Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I have roots it.zeroaccess please help.


  • Please log in to reply
2 replies to this topic

#1 Alberto Iber

Alberto Iber

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:31 AM

Posted 27 June 2012 - 12:07 AM

Please help.

I have the root kit.zeroaccess virus.

Windows defender is gone and so is security.
I am running windows vista 32

Thank you

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:31 AM

Posted 27 June 2012 - 05:03 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Alberto Iber

Alberto Iber
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:31 AM

Posted 27 June 2012 - 06:10 AM

07:06:27.0527 5760 TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
07:06:27.0886 5760 ============================================================
07:06:27.0886 5760 Current date / time: 2012/06/27 07:06:27.0886
07:06:27.0886 5760 SystemInfo:
07:06:27.0886 5760
07:06:27.0886 5760 OS Version: 6.0.6002 ServicePack: 2.0
07:06:27.0886 5760 Product type: Workstation
07:06:27.0886 5760 ComputerName: PAPI-PC
07:06:27.0886 5760 UserName: papi
07:06:27.0886 5760 Windows directory: C:\Windows
07:06:27.0886 5760 System windows directory: C:\Windows
07:06:27.0886 5760 Processor architecture: Intel x86
07:06:27.0886 5760 Number of processors: 4
07:06:27.0886 5760 Page size: 0x1000
07:06:27.0886 5760 Boot type: Normal boot
07:06:27.0886 5760 ============================================================
07:06:28.0838 5760 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
07:06:28.0853 5760 Drive \Device\Harddisk5\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:06:28.0853 5760 ============================================================
07:06:28.0853 5760 \Device\Harddisk0\DR0:
07:06:28.0853 5760 MBR partitions:
07:06:28.0853 5760 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1BC9BE1D
07:06:28.0853 5760 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1BC9BE5C, BlocksNum 0x1528725
07:06:28.0853 5760 \Device\Harddisk5\DR5:
07:06:28.0853 5760 MBR partitions:
07:06:28.0853 5760 \Device\Harddisk5\DR5\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
07:06:28.0853 5760 ============================================================
07:06:28.0869 5760 C: <-> \Device\Harddisk0\DR0\Partition0
07:06:28.0947 5760 D: <-> \Device\Harddisk0\DR0\Partition1
07:06:28.0978 5760 K: <-> \Device\Harddisk5\DR5\Partition0
07:06:28.0978 5760 ============================================================
07:06:28.0978 5760 Initialize success
07:06:28.0978 5760 ============================================================
07:06:59.0195 5952 ============================================================
07:06:59.0195 5952 Scan started
07:06:59.0195 5952 Mode: Manual; TDLFS;
07:06:59.0195 5952 ============================================================
07:06:59.0507 5952 5689 - ok
07:06:59.0741 5952 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
07:06:59.0757 5952 ACPI - ok
07:06:59.0882 5952 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
07:06:59.0882 5952 AdobeARMservice - ok
07:06:59.0928 5952 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
07:06:59.0944 5952 adp94xx - ok
07:06:59.0975 5952 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
07:06:59.0991 5952 adpahci - ok
07:07:00.0022 5952 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
07:07:00.0069 5952 adpu160m - ok
07:07:00.0116 5952 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
07:07:00.0147 5952 adpu320 - ok
07:07:00.0209 5952 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
07:07:00.0209 5952 AeLookupSvc - ok
07:07:00.0240 5952 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
07:07:00.0318 5952 AFD - ok
07:07:00.0350 5952 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
07:07:00.0381 5952 agp440 - ok
07:07:00.0428 5952 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
07:07:00.0443 5952 aic78xx - ok
07:07:00.0615 5952 AlertService (c86d177967d27c80e466d4ed95c26db9) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
07:07:00.0708 5952 AlertService - ok
07:07:00.0740 5952 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
07:07:00.0740 5952 ALG - ok
07:07:00.0802 5952 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
07:07:00.0802 5952 aliide - ok
07:07:00.0864 5952 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
07:07:00.0896 5952 amdagp - ok
07:07:00.0927 5952 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
07:07:00.0927 5952 amdide - ok
07:07:00.0942 5952 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
07:07:00.0974 5952 AmdK7 - ok
07:07:00.0974 5952 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
07:07:01.0005 5952 AmdK8 - ok
07:07:01.0052 5952 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
07:07:01.0052 5952 Appinfo - ok
07:07:01.0145 5952 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:07:01.0145 5952 Apple Mobile Device - ok
07:07:01.0192 5952 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
07:07:01.0239 5952 arc - ok
07:07:01.0301 5952 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
07:07:01.0332 5952 arcsas - ok
07:07:01.0348 5952 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
07:07:01.0348 5952 AsyncMac - ok
07:07:01.0364 5952 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
07:07:01.0364 5952 atapi - ok
07:07:01.0426 5952 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:07:01.0426 5952 AudioEndpointBuilder - ok
07:07:01.0442 5952 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
07:07:01.0442 5952 Audiosrv - ok
07:07:01.0566 5952 Basics Service (55fed228fe147ecb9c47a1c55388896e) C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
07:07:01.0566 5952 Basics Service - ok
07:07:01.0598 5952 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
07:07:01.0598 5952 Beep - ok
07:07:01.0676 5952 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
07:07:01.0676 5952 BFE - ok
07:07:01.0785 5952 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
07:07:01.0800 5952 BITS - ok
07:07:01.0816 5952 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
07:07:01.0847 5952 blbdrive - ok
07:07:01.0988 5952 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
07:07:02.0003 5952 Bonjour Service - ok
07:07:02.0034 5952 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
07:07:02.0097 5952 bowser - ok
