC16 (remove only)
Real Alternative 1.50 (Version: 1.50)
Realtek AC'97 Audio (Version: 5.36)
Realtek High Definition Audio Driver (Version: 6.0.1.6299)
Recuva (Version: 1.42)
Samsung Kies (Version: 2.0.2.11071_128)
Samsung ML-1710 Series
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.4.0)
Segoe UI (Version: 15.4.2271.0615)
Simple Static IP (Version: 1.3.0)
Soap 3.0 Toolkit (Version: 1.00.0000)
Sophos Anti-Rootkit 1.5.20 (Version: 1.5.20)
Sophos Virus Removal Tool (Version: 2.0)
Star Trek Online
Steel Armor
SUPERAntiSpyware (Version: 5.0.1142)
Theatre of War 3 Korea Review (Remove Only) (Version: 1.2.0)
TI-83 Plus Flash Debugger
TVersity Codec Pack 1.7 (Version: 1.7)
TVersity Media Server 1.9.6 (Version: 1.9.6)
UFile 2010 (Version: 14.21.0000)
UFile Updater 2010 (Version: 6.01.0000)
Undelete 360
Unknown Device Identifier 7.00
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VLC media player 1.0.5 (Version: 1.0.5)
Warfare Reloaded
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinRAR 4.00 beta 7 (32-bit) (Version: 4.00.7)
World of Tanks
Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)
Yahoo! Toolbar
Zero Assumption Recovery Version 9

========================= Devices: ================================

Name: Communications Port (COM1)
Description: Communications Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard port types)
Service: Serial
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name:
Description:
Class Guid:
Manufacturer:
Service: .serial
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 74%
Total physical RAM: 2046.57 MB
Available physical RAM: 513.67 MB
Total Pagefile: 4339.64 MB
Available Pagefile: 2813.34 MB
Total Virtual: 2047.88 MB
Available Virtual: 1949.66 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:149.05 GB) (Free:7.53 GB) NTFS

========================= Users: ========================================

User accounts for \\PUCKMANSNOO-PC

Administrator Guest Omini
puckmansnoo Taylor EBjarrvi UpdatusUser

========================= Minidump Files ==================================

C:\Windows\Minidump\Mini041612-01.dmp
C:\Windows\Minidump\Mini060812-01.dmp
C:\Windows\Minidump\Mini060812-02.dmp
========================= Restore Points ==================================

08-06-2012 06:17:24 ComboFix created restore point
08-06-2012 17:39:02 Installed Sophos Virus Removal Tool.
08-06-2012 21:16:55 Windows Update
10-06-2012 02:41:36 Windows Update

**** End of log ****


Results of screen317's Security Check version 0.99.41
Windows Vista Service Pack 2 x86 (UAC is disabled!)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Microsoft Security Essentials
(On Access scanning disabled!)
Error obtaining update status for antivirus!
`````````Anti-malware/Other Utilities Check:`````````
SUPERAntiSpyware
Sophos Anti-Rootkit 1.5.20
Malwarebytes Anti-Malware version 1.61.0.1400
CCleaner
JavaFX 2.0.2
JavaFX 2.0.2 SDK
Java™ 6 Update 22
Java™ 7 Update 2
Java™ SE Development Kit 7 Update 2
Java version out of date!
Adobe Flash Player 10 Flash Player out of date!
Adobe Flash Player 10.3.183.10 Flash Player out of Date!
Adobe Reader X 10.0.1 Adobe Reader out of Date!
Mozilla Firefox (3.6.13) Firefox out of Date!
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
MediaMall MediaMallServer.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 40 % Defragment your hard drive soon!
````````````````````End of Log``````````````````````

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:47 PM

Posted 10 June 2012 - 04:14 AM

Hi

We will need a deeper look..

Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users