Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zero.Access and Backdoor.Trojan viruses


  • Please log in to reply
2 replies to this topic

#1 JustFailing

JustFailing

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 27 June 2012 - 04:10 PM

Hi,

I am using Norton Internet Security and recently it has been detecting and blocking "Zero.Access" and "Backdoor.Trojan" viruses about every ten minutes. Concerned, I searched for similar problems to mine on the internet and decided to download Malwarebytes, as Norton's full system scan was detecting nothing but tracking cookies. The first time I ran a quick scan it found two Trojans and "Rootkit.0Access" and claimed to have removed them successfully. However, the problem persisted, so I continued running full system scans on Malwarebytes and each time it found the Rootkit.0Access and apparently removed them, yet I don't notice any difference.

I believe the problem started a few days ago. Whilst I was updating iTunes (not sure if this is in any way related to the problem), a message appeared asking for administrative privileges to run Adobe Flash Updater. I clicked No each time that it asked, yet it ended up running anyway. I'm not sure exactly what it did but immediately afterwards I was asked for administrative privileges to run a file called "0i763f66bz.exe" from an unknown publisher. Again, I repeatedly hit No and the message soon disappeared, but I checked the Task Manager and the file was running anyway. The properties of the process said that its original name was "liquidfabrication.exe" and its copyright details are "FaceVsion 2002-2010" (Vision deliberately misspelt). I ended the process and removed the file from my start up properties in msconfig, and that's what lead to my problem stated above.

Any advice on how I might fix this/what I should do next would be greatly appreciated. Thanks.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:56 AM

Posted 27 June 2012 - 05:09 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 JustFailing

JustFailing
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:07:56 AM

Posted 28 June 2012 - 03:21 PM

Thanks for the fast reply - ESET online scanner didn't find anything so I didn't have the option to show a list of threats, but here are the other logs:


19:26:55.0942 5328 TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
19:26:56.0036 5328 ============================================================
19:26:56.0036 5328 Current date / time: 2012/06/28 19:26:56.0036
19:26:56.0036 5328 SystemInfo:
19:26:56.0036 5328
19:26:56.0036 5328 OS Version: 6.1.7601 ServicePack: 1.0
19:26:56.0036 5328 Product type: Workstation
19:26:56.0036 5328 ComputerName: ALEX-DELLPC
19:26:56.0036 5328 UserName: Alex
19:26:56.0036 5328 Windows directory: C:\Windows
19:26:56.0036 5328 System windows directory: C:\Windows
19:26:56.0036 5328 Running under WOW64
19:26:56.0036 5328 Processor architecture: Intel x64
19:26:56.0036 5328 Number of processors: 4
19:26:56.0036 5328 Page size: 0x1000
19:26:56.0036 5328 Boot type: Normal boot
19:26:56.0036 5328 ============================================================
19:26:56.0956 5328 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:26:56.0956 5328 ============================================================
19:26:56.0956 5328 \Device\Harddisk0\DR0:
19:26:56.0956 5328 MBR partitions:
19:26:56.0956 5328 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D9F000
19:26:56.0956 5328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1DB3000, BlocksNum 0x385D2800
19:26:56.0956 5328 ============================================================
19:26:56.0987 5328 C: <-> \Device\Harddisk0\DR0\Partition1
19:26:56.0987 5328 ============================================================
19:26:56.0987 5328 Initialize success
19:26:56.0987 5328 ============================================================
19:27:32.0988 5808 ============================================================
19:27:32.0988 5808 Scan started
19:27:32.0988 5808 Mode: Manual; TDLFS;
19:27:32.0988 5808 ============================================================
19:27:33.0628 5808 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:27:33.0644 5808 1394ohci - ok
19:27:33.0659 5808 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:27:33.0659 5808 ACPI - ok
19:27:33.0690 5808 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:27:33.0690 5808 AcpiPmi - ok
19:27:33.0800 5808 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:27:33.0800 5808 AdobeARMservice - ok
19:27:33.0815 5808 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
19:27:33.0831 5808 adp94xx - ok
19:27:33.0862 5808 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
19:27:33.0878 5808 adpahci - ok
19:27:33.0878 5808 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
19:27:33.0878 5808 adpu320 - ok
19:27:33.0909 5808 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:27:33.0909 5808 AeLookupSvc - ok
19:27:33.0956 5808 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
19:27:33.0956 5808 AFD - ok
19:27:33.0987 5808 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:27:33.0987 5808 agp440 - ok
19:27:34.0002 5808 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:27:34.0002 5808 ALG - ok
19:27:34.0018 5808 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:27:34.0018 5808 aliide - ok
19:27:34.0065 5808 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
19:27:34.0065 5808 AMD External Events Utility - ok
19:27:34.0080 5808 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:27:34.0080 5808 amdide - ok
19:27:34.0096 5808 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
19:27:34.0096 5808 AmdK8 - ok
19:27:34.0392 5808 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
19:27:34.0548 5808 amdkmdag - ok
19:27:34.0673 5808 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
19:27:34.0673 5808 amdkmdap - ok
19:27:34.0689 5808 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
19:27:34.0689 5808 AmdPPM - ok
19:27:34.0720 5808 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:27:34.0736 5808 amdsata - ok
19:27:34.0751 5808 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
19:27:34.0751 5808 amdsbs - ok
19:27:34.0767 5808 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:27:34.0767 5808 amdxata - ok
19:27:34.0798 5808 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:27:34.0798 5808 AppID - ok
19:27:34.0829 5808 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:27:34.0829 5808 AppIDSvc - ok
19:27:34.0845 5808 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
19:27:34.0845 5808 Appinfo - ok
19:27:34.0938 5808 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:27:34.0938 5808 Apple Mobile Device - ok
19:27:34.0970 5808 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
19:27:34.0970 5808 arc - ok
19:27:35.0001 5808 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
19:27:35.0001 5808 arcsas - ok
19:27:35.0063 5808 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:27:35.0079 5808 aspnet_state - ok
19:27:35.0094 5808 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:27:35.0110 5808 AsyncMac - ok
19:27:35.0126 5808 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:27:35.0126 5808 atapi - ok
19:27:35.0157 5808 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
19:27:35.0157 5808 AtiHDAudioService - ok
19:27:35.0204 5808 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:27:35.0204 5808 AudioEndpointBuilder - ok
19:27:35.0219 5808 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:27:35.0219 5808 AudioSrv - ok
19:27:35.0235 5808 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
19:27:35.0250 5808 AxInstSV - ok
19:27:35.0282 5808 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
19:27:35.0282 5808 b06bdrv - ok
19:27:35.0313 5808 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:27:35.0328 5808 b57nd60a - ok
19:27:35.0453 5808 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
19:27:35.0453 5808 BBSvc - ok
19:27:35.0469 5808 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
19:27:35.0469 5808 BBUpdate - ok
19:27:35.0516 5808 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:27:35.0516 5808 BDESVC - ok
19:27:35.0531 5808 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:27:35.0531 5808 Beep - ok
19:27:35.0703 5808 BHDrvx64 (c8ab71a5102d0fc103f6dfc750005137) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\BASHDefs\20120619.001\BHDrvx64.sys
19:27:35.0734 5808 BHDrvx64 - ok
19:27:35.0781 5808 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
19:27:35.0796 5808 BITS - ok
19:27:35.0843 5808 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:27:35.0859 5808 blbdrive - ok
19:27:35.0921 5808 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
19:27:35.0937 5808 Bonjour Service - ok
19:27:35.0952 5808 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:27:35.0952 5808 bowser - ok
19:27:35.0968 5808 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
19:27:35.0968 5808 BrFiltLo - ok
19:27:35.0999 5808 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
19:27:35.0999 5808 BrFiltUp - ok
19:27:36.0015 5808 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
19:27:36.0015 5808 Browser - ok
19:27:36.0046 5808 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:27:36.0046 5808 Brserid - ok
19:27:36.0062 5808 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:27:36.0062 5808 BrSerWdm - ok
19:27:36.0062 5808 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:27:36.0062 5808 BrUsbMdm - ok
19:27:36.0062 5808 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:27:36.0062 5808 BrUsbSer - ok
19:27:36.0077 5808 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
19:27:36.0077 5808 BTHMODEM - ok
19:27:36.0093 5808 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:27:36.0093 5808 bthserv - ok
19:27:36.0124 5808 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
19:27:36.0124 5808 ccSet_NIS - ok
19:27:36.0140 5808 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:27:36.0140 5808 cdfs - ok
19:27:36.0171 5808 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
19:27:36.0171 5808 cdrom - ok
19:27:36.0202 5808 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:27:36.0202 5808 CertPropSvc - ok
19:27:36.0218 5808 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
19:27:36.0218 5808 circlass - ok
19:27:36.0249 5808 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:27:36.0249 5808 CLFS - ok
19:27:36.0327 5808 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:27:36.0327 5808 clr_optimization_v2.0.50727_32 - ok
19:27:36.0374 5808 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:27:36.0374 5808 clr_optimization_v2.0.50727_64 - ok
19:27:36.0420 5808 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:27:36.0436 5808 clr_optimization_v4.0.30319_32 - ok
19:27:36.0467 5808 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:27:36.0467 5808 clr_optimization_v4.0.30319_64 - ok
19:27:36.0498 5808 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
19:27:36.0498 5808 CmBatt - ok
19:27:36.0498 5808 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:27:36.0498 5808 cmdide - ok
19:27:36.0561 5808 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
19:27:36.0576 5808 CNG - ok
19:27:36.0639 5808 CnxtHdAudService (5c855932e4df00b1b6f5f6f57e82b6c5) C:\Windows\system32\drivers\CHDRT64.sys
19:27:36.0654 5808 CnxtHdAudService - ok
19:27:36.0732 5808 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
19:27:36.0732 5808 Compbatt - ok
19:27:36.0748 5808 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:27:36.0764 5808 CompositeBus - ok
19:27:36.0764 5808 COMSysApp - ok
19:27:36.0779 5808 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
19:27:36.0779 5808 crcdisk - ok
19:27:36.0826 5808 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
19:27:36.0826 5808 CryptSvc - ok
19:27:36.0951 5808 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:27:36.0966 5808 cvhsvc - ok
19:27:36.0998 5808 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:27:37.0013 5808 DcomLaunch - ok
19:27:37.0044 5808 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:27:37.0044 5808 defragsvc - ok
19:27:37.0091 5808 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:27:37.0091 5808 DfsC - ok
19:27:37.0122 5808 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
19:27:37.0122 5808 Dhcp - ok
19:27:37.0122 5808 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:27:37.0138 5808 discache - ok
19:27:37.0154 5808 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
19:27:37.0154 5808 Disk - ok
19:27:37.0185 5808 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
19:27:37.0185 5808 Dnscache - ok
19:27:37.0200 5808 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
19:27:37.0200 5808 dot3svc - ok
19:27:37.0216 5808 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
19:27:37.0216 5808 DPS - ok
19:27:37.0232 5808 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:27:37.0247 5808 drmkaud - ok
19:27:37.0419 5808 dump_wmimmc - ok
19:27:37.0466 5808 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:27:37.0481 5808 DXGKrnl - ok
19:27:37.0497 5808 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:27:37.0512 5808 EapHost - ok
19:27:37.0684 5808 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
19:27:37.0746 5808 ebdrv - ok
19:27:37.0809 5808 eeCtrl (ba6420c1f7070ed8f1ba372844f3e1ec) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:27:37.0824 5808 eeCtrl - ok
19:27:37.0918 5808 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
19:27:37.0918 5808 EFS - ok
19:27:37.0965 5808 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
19:27:37.0965 5808 ehRecvr - ok
19:27:37.0980 5808 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:27:37.0996 5808 ehSched - ok
19:27:38.0027 5808 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
19:27:38.0027 5808 elxstor - ok
19:27:38.0105 5808 EraserUtilRebootDrv (1343df3451bc0c442dc69837c6fba21b) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:27:38.0105 5808 EraserUtilRebootDrv - ok
19:27:38.0105 5808 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:27:38.0105 5808 ErrDev - ok
19:27:38.0136 5808 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:27:38.0152 5808 EventSystem - ok
19:27:38.0168 5808 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:27:38.0168 5808 exfat - ok
19:27:38.0168 5808 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:27:38.0183 5808 fastfat - ok
19:27:38.0214 5808 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
19:27:38.0214 5808 Fax - ok
19:27:38.0230 5808 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
19:27:38.0230 5808 fdc - ok
19:27:38.0246 5808 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:27:38.0246 5808 fdPHost - ok
19:27:38.0246 5808 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:27:38.0246 5808 FDResPub - ok
19:27:38.0261 5808 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:27:38.0261 5808 FileInfo - ok
19:27:38.0261 5808 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:27:38.0261 5808 Filetrace - ok
19:27:38.0277 5808 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
19:27:38.0277 5808 flpydisk - ok
19:27:38.0277 5808 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:27:38.0292 5808 FltMgr - ok
19:27:38.0339 5808 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
19:27:38.0355 5808 FontCache - ok
19:27:38.0402 5808 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:27:38.0402 5808 FontCache3.0.0.0 - ok
19:27:38.0433 5808 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:27:38.0433 5808 FsDepends - ok
19:27:38.0480 5808 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
19:27:38.0480 5808 Fs_Rec - ok
19:27:38.0511 5808 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:27:38.0511 5808 fvevol - ok
19:27:38.0526 5808 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
19:27:38.0526 5808 gagp30kx - ok
19:27:38.0604 5808 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
19:27:38.0604 5808 GamesAppService - ok
19:27:38.0636 5808 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:27:38.0651 5808 GEARAspiWDM - ok
19:27:38.0698 5808 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
19:27:38.0698 5808 gpsvc - ok
19:27:38.0823 5808 GS In-Game Service (f2de79ec8a151bcf433be1047f08b9cc) C:\Program Files (x86)\GameTracker\GSInGameService.exe
19:27:38.0838 5808 GS In-Game Service - ok
19:27:38.0948 5808 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
19:27:38.0948 5808 hamachi - ok
19:27:38.0979 5808 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:27:38.0979 5808 hcw85cir - ok
19:27:38.0994 5808 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:27:38.0994 5808 HDAudBus - ok
19:27:38.0994 5808 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
19:27:38.0994 5808 HidBatt - ok
19:27:39.0010 5808 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
19:27:39.0010 5808 HidBth - ok
19:27:39.0026 5808 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
19:27:39.0026 5808 HidIr - ok
19:27:39.0041 5808 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:27:39.0057 5808 hidserv - ok
19:27:39.0072 5808 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
19:27:39.0072 5808 HidUsb - ok
19:27:39.0166 5808 HiPatchService (d61f8e72032bdc43157f2b8aea32b529) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
19:27:39.0166 5808 HiPatchService - ok
19:27:39.0213 5808 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
19:27:39.0213 5808 hkmsvc - ok
19:27:39.0228 5808 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
19:27:39.0228 5808 HomeGroupListener - ok
19:27:39.0244 5808 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
19:27:39.0260 5808 HomeGroupProvider - ok
19:27:39.0275 5808 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:27:39.0275 5808 HpSAMD - ok
19:27:39.0306 5808 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:27:39.0322 5808 HTTP - ok
19:27:39.0338 5808 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:27:39.0338 5808 hwpolicy - ok
19:27:39.0353 5808 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
19:27:39.0369 5808 i8042prt - ok
19:27:39.0400 5808 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:27:39.0400 5808 iaStorV - ok
19:27:39.0478 5808 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:27:39.0478 5808 idsvc - ok
19:27:39.0603 5808 IDSVia64 (ce0bf35c79e03bb89da6b14fac838605) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\IPSDefs\20120627.001\IDSvia64.sys
19:27:39.0618 5808 IDSVia64 - ok
19:27:39.0681 5808 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
19:27:39.0681 5808 iirsp - ok
19:27:39.0728 5808 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
19:27:39.0743 5808 IKEEXT - ok
19:27:39.0759 5808 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:27:39.0759 5808 intelide - ok
19:27:39.0774 5808 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:27:39.0774 5808 intelppm - ok
19:27:39.0790 5808 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:27:39.0790 5808 IPBusEnum - ok
19:27:39.0806 5808 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:27:39.0806 5808 IpFilterDriver - ok
19:27:39.0806 5808 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:27:39.0806 5808 IPMIDRV - ok
19:27:39.0821 5808 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:27:39.0821 5808 IPNAT - ok
19:27:39.0899 5808 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
19:27:39.0915 5808 iPod Service - ok
19:27:39.0930 5808 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:27:39.0930 5808 IRENUM - ok
19:27:39.0930 5808 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:27:39.0930 5808 isapnp - ok
19:27:39.0946 5808 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:27:39.0946 5808 iScsiPrt - ok
19:27:39.0962 5808 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
19:27:39.0962 5808 kbdclass - ok
19:27:39.0977 5808 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
19:27:39.0977 5808 kbdhid - ok
19:27:40.0008 5808 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:27:40.0008 5808 KeyIso - ok
19:27:40.0024 5808 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
19:27:40.0024 5808 KSecDD - ok
19:27:40.0055 5808 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
19:27:40.0055 5808 KSecPkg - ok
19:27:40.0055 5808 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:27:40.0071 5808 ksthunk - ok
19:27:40.0102 5808 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:27:40.0102 5808 KtmRm - ok
19:27:40.0149 5808 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
19:27:40.0149 5808 LanmanServer - ok
19:27:40.0180 5808 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
19:27:40.0180 5808 LanmanWorkstation - ok
19:27:40.0196 5808 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:27:40.0196 5808 lltdio - ok
19:27:40.0227 5808 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:27:40.0227 5808 lltdsvc - ok
19:27:40.0242 5808 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:27:40.0242 5808 lmhosts - ok
19:27:40.0258 5808 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
19:27:40.0258 5808 LSI_FC - ok
19:27:40.0289 5808 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
19:27:40.0289 5808 LSI_SAS - ok
19:27:40.0305 5808 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
19:27:40.0305 5808 LSI_SAS2 - ok
19:27:40.0305 5808 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
19:27:40.0305 5808 LSI_SCSI - ok
19:27:40.0320 5808 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:27:40.0320 5808 luafv - ok
19:27:40.0336 5808 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
19:27:40.0352 5808 MBAMProtector - ok
19:27:40.0398 5808 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:27:40.0445 5808 MBAMService - ok
19:27:40.0492 5808 McMPFSvc - ok
19:27:40.0508 5808 mcmscsvc - ok
19:27:40.0508 5808 McNaiAnn - ok
19:27:40.0508 5808 McNASvc - ok
19:27:40.0523 5808 McODS - ok
19:27:40.0523 5808 McProxy - ok
19:27:40.0539 5808 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
19:27:40.0554 5808 Mcx2Svc - ok
19:27:40.0570 5808 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
19:27:40.0570 5808 megasas - ok
19:27:40.0601 5808 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
19:27:40.0617 5808 MegaSR - ok
19:27:40.0664 5808 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
19:27:40.0664 5808 MEIx64 - ok
19:27:40.0695 5808 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:27:40.0695 5808 MMCSS - ok
19:27:40.0695 5808 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:27:40.0695 5808 Modem - ok
19:27:40.0726 5808 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:27:40.0726 5808 monitor - ok
19:27:40.0742 5808 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
19:27:40.0742 5808 mouclass - ok
19:27:40.0757 5808 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:27:40.0757 5808 mouhid - ok
19:27:40.0773 5808 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:27:40.0773 5808 mountmgr - ok
19:27:40.0788 5808 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:27:40.0788 5808 mpio - ok
19:27:40.0788 5808 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:27:40.0788 5808 mpsdrv - ok
19:27:40.0804 5808 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:27:40.0804 5808 MRxDAV - ok
19:27:40.0835 5808 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:27:40.0835 5808 mrxsmb - ok
19:27:40.0882 5808 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:27:40.0882 5808 mrxsmb10 - ok
19:27:40.0898 5808 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:27:40.0898 5808 mrxsmb20 - ok
19:27:40.0929 5808 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:27:40.0929 5808 msahci - ok
19:27:40.0960 5808 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:27:40.0960 5808 msdsm - ok
19:27:40.0991 5808 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:27:40.0991 5808 MSDTC - ok
19:27:40.0991 5808 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:27:41.0007 5808 Msfs - ok
19:27:41.0007 5808 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:27:41.0007 5808 mshidkmdf - ok
19:27:41.0007 5808 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:27:41.0007 5808 msisadrv - ok
19:27:41.0038 5808 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:27:41.0038 5808 MSiSCSI - ok
19:27:41.0038 5808 msiserver - ok
19:27:41.0054 5808 MSK80Service - ok
19:27:41.0085 5808 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:27:41.0085 5808 MSKSSRV - ok
19:27:41.0085 5808 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:27:41.0085 5808 MSPCLOCK - ok
19:27:41.0100 5808 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:27:41.0100 5808 MSPQM - ok
19:27:41.0116 5808 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:27:41.0116 5808 MsRPC - ok
19:27:41.0132 5808 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
19:27:41.0132 5808 mssmbios - ok
19:27:41.0147 5808 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:27:41.0147 5808 MSTEE - ok
19:27:41.0147 5808 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
19:27:41.0147 5808 MTConfig - ok
19:27:41.0163 5808 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:27:41.0163 5808 Mup - ok
19:27:41.0210 5808 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
19:27:41.0210 5808 napagent - ok
19:27:41.0241 5808 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:27:41.0241 5808 NativeWifiP - ok
19:27:41.0350 5808 NAUpdate (9d1cce440552500ded3a62f9d779cdb4) C:\Program Files (x86)\Nero\Update\NASvc.exe
19:27:41.0350 5808 NAUpdate - ok
19:27:41.0693 5808 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20120628.004\ENG64.SYS
19:27:41.0724 5808 NAVENG - ok
19:27:41.0958 5808 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20120628.004\EX64.SYS
19:27:42.0005 5808 NAVEX15 - ok
19:27:42.0192 5808 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
19:27:42.0208 5808 NDIS - ok
19:27:42.0224 5808 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:27:42.0224 5808 NdisCap - ok
19:27:42.0270 5808 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:27:42.0270 5808 NdisTapi - ok
19:27:42.0348 5808 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:27:42.0348 5808 Ndisuio - ok
19:27:42.0458 5808 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:27:42.0458 5808 NdisWan - ok
19:27:42.0520 5808 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:27:42.0520 5808 NDProxy - ok
19:27:42.0536 5808 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:27:42.0536 5808 NetBIOS - ok
19:27:42.0551 5808 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:27:42.0551 5808 NetBT - ok
19:27:42.0598 5808 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:27:42.0598 5808 Netlogon - ok
19:27:42.0645 5808 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:27:42.0645 5808 Netman - ok
19:27:42.0707 5808 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:42.0707 5808 NetMsmqActivator - ok
19:27:42.0707 5808 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:42.0707 5808 NetPipeActivator - ok
19:27:42.0894 5808 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:27:42.0910 5808 netprofm - ok
19:27:42.0910 5808 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:42.0910 5808 NetTcpActivator - ok
19:27:42.0910 5808 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:27:42.0926 5808 NetTcpPortSharing - ok
19:27:42.0972 5808 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
19:27:42.0972 5808 nfrd960 - ok
19:27:43.0050 5808 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
19:27:43.0050 5808 NIS - ok
19:27:43.0082 5808 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
19:27:43.0082 5808 NlaSvc - ok
19:27:43.0222 5808 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
19:27:43.0253 5808 NOBU - ok
19:27:43.0331 5808 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:27:43.0331 5808 Npfs - ok
19:27:43.0347 5808 npggsvc - ok
19:27:43.0347 5808 NPPTNT2 - ok
19:27:43.0378 5808 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:27:43.0378 5808 nsi - ok
19:27:43.0394 5808 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:27:43.0394 5808 nsiproxy - ok
19:27:43.0456 5808 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:27:43.0487 5808 Ntfs - ok
19:27:43.0550 5808 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:27:43.0565 5808 Null - ok
19:27:43.0581 5808 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:27:43.0596 5808 nvraid - ok
19:27:43.0596 5808 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:27:43.0612 5808 nvstor - ok
19:27:43.0612 5808 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:27:43.0628 5808 nv_agp - ok
19:27:43.0737 5808 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:27:43.0737 5808 odserv - ok
19:27:43.0752 5808 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:27:43.0752 5808 ohci1394 - ok
19:27:43.0815 5808 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:27:43.0815 5808 ose - ok
19:27:43.0986 5808 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:27:44.0049 5808 osppsvc - ok
19:27:44.0127 5808 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:27:44.0142 5808 p2pimsvc - ok
19:27:44.0158 5808 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:27:44.0158 5808 p2psvc - ok
19:27:44.0189 5808 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
19:27:44.0189 5808 Parport - ok
19:27:44.0236 5808 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
19:27:44.0236 5808 partmgr - ok
19:27:44.0252 5808 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:27:44.0252 5808 PcaSvc - ok
19:27:44.0314 5808 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
19:27:44.0314 5808 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
19:27:44.0330 5808 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:27:44.0330 5808 pci - ok
19:27:44.0361 5808 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:27:44.0361 5808 pciide - ok
19:27:44.0376 5808 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
19:27:44.0376 5808 pcmcia - ok
19:27:44.0392 5808 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:27:44.0392 5808 pcw - ok
19:27:44.0423 5808 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:27:44.0423 5808 PEAUTH - ok
19:27:44.0486 5808 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:27:44.0486 5808 PerfHost - ok
19:27:44.0548 5808 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
19:27:44.0564 5808 pla - ok
19:27:44.0595 5808 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
19:27:44.0595 5808 PlugPlay - ok
19:27:44.0610 5808 PnkBstrA - ok
19:27:44.0626 5808 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:27:44.0626 5808 PNRPAutoReg - ok
19:27:44.0642 5808 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:27:44.0657 5808 PNRPsvc - ok
19:27:44.0673 5808 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
19:27:44.0688 5808 PolicyAgent - ok
19:27:44.0704 5808 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:27:44.0720 5808 Power - ok
19:27:44.0766 5808 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:27:44.0766 5808 PptpMiniport - ok
19:27:44.0766 5808 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
19:27:44.0766 5808 Processor - ok
19:27:44.0813 5808 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
19:27:44.0829 5808 ProfSvc - ok
19:27:44.0860 5808 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:27:44.0860 5808 ProtectedStorage - ok
19:27:44.0891 5808 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:27:44.0891 5808 Psched - ok
19:27:44.0907 5808 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
19:27:44.0907 5808 PxHlpa64 - ok
19:27:44.0954 5808 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
19:27:44.0985 5808 ql2300 - ok
19:27:45.0078 5808 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
19:27:45.0078 5808 ql40xx - ok
19:27:45.0094 5808 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:27:45.0110 5808 QWAVE - ok
19:27:45.0110 5808 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:27:45.0110 5808 QWAVEdrv - ok
19:27:45.0125 5808 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:27:45.0125 5808 RasAcd - ok
19:27:45.0156 5808 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:27:45.0156 5808 RasAgileVpn - ok
19:27:45.0172 5808 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:27:45.0172 5808 RasAuto - ok
19:27:45.0188 5808 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:27:45.0188 5808 Rasl2tp - ok
19:27:45.0219 5808 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
19:27:45.0219 5808 RasMan - ok
19:27:45.0219 5808 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:27:45.0219 5808 RasPppoe - ok
19:27:45.0234 5808 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:27:45.0234 5808 RasSstp - ok
19:27:45.0250 5808 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:27:45.0250 5808 rdbss - ok
19:27:45.0266 5808 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
19:27:45.0266 5808 rdpbus - ok
19:27:45.0281 5808 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:27:45.0281 5808 RDPCDD - ok
19:27:45.0297 5808 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:27:45.0297 5808 RDPENCDD - ok
19:27:45.0328 5808 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:27:45.0328 5808 RDPREFMP - ok
19:27:45.0359 5808 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
19:27:45.0375 5808 RDPWD - ok
19:27:45.0406 5808 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:27:45.0406 5808 rdyboost - ok
19:27:45.0437 5808 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:27:45.0437 5808 RemoteAccess - ok
19:27:45.0468 5808 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:27:45.0468 5808 RemoteRegistry - ok
19:27:45.0593 5808 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
19:27:45.0593 5808 RoxMediaDB12OEM - ok
19:27:45.0640 5808 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
19:27:45.0640 5808 RoxWatch12 - ok
19:27:45.0702 5808 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:27:45.0718 5808 RpcEptMapper - ok
19:27:45.0734 5808 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:27:45.0734 5808 RpcLocator - ok
19:27:45.0749 5808 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:27:45.0765 5808 RpcSs - ok
19:27:45.0796 5808 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:27:45.0796 5808 rspndr - ok
19:27:45.0843 5808 RTL8167 (6d3c7e7d82d3dc92dc2a8b0df9f20f8a) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:27:45.0843 5808 RTL8167 - ok
19:27:45.0874 5808 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:27:45.0874 5808 SamSs - ok
19:27:45.0905 5808 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:27:45.0905 5808 sbp2port - ok
19:27:45.0936 5808 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:27:45.0936 5808 SCardSvr - ok
19:27:45.0968 5808 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:27:45.0968 5808 scfilter - ok
19:27:45.0999 5808 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
19:27:46.0014 5808 Schedule - ok
19:27:46.0030 5808 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:27:46.0030 5808 SCPolicySvc - ok
19:27:46.0046 5808 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
19:27:46.0046 5808 SDRSVC - ok
19:27:46.0092 5808 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:27:46.0092 5808 secdrv - ok
19:27:46.0092 5808 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
19:27:46.0092 5808 seclogon - ok
19:27:46.0124 5808 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:27:46.0124 5808 SENS - ok
19:27:46.0124 5808 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:27:46.0124 5808 SensrSvc - ok
19:27:46.0155 5808 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
19:27:46.0155 5808 Serenum - ok
19:27:46.0186 5808 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
19:27:46.0186 5808 Serial - ok
19:27:46.0202 5808 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
19:27:46.0202 5808 sermouse - ok
19:27:46.0248 5808 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
19:27:46.0248 5808 SessionEnv - ok
19:27:46.0248 5808 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:27:46.0248 5808 sffdisk - ok
19:27:46.0264 5808 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:27:46.0264 5808 sffp_mmc - ok
19:27:46.0264 5808 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:27:46.0264 5808 sffp_sd - ok
19:27:46.0264 5808 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
19:27:46.0264 5808 sfloppy - ok
19:27:46.0326 5808 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
19:27:46.0342 5808 Sftfs - ok
19:27:46.0451 5808 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:27:46.0467 5808 sftlist - ok
19:27:46.0482 5808 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:27:46.0482 5808 Sftplay - ok
19:27:46.0498 5808 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:27:46.0498 5808 Sftredir - ok
19:27:46.0592 5808 SftService (6f36ee03af65de9aeb024809866d19b1) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
19:27:46.0685 5808 SftService - ok
19:27:46.0794 5808 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
19:27:46.0794 5808 Sftvol - ok
19:27:46.0904 5808 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:27:46.0904 5808 sftvsa - ok
19:27:46.0935 5808 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
19:27:46.0935 5808 ShellHWDetection - ok
19:27:46.0966 5808 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
19:27:46.0966 5808 SiSRaid2 - ok
19:27:46.0966 5808 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
19:27:46.0966 5808 SiSRaid4 - ok
19:27:46.0997 5808 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
19:27:46.0997 5808 SkypeUpdate - ok
19:27:47.0013 5808 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:27:47.0013 5808 Smb - ok
19:27:47.0028 5808 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:27:47.0044 5808 SNMPTRAP - ok
19:27:47.0044 5808 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:27:47.0044 5808 spldr - ok
19:27:47.0075 5808 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
19:27:47.0075 5808 Spooler - ok
19:27:47.0169 5808 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
19:27:47.0184 5808 sppsvc - ok
19:27:47.0403 5808 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:27:47.0403 5808 sppuinotify - ok
19:27:47.0606 5808 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\system32\drivers\NISx64\1307010.005\SRTSP64.SYS
19:27:47.0606 5808 SRTSP - ok
19:27:47.0637 5808 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
19:27:47.0652 5808 SRTSPX - ok
19:27:47.0684 5808 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:27:47.0684 5808 srv - ok
19:27:47.0699 5808 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:27:47.0715 5808 srv2 - ok
19:27:47.0715 5808 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:27:47.0730 5808 srvnet - ok
19:27:47.0762 5808 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:27:47.0762 5808 SSDPSRV - ok
19:27:47.0777 5808 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:27:47.0777 5808 SstpSvc - ok
19:27:47.0808 5808 Steam Client Service - ok
19:27:47.0824 5808 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
19:27:47.0824 5808 stexstor - ok
19:27:47.0871 5808 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
19:27:47.0871 5808 stisvc - ok
19:27:47.0918 5808 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
19:27:47.0918 5808 stllssvr - ok
19:27:47.0918 5808 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
19:27:47.0918 5808 swenum - ok
19:27:47.0949 5808 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:27:47.0964 5808 swprv - ok
19:27:48.0011 5808 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
19:27:48.0011 5808 SymDS - ok
19:27:48.0058 5808 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
19:27:48.0074 5808 SymEFA - ok
19:27:48.0105 5808 SymEvent (898bb48c797483420df523b2bbc1ecdb) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:27:48.0120 5808 SymEvent - ok
19:27:48.0120 5808 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
19:27:48.0136 5808 SymIRON - ok
19:27:48.0152 5808 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\system32\drivers\NISx64\1307010.005\SYMNETS.SYS
19:27:48.0152 5808 SymNetS - ok
19:27:48.0230 5808 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
19:27:48.0261 5808 SysMain - ok
19:27:48.0323 5808 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
19:27:48.0323 5808 TabletInputService - ok
19:27:48.0339 5808 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
19:27:48.0354 5808 TapiSrv - ok
19:27:48.0354 5808 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:27:48.0370 5808 TBS - ok
19:27:48.0464 5808 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
19:27:48.0479 5808 Tcpip - ok
19:27:48.0604 5808 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
19:27:48.0604 5808 TCPIP6 - ok
19:27:48.0666 5808 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:27:48.0666 5808 tcpipreg - ok
19:27:48.0682 5808 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:27:48.0682 5808 TDPIPE - ok
19:27:48.0729 5808 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
19:27:48.0729 5808 TDTCP - ok
19:27:48.0744 5808 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:27:48.0744 5808 tdx - ok
19:27:48.0760 5808 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
19:27:48.0760 5808 TermDD - ok
19:27:48.0807 5808 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
19:27:48.0807 5808 TermService - ok
19:27:48.0822 5808 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:27:48.0822 5808 Themes - ok
19:27:48.0838 5808 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:27:48.0838 5808 THREADORDER - ok
19:27:48.0854 5808 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:27:48.0869 5808 TrkWks - ok
19:27:48.0916 5808 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
19:27:48.0916 5808 TrustedInstaller - ok
19:27:48.0947 5808 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:27:48.0947 5808 tssecsrv - ok
19:27:48.0963 5808 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:27:48.0963 5808 TsUsbFlt - ok
19:27:48.0963 5808 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
19:27:48.0978 5808 TsUsbGD - ok
19:27:48.0994 5808 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:27:48.0994 5808 tunnel - ok
19:27:49.0010 5808 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
19:27:49.0010 5808 uagp35 - ok
19:27:49.0025 5808 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:27:49.0041 5808 udfs - ok
19:27:49.0072 5808 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:27:49.0072 5808 UI0Detect - ok
19:27:49.0088 5808 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:27:49.0088 5808 uliagpkx - ok
19:27:49.0103 5808 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
19:27:49.0103 5808 umbus - ok
19:27:49.0119 5808 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
19:27:49.0119 5808 UmPass - ok
19:27:49.0134 5808 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:27:49.0134 5808 upnphost - ok
19:27:49.0181 5808 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
19:27:49.0181 5808 USBAAPL64 - ok
19:27:49.0244 5808 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
19:27:49.0244 5808 usbaudio - ok
19:27:49.0259 5808 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\Windows\system32\DRIVERS\usbccgp.sys
19:27:49.0259 5808 usbccgp - ok
19:27:49.0290 5808 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:27:49.0290 5808 usbcir - ok
19:27:49.0306 5808 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
19:27:49.0306 5808 usbehci - ok
19:27:49.0353 5808 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:27:49.0353 5808 usbhub - ok
19:27:49.0368 5808 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
19:27:49.0384 5808 usbohci - ok
19:27:49.0384 5808 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
19:27:49.0384 5808 usbprint - ok
19:27:49.0400 5808 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:27:49.0400 5808 USBSTOR - ok
19:27:49.0431 5808 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:27:49.0431 5808 usbuhci - ok
19:27:49.0446 5808 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:27:49.0446 5808 UxSms - ok
19:27:49.0493 5808 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:27:49.0493 5808 VaultSvc - ok
19:27:49.0524 5808 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:27:49.0524 5808 vdrvroot - ok
19:27:49.0540 5808 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
19:27:49.0556 5808 vds - ok
19:27:49.0571 5808 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:27:49.0571 5808 vga - ok
19:27:49.0587 5808 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:27:49.0587 5808 VgaSave - ok
19:27:49.0602 5808 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:27:49.0602 5808 vhdmp - ok
19:27:49.0602 5808 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:27:49.0602 5808 viaide - ok
19:27:49.0618 5808 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:27:49.0618 5808 volmgr - ok
19:27:49.0634 5808 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:27:49.0634 5808 volmgrx - ok
19:27:49.0665 5808 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:27:49.0665 5808 volsnap - ok
19:27:49.0680 5808 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
19:27:49.0680 5808 vsmraid - ok
19:27:49.0743 5808 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
19:27:49.0758 5808 VSS - ok
19:27:49.0852 5808 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
19:27:49.0852 5808 vwifibus - ok
19:27:49.0883 5808 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:27:49.0883 5808 W32Time - ok
19:27:49.0899 5808 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
19:27:49.0899 5808 WacomPen - ok
19:27:49.0914 5808 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:27:49.0914 5808 WANARP - ok
19:27:49.0914 5808 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:27:49.0914 5808 Wanarpv6 - ok
19:27:49.0992 5808 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:27:50.0024 5808 WatAdminSvc - ok
19:27:50.0086 5808 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
19:27:50.0117 5808 wbengine - ok
19:27:50.0180 5808 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:27:50.0195 5808 WbioSrvc - ok
19:27:50.0211 5808 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
19:27:50.0226 5808 wcncsvc - ok
19:27:50.0226 5808 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:27:50.0226 5808 WcsPlugInService - ok
19:27:50.0258 5808 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
19:27:50.0258 5808 Wd - ok
19:27:50.0304 5808 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:27:50.0304 5808 Wdf01000 - ok
19:27:50.0320 5808 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:27:50.0336 5808 WdiServiceHost - ok
19:27:50.0336 5808 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:27:50.0336 5808 WdiSystemHost - ok
19:27:50.0351 5808 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
19:27:50.0351 5808 WebClient - ok
19:27:50.0367 5808 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:27:50.0367 5808 Wecsvc - ok
19:27:50.0382 5808 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:27:50.0382 5808 wercplsupport - ok
19:27:50.0398 5808 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:27:50.0398 5808 WerSvc - ok
19:27:50.0445 5808 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:27:50.0445 5808 WfpLwf - ok
19:27:50.0476 5808 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
19:27:50.0476 5808 WimFltr - ok
19:27:50.0492 5808 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:27:50.0492 5808 WIMMount - ok
19:27:50.0492 5808 WinHttpAutoProxySvc - ok
19:27:50.0538 5808 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:27:50.0538 5808 Winmgmt - ok
19:27:50.0616 5808 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
19:27:50.0648 5808 WinRM - ok
19:27:50.0772 5808 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
19:27:50.0772 5808 WinUsb - ok
19:27:50.0819 5808 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:27:50.0835 5808 Wlansvc - ok
19:27:50.0882 5808 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:27:50.0882 5808 wlcrasvc - ok
19:27:50.0975 5808 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:27:51.0006 5808 wlidsvc - ok
19:27:51.0084 5808 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:27:51.0084 5808 WmiAcpi - ok
19:27:51.0116 5808 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:27:51.0116 5808 wmiApSrv - ok
19:27:51.0147 5808 WMPNetworkSvc - ok
19:27:51.0162 5808 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:27:51.0162 5808 WPCSvc - ok
19:27:51.0178 5808 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
19:27:51.0194 5808 WPDBusEnum - ok
19:27:51.0209 5808 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:27:51.0209 5808 ws2ifsl - ok
19:27:51.0209 5808 WSearch - ok
19:27:51.0318 5808 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
19:27:51.0350 5808 wuauserv - ok
19:27:51.0443 5808 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:27:51.0443 5808 WudfPf - ok
19:27:51.0459 5808 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:27:51.0459 5808 WUDFRd - ok
19:27:51.0490 5808 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
19:27:51.0490 5808 wudfsvc - ok
19:27:51.0506 5808 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:27:51.0506 5808 WwanSvc - ok
19:27:51.0521 5808 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:27:51.0786 5808 \Device\Harddisk0\DR0 - ok
19:27:51.0786 5808 Boot (0x1200) (388b8b326ce30b702d5b6a2bcb7cf306) \Device\Harddisk0\DR0\Partition0
19:27:51.0786 5808 \Device\Harddisk0\DR0\Partition0 - ok
19:27:51.0818 5808 Boot (0x1200) (050d2ea1411e016a94dcff7dce7bb0a5) \Device\Harddisk0\DR0\Partition1
19:27:51.0818 5808 \Device\Harddisk0\DR0\Partition1 - ok
19:27:51.0818 5808 ============================================================
19:27:51.0818 5808 Scan finished
19:27:51.0818 5808 ============================================================
19:27:51.0833 5936 Detected object count: 0
19:27:51.0833 5936 Actual detected object count: 0




aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-28 19:30:44
-----------------------------
19:30:44.522 OS Version: Windows x64 6.1.7601 Service Pack 1
19:30:44.522 Number of processors: 4 586 0x2A07
19:30:44.522 ComputerName: ALEX-DELLPC UserName: Alex
19:30:47.666 Initialize success
19:31:32.690 AVAST engine defs: 12062800
19:31:41.083 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:31:41.083 Disk 0 Vendor: ST3500413AS JC47 Size: 476940MB BusType: 3
19:31:41.099 Disk 0 MBR read successfully
19:31:41.099 Disk 0 MBR scan
19:31:41.099 Disk 0 Windows VISTA default MBR code
19:31:41.114 Disk 0 Partition 1 00 DE Dell Utility DELL 4.1 39 MB offset 63
19:31:41.114 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15166 MB offset 81920
19:31:41.130 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461733 MB offset 31141888
19:31:41.161 Disk 0 scanning C:\Windows\system32\drivers
19:31:50.162 Service scanning
19:32:06.040 Modules scanning
19:32:06.048 Disk 0 trace - called modules:
19:32:06.069 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys
19:32:06.075 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004d1e060]
19:32:06.080 3 CLASSPNP.SYS[fffff88001b4e43f] -> nt!IofCallDriver -> [0xfffffa80048d4520]
19:32:06.086 5 ACPI.sys[fffff88000f257a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80048d6060]
19:32:06.936 AVAST engine scan C:\Windows
19:32:09.325 AVAST engine scan C:\Windows\system32
19:34:45.820 AVAST engine scan C:\Windows\system32\drivers
19:34:58.816 AVAST engine scan C:\Users\Alex
19:45:26.151 AVAST engine scan C:\ProgramData
19:55:00.545 Scan finished successfully
19:57:13.155 Disk 0 MBR has been saved successfully to "C:\Users\Alex\Downloads\MBR.dat"
19:57:13.155 The log file has been saved successfully to "C:\Users\Alex\Downloads\aswMBR.txt"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users