07:07:02.0144 5952 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
07:07:02.0144 5952 BrFiltLo - ok
07:07:02.0159 5952 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
07:07:02.0159 5952 BrFiltUp - ok
07:07:02.0253 5952 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
07:07:02.0253 5952 Browser - ok
07:07:02.0284 5952 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
07:07:02.0315 5952 Brserid - ok
07:07:02.0346 5952 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
07:07:02.0378 5952 BrSerWdm - ok
07:07:02.0409 5952 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
07:07:02.0409 5952 BrUsbMdm - ok
07:07:02.0424 5952 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
07:07:02.0440 5952 BrUsbSer - ok
07:07:02.0471 5952 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
07:07:02.0471 5952 BTHMODEM - ok
07:07:02.0549 5952 catchme - ok
07:07:02.0565 5952 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
07:07:02.0565 5952 cdfs - ok
07:07:02.0580 5952 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
07:07:02.0612 5952 cdrom - ok
07:07:02.0658 5952 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:07:02.0658 5952 CertPropSvc - ok
07:07:02.0674 5952 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
07:07:02.0674 5952 circlass - ok
07:07:02.0736 5952 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
07:07:02.0736 5952 CLFS - ok
07:07:02.0861 5952 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:07:02.0861 5952 clr_optimization_v2.0.50727_32 - ok
07:07:02.0939 5952 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:07:02.0970 5952 clr_optimization_v4.0.30319_32 - ok
07:07:03.0017 5952 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
07:07:03.0017 5952 cmdide - ok
07:07:03.0064 5952 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
07:07:03.0064 5952 Compbatt - ok
07:07:03.0064 5952 COMSysApp - ok
07:07:03.0142 5952 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
07:07:03.0142 5952 crcdisk - ok
07:07:03.0251 5952 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
07:07:03.0251 5952 Creative Audio Engine Licensing Service - ok
07:07:03.0298 5952 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
07:07:03.0314 5952 Crusoe - ok
07:07:03.0360 5952 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
07:07:03.0360 5952 CryptSvc - ok
07:07:03.0423 5952 CT20XUT (51a4c2c6d3ac2c275a1b93c34d4e87c6) C:\Windows\system32\drivers\CT20XUT.SYS
07:07:03.0454 5952 CT20XUT - ok
07:07:03.0454 5952 CT20XUT.SYS (51a4c2c6d3ac2c275a1b93c34d4e87c6) C:\Windows\System32\drivers\CT20XUT.SYS
07:07:03.0454 5952 CT20XUT.SYS - ok
07:07:03.0516 5952 ctac32k (7ec5c5f0b0c14ec186074fd095f0f370) C:\Windows\system32\drivers\ctac32k.sys
07:07:03.0579 5952 ctac32k - ok
07:07:03.0641 5952 ctaud2k (8dc02de5321499e6c1fe87e43d86a73b) C:\Windows\system32\drivers\ctaud2k.sys
07:07:03.0672 5952 ctaud2k - ok
07:07:03.0860 5952 CTAudSvcService (07ba6d17e66879018b30b6c3f976ebed) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
07:07:03.0953 5952 CTAudSvcService - ok
07:07:04.0172 5952 CTEXFIFX (d4c74f7228a2162171dee3087cc22fbf) C:\Windows\system32\drivers\CTEXFIFX.SYS
07:07:04.0203 5952 CTEXFIFX - ok
07:07:04.0203 5952 CTEXFIFX.SYS (d4c74f7228a2162171dee3087cc22fbf) C:\Windows\System32\drivers\CTEXFIFX.SYS
07:07:04.0218 5952 CTEXFIFX.SYS - ok
07:07:04.0250 5952 CTHWIUT (1d5bf4f26b27c5eba08f4d0fe96bff12) C:\Windows\system32\drivers\CTHWIUT.SYS
07:07:04.0265 5952 CTHWIUT - ok
07:07:04.0265 5952 CTHWIUT.SYS (1d5bf4f26b27c5eba08f4d0fe96bff12) C:\Windows\System32\drivers\CTHWIUT.SYS
07:07:04.0265 5952 CTHWIUT.SYS - ok
07:07:04.0296 5952 ctprxy2k (920b45bc9191f4e880ea2b75524d96ab) C:\Windows\system32\drivers\ctprxy2k.sys
07:07:04.0312 5952 ctprxy2k - ok
07:07:04.0328 5952 ctsfm2k (eac70ef0b40df7b8178bf5e80b5f4277) C:\Windows\system32\drivers\ctsfm2k.sys
07:07:04.0374 5952 ctsfm2k - ok
07:07:04.0406 5952 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
07:07:04.0437 5952 CVirtA - ok
07:07:04.0702 5952 CVPND (dad192d12dd0b4c92f6843203852829f) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
07:07:04.0718 5952 CVPND - ok
07:07:04.0936 5952 CVPNDRVA (26deef07394624247d1f549bd94f0b15) C:\Windows\system32\Drivers\CVPNDRVA.sys
07:07:04.0936 5952 CVPNDRVA - ok
07:07:05.0014 5952 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:07:05.0030 5952 DcomLaunch - ok
07:07:05.0061 5952 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
07:07:05.0108 5952 DfsC - ok
07:07:05.0217 5952 DfSdkS (92ae26f2caf4a67e24a0ba6ddf32cc3c) C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe
07:07:05.0217 5952 DfSdkS - ok
07:07:05.0435 5952 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
07:07:05.0482 5952 DFSR - ok
07:07:05.0669 5952 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
07:07:05.0669 5952 Dhcp - ok
07:07:05.0778 5952 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
07:07:05.0778 5952 disk - ok
07:07:05.0825 5952 DNE (7b4fdfbe97c047175e613aa96f3de987) C:\Windows\system32\DRIVERS\dne2000.sys
07:07:05.0825 5952 DNE - ok
07:07:05.0950 5952 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
07:07:05.0966 5952 Dnscache - ok
07:07:06.0028 5952 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
07:07:06.0028 5952 dot3svc - ok
07:07:06.0059 5952 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
07:07:06.0090 5952 Dot4 - ok
07:07:06.0106 5952 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
07:07:06.0122 5952 Dot4Print - ok
07:07:06.0122 5952 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
07:07:06.0122 5952 dot4usb - ok
07:07:06.0184 5952 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
07:07:06.0184 5952 DPS - ok
07:07:06.0387 5952 DQLWinService (a0b584c33f55545d56f9e71fb4e203ac) C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
07:07:06.0449 5952 DQLWinService - ok
07:07:06.0496 5952 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
07:07:06.0496 5952 drmkaud - ok
07:07:06.0574 5952 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
07:07:06.0590 5952 DXGKrnl - ok
07:07:06.0652 5952 e1express (04944f4fc4f0477185f5d26ae0ddb90e) C:\Windows\system32\DRIVERS\e1e6032.sys
07:07:06.0730 5952 e1express - ok
07:07:06.0777 5952 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
07:07:06.0808 5952 E1G60 - ok
07:07:06.0855 5952 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
07:07:06.0855 5952 EapHost - ok
07:07:06.0902 5952 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
07:07:06.0902 5952 Ecache - ok
07:07:07.0011 5952 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
07:07:07.0011 5952 ehRecvr - ok
07:07:07.0058 5952 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
07:07:07.0073 5952 ehSched - ok
07:07:07.0089 5952 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
07:07:07.0089 5952 ehstart - ok
07:07:07.0167 5952 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
07:07:07.0182 5952 elxstor - ok
07:07:07.0260 5952 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
07:07:07.0276 5952 EMDMgmt - ok
07:07:07.0323 5952 emupia (8b41f776beafda612cdf8ffa997b201e) C:\Windows\system32\drivers\emupia2k.sys
07:07:07.0338 5952 emupia - ok
07:07:07.0370 5952 ErrDev (a81ab23eddb4693612014d87367d014c) C:\Windows\system32\drivers\errdev.sys
07:07:07.0370 5952 ErrDev - ok
07:07:07.0416 5952 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
07:07:07.0416 5952 EventSystem - ok
07:07:07.0463 5952 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
07:07:07.0494 5952 exfat - ok
07:07:07.0526 5952 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
07:07:07.0541 5952 fastfat - ok
07:07:07.0572 5952 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
07:07:07.0572 5952 fdc - ok
07:07:07.0619 5952 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
07:07:07.0619 5952 fdPHost - ok
07:07:07.0635 5952 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
07:07:07.0635 5952 FDResPub - ok
07:07:07.0635 5952 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
07:07:07.0635 5952 FileInfo - ok
07:07:07.0650 5952 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
07:07:07.0650 5952 Filetrace - ok
07:07:07.0775 5952 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
07:07:07.0791 5952 FLEXnet Licensing Service - ok
07:07:07.0822 5952 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
07:07:07.0822 5952 flpydisk - ok
07:07:07.0884 5952 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
07:07:07.0884 5952 FltMgr - ok
07:07:07.0931 5952 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
07:07:07.0947 5952 FontCache - ok
07:07:08.0103 5952 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:07:08.0103 5952 FontCache3.0.0.0 - ok
07:07:08.0150 5952 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
07:07:08.0150 5952 Fs_Rec - ok
07:07:08.0165 5952 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
07:07:08.0228 5952 gagp30kx - ok
07:07:08.0259 5952 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:07:08.0259 5952 GEARAspiWDM - ok
07:07:08.0337 5952 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
07:07:08.0352 5952 gpsvc - ok
07:07:08.0508 5952 ha20x2k (eda33b1d4721470bb924f082cf66d06a) C:\Windows\system32\drivers\ha20x2k.sys
07:07:08.0540 5952 ha20x2k - ok
07:07:08.0618 5952 HCW85BDA (8cd6accaa612b3f89ec6f18776fffddf) C:\Windows\system32\drivers\HCW85BDA.sys
07:07:08.0649 5952 HCW85BDA - ok
07:07:08.0774 5952 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
07:07:08.0774 5952 HDAudBus - ok
07:07:08.0805 5952 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
07:07:08.0805 5952 HidBth - ok
07:07:08.0820 5952 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
07:07:08.0820 5952 HidIr - ok
07:07:08.0883 5952 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
07:07:08.0883 5952 hidserv - ok
07:07:08.0930 5952 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
07:07:08.0930 5952 HidUsb - ok
07:07:08.0976 5952 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
07:07:08.0976 5952 hkmsvc - ok
07:07:09.0117 5952 HP Health Check Service (89f9e1984c1cd9e5f4fe39642d886e11) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
07:07:09.0117 5952 HP Health Check Service - ok
07:07:09.0179 5952 HpCISSs (7ebec5eb56b90ed65a8bbd91464e5cfb) C:\Windows\system32\drivers\hpcisss.sys
07:07:09.0210 5952 HpCISSs - ok
07:07:09.0288 5952 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
07:07:09.0288 5952 hpqcxs08 - ok
07:07:09.0320 5952 hpqddsvc (f3f72a2a86c22610bca5439fa789dd52) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
07:07:09.0320 5952 hpqddsvc - ok
07:07:09.0413 5952 HPSLPSVC (568e44f6dcfa173f3670172b69379891) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
07:07:09.0429 5952 HPSLPSVC - ok
07:07:09.0491 5952 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
07:07:09.0522 5952 HTTP - ok
07:07:09.0569 5952 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
07:07:09.0569 5952 i2omp - ok
07:07:09.0600 5952 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
07:07:09.0632 5952 i8042prt - ok
07:07:09.0741 5952 IAANTMON (11a220eb53f1d42b8af0ad1210b8241d) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
07:07:09.0756 5952 IAANTMON - ok
07:07:09.0819 5952 iaStor (25c3d5f66a74a7bddeca56085f040d2e) C:\Windows\system32\drivers\iastor.sys
07:07:09.0819 5952 iaStor - ok
07:07:09.0866 5952 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
07:07:09.0928 5952 iaStorV - ok
07:07:10.0006 5952 IDriverT (6f95324909b502e2651442c1548ab12f) c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:07:10.0022 5952 IDriverT - ok
07:07:10.0209 5952 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:07:10.0224 5952 idsvc - ok
07:07:10.0583 5952 igfx (a9221d13d8f1f772010ee293ba9baeb7) C:\Windows\system32\DRIVERS\igdkmd32.sys
07:07:10.0739 5952 igfx - ok
07:07:10.0942 5952 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
07:07:10.0958 5952 iirsp - ok
07:07:11.0036 5952 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
07:07:11.0036 5952 IKEEXT - ok
07:07:11.0207 5952 IntcAzAudAddService (edc37b918e583a5a813c53d4f5588255) C:\Windows\system32\drivers\RTKVHDA.sys
07:07:11.0254 5952 IntcAzAudAddService - ok
07:07:11.0410 5952 IntelDHSvcConf (ce5af42679dd85947d2d287594f22ce0) C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
07:07:11.0441 5952 IntelDHSvcConf - ok
07:07:11.0597 5952 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
07:07:11.0597 5952 intelide - ok
07:07:11.0613 5952 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
07:07:11.0613 5952 intelppm - ok
07:07:11.0675 5952 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
07:07:11.0691 5952 IPBusEnum - ok
07:07:11.0722 5952 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:07:11.0753 5952 IpFilterDriver - ok
07:07:11.0800 5952 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
07:07:11.0816 5952 iphlpsvc - ok
07:07:11.0816 5952 IpInIp - ok
07:07:11.0847 5952 IPMIDRV (4b9c0f4d4a3acc535f9771039ecd6365) C:\Windows\system32\drivers\ipmidrv.sys
07:07:11.0894 5952 IPMIDRV - ok
07:07:11.0909 5952 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
07:07:11.0972 5952 IPNAT - ok
07:07:12.0065 5952 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
07:07:12.0065 5952 iPod Service - ok
07:07:12.0096 5952 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
07:07:12.0096 5952 IRENUM - ok
07:07:12.0112 5952 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
07:07:12.0143 5952 isapnp - ok
07:07:12.0206 5952 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
07:07:12.0206 5952 iScsiPrt - ok
07:07:12.0346 5952 ISSM (e29ba28f76c5a703e7f30f74cf36df22) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
07:07:12.0393 5952 ISSM - ok
07:07:12.0408 5952 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
07:07:12.0408 5952 iteatapi - ok
07:07:12.0455 5952 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
07:07:12.0471 5952 iteraid - ok
07:07:12.0486 5952 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
07:07:12.0486 5952 kbdclass - ok
07:07:12.0533 5952 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
07:07:12.0533 5952 kbdhid - ok
07:07:12.0564 5952 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:07:12.0564 5952 KeyIso - ok
07:07:12.0596 5952 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
07:07:12.0611 5952 KSecDD - ok
07:07:12.0674 5952 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
07:07:12.0674 5952 KtmRm - ok
07:07:12.0736 5952 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
07:07:12.0752 5952 LanmanServer - ok
07:07:12.0767 5952 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
07:07:12.0783 5952 LanmanWorkstation - ok
07:07:12.0908 5952 LightScribeService (793ff718477345cd5d232c50bed1e452) c:\Program Files\Common Files\LightScribe\LSSrvc.exe
07:07:12.0908 5952 LightScribeService - ok
07:07:12.0986 5952 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
07:07:13.0017 5952 lltdio - ok
07:07:13.0079 5952 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
07:07:13.0079 5952 lltdsvc - ok
07:07:13.0079 5952 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
07:07:13.0095 5952 lmhosts - ok
07:07:13.0110 5952 lmimirr - ok
07:07:13.0142 5952 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
07:07:13.0188 5952 LSI_FC - ok
07:07:13.0204 5952 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
07:07:13.0235 5952 LSI_SAS - ok
07:07:13.0251 5952 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
07:07:13.0298 5952 LSI_SCSI - ok
07:07:13.0313 5952 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
07:07:13.0360 5952 luafv - ok
07:07:13.0391 5952 LxrSII1d (59045011f52b81cd411419b558dd50ff) C:\Windows\System32\Drivers\LxrSII1d.sys
07:07:13.0391 5952 LxrSII1d - ok
07:07:13.0407 5952 LxrSII1s (e66286727fbf58eb323625af3efda53e) C:\Windows\system32\LxrSII1s.exe
07:07:13.0454 5952 LxrSII1s - ok
07:07:13.0532 5952 M1 Server (7b073fd0133346d0e555353f164057d7) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
07:07:13.0563 5952 M1 Server - ok
07:07:13.0610 5952 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
07:07:13.0610 5952 MBAMProtector - ok
07:07:13.0703 5952 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
07:07:13.0703 5952 MBAMService - ok
07:07:13.0766 5952 MCLServiceATL (7bba15ca5a2aa4e50c7cbfb78d11db25) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
07:07:13.0844 5952 MCLServiceATL - ok
07:07:13.0875 5952 MCSTRM (5bb01b9f582259d1fb7653c5c1da3653) C:\Windows\system32\drivers\MCSTRM.sys
07:07:13.0875 5952 MCSTRM - ok
07:07:13.0937 5952 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
07:07:13.0937 5952 Mcx2Svc - ok
07:07:13.0984 5952 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
07:07:13.0984 5952 megasas - ok
07:07:14.0046 5952 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
07:07:14.0078 5952 MegaSR - ok
07:07:14.0124 5952 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:07:14.0124 5952 MMCSS - ok
07:07:14.0171 5952 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
07:07:14.0171 5952 Modem - ok
07:07:14.0187 5952 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
07:07:14.0187 5952 monitor - ok
07:07:14.0218 5952 motccgp (201bfc4ef8b33d02d133fbf6535e515b) C:\Windows\system32\DRIVERS\motccgp.sys
07:07:14.0218 5952 motccgp - ok
07:07:14.0234 5952 motccgpfl (d0242a3832eb7c97801bb25889561e23) C:\Windows\system32\DRIVERS\motccgpfl.sys
07:07:14.0234 5952 motccgpfl - ok
07:07:14.0249 5952 motmodem (fe80c18ba448ddd76b7bead9eb203d37) C:\Windows\system32\DRIVERS\motmodem.sys
07:07:14.0249 5952 motmodem - ok
07:07:14.0265 5952 motport (fe80c18ba448ddd76b7bead9eb203d37) C:\Windows\system32\DRIVERS\motport.sys
07:07:14.0265 5952 motport - ok
07:07:14.0312 5952 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
07:07:14.0312 5952 mouclass - ok
07:07:14.0327 5952 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
07:07:14.0327 5952 mouhid - ok
07:07:14.0358 5952 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
07:07:14.0358 5952 MountMgr - ok
07:07:14.0390 5952 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
07:07:14.0405 5952 MpFilter - ok
07:07:14.0436 5952 mpio (5da347912fd3af24d7bfb3de519d4bd0) C:\Windows\system32\drivers\mpio.sys
07:07:14.0499 5952 mpio - ok
07:07:14.0670 5952 MpKsl248468b7 (a69630d039c38018689190234f866d77) C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3C58E32F-A903-48D8-991B-49BAC1B1D770}\MpKsl248468b7.sys
07:07:14.0670 5952 MpKsl248468b7 - ok
07:07:14.0702 5952 MpKsladde1155 (a69630d039c38018689190234f866d77) C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3C58E32F-A903-48D8-991B-49BAC1B1D770}\MpKsladde1155.sys
07:07:14.0717 5952 Suspicious file (Forged): C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3C58E32F-A903-48D8-991B-49BAC1B1D770}\MpKsladde1155.sys. Real md5: a69630d039c38018689190234f866d77, Fake md5: 4137ee420481d10734da3018d0325582
07:07:14.0717 5952 MpKsladde1155 ( ForgedFile.Multi.Generic ) - warning
07:07:14.0717 5952 MpKsladde1155 - detected ForgedFile.Multi.Generic (1)
07:07:14.0748 5952 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
07:07:14.0764 5952 mpsdrv - ok
07:07:14.0858 5952 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
07:07:14.0873 5952 MpsSvc - ok
07:07:14.0920 5952 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
07:07:14.0920 5952 Mraid35x - ok
07:07:14.0951 5952 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
07:07:14.0967 5952 MRxDAV - ok
07:07:14.0982 5952 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
07:07:15.0014 5952 mrxsmb - ok
07:07:15.0045 5952 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:07:15.0092 5952 mrxsmb10 - ok
07:07:15.0123 5952 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:07:15.0154 5952 mrxsmb20 - ok
07:07:15.0170 5952 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
07:07:15.0201 5952 msahci - ok
07:07:15.0232 5952 msdsm (2c563aef15b8d0014c36c5f27742ac7b) C:\Windows\system32\drivers\msdsm.sys
07:07:15.0248 5952 msdsm - ok
07:07:15.0310 5952 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
07:07:15.0310 5952 MSDTC - ok
07:07:15.0357 5952 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
07:07:15.0357 5952 Msfs - ok
07:07:15.0372 5952 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
07:07:15.0372 5952 msisadrv - ok
07:07:15.0435 5952 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
07:07:15.0435 5952 MSiSCSI - ok
07:07:15.0435 5952 msiserver - ok
07:07:15.0466 5952 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
07:07:15.0482 5952 MSKSSRV - ok
07:07:15.0575 5952 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) C:\Program Files\Microsoft Security Client\MsMpEng.exe
07:07:15.0575 5952 MsMpSvc - ok
07:07:15.0591 5952 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
07:07:15.0591 5952 MSPCLOCK - ok
07:07:15.0653 5952 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
07:07:15.0653 5952 MSPQM - ok
07:07:15.0700 5952 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
07:07:15.0716 5952 MsRPC - ok
07:07:15.0747 5952 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
07:07:15.0747 5952 mssmbios - ok
07:07:15.0794 5952 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
07:07:15.0794 5952 MSTEE - ok
07:07:15.0809 5952 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
07:07:15.0809 5952 Mup - ok
07:07:15.0887 5952 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
07:07:15.0903 5952 napagent - ok
07:07:15.0934 5952 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
07:07:15.0950 5952 NativeWifiP - ok
07:07:15.0996 5952 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
07:07:15.0996 5952 NDIS - ok
07:07:16.0012 5952 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
07:07:16.0012 5952 NdisTapi - ok
07:07:16.0059 5952 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
07:07:16.0059 5952 Ndisuio - ok
07:07:16.0074 5952 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
07:07:16.0090 5952 NdisWan - ok
07:07:16.0106 5952 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
07:07:16.0137 5952 NDProxy - ok
07:07:16.0168 5952 Net Driver HPZ12 (510c138564486ff926a3f773205c63d1) C:\Windows\system32\HPZinw12.dll
07:07:16.0168 5952 Net Driver HPZ12 - ok
07:07:16.0215 5952 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
07:07:16.0215 5952 NetBIOS - ok
07:07:16.0246 5952 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
07:07:16.0308 5952 netbt - ok
07:07:16.0355 5952 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:07:16.0355 5952 Netlogon - ok
07:07:16.0418 5952 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
07:07:16.0418 5952 Netman - ok
07:07:16.0464 5952 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
07:07:16.0464 5952 netprofm - ok
07:07:16.0542 5952 netr73 (9ef6d6002f07697f66fffaf11a3feb66) C:\Windows\system32\DRIVERS\netr73.sys
07:07:16.0636 5952 netr73 - ok
07:07:16.0776 5952 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:07:16.0776 5952 NetTcpPortSharing - ok
07:07:16.0886 5952 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
07:07:16.0901 5952 nfrd960 - ok
07:07:16.0979 5952 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
07:07:17.0010 5952 NisDrv - ok
07:07:17.0104 5952 NisSrv (290c0d4c4889398797f8df3be00b9698) C:\Program Files\Microsoft Security Client\NisSrv.exe
07:07:17.0104 5952 NisSrv - ok
07:07:17.0166 5952 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
07:07:17.0166 5952 NlaSvc - ok
07:07:17.0182 5952 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
07:07:17.0182 5952 Npfs - ok
07:07:17.0244 5952 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
07:07:17.0244 5952 nsi - ok
07:07:17.0291 5952 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
07:07:17.0291 5952 nsiproxy - ok
07:07:17.0385 5952 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
07:07:17.0400 5952 Ntfs - ok
07:07:17.0463 5952 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
07:07:17.0463 5952 ntrigdigi - ok
07:07:17.0463 5952 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
07:07:17.0463 5952 Null - ok
07:07:17.0510 5952 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
07:07:17.0556 5952 nvraid - ok
07:07:17.0572 5952 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
07:07:17.0603 5952 nvstor - ok
07:07:17.0619 5952 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
07:07:17.0634 5952 nv_agp - ok
07:07:17.0634 5952 NwlnkFlt - ok
07:07:17.0650 5952 NwlnkFwd - ok
07:07:17.0790 5952 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:07:17.0790 5952 odserv - ok
07:07:17.0853 5952 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
07:07:17.0853 5952 ohci1394 - ok
07:07:17.0915 5952 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:07:17.0915 5952 ose - ok
07:07:17.0962 5952 ossrv (ea7563de822696f1b9be9e589d33fa96) C:\Windows\system32\drivers\ctoss2k.sys
07:07:17.0978 5952 ossrv - ok
07:07:18.0102 5952 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:07:18.0118 5952 p2pimsvc - ok
07:07:18.0134 5952 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:07:18.0134 5952 p2psvc - ok
07:07:18.0180 5952 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
07:07:18.0227 5952 Parport - ok
07:07:18.0258 5952 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
07:07:18.0258 5952 partmgr - ok
07:07:18.0290 5952 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
07:07:18.0305 5952 Parvdm - ok
07:07:18.0305 5952 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
07:07:18.0305 5952 PcaSvc - ok
07:07:18.0336 5952 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
07:07:18.0336 5952 pci - ok
07:07:18.0352 5952 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
07:07:18.0352 5952 pciide - ok
07:07:18.0368 5952 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
07:07:18.0399 5952 pcmcia - ok
07:07:18.0477 5952 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
07:07:18.0492 5952 PEAUTH - ok
07:07:18.0617 5952 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
07:07:18.0648 5952 pla - ok
07:07:18.0820 5952 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
07:07:18.0820 5952 PlugPlay - ok
07:07:18.0867 5952 Pml Driver HPZ12 (37e5e8ffbad35605daeec3224ea0e465) C:\Windows\system32\HPZipm12.dll
07:07:18.0882 5952 Pml Driver HPZ12 - ok
07:07:18.0960 5952 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:07:18.0976 5952 PNRPAutoReg - ok
07:07:18.0976 5952 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
07:07:18.0992 5952 PNRPsvc - ok
07:07:19.0038 5952 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
07:07:19.0054 5952 PolicyAgent - ok
07:07:19.0148 5952 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
07:07:19.0179 5952 PptpMiniport - ok
07:07:19.0210 5952 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
07:07:19.0241 5952 Processor - ok
07:07:19.0257 5952 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
07:07:19.0257 5952 ProfSvc - ok
07:07:19.0319 5952 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:07:19.0319 5952 ProtectedStorage - ok
07:07:19.0335 5952 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
07:07:19.0335 5952 PSched - ok
07:07:19.0366 5952 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
07:07:19.0366 5952 PSI - ok
07:07:19.0506 5952 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
07:07:19.0538 5952 ql2300 - ok
07:07:19.0584 5952 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
07:07:19.0631 5952 ql40xx - ok
07:07:19.0694 5952 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
07:07:19.0694 5952 QWAVE - ok
07:07:19.0725 5952 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
07:07:19.0725 5952 QWAVEdrv - ok
07:07:19.0740 5952 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
07:07:19.0740 5952 RasAcd - ok
07:07:19.0787 5952 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
07:07:19.0803 5952 RasAuto - ok
07:07:19.0834 5952 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
07:07:19.0881 5952 Rasl2tp - ok
07:07:19.0912 5952 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
07:07:19.0912 5952 RasMan - ok
07:07:19.0990 5952 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
07:07:20.0021 5952 RasPppoe - ok
07:07:20.0052 5952 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
07:07:20.0084 5952 RasSstp - ok
07:07:20.0099 5952 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
07:07:20.0146 5952 rdbss - ok
07:07:20.0162 5952 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
07:07:20.0162 5952 RDPCDD - ok
07:07:20.0193 5952 rdpdr (943b18305eae3935598a9b4a3d560b4c) C:\Windows\system32\drivers\rdpdr.sys
07:07:20.0224 5952 rdpdr - ok
07:07:20.0240 5952 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
07:07:20.0240 5952 RDPENCDD - ok
07:07:20.0271 5952 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
07:07:20.0318 5952 RDPWD - ok
07:07:20.0536 5952 Remote UI Service (752402f6bd5fa012805813c329f88dd3) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
07:07:20.0645 5952 Remote UI Service - ok
07:07:20.0723 5952 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
07:07:20.0723 5952 RemoteAccess - ok
07:07:20.0786 5952 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
07:07:20.0786 5952 RemoteRegistry - ok
07:07:20.0832 5952 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
07:07:20.0832 5952 RpcLocator - ok
07:07:20.0910 5952 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
07:07:20.0910 5952 RpcSs - ok
07:07:21.0035 5952 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
07:07:21.0066 5952 rspndr - ok
07:07:21.0098 5952 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
07:07:21.0098 5952 SamSs - ok
07:07:21.0113 5952 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
07:07:21.0160 5952 sbp2port - ok
07:07:21.0207 5952 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
07:07:21.0207 5952 SCardSvr - ok
07:07:21.0285 5952 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
07:07:21.0300 5952 Schedule - ok
07:07:21.0347 5952 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
07:07:21.0347 5952 SCPolicySvc - ok
07:07:21.0363 5952 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
07:07:21.0363 5952 SDRSVC - ok
07:07:21.0394 5952 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
07:07:21.0410 5952 secdrv - ok
07:07:21.0441 5952 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
07:07:21.0441 5952 seclogon - ok
07:07:21.0597 5952 Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files\Secunia\PSI\PSIA.exe
07:07:21.0612 5952 Secunia PSI Agent - ok
07:07:21.0644 5952 Secunia Update Agent (0e88fdf474f2cdd370a4a6ce77d018f0) C:\Program Files\Secunia\PSI\sua.exe
07:07:21.0659 5952 Secunia Update Agent - ok
07:07:21.0862 5952 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
07:07:21.0862 5952 SENS - ok
07:07:21.0971 5952 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
07:07:21.0971 5952 Serenum - ok
07:07:22.0002 5952 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
07:07:22.0034 5952 Serial - ok
07:07:22.0065 5952 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
07:07:22.0080 5952 sermouse - ok
07:07:22.0127 5952 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
07:07:22.0143 5952 SessionEnv - ok
07:07:22.0190 5952 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
07:07:22.0190 5952 sffdisk - ok
07:07:22.0236 5952 sffp_mmc (e5eafe85815bd89095fef3144a09ab68) C:\Windows\system32\drivers\sffp_mmc.sys
07:07:22.0236 5952 sffp_mmc - ok
07:07:22.0283 5952 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\drivers\sffp_sd.sys
07:07:22.0283 5952 sffp_sd - ok
07:07:22.0346 5952 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
07:07:22.0346 5952 sfloppy - ok
07:07:22.0408 5952 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
07:07:22.0424 5952 SharedAccess - ok
07:07:22.0502 5952 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
07:07:22.0502 5952 ShellHWDetection - ok
07:07:22.0517 5952 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
07:07:22.0564 5952 sisagp - ok
07:07:22.0580 5952 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
07:07:22.0626 5952 SiSRaid2 - ok
07:07:22.0642 5952 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
07:07:22.0673 5952 SiSRaid4 - ok
07:07:22.0938 5952 slsvc (12e8aa519a74c4c48e51f10680ab0351) C:\Windows\system32\SLsvc.exe
07:07:23.0110 5952 slsvc - ok
07:07:23.0297 5952 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
07:07:23.0313 5952 SLUINotify - ok
07:07:23.0391 5952 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
07:07:23.0438 5952 Smb - ok
07:07:23.0469 5952 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
07:07:23.0484 5952 SNMPTRAP - ok
07:07:23.0484 5952 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
07:07:23.0484 5952 spldr - ok
07:07:23.0516 5952 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
07:07:23.0516 5952 Spooler - ok
07:07:23.0594 5952 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
07:07:23.0609 5952 srv - ok
07:07:23.0640 5952 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
07:07:23.0656 5952 srv2 - ok
07:07:23.0672 5952 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
07:07:23.0687 5952 srvnet - ok
07:07:23.0734 5952 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
07:07:23.0750 5952 SSDPSRV - ok
07:07:23.0796 5952 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
07:07:23.0796 5952 SstpSvc - ok
07:07:23.0843 5952 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
07:07:23.0843 5952 StillCam - ok
07:07:23.0906 5952 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
07:07:23.0921 5952 stisvc - ok
07:07:23.0968 5952 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
07:07:23.0968 5952 swenum - ok
07:07:24.0015 5952 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
07:07:24.0015 5952 swprv - ok
07:07:24.0030 5952 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
07:07:24.0030 5952 Symc8xx - ok
07:07:24.0062 5952 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
07:07:24.0062 5952 Sym_hi - ok
07:07:24.0077 5952 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
07:07:24.0077 5952 Sym_u3 - ok
07:07:24.0171 5952 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
07:07:24.0171 5952 SysMain - ok
07:07:24.0202 5952 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
07:07:24.0202 5952 TabletInputService - ok
07:07:24.0233 5952 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
07:07:24.0249 5952 TapiSrv - ok
07:07:24.0264 5952 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
07:07:24.0264 5952 TBS - ok
07:07:24.0327 5952 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
07:07:24.0342 5952 Tcpip - ok
07:07:24.0358 5952 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
07:07:24.0358 5952 Tcpip6 - ok
07:07:24.0405 5952 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
07:07:24.0405 5952 tcpipreg - ok
07:07:24.0452 5952 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
07:07:24.0452 5952 TDPIPE - ok
07:07:24.0467 5952 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
07:07:24.0467 5952 TDTCP - ok
07:07:24.0514 5952 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
07:07:24.0561 5952 tdx - ok
07:07:24.0576 5952 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
07:07:24.0608 5952 TermDD - ok
07:07:24.0686 5952 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
07:07:24.0686 5952 TermService - ok
07:07:24.0732 5952 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
07:07:24.0732 5952 Themes - ok
07:07:24.0795 5952 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
07:07:24.0795 5952 THREADORDER - ok
07:07:24.0795 5952 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
07:07:24.0795 5952 TrkWks - ok
07:07:24.0904 5952 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
07:07:24.0920 5952 TrustedInstaller - ok
07:07:24.0966 5952 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
07:07:24.0966 5952 tssecsrv - ok
07:07:24.0982 5952 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
07:07:24.0982 5952 tunmp - ok
07:07:25.0013 5952 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
07:07:25.0013 5952 tunnel - ok
07:07:25.0029 5952 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
07:07:25.0060 5952 uagp35 - ok
07:07:25.0122 5952 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
07:07:25.0138 5952 udfs - ok
07:07:25.0185 5952 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
07:07:25.0185 5952 UI0Detect - ok
07:07:25.0216 5952 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
07:07:25.0247 5952 uliagpkx - ok
07:07:25.0278 5952 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
07:07:25.0356 5952 uliahci - ok
07:07:25.0388 5952 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
07:07:25.0403 5952 UlSata - ok
07:07:25.0419 5952 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
07:07:25.0450 5952 ulsata2 - ok
07:07:25.0466 5952 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
07:07:25.0466 5952 umbus - ok
07:07:25.0497 5952 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
07:07:25.0497 5952 upnphost - ok
07:07:25.0528 5952 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
07:07:25.0559 5952 USBAAPL - ok
07:07:25.0637 5952 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
07:07:25.0668 5952 usbaudio - ok
07:07:25.0715 5952 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
07:07:25.0762 5952 usbccgp - ok
07:07:25.0809 5952 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
07:07:25.0840 5952 usbcir - ok
07:07:25.0871 5952 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
07:07:25.0871 5952 usbehci - ok
07:07:25.0887 5952 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
07:07:25.0918 5952 usbhub - ok
07:07:25.0934 5952 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
07:07:25.0934 5952 usbohci - ok
07:07:25.0949 5952 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
07:07:25.0965 5952 usbprint - ok
07:07:25.0965 5952 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
07:07:25.0996 5952 usbscan - ok
07:07:26.0027 5952 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:07:26.0058 5952 USBSTOR - ok
07:07:26.0105 5952 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
07:07:26.0105 5952 usbuhci - ok
07:07:26.0168 5952 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
07:07:26.0168 5952 UxSms - ok
07:07:26.0230 5952 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
07:07:26.0246 5952 vds - ok
07:07:26.0261 5952 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
07:07:26.0261 5952 vga - ok
07:07:26.0277 5952 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
07:07:26.0277 5952 VgaSave - ok
07:07:26.0292 5952 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
07:07:26.0324 5952 viaagp - ok
07:07:26.0339 5952 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
07:07:26.0370 5952 ViaC7 - ok
07:07:26.0386 5952 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
07:07:26.0386 5952 viaide - ok
07:07:26.0448 5952 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
07:07:26.0448 5952 volmgr - ok
07:07:26.0464 5952 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
07:07:26.0464 5952 volmgrx - ok
07:07:26.0495 5952 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
07:07:26.0495 5952 volsnap - ok
07:07:26.0511 5952 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
07:07:26.0558 5952 vsmraid - ok
07:07:26.0698 5952 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
07:07:26.0714 5952 VSS - ok
07:07:26.0745 5952 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
07:07:26.0745 5952 W32Time - ok
07:07:26.0885 5952 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
07:07:26.0901 5952 WacomPen - ok
07:07:26.0901 5952 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:07:26.0948 5952 Wanarp - ok
07:07:26.0948 5952 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
07:07:26.0948 5952 Wanarpv6 - ok
07:07:27.0026 5952 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
07:07:27.0041 5952 wcncsvc - ok
07:07:27.0072 5952 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
07:07:27.0072 5952 WcsPlugInService - ok
07:07:27.0088 5952 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
07:07:27.0088 5952 Wd - ok
07:07:27.0135 5952 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
07:07:27.0135 5952 Wdf01000 - ok
07:07:27.0150 5952 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:07:27.0150 5952 WdiServiceHost - ok
07:07:27.0166 5952 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
07:07:27.0166 5952 WdiSystemHost - ok
07:07:27.0197 5952 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
07:07:27.0197 5952 WebClient - ok
07:07:27.0228 5952 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
07:07:27.0244 5952 Wecsvc - ok
07:07:27.0291 5952 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
07:07:27.0291 5952 wercplsupport - ok
07:07:27.0353 5952 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
07:07:27.0353 5952 WerSvc - ok
07:07:27.0525 5952 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
07:07:27.0525 5952 WinDefend - ok
07:07:27.0525 5952 WinHttpAutoProxySvc - ok
07:07:27.0634 5952 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
07:07:27.0634 5952 Winmgmt - ok
07:07:27.0759 5952 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
07:07:27.0806 5952 WinRM - ok
07:07:27.0899 5952 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
07:07:27.0915 5952 Wlansvc - ok
07:07:28.0055 5952 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
07:07:28.0055 5952 WmiAcpi - ok
07:07:28.0164 5952 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
07:07:28.0164 5952 wmiApSrv - ok
07:07:28.0398 5952 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
07:07:28.0414 5952 WMPNetworkSvc - ok
07:07:28.0476 5952 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
07:07:28.0476 5952 WPCSvc - ok
07:07:28.0523 5952 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
07:07:28.0539 5952 WPDBusEnum - ok
07:07:28.0617 5952 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
07:07:28.0632 5952 WpdUsb - ok
07:07:28.0835 5952 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:07:28.0835 5952 WPFFontCache_v0400 - ok
07:07:28.0898 5952 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
07:07:28.0898 5952 ws2ifsl - ok
07:07:28.0960 5952 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
07:07:28.0960 5952 wscsvc - ok
07:07:28.0991 5952 WSDPrintDevice (4422ac5ed8d4c2f0db63e71d4c069dd7) C:\Windows\system32\DRIVERS\WSDPrint.sys
07:07:28.0991 5952 WSDPrintDevice - ok
07:07:28.0991 5952 WSearch - ok
07:07:29.0132 5952 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
07:07:29.0163 5952 wuauserv - ok
07:07:29.0397 5952 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
07:07:29.0444 5952 WUDFRd - ok
07:07:29.0475 5952 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
07:07:29.0475 5952 wudfsvc - ok
07:07:30.0130 5952 ZuneNetworkSvc (bcc62ed44d85236f802efccda3fba457) C:\Program Files\Zune\ZuneNss.exe
07:07:30.0317 5952 ZuneNetworkSvc - ok
07:07:30.0551 5952 ZuneWlanCfgSvc (b10cc66b7947bb1a2a24ff563bf36021) C:\Windows\system32\ZuneWlanCfgSvc.exe
07:07:30.0567 5952 ZuneWlanCfgSvc - ok
07:07:30.0598 5952 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
07:07:31.0004 5952 \Device\Harddisk0\DR0 - ok
07:07:31.0019 5952 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk5\DR5
07:07:31.0175 5952 \Device\Harddisk5\DR5 - ok
07:07:31.0175 5952 Boot (0x1200) (7e8e060a4692c05181d6e73bb97abe16) \Device\Harddisk0\DR0\Partition0
07:07:31.0175 5952 \Device\Harddisk0\DR0\Partition0 - ok
07:07:31.0191 5952 Boot (0x1200) (52537955046b2a54fb37977d3099b40e) \Device\Harddisk0\DR0\Partition1
07:07:31.0191 5952 \Device\Harddisk0\DR0\Partition1 - ok
07:07:31.0191 5952 Boot (0x1200) (2707472d3722a273d813adb31252666d) \Device\Harddisk5\DR5\Partition0
07:07:31.0206 5952 \Device\Harddisk5\DR5\Partition0 - ok
07:07:31.0206 5952 ============================================================
07:07:31.0206 5952 Scan finished
07:07:31.0206 5952 ============================================================
07:07:31.0206 5944 Detected object count: 1
07:07:31.0206 5944 Actual detected object count: 1
07:08:09.0894 5944 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3C58E32F-A903-48D8-991B-49BAC1B1D770}\MpKsladde1155.sys - copied to quarantine
07:08:09.0941 5944 MpKsladde1155 ( ForgedFile.Multi.Generic ) - User select action: Quarantine
07:08:27.0803 5692 Deinitialize success




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users