Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Request help in eradicating Trojan.Dropper.BCMiner


  • This topic is locked This topic is locked
11 replies to this topic

#1 ndbleep12

ndbleep12

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 07:27 PM

I have Windows Vista Home Premium (Service Pack 2) 64-Bit. Running AVG free 2012, with latest definitions. Having trouble completely cleaning system of Trojan.Dropper.BCMiner. Malwarebytes identifies it as

C:\Windows\Installer\{6a5acc82-cd10-0a26-3d3e-bd6b6a4e838c}\U\00000008.@ (Trojan.Dropper.BCMiner)

after a quick scan and reports successful elimination, but upon reboot and re-scan, it is still there (or been reinstalled upon start up). Ran a complete eset scan, found 7 problems, but could only correct 6. Any advice or direction you could give would be appreciated.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 07 July 2012 - 07:35 PM

Hello, this looks like it may also be carrying a rootit.

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.


AND..
Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.


Next...

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


Then some system info...

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Edited by boopme, 07 July 2012 - 07:36 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ndbleep12

ndbleep12
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 07:52 PM

Thanks greatly for your quick reponse!!
No Threats found by TDSSKiller

No reboot required, moving on to Eset scan (last one took 21/2 hrs). TDSSkiller report text below...


17:39:18.0236 7280 TDSS rootkit removing tool 2.7.44.0 Jul 2 2012 20:01:08
17:39:19.0118 7280 ============================================================
17:39:19.0119 7280 Current date / time: 2012/07/07 17:39:19.0118
17:39:19.0119 7280 SystemInfo:
17:39:19.0119 7280
17:39:19.0119 7280 OS Version: 6.0.6002 ServicePack: 2.0
17:39:19.0119 7280 Product type: Workstation
17:39:19.0119 7280 ComputerName: ST-PC
17:39:19.0119 7280 UserName: st
17:39:19.0119 7280 Windows directory: C:\Windows
17:39:19.0119 7280 System windows directory: C:\Windows
17:39:19.0119 7280 Running under WOW64
17:39:19.0119 7280 Processor architecture: Intel x64
17:39:19.0119 7280 Number of processors: 4
17:39:19.0119 7280 Page size: 0x1000
17:39:19.0119 7280 Boot type: Normal boot
17:39:19.0119 7280 ============================================================
17:39:25.0615 7280 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:25.0615 7280 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:25.0623 7280 Drive \Device\Harddisk2\DR2 - Size: 0x77800000 (1.87 Gb), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:39:25.0645 7280 ============================================================
17:39:25.0645 7280 \Device\Harddisk0\DR0:
17:39:25.0645 7280 MBR partitions:
17:39:25.0645 7280 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x38ADE0F9
17:39:25.0645 7280 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x38ADE138, BlocksNum 0x18A6B09
17:39:25.0645 7280 \Device\Harddisk1\DR1:
17:39:25.0645 7280 MBR partitions:
17:39:25.0645 7280 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
17:39:25.0645 7280 \Device\Harddisk2\DR2:
17:39:25.0646 7280 MBR partitions:
17:39:25.0646 7280 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x3BBFE0
17:39:25.0646 7280 ============================================================
17:39:25.0671 7280 C: <-> \Device\Harddisk0\DR0\Partition0
17:39:25.0707 7280 E: <-> \Device\Harddisk1\DR1\Partition0
17:39:25.0779 7280 D: <-> \Device\Harddisk0\DR0\Partition1
17:39:25.0779 7280 ============================================================
17:39:25.0779 7280 Initialize success
17:39:25.0779 7280 ============================================================
17:41:35.0316 2604 ============================================================
17:41:35.0316 2604 Scan started
17:41:35.0316 2604 Mode: Manual; TDLFS;
17:41:35.0316 2604 ============================================================
17:41:36.0451 2604 61883 (78e902fb660bd5003fe726b9bef300b6) C:\Windows\system32\DRIVERS\61883.sys
17:41:36.0463 2604 61883 - ok
17:41:36.0580 2604 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:41:36.0581 2604 ACDaemon - ok
17:41:36.0642 2604 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
17:41:36.0645 2604 ACPI - ok
17:41:36.0685 2604 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:41:36.0686 2604 AdobeARMservice - ok
17:41:36.0750 2604 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
17:41:36.0784 2604 adp94xx - ok
17:41:36.0847 2604 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
17:41:36.0868 2604 adpahci - ok
17:41:36.0918 2604 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
17:41:36.0929 2604 adpu160m - ok
17:41:36.0982 2604 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
17:41:37.0000 2604 adpu320 - ok
17:41:37.0040 2604 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
17:41:37.0041 2604 AeLookupSvc - ok
17:41:37.0167 2604 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
17:41:37.0169 2604 Afc - ok
17:41:37.0245 2604 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
17:41:37.0247 2604 AFD - ok
17:41:37.0283 2604 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
17:41:37.0293 2604 agp440 - ok
17:41:37.0312 2604 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
17:41:37.0323 2604 aic78xx - ok
17:41:37.0344 2604 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
17:41:37.0346 2604 ALG - ok
17:41:37.0365 2604 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
17:41:37.0374 2604 aliide - ok
17:41:37.0389 2604 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
17:41:37.0397 2604 amdide - ok
17:41:37.0428 2604 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
17:41:37.0438 2604 AmdK8 - ok
17:41:37.0466 2604 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
17:41:37.0467 2604 Appinfo - ok
17:41:37.0587 2604 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:41:37.0588 2604 Apple Mobile Device - ok
17:41:37.0645 2604 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
17:41:37.0656 2604 arc - ok
17:41:37.0695 2604 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
17:41:37.0705 2604 arcsas - ok
17:41:37.0753 2604 ARCSOFTVIRTUALCAPTURE (49f9005adfbf19d09d9c465099271e7e) C:\Windows\system32\DRIVERS\ArcSoftVirtualCapture.sys
17:41:37.0761 2604 ARCSOFTVIRTUALCAPTURE - ok
17:41:37.0868 2604 aspnet_state (e1a1206a4fb19b675e947b29ccd25fba) C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
17:41:37.0869 2604 aspnet_state - ok
17:41:37.0918 2604 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
17:41:37.0920 2604 AsyncMac - ok
17:41:37.0946 2604 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
17:41:37.0956 2604 atapi - ok
17:41:38.0039 2604 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
17:41:38.0042 2604 AudioEndpointBuilder - ok
17:41:38.0049 2604 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
17:41:38.0052 2604 AudioSrv - ok
17:41:38.0099 2604 Avc (295fa2878ff499c0edfa0ebcc8c6ec66) C:\Windows\system32\DRIVERS\avc.sys
17:41:38.0109 2604 Avc - ok
17:41:38.0546 2604 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
17:41:38.0574 2604 AVGIDSAgent - ok
17:41:38.0752 2604 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:41:38.0755 2604 AVGIDSDriver - ok
17:41:38.0845 2604 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:41:38.0846 2604 AVGIDSFilter - ok
17:41:38.0899 2604 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
17:41:38.0900 2604 AVGIDSHA - ok
17:41:38.0955 2604 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
17:41:38.0993 2604 Avgldx64 - ok
17:41:39.0016 2604 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
17:41:39.0018 2604 Avgmfx64 - ok
17:41:39.0051 2604 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
17:41:39.0052 2604 Avgrkx64 - ok
17:41:39.0115 2604 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
17:41:39.0161 2604 Avgtdia - ok
17:41:39.0338 2604 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:41:39.0340 2604 avgwd - ok
17:41:39.0485 2604 BBSvc (47480f4260dae9aa589bcaf924b3767a) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
17:41:39.0486 2604 BBSvc - ok
17:41:39.0553 2604 BBUpdate (6bf743cbf3bcd09dab79245e60e1ae62) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
17:41:39.0554 2604 BBUpdate - ok
17:41:39.0637 2604 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
17:41:39.0639 2604 BFE - ok
17:41:39.0767 2604 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
17:41:39.0819 2604 BITS - ok
17:41:39.0922 2604 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
17:41:39.0931 2604 blbdrive - ok
17:41:40.0092 2604 BlueSoleil Hid Service (55f24e6ec983fcc7510293b05a27ceec) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
17:41:40.0094 2604 BlueSoleil Hid Service - ok
17:41:40.0268 2604 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:41:40.0271 2604 Bonjour Service - ok
17:41:40.0342 2604 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
17:41:40.0343 2604 bowser - ok
17:41:40.0371 2604 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
17:41:40.0378 2604 BrFiltLo - ok
17:41:40.0402 2604 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
17:41:40.0409 2604 BrFiltUp - ok
17:41:40.0469 2604 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
17:41:40.0470 2604 Browser - ok
17:41:40.0512 2604 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
17:41:40.0523 2604 Brserid - ok
17:41:40.0555 2604 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
17:41:40.0565 2604 BrSerWdm - ok
17:41:40.0595 2604 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
17:41:40.0603 2604 BrUsbMdm - ok
17:41:40.0646 2604 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
17:41:40.0654 2604 BrUsbSer - ok
17:41:40.0736 2604 BthEnum (09f926a0d9c0bafd8417a4307d2ed13c) C:\Windows\system32\DRIVERS\BthEnum.sys
17:41:40.0744 2604 BthEnum - ok
17:41:40.0795 2604 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
17:41:40.0804 2604 BTHMODEM - ok
17:41:40.0884 2604 BthPan (befc5311736b475ac5b60c14ff7c775a) C:\Windows\system32\DRIVERS\bthpan.sys
17:41:40.0897 2604 BthPan - ok
17:41:40.0977 2604 BTHPORT (e1466882252ff51edde48c3f7eda2591) C:\Windows\system32\Drivers\BTHport.sys
17:41:40.0998 2604 BTHPORT - ok
17:41:41.0086 2604 BthServ (22e65ffd640f16968f855f5b3528d366) C:\Windows\System32\bthserv.dll
17:41:41.0087 2604 BthServ - ok
17:41:41.0157 2604 BTHUSB (970192cded77a128e7e30722e5ee6b9c) C:\Windows\system32\Drivers\BTHUSB.sys
17:41:41.0166 2604 BTHUSB - ok
17:41:41.0647 2604 CarboniteService (9da7d983b4e9ea2d065edf566ca64fc8) C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
17:41:41.0691 2604 CarboniteService - ok
17:41:41.0836 2604 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
17:41:41.0838 2604 cdfs - ok
17:41:41.0895 2604 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
17:41:41.0905 2604 cdrom - ok
17:41:41.0966 2604 CDRPDACC (30b37c18e1725eb9f25039e9a1fb9b7e) C:\Program Files (x86)\Quintessential Player\cdrpdacc.sys
17:41:41.0966 2604 CDRPDACC - ok
17:41:42.0034 2604 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
17:41:42.0035 2604 CertPropSvc - ok
17:41:42.0045 2604 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
17:41:42.0054 2604 circlass - ok
17:41:42.0119 2604 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
17:41:42.0181 2604 CLFS - ok
17:41:42.0297 2604 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:41:42.0298 2604 clr_optimization_v2.0.50727_32 - ok
17:41:42.0345 2604 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:41:42.0348 2604 clr_optimization_v2.0.50727_64 - ok
17:41:42.0448 2604 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:41:42.0450 2604 clr_optimization_v4.0.30319_32 - ok
17:41:42.0504 2604 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:41:42.0505 2604 clr_optimization_v4.0.30319_64 - ok
17:41:42.0531 2604 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
17:41:42.0543 2604 cmdide - ok
17:41:42.0550 2604 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
17:41:42.0551 2604 Compbatt - ok
17:41:42.0556 2604 COMSysApp - ok
17:41:42.0606 2604 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
17:41:42.0608 2604 crcdisk - ok
17:41:42.0694 2604 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
17:41:42.0695 2604 CryptSvc - ok
17:41:42.0821 2604 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
17:41:42.0827 2604 DcomLaunch - ok
17:41:42.0887 2604 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
17:41:42.0888 2604 DfsC - ok
17:41:43.0153 2604 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
17:41:43.0209 2604 DFSR - ok
17:41:43.0395 2604 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
17:41:43.0398 2604 Dhcp - ok
17:41:43.0459 2604 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
17:41:43.0461 2604 disk - ok
17:41:43.0521 2604 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
17:41:43.0523 2604 Dnscache - ok
17:41:43.0571 2604 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
17:41:43.0573 2604 dot3svc - ok
17:41:43.0614 2604 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
17:41:43.0616 2604 DPS - ok
17:41:43.0651 2604 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
17:41:43.0659 2604 drmkaud - ok
17:41:43.0764 2604 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
17:41:43.0775 2604 DXGKrnl - ok
17:41:43.0876 2604 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
17:41:43.0905 2604 E1G60 - ok
17:41:43.0940 2604 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
17:41:43.0941 2604 EapHost - ok
17:41:43.0999 2604 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
17:41:44.0026 2604 Ecache - ok
17:41:44.0099 2604 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
17:41:44.0116 2604 ehRecvr - ok
17:41:44.0167 2604 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
17:41:44.0177 2604 ehSched - ok
17:41:44.0186 2604 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
17:41:44.0187 2604 ehstart - ok
17:41:44.0281 2604 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
17:41:44.0311 2604 elxstor - ok
17:41:44.0386 2604 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
17:41:44.0389 2604 EMDMgmt - ok
17:41:44.0438 2604 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
17:41:44.0447 2604 ErrDev - ok
17:41:44.0521 2604 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
17:41:44.0524 2604 EventSystem - ok
17:41:44.0591 2604 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
17:41:44.0617 2604 exfat - ok
17:41:44.0663 2604 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
17:41:44.0665 2604 fastfat - ok
17:41:44.0685 2604 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
17:41:44.0694 2604 fdc - ok
17:41:44.0737 2604 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
17:41:44.0738 2604 fdPHost - ok
17:41:44.0775 2604 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
17:41:44.0776 2604 FDResPub - ok
17:41:44.0787 2604 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
17:41:44.0788 2604 FileInfo - ok
17:41:44.0807 2604 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
17:41:44.0808 2604 Filetrace - ok
17:41:44.0819 2604 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:41:44.0828 2604 flpydisk - ok
17:41:44.0937 2604 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
17:41:44.0939 2604 FltMgr - ok
17:41:45.0075 2604 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
17:41:45.0140 2604 FontCache - ok
17:41:45.0239 2604 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:41:45.0240 2604 FontCache3.0.0.0 - ok
17:41:45.0313 2604 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
17:41:45.0314 2604 Fs_Rec - ok
17:41:45.0331 2604 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
17:41:45.0333 2604 gagp30kx - ok
17:41:45.0428 2604 GameConsoleService (cc1c8068b05283d63ec5fe782d2d3946) C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
17:41:45.0438 2604 GameConsoleService - ok
17:41:45.0482 2604 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:41:45.0492 2604 GEARAspiWDM - ok
17:41:45.0575 2604 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
17:41:45.0580 2604 gpsvc - ok
17:41:45.0698 2604 gupdate1ca3da46f8580 (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:41:45.0699 2604 gupdate1ca3da46f8580 - ok
17:41:45.0726 2604 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:41:45.0727 2604 gupdatem - ok
17:41:45.0859 2604 HCW85BDA (98405343d7dcd330fe1b08c8f4c3900c) C:\Windows\system32\drivers\HCW85BDA.sys
17:41:45.0916 2604 HCW85BDA - ok
17:41:46.0103 2604 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:41:46.0115 2604 HDAudBus - ok
17:41:46.0185 2604 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
17:41:46.0194 2604 HidBth - ok
17:41:46.0240 2604 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
17:41:46.0242 2604 HidIr - ok
17:41:46.0279 2604 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\System32\hidserv.dll
17:41:46.0280 2604 hidserv - ok
17:41:46.0324 2604 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
17:41:46.0333 2604 HidUsb - ok
17:41:46.0375 2604 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
17:41:46.0377 2604 hkmsvc - ok
17:41:46.0475 2604 HP Health Check Service (a3a30438c48d2d71556e120c9c7ba7a0) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:41:46.0476 2604 HP Health Check Service - ok
17:41:46.0576 2604 HPBtnSrv (deb82af183f1cd06813d91ed104c645c) c:\hp\HPEZBTN\HPBtnSrv.exe
17:41:46.0579 2604 HPBtnSrv - ok
17:41:46.0615 2604 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
17:41:46.0625 2604 HpCISSs - ok
17:41:46.0777 2604 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:41:46.0780 2604 hpqcxs08 - ok
17:41:46.0833 2604 hpqddsvc (f3f72a2a86c22610bca5439fa789dd52) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:41:46.0836 2604 hpqddsvc - ok
17:41:46.0923 2604 HPSLPSVC (d972f48d0ce396759b788693cd665926) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:41:46.0935 2604 HPSLPSVC - ok
17:41:47.0189 2604 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
17:41:47.0193 2604 HTTP - ok
17:41:47.0247 2604 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
17:41:47.0257 2604 i2omp - ok
17:41:47.0310 2604 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
17:41:47.0321 2604 i8042prt - ok
17:41:47.0441 2604 IAANTMON (5b19dfc29a9563a5da5ca559bed83aa8) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:41:47.0446 2604 IAANTMON - ok
17:41:47.0494 2604 iaStor (8eacf469269fb1509561961a3188f670) C:\Windows\system32\drivers\iastor.sys
17:41:47.0497 2604 iaStor - ok
17:41:47.0559 2604 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
17:41:47.0615 2604 iaStorV - ok
17:41:47.0760 2604 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:41:47.0762 2604 IDriverT - ok
17:41:47.0898 2604 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:41:47.0911 2604 idsvc - ok
17:41:48.0026 2604 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
17:41:48.0035 2604 iirsp - ok
17:41:48.0149 2604 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
17:41:48.0193 2604 IKEEXT - ok
17:41:48.0332 2604 IntcAzAudAddService (1edab7f9b9de4424beccdef950ce2ff0) C:\Windows\system32\drivers\RTKVHD64.sys
17:41:48.0421 2604 IntcAzAudAddService - ok
17:41:48.0513 2604 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
17:41:48.0522 2604 intelide - ok
17:41:48.0539 2604 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
17:41:48.0540 2604 intelppm - ok
17:41:48.0581 2604 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
17:41:48.0583 2604 IPBusEnum - ok
17:41:48.0646 2604 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:41:48.0648 2604 IpFilterDriver - ok
17:41:48.0721 2604 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
17:41:48.0723 2604 iphlpsvc - ok
17:41:48.0727 2604 IpInIp - ok
17:41:48.0753 2604 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
17:41:48.0762 2604 IPMIDRV - ok
17:41:48.0792 2604 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
17:41:48.0794 2604 IPNAT - ok
17:41:48.0928 2604 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
17:41:48.0934 2604 iPod Service - ok
17:41:48.0953 2604 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
17:41:48.0954 2604 IRENUM - ok
17:41:48.0983 2604 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
17:41:48.0992 2604 isapnp - ok
17:41:49.0066 2604 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
17:41:49.0069 2604 iScsiPrt - ok
17:41:49.0120 2604 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
17:41:49.0130 2604 iteatapi - ok
17:41:49.0171 2604 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
17:41:49.0181 2604 iteraid - ok
17:41:49.0199 2604 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
17:41:49.0210 2604 kbdclass - ok
17:41:49.0277 2604 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
17:41:49.0278 2604 kbdhid - ok
17:41:49.0339 2604 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:41:49.0340 2604 KeyIso - ok
17:41:49.0371 2604 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
17:41:49.0420 2604 KSecDD - ok
17:41:49.0433 2604 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
17:41:49.0434 2604 ksthunk - ok
17:41:49.0490 2604 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
17:41:49.0516 2604 KtmRm - ok
17:41:49.0576 2604 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\System32\srvsvc.dll
17:41:49.0579 2604 LanmanServer - ok
17:41:49.0652 2604 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
17:41:49.0655 2604 LanmanWorkstation - ok
17:41:49.0805 2604 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:41:49.0806 2604 LightScribeService - ok
17:41:49.0823 2604 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
17:41:49.0824 2604 lltdio - ok
17:41:49.0868 2604 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
17:41:49.0875 2604 lltdsvc - ok
17:41:49.0923 2604 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
17:41:49.0924 2604 lmhosts - ok
17:41:50.0005 2604 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
17:41:50.0059 2604 LSI_FC - ok
17:41:50.0113 2604 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
17:41:50.0124 2604 LSI_SAS - ok
17:41:50.0150 2604 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
17:41:50.0161 2604 LSI_SCSI - ok
17:41:50.0198 2604 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
17:41:50.0200 2604 luafv - ok
17:41:50.0203 2604 MacDrive - ok
17:41:50.0248 2604 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
17:41:50.0251 2604 Mcx2Svc - ok
17:41:50.0271 2604 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
17:41:50.0281 2604 megasas - ok
17:41:50.0320 2604 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
17:41:50.0338 2604 MegaSR - ok
17:41:50.0448 2604 MgiSvr (db330d9bdaeae4a198d6ef4d15fa5101) C:\Program Files (x86)\ArcSoft\Magic-i 3\uMgiSvr.exe
17:41:50.0450 2604 MgiSvr - ok
17:41:50.0490 2604 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
17:41:50.0492 2604 MMCSS - ok
17:41:50.0504 2604 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
17:41:50.0506 2604 Modem - ok
17:41:50.0560 2604 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
17:41:50.0561 2604 monitor - ok
17:41:50.0571 2604 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
17:41:50.0582 2604 mouclass - ok
17:41:50.0630 2604 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
17:41:50.0631 2604 mouhid - ok
17:41:50.0642 2604 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
17:41:50.0644 2604 MountMgr - ok
17:41:50.0770 2604 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:41:50.0782 2604 MozillaMaintenance - ok
17:41:50.0808 2604 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
17:41:50.0829 2604 mpio - ok
17:41:50.0894 2604 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
17:41:50.0909 2604 mpsdrv - ok
17:41:50.0922 2604 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
17:41:50.0932 2604 Mraid35x - ok
17:41:50.0993 2604 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
17:41:50.0994 2604 MRxDAV - ok
17:41:51.0048 2604 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:41:51.0049 2604 mrxsmb - ok
17:41:51.0066 2604 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:41:51.0068 2604 mrxsmb10 - ok
17:41:51.0113 2604 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:41:51.0114 2604 mrxsmb20 - ok
17:41:51.0135 2604 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
17:41:51.0144 2604 msahci - ok
17:41:51.0160 2604 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
17:41:51.0183 2604 msdsm - ok
17:41:51.0215 2604 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
17:41:51.0219 2604 MSDTC - ok
17:41:51.0308 2604 MSDV (df674ba7da5a4753d839a905b66d2fd9) C:\Windows\system32\DRIVERS\msdv.sys
17:41:51.0317 2604 MSDV - ok
17:41:51.0332 2604 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
17:41:51.0334 2604 Msfs - ok
17:41:51.0360 2604 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
17:41:51.0361 2604 msisadrv - ok
17:41:51.0407 2604 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
17:41:51.0418 2604 MSiSCSI - ok
17:41:51.0422 2604 msiserver - ok
17:41:51.0459 2604 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
17:41:51.0461 2604 MSKSSRV - ok
17:41:51.0485 2604 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
17:41:51.0486 2604 MSPCLOCK - ok
17:41:51.0505 2604 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
17:41:51.0506 2604 MSPQM - ok
17:41:51.0562 2604 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
17:41:51.0569 2604 MsRPC - ok
17:41:51.0619 2604 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
17:41:51.0620 2604 mssmbios - ok
17:41:51.0638 2604 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
17:41:51.0639 2604 MSTEE - ok
17:41:51.0660 2604 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
17:41:51.0662 2604 Mup - ok
17:41:51.0702 2604 MySQL - ok
17:41:51.0760 2604 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
17:41:51.0772 2604 napagent - ok
17:41:51.0846 2604 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
17:41:51.0848 2604 NativeWifiP - ok
17:41:51.0967 2604 NBDUpdate (cabdcf77d561774006eed29a1f421ac8) C:\Program Files\yaTimer\Updates\AutoUpdateService.exe
17:41:51.0968 2604 NBDUpdate - ok
17:41:52.0076 2604 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
17:41:52.0086 2604 NDIS - ok
17:41:52.0142 2604 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
17:41:52.0144 2604 NdisTapi - ok
17:41:52.0157 2604 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
17:41:52.0157 2604 Ndisuio - ok
17:41:52.0218 2604 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
17:41:52.0228 2604 NdisWan - ok
17:41:52.0240 2604 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
17:41:52.0242 2604 NDProxy - ok
17:41:52.0308 2604 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
17:41:52.0310 2604 Net Driver HPZ12 - ok
17:41:52.0319 2604 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
17:41:52.0320 2604 NetBIOS - ok
17:41:52.0374 2604 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
17:41:52.0397 2604 netbt - ok
17:41:52.0447 2604 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:41:52.0448 2604 Netlogon - ok
17:41:52.0484 2604 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
17:41:52.0488 2604 Netman - ok
17:41:52.0518 2604 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
17:41:52.0532 2604 netprofm - ok
17:41:52.0604 2604 netr7364 (b69d6bb680c85243af0263b3e01d5e77) C:\Windows\system32\DRIVERS\netr7364.sys
17:41:52.0648 2604 netr7364 - ok
17:41:52.0712 2604 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:41:52.0715 2604 NetTcpPortSharing - ok
17:41:52.0741 2604 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
17:41:52.0750 2604 nfrd960 - ok
17:41:52.0808 2604 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
17:41:52.0811 2604 NlaSvc - ok
17:41:52.0869 2604 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
17:41:52.0871 2604 Npfs - ok
17:41:52.0917 2604 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
17:41:52.0919 2604 nsi - ok
17:41:52.0930 2604 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
17:41:52.0932 2604 nsiproxy - ok
17:41:53.0086 2604 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
17:41:53.0132 2604 Ntfs - ok
17:41:53.0338 2604 NuidFltr (d4012918d3a3847b44b888d56bc095d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
17:41:53.0348 2604 NuidFltr - ok
17:41:53.0352 2604 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
17:41:53.0353 2604 Null - ok
17:41:54.0159 2604 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:41:54.0383 2604 nvlddmkm - ok
17:41:54.0577 2604 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
17:41:54.0606 2604 nvraid - ok
17:41:54.0625 2604 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
17:41:54.0634 2604 nvstor - ok
17:41:54.0773 2604 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
17:41:54.0779 2604 nvsvc - ok
17:41:55.0000 2604 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:41:55.0014 2604 nvUpdatusService - ok
17:41:55.0148 2604 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
17:41:55.0160 2604 nv_agp - ok
17:41:55.0163 2604 NwlnkFlt - ok
17:41:55.0169 2604 NwlnkFwd - ok
17:41:55.0243 2604 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
17:41:55.0245 2604 ohci1394 - ok
17:41:55.0355 2604 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:41:55.0359 2604 ose - ok
17:41:55.0778 2604 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:41:55.0909 2604 osppsvc - ok
17:41:56.0096 2604 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:41:56.0102 2604 p2pimsvc - ok
17:41:56.0110 2604 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:41:56.0117 2604 p2psvc - ok
17:41:56.0216 2604 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
17:41:56.0227 2604 Parport - ok
17:41:56.0286 2604 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
17:41:56.0288 2604 partmgr - ok
17:41:56.0318 2604 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
17:41:56.0320 2604 PcaSvc - ok
17:41:56.0412 2604 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
17:41:56.0422 2604 pci - ok
17:41:56.0468 2604 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
17:41:56.0478 2604 pciide - ok
17:41:56.0532 2604 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
17:41:56.0550 2604 pcmcia - ok
17:41:56.0674 2604 PDFProFiltSrv (f5f62ac0f051f2c80529aa5eeb7aaf92) C:\Program Files (x86)\Nuance\PDF Professional 5\PDFProFiltSrv.exe
17:41:56.0676 2604 PDFProFiltSrv - ok
17:41:56.0791 2604 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
17:41:56.0801 2604 PEAUTH - ok
17:41:56.0931 2604 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
17:41:56.0934 2604 PerfHost - ok
17:41:57.0135 2604 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
17:41:57.0163 2604 pla - ok
17:41:57.0337 2604 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
17:41:57.0341 2604 PlugPlay - ok
17:41:57.0393 2604 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
17:41:57.0395 2604 Pml Driver HPZ12 - ok
17:41:57.0480 2604 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:41:57.0486 2604 PNRPAutoReg - ok
17:41:57.0496 2604 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:41:57.0502 2604 PNRPsvc - ok
17:41:57.0593 2604 Point64 (f69344f62a3dc83d2bd03e5626a16b1c) C:\Windows\system32\DRIVERS\point64k.sys
17:41:57.0601 2604 Point64 - ok
17:41:57.0672 2604 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
17:41:57.0709 2604 PolicyAgent - ok
17:41:57.0874 2604 ppped (d483893aa28f060d2b2cdb69586d1cdb) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe
17:41:57.0886 2604 ppped - ok
17:41:58.0039 2604 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
17:41:58.0041 2604 PptpMiniport - ok
17:41:58.0075 2604 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
17:41:58.0084 2604 Processor - ok
17:41:58.0151 2604 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
17:41:58.0154 2604 ProfSvc - ok
17:41:58.0230 2604 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:41:58.0231 2604 ProtectedStorage - ok
17:41:58.0277 2604 Ps2 (1d0a3f565397d08707f3d75b88586645) C:\Windows\system32\DRIVERS\PS2.sys
17:41:58.0285 2604 Ps2 - ok
17:41:58.0342 2604 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
17:41:58.0343 2604 PSched - ok
17:41:58.0466 2604 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
17:41:58.0526 2604 ql2300 - ok
17:41:58.0559 2604 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
17:41:58.0579 2604 ql40xx - ok
17:41:58.0634 2604 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
17:41:58.0638 2604 QWAVE - ok
17:41:58.0692 2604 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
17:41:58.0693 2604 QWAVEdrv - ok
17:41:58.0714 2604 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
17:41:58.0715 2604 RasAcd - ok
17:41:58.0747 2604 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
17:41:58.0750 2604 RasAuto - ok
17:41:58.0800 2604 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:41:58.0804 2604 Rasl2tp - ok
17:41:58.0831 2604 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
17:41:58.0835 2604 RasMan - ok
17:41:58.0880 2604 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
17:41:58.0882 2604 RasPppoe - ok
17:41:58.0943 2604 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
17:41:58.0945 2604 RasSstp - ok
17:41:59.0024 2604 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
17:41:59.0030 2604 rdbss - ok
17:41:59.0077 2604 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:41:59.0078 2604 RDPCDD - ok
17:41:59.0139 2604 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
17:41:59.0178 2604 rdpdr - ok
17:41:59.0182 2604 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
17:41:59.0183 2604 RDPENCDD - ok
17:41:59.0217 2604 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
17:41:59.0226 2604 RDPWD - ok
17:41:59.0260 2604 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
17:41:59.0261 2604 RemoteAccess - ok
17:41:59.0351 2604 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
17:41:59.0354 2604 RemoteRegistry - ok
17:41:59.0485 2604 RetroLauncher (6fb9b33d20a2aac7c89884246a0e25fb) C:\Program Files (x86)\Dantz\Retrospect\retrorun.exe
17:41:59.0486 2604 RetroLauncher - ok
17:41:59.0517 2604 RetroWDSvc (6f5386267113fe4e0f87a882de48c577) C:\PROGRA~2\Dantz\RETROS~1\wdsvc.exe
17:41:59.0518 2604 RetroWDSvc - ok
17:41:59.0586 2604 RFCOMM (cd71e053d7260e4102d99a28f9196070) C:\Windows\system32\DRIVERS\rfcomm.sys
17:41:59.0610 2604 RFCOMM - ok
17:41:59.0670 2604 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
17:41:59.0672 2604 RpcLocator - ok
17:41:59.0782 2604 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
17:41:59.0787 2604 RpcSs - ok
17:41:59.0837 2604 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
17:41:59.0838 2604 rspndr - ok
17:41:59.0924 2604 RTL8169 (170a66dfaaa22358e08d6f4b38c8f3df) C:\Windows\system32\DRIVERS\Rtlh64.sys
17:41:59.0955 2604 RTL8169 - ok
17:42:00.0005 2604 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:42:00.0006 2604 SamSs - ok
17:42:00.0031 2604 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
17:42:00.0041 2604 sbp2port - ok
17:42:00.0283 2604 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
17:42:00.0297 2604 SBSDWSCService - ok
17:42:00.0448 2604 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
17:42:00.0451 2604 SCardSvr - ok
17:42:00.0584 2604 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
17:42:00.0590 2604 Schedule - ok
17:42:00.0650 2604 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
17:42:00.0651 2604 SCPolicySvc - ok
17:42:00.0689 2604 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
17:42:00.0692 2604 SDRSVC - ok
17:42:00.0746 2604 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:42:00.0747 2604 secdrv - ok
17:42:00.0763 2604 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
17:42:00.0765 2604 seclogon - ok
17:42:00.0776 2604 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
17:42:00.0778 2604 SENS - ok
17:42:00.0828 2604 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
17:42:00.0837 2604 Serenum - ok
17:42:00.0875 2604 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
17:42:00.0885 2604 Serial - ok
17:42:00.0934 2604 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
17:42:00.0942 2604 sermouse - ok
17:42:00.0984 2604 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
17:42:00.0986 2604 SessionEnv - ok
17:42:01.0003 2604 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
17:42:01.0011 2604 sffdisk - ok
17:42:01.0035 2604 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
17:42:01.0043 2604 sffp_mmc - ok
17:42:01.0108 2604 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
17:42:01.0115 2604 sffp_sd - ok
17:42:01.0157 2604 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
17:42:01.0180 2604 sfloppy - ok
17:42:01.0288 2604 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
17:42:01.0292 2604 ShellHWDetection - ok
17:42:01.0341 2604 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
17:42:01.0352 2604 SiSRaid2 - ok
17:42:01.0393 2604 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
17:42:01.0403 2604 SiSRaid4 - ok
17:42:01.0566 2604 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:42:01.0569 2604 SkypeUpdate - ok
17:42:01.0742 2604 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
17:42:01.0758 2604 slsvc - ok
17:42:01.0900 2604 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
17:42:01.0903 2604 SLUINotify - ok
17:42:01.0956 2604 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
17:42:01.0958 2604 Smb - ok
17:42:02.0023 2604 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
17:42:02.0025 2604 SNMPTRAP - ok
17:42:02.0072 2604 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
17:42:02.0073 2604 spldr - ok
17:42:02.0133 2604 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
17:42:02.0136 2604 Spooler - ok
17:42:02.0234 2604 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
17:42:02.0237 2604 srv - ok
17:42:02.0289 2604 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
17:42:02.0290 2604 srv2 - ok
17:42:02.0375 2604 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
17:42:02.0376 2604 srvnet - ok
17:42:02.0416 2604 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
17:42:02.0419 2604 SSDPSRV - ok
17:42:02.0444 2604 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
17:42:02.0447 2604 SstpSvc - ok
17:42:02.0505 2604 StillCam (14b4db4381e4a55f570d8bb699b791d6) C:\Windows\system32\DRIVERS\serscan.sys
17:42:02.0513 2604 StillCam - ok
17:42:02.0591 2604 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
17:42:02.0596 2604 stisvc - ok
17:42:02.0621 2604 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
17:42:02.0630 2604 swenum - ok
17:42:02.0700 2604 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
17:42:02.0705 2604 swprv - ok
17:42:02.0730 2604 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
17:42:02.0740 2604 Symc8xx - ok
17:42:02.0772 2604 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
17:42:02.0781 2604 Sym_hi - ok
17:42:02.0807 2604 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
17:42:02.0816 2604 Sym_u3 - ok
17:42:02.0974 2604 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
17:42:02.0981 2604 SysMain - ok
17:42:03.0060 2604 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
17:42:03.0063 2604 TabletInputService - ok
17:42:03.0121 2604 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
17:42:03.0125 2604 TapiSrv - ok
17:42:03.0148 2604 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
17:42:03.0150 2604 TBS - ok
17:42:03.0310 2604 Tcpip (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\drivers\tcpip.sys
17:42:03.0374 2604 Tcpip - ok
17:42:03.0509 2604 Tcpip6 (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\DRIVERS\tcpip.sys
17:42:03.0517 2604 Tcpip6 - ok
17:42:03.0660 2604 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
17:42:03.0662 2604 tcpipreg - ok
17:42:03.0701 2604 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
17:42:03.0702 2604 TDPIPE - ok
17:42:03.0730 2604 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
17:42:03.0732 2604 TDTCP - ok
17:42:03.0793 2604 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
17:42:03.0795 2604 tdx - ok
17:42:03.0845 2604 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
17:42:03.0855 2604 TermDD - ok
17:42:03.0953 2604 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
17:42:03.0958 2604 TermService - ok
17:42:04.0031 2604 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
17:42:04.0034 2604 Themes - ok
17:42:04.0090 2604 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
17:42:04.0091 2604 THREADORDER - ok
17:42:04.0259 2604 TivoBeacon2 (d4bb308e148bea35bdb861f2a8dec977) C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
17:42:04.0310 2604 TivoBeacon2 - ok
17:42:04.0340 2604 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
17:42:04.0342 2604 TrkWks - ok
17:42:04.0431 2604 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
17:42:04.0432 2604 TrustedInstaller - ok
17:42:04.0498 2604 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:42:04.0499 2604 tssecsrv - ok
17:42:04.0533 2604 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
17:42:04.0535 2604 tunmp - ok
17:42:04.0592 2604 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
17:42:04.0593 2604 tunnel - ok
17:42:04.0615 2604 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
17:42:04.0617 2604 uagp35 - ok
17:42:04.0661 2604 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
17:42:04.0667 2604 udfs - ok
17:42:04.0707 2604 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
17:42:04.0709 2604 UI0Detect - ok
17:42:04.0738 2604 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
17:42:04.0749 2604 uliagpkx - ok
17:42:04.0796 2604 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
17:42:04.0811 2604 uliahci - ok
17:42:04.0855 2604 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
17:42:04.0874 2604 UlSata - ok
17:42:04.0915 2604 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
17:42:04.0933 2604 ulsata2 - ok
17:42:04.0951 2604 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
17:42:04.0960 2604 umbus - ok
17:42:04.0970 2604 UMPass (01abe05c401e70795b43a8933b44831e) C:\Windows\system32\DRIVERS\umpass.sys
17:42:04.0971 2604 UMPass - ok
17:42:04.0996 2604 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
17:42:05.0000 2604 upnphost - ok
17:42:05.0093 2604 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
17:42:05.0095 2604 USBAAPL64 - ok
17:42:05.0159 2604 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys
17:42:05.0169 2604 usbaudio - ok
17:42:05.0241 2604 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
17:42:05.0250 2604 usbccgp - ok
17:42:05.0261 2604 usbcir (8c39d53e1a343f4c47ee8f3c052126d8) C:\Windows\system32\DRIVERS\usbcir.sys
17:42:05.0263 2604 usbcir - ok
17:42:05.0291 2604 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
17:42:05.0300 2604 usbehci - ok
17:42:05.0342 2604 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
17:42:05.0357 2604 usbhub - ok
17:42:05.0369 2604 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
17:42:05.0377 2604 usbohci - ok
17:42:05.0391 2604 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
17:42:05.0400 2604 usbprint - ok
17:42:05.0414 2604 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:42:05.0416 2604 USBSTOR - ok
17:42:05.0428 2604 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
17:42:05.0436 2604 usbuhci - ok
17:42:05.0496 2604 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
17:42:05.0514 2604 usbvideo - ok
17:42:05.0581 2604 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
17:42:05.0583 2604 UxSms - ok
17:42:05.0587 2604 VcommMgr - ok
17:42:05.0690 2604 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
17:42:05.0694 2604 vds - ok
17:42:05.0723 2604 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
17:42:05.0732 2604 vga - ok
17:42:05.0769 2604 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
17:42:05.0771 2604 VgaSave - ok
17:42:05.0788 2604 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
17:42:05.0796 2604 viaide - ok
17:42:05.0826 2604 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
17:42:05.0827 2604 volmgr - ok
17:42:05.0891 2604 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
17:42:05.0902 2604 volmgrx - ok
17:42:05.0996 2604 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
17:42:06.0003 2604 volsnap - ok
17:42:06.0056 2604 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
17:42:06.0076 2604 vsmraid - ok
17:42:06.0215 2604 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
17:42:06.0235 2604 VSS - ok
17:42:06.0424 2604 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
17:42:06.0428 2604 W32Time - ok
17:42:06.0469 2604 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
17:42:06.0479 2604 WacomPen - ok
17:42:06.0589 2604 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
17:42:06.0591 2604 Wanarp - ok
17:42:06.0595 2604 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
17:42:06.0596 2604 Wanarpv6 - ok
17:42:06.0665 2604 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
17:42:06.0670 2604 wcncsvc - ok
17:42:06.0719 2604 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
17:42:06.0721 2604 WcsPlugInService - ok
17:42:06.0762 2604 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
17:42:06.0771 2604 Wd - ok
17:42:06.0866 2604 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
17:42:06.0883 2604 Wdf01000 - ok
17:42:06.0926 2604 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
17:42:06.0929 2604 WdiServiceHost - ok
17:42:06.0933 2604 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
17:42:06.0935 2604 WdiSystemHost - ok
17:42:06.0986 2604 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
17:42:06.0989 2604 WebClient - ok
17:42:07.0072 2604 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
17:42:07.0075 2604 Wecsvc - ok
17:42:07.0123 2604 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
17:42:07.0126 2604 wercplsupport - ok
17:42:07.0158 2604 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
17:42:07.0160 2604 WerSvc - ok
17:42:07.0212 2604 WinDefend - ok
17:42:07.0221 2604 WinHttpAutoProxySvc - ok
17:42:07.0343 2604 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
17:42:07.0344 2604 Winmgmt - ok
17:42:07.0521 2604 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
17:42:07.0584 2604 WinRM - ok
17:42:07.0760 2604 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
17:42:07.0765 2604 Wlansvc - ok
17:42:07.0962 2604 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:42:08.0033 2604 wlidsvc - ok
17:42:08.0133 2604 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys
17:42:08.0142 2604 WmiAcpi - ok
17:42:08.0286 2604 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
17:42:08.0288 2604 wmiApSrv - ok
17:42:08.0355 2604 WMPNetworkSvc - ok
17:42:08.0387 2604 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
17:42:08.0390 2604 WPCSvc - ok
17:42:08.0452 2604 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
17:42:08.0454 2604 WPDBusEnum - ok
17:42:08.0519 2604 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
17:42:08.0521 2604 WpdUsb - ok
17:42:08.0683 2604 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:42:08.0689 2604 WPFFontCache_v0400 - ok
17:42:08.0744 2604 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
17:42:08.0745 2604 ws2ifsl - ok
17:42:08.0799 2604 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\system32\wscsvc.dll
17:42:08.0801 2604 wscsvc - ok
17:42:08.0857 2604 WSDPrintDevice (de5f5212ab34221dd1618b5fefe8db6c) C:\Windows\system32\DRIVERS\WSDPrint.sys
17:42:08.0865 2604 WSDPrintDevice - ok
17:42:08.0869 2604 WSearch - ok
17:42:09.0053 2604 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:42:09.0123 2604 wuauserv - ok
17:42:09.0264 2604 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:42:09.0266 2604 WUDFRd - ok
17:42:09.0289 2604 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
17:42:09.0292 2604 wudfsvc - ok
17:42:09.0323 2604 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
17:42:09.0827 2604 \Device\Harddisk0\DR0 - ok
17:42:09.0851 2604 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
17:42:09.0916 2604 \Device\Harddisk1\DR1 - ok
17:42:09.0921 2604 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
17:42:12.0535 2604 \Device\Harddisk2\DR2 - ok
17:42:12.0539 2604 Boot (0x1200) (42af3a7b0f3430e1da0ea798cc6bd6f9) \Device\Harddisk0\DR0\Partition0
17:42:12.0541 2604 \Device\Harddisk0\DR0\Partition0 - ok
17:42:12.0590 2604 Boot (0x1200) (803e4d301c164d24d97def3b41543b67) \Device\Harddisk0\DR0\Partition1
17:42:12.0592 2604 \Device\Harddisk0\DR0\Partition1 - ok
17:42:12.0611 2604 Boot (0x1200) (e9ba549dcaf646a85c01b0cf8c74862a) \Device\Harddisk1\DR1\Partition0
17:42:12.0612 2604 \Device\Harddisk1\DR1\Partition0 - ok
17:42:12.0617 2604 Boot (0x1200) (7e189800a60ae102a38281e41153d072) \Device\Harddisk2\DR2\Partition0
17:42:12.0618 2604 \Device\Harddisk2\DR2\Partition0 - ok
17:42:12.0619 2604 ============================================================
17:42:12.0619 2604 Scan finished
17:42:12.0619 2604 ============================================================
17:42:12.0631 7900 Detected object count: 0
17:42:12.0631 7900 Actual detected object count: 0
17:43:41.0498 6380 ============================================================
17:43:41.0498 6380 Scan started
17:43:41.0498 6380 Mode: Manual; TDLFS;
17:43:41.0498 6380 ============================================================
17:43:42.0102 6380 61883 (78e902fb660bd5003fe726b9bef300b6) C:\Windows\system32\DRIVERS\61883.sys
17:43:42.0103 6380 61883 - ok
17:43:42.0232 6380 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
17:43:42.0233 6380 ACDaemon - ok
17:43:42.0334 6380 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
17:43:42.0336 6380 ACPI - ok
17:43:42.0378 6380 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:43:42.0379 6380 AdobeARMservice - ok
17:43:42.0462 6380 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
17:43:42.0465 6380 adp94xx - ok
17:43:42.0508 6380 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
17:43:42.0510 6380 adpahci - ok
17:43:42.0561 6380 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
17:43:42.0562 6380 adpu160m - ok
17:43:42.0593 6380 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
17:43:42.0595 6380 adpu320 - ok
17:43:42.0625 6380 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
17:43:42.0626 6380 AeLookupSvc - ok
17:43:42.0735 6380 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
17:43:42.0736 6380 Afc - ok
17:43:42.0807 6380 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
17:43:42.0810 6380 AFD - ok
17:43:42.0841 6380 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
17:43:42.0842 6380 agp440 - ok
17:43:42.0863 6380 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
17:43:42.0864 6380 aic78xx - ok
17:43:42.0888 6380 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
17:43:42.0888 6380 ALG - ok
17:43:42.0900 6380 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
17:43:42.0901 6380 aliide - ok
17:43:42.0915 6380 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
17:43:42.0915 6380 amdide - ok
17:43:42.0930 6380 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
17:43:42.0930 6380 AmdK8 - ok
17:43:42.0951 6380 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
17:43:42.0951 6380 Appinfo - ok
17:43:43.0073 6380 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:43:43.0074 6380 Apple Mobile Device - ok
17:43:43.0096 6380 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
17:43:43.0097 6380 arc - ok
17:43:43.0165 6380 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
17:43:43.0166 6380 arcsas - ok
17:43:43.0229 6380 ARCSOFTVIRTUALCAPTURE (49f9005adfbf19d09d9c465099271e7e) C:\Windows\system32\DRIVERS\ArcSoftVirtualCapture.sys
17:43:43.0229 6380 ARCSOFTVIRTUALCAPTURE - ok
17:43:43.0319 6380 aspnet_state (e1a1206a4fb19b675e947b29ccd25fba) C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
17:43:43.0320 6380 aspnet_state - ok
17:43:43.0336 6380 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
17:43:43.0337 6380 AsyncMac - ok
17:43:43.0364 6380 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
17:43:43.0365 6380 atapi - ok
17:43:43.0431 6380 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
17:43:43.0434 6380 AudioEndpointBuilder - ok
17:43:43.0440 6380 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
17:43:43.0445 6380 AudioSrv - ok
17:43:43.0492 6380 Avc (295fa2878ff499c0edfa0ebcc8c6ec66) C:\Windows\system32\DRIVERS\avc.sys
17:43:43.0493 6380 Avc - ok
17:43:43.0925 6380 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
17:43:43.0955 6380 AVGIDSAgent - ok
17:43:44.0137 6380 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
17:43:44.0138 6380 AVGIDSDriver - ok
17:43:44.0171 6380 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
17:43:44.0172 6380 AVGIDSFilter - ok
17:43:44.0234 6380 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
17:43:44.0234 6380 AVGIDSHA - ok
17:43:44.0288 6380 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
17:43:44.0290 6380 Avgldx64 - ok
17:43:44.0318 6380 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
17:43:44.0318 6380 Avgmfx64 - ok
17:43:44.0343 6380 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
17:43:44.0344 6380 Avgrkx64 - ok
17:43:44.0418 6380 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
17:43:44.0420 6380 Avgtdia - ok
17:43:44.0657 6380 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
17:43:44.0659 6380 avgwd - ok
17:43:44.0771 6380 BBSvc (47480f4260dae9aa589bcaf924b3767a) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
17:43:44.0772 6380 BBSvc - ok
17:43:44.0821 6380 BBUpdate (6bf743cbf3bcd09dab79245e60e1ae62) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
17:43:44.0823 6380 BBUpdate - ok
17:43:44.0895 6380 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
17:43:44.0898 6380 BFE - ok
17:43:45.0011 6380 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
17:43:45.0019 6380 BITS - ok
17:43:45.0082 6380 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
17:43:45.0082 6380 blbdrive - ok
17:43:45.0268 6380 BlueSoleil Hid Service (55f24e6ec983fcc7510293b05a27ceec) C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
17:43:45.0269 6380 BlueSoleil Hid Service - ok
17:43:45.0412 6380 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
17:43:45.0415 6380 Bonjour Service - ok
17:43:45.0460 6380 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
17:43:45.0461 6380 bowser - ok
17:43:45.0472 6380 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
17:43:45.0473 6380 BrFiltLo - ok
17:43:45.0486 6380 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
17:43:45.0487 6380 BrFiltUp - ok
17:43:45.0519 6380 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
17:43:45.0520 6380 Browser - ok
17:43:45.0538 6380 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
17:43:45.0540 6380 Brserid - ok
17:43:45.0563 6380 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
17:43:45.0563 6380 BrSerWdm - ok
17:43:45.0579 6380 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
17:43:45.0580 6380 BrUsbMdm - ok
17:43:45.0598 6380 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
17:43:45.0598 6380 BrUsbSer - ok
17:43:45.0654 6380 BthEnum (09f926a0d9c0bafd8417a4307d2ed13c) C:\Windows\system32\DRIVERS\BthEnum.sys
17:43:45.0655 6380 BthEnum - ok
17:43:45.0671 6380 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
17:43:45.0672 6380 BTHMODEM - ok
17:43:45.0736 6380 BthPan (befc5311736b475ac5b60c14ff7c775a) C:\Windows\system32\DRIVERS\bthpan.sys
17:43:45.0737 6380 BthPan - ok
17:43:45.0803 6380 BTHPORT (e1466882252ff51edde48c3f7eda2591) C:\Windows\system32\Drivers\BTHport.sys
17:43:45.0808 6380 BTHPORT - ok
17:43:45.0846 6380 BthServ (22e65ffd640f16968f855f5b3528d366) C:\Windows\System32\bthserv.dll
17:43:45.0847 6380 BthServ - ok
17:43:45.0900 6380 BTHUSB (970192cded77a128e7e30722e5ee6b9c) C:\Windows\system32\Drivers\BTHUSB.sys
17:43:45.0901 6380 BTHUSB - ok
17:43:46.0351 6380 CarboniteService (9da7d983b4e9ea2d065edf566ca64fc8) C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
17:43:46.0391 6380 CarboniteService - ok
17:43:46.0571 6380 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
17:43:46.0572 6380 cdfs - ok
17:43:46.0621 6380 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
17:43:46.0622 6380 cdrom - ok
17:43:46.0667 6380 CDRPDACC (30b37c18e1725eb9f25039e9a1fb9b7e) C:\Program Files (x86)\Quintessential Player\cdrpdacc.sys
17:43:46.0668 6380 CDRPDACC - ok
17:43:46.0727 6380 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
17:43:46.0728 6380 CertPropSvc - ok
17:43:46.0738 6380 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
17:43:46.0738 6380 circlass - ok
17:43:46.0795 6380 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
17:43:46.0797 6380 CLFS - ok
17:43:46.0873 6380 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:43:46.0874 6380 clr_optimization_v2.0.50727_32 - ok
17:43:46.0913 6380 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:43:46.0914 6380 clr_optimization_v2.0.50727_64 - ok
17:43:47.0008 6380 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:43:47.0009 6380 clr_optimization_v4.0.30319_32 - ok
17:43:47.0046 6380 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:43:47.0047 6380 clr_optimization_v4.0.30319_64 - ok
17:43:47.0099 6380 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
17:43:47.0099 6380 cmdide - ok
17:43:47.0104 6380 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
17:43:47.0105 6380 Compbatt - ok
17:43:47.0111 6380 COMSysApp - ok
17:43:47.0141 6380 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
17:43:47.0141 6380 crcdisk - ok
17:43:47.0210 6380 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
17:43:47.0212 6380 CryptSvc - ok
17:43:47.0322 6380 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
17:43:47.0328 6380 DcomLaunch - ok
17:43:47.0397 6380 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
17:43:47.0398 6380 DfsC - ok
17:43:47.0639 6380 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
17:43:47.0659 6380 DFSR - ok
17:43:47.0806 6380 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
17:43:47.0808 6380 Dhcp - ok
17:43:47.0877 6380 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
17:43:47.0878 6380 disk - ok
17:43:47.0923 6380 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
17:43:47.0924 6380 Dnscache - ok
17:43:47.0973 6380 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
17:43:47.0974 6380 dot3svc - ok
17:43:48.0016 6380 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
17:43:48.0017 6380 DPS - ok
17:43:48.0053 6380 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
17:43:48.0053 6380 drmkaud - ok
17:43:48.0185 6380 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
17:43:48.0190 6380 DXGKrnl - ok
17:43:48.0231 6380 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
17:43:48.0233 6380 E1G60 - ok
17:43:48.0266 6380 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
17:43:48.0267 6380 EapHost - ok
17:43:48.0360 6380 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
17:43:48.0361 6380 Ecache - ok
17:43:48.0465 6380 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
17:43:48.0467 6380 ehRecvr - ok
17:43:48.0502 6380 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
17:43:48.0504 6380 ehSched - ok
17:43:48.0509 6380 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
17:43:48.0510 6380 ehstart - ok
17:43:48.0566 6380 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
17:43:48.0569 6380 elxstor - ok
17:43:48.0663 6380 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
17:43:48.0665 6380 EMDMgmt - ok
17:43:48.0698 6380 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
17:43:48.0698 6380 ErrDev - ok
17:43:48.0781 6380 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
17:43:48.0784 6380 EventSystem - ok
17:43:48.0858 6380 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
17:43:48.0859 6380 exfat - ok
17:43:48.0948 6380 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
17:43:48.0949 6380 fastfat - ok
17:43:48.0978 6380 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
17:43:48.0979 6380 fdc - ok
17:43:49.0005 6380 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
17:43:49.0006 6380 fdPHost - ok
17:43:49.0043 6380 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
17:43:49.0044 6380 FDResPub - ok
17:43:49.0055 6380 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
17:43:49.0056 6380 FileInfo - ok
17:43:49.0081 6380 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
17:43:49.0081 6380 Filetrace - ok
17:43:49.0129 6380 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:43:49.0130 6380 flpydisk - ok
17:43:49.0180 6380 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
17:43:49.0182 6380 FltMgr - ok
17:43:49.0352 6380 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
17:43:49.0359 6380 FontCache - ok
17:43:49.0490 6380 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:43:49.0490 6380 FontCache3.0.0.0 - ok
17:43:49.0572 6380 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
17:43:49.0573 6380 Fs_Rec - ok
17:43:49.0591 6380 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
17:43:49.0592 6380 gagp30kx - ok
17:43:49.0672 6380 GameConsoleService (cc1c8068b05283d63ec5fe782d2d3946) C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
17:43:49.0673 6380 GameConsoleService - ok
17:43:49.0759 6380 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:43:49.0759 6380 GEARAspiWDM - ok
17:43:49.0834 6380 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
17:43:49.0839 6380 gpsvc - ok
17:43:49.0958 6380 gupdate1ca3da46f8580 (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:43:49.0959 6380 gupdate1ca3da46f8580 - ok
17:43:49.0963 6380 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:43:49.0964 6380 gupdatem - ok
17:43:50.0143 6380 HCW85BDA (98405343d7dcd330fe1b08c8f4c3900c) C:\Windows\system32\drivers\HCW85BDA.sys
17:43:50.0153 6380 HCW85BDA - ok
17:43:50.0396 6380 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:43:50.0401 6380 HDAudBus - ok
17:43:50.0436 6380 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
17:43:50.0437 6380 HidBth - ok
17:43:50.0475 6380 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
17:43:50.0476 6380 HidIr - ok
17:43:50.0522 6380 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\System32\hidserv.dll
17:43:50.0523 6380 hidserv - ok
17:43:50.0567 6380 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
17:43:50.0568 6380 HidUsb - ok
17:43:50.0593 6380 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
17:43:50.0595 6380 hkmsvc - ok
17:43:50.0760 6380 HP Health Check Service (a3a30438c48d2d71556e120c9c7ba7a0) c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
17:43:50.0761 6380 HP Health Check Service - ok
17:43:50.0870 6380 HPBtnSrv (deb82af183f1cd06813d91ed104c645c) c:\hp\HPEZBTN\HPBtnSrv.exe
17:43:50.0871 6380 HPBtnSrv - ok
17:43:50.0915 6380 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
17:43:50.0916 6380 HpCISSs - ok
17:43:51.0021 6380 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:43:51.0024 6380 hpqcxs08 - ok
17:43:51.0093 6380 hpqddsvc (f3f72a2a86c22610bca5439fa789dd52) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:43:51.0095 6380 hpqddsvc - ok
17:43:51.0237 6380 HPSLPSVC (d972f48d0ce396759b788693cd665926) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:43:51.0245 6380 HPSLPSVC - ok
17:43:51.0450 6380 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
17:43:51.0455 6380 HTTP - ok
17:43:51.0649 6380 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
17:43:51.0649 6380 i2omp - ok
17:43:51.0670 6380 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
17:43:51.0671 6380 i8042prt - ok
17:43:51.0793 6380 IAANTMON (5b19dfc29a9563a5da5ca559bed83aa8) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:43:51.0795 6380 IAANTMON - ok
17:43:51.0882 6380 iaStor (8eacf469269fb1509561961a3188f670) C:\Windows\system32\drivers\iastor.sys
17:43:51.0885 6380 iaStor - ok
17:43:52.0012 6380 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
17:43:52.0014 6380 iaStorV - ok
17:43:52.0162 6380 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:43:52.0162 6380 IDriverT - ok
17:43:52.0341 6380 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:43:52.0347 6380 idsvc - ok
17:43:52.0469 6380 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
17:43:52.0469 6380 iirsp - ok
17:43:52.0569 6380 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
17:43:52.0573 6380 IKEEXT - ok
17:43:52.0783 6380 IntcAzAudAddService (1edab7f9b9de4424beccdef950ce2ff0) C:\Windows\system32\drivers\RTKVHD64.sys
17:43:52.0794 6380 IntcAzAudAddService - ok
17:43:52.0947 6380 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
17:43:52.0948 6380 intelide - ok
17:43:52.0966 6380 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
17:43:52.0967 6380 intelppm - ok
17:43:53.0000 6380 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
17:43:53.0001 6380 IPBusEnum - ok
17:43:53.0089 6380 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:43:53.0090 6380 IpFilterDriver - ok
17:43:53.0145 6380 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
17:43:53.0147 6380 iphlpsvc - ok
17:43:53.0152 6380 IpInIp - ok
17:43:53.0179 6380 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
17:43:53.0180 6380 IPMIDRV - ok
17:43:53.0220 6380 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
17:43:53.0221 6380 IPNAT - ok
17:43:53.0355 6380 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
17:43:53.0361 6380 iPod Service - ok
17:43:53.0379 6380 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
17:43:53.0380 6380 IRENUM - ok
17:43:53.0392 6380 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
17:43:53.0393 6380 isapnp - ok
17:43:53.0442 6380 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
17:43:53.0443 6380 iScsiPrt - ok
17:43:53.0464 6380 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
17:43:53.0464 6380 iteatapi - ok
17:43:53.0474 6380 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
17:43:53.0474 6380 iteraid - ok
17:43:53.0492 6380 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
17:43:53.0492 6380 kbdclass - ok
17:43:53.0545 6380 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
17:43:53.0545 6380 kbdhid - ok
17:43:53.0615 6380 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:43:53.0616 6380 KeyIso - ok
17:43:53.0650 6380 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
17:43:53.0653 6380 KSecDD - ok
17:43:53.0684 6380 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
17:43:53.0684 6380 ksthunk - ok
17:43:53.0733 6380 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
17:43:53.0737 6380 KtmRm - ok
17:43:53.0778 6380 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\System32\srvsvc.dll
17:43:53.0781 6380 LanmanServer - ok
17:43:53.0862 6380 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
17:43:53.0865 6380 LanmanWorkstation - ok
17:43:54.0115 6380 LightScribeService (abf90fc5a127f481219b873c1b8dfc1c) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:43:54.0116 6380 LightScribeService - ok
17:43:54.0125 6380 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
17:43:54.0126 6380 lltdio - ok
17:43:54.0228 6380 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
17:43:54.0231 6380 lltdsvc - ok
17:43:54.0258 6380 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
17:43:54.0259 6380 lmhosts - ok
17:43:54.0291 6380 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
17:43:54.0292 6380 LSI_FC - ok
17:43:54.0340 6380 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
17:43:54.0341 6380 LSI_SAS - ok
17:43:54.0368 6380 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
17:43:54.0369 6380 LSI_SCSI - ok
17:43:54.0408 6380 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
17:43:54.0409 6380 luafv - ok
17:43:54.0413 6380 MacDrive - ok
17:43:54.0441 6380 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
17:43:54.0443 6380 Mcx2Svc - ok
17:43:54.0456 6380 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
17:43:54.0456 6380 megasas - ok
17:43:54.0496 6380 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
17:43:54.0499 6380 MegaSR - ok
17:43:54.0683 6380 MgiSvr (db330d9bdaeae4a198d6ef4d15fa5101) C:\Program Files (x86)\ArcSoft\Magic-i 3\uMgiSvr.exe
17:43:54.0684 6380 MgiSvr - ok
17:43:54.0700 6380 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
17:43:54.0701 6380 MMCSS - ok
17:43:54.0714 6380 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
17:43:54.0714 6380 Modem - ok
17:43:54.0761 6380 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
17:43:54.0762 6380 monitor - ok
17:43:54.0773 6380 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
17:43:54.0773 6380 mouclass - ok
17:43:54.0781 6380 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
17:43:54.0782 6380 mouhid - ok
17:43:54.0791 6380 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
17:43:54.0792 6380 MountMgr - ok
17:43:54.0879 6380 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:43:54.0880 6380 MozillaMaintenance - ok
17:43:54.0902 6380 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
17:43:54.0903 6380 mpio - ok
17:43:54.0938 6380 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
17:43:54.0938 6380 mpsdrv - ok
17:43:54.0957 6380 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
17:43:54.0958 6380 Mraid35x - ok
17:43:55.0028 6380 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
17:43:55.0029 6380 MRxDAV - ok
17:43:55.0100 6380 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:43:55.0101 6380 mrxsmb - ok
17:43:55.0118 6380 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:43:55.0120 6380 mrxsmb10 - ok
17:43:55.0156 6380 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:43:55.0157 6380 mrxsmb20 - ok
17:43:55.0170 6380 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
17:43:55.0170 6380 msahci - ok
17:43:55.0187 6380 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
17:43:55.0187 6380 msdsm - ok
17:43:55.0233 6380 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
17:43:55.0234 6380 MSDTC - ok
17:43:55.0293 6380 MSDV (df674ba7da5a4753d839a905b66d2fd9) C:\Windows\system32\DRIVERS\msdv.sys
17:43:55.0294 6380 MSDV - ok
17:43:55.0309 6380 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
17:43:55.0309 6380 Msfs - ok
17:43:55.0319 6380 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
17:43:55.0320 6380 msisadrv - ok
17:43:55.0358 6380 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
17:43:55.0360 6380 MSiSCSI - ok
17:43:55.0363 6380 msiserver - ok
17:43:55.0403 6380 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
17:43:55.0403 6380 MSKSSRV - ok
17:43:55.0419 6380 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
17:43:55.0420 6380 MSPCLOCK - ok
17:43:55.0431 6380 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
17:43:55.0432 6380 MSPQM - ok
17:43:55.0514 6380 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
17:43:55.0516 6380 MsRPC - ok
17:43:55.0554 6380 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
17:43:55.0555 6380 mssmbios - ok
17:43:55.0572 6380 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
17:43:55.0573 6380 MSTEE - ok
17:43:55.0587 6380 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
17:43:55.0589 6380 Mup - ok
17:43:55.0645 6380 MySQL - ok
17:43:55.0728 6380 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
17:43:55.0732 6380 napagent - ok
17:43:55.0797 6380 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
17:43:55.0799 6380 NativeWifiP - ok
17:43:55.0869 6380 NBDUpdate (cabdcf77d561774006eed29a1f421ac8) C:\Program Files\yaTimer\Updates\AutoUpdateService.exe
17:43:55.0869 6380 NBDUpdate - ok
17:43:55.0978 6380 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
17:43:55.0982 6380 NDIS - ok
17:43:56.0010 6380 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
17:43:56.0011 6380 NdisTapi - ok
17:43:56.0025 6380 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
17:43:56.0025 6380 Ndisuio - ok
17:43:56.0102 6380 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
17:43:56.0104 6380 NdisWan - ok
17:43:56.0125 6380 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
17:43:56.0126 6380 NDProxy - ok
17:43:56.0184 6380 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
17:43:56.0185 6380 Net Driver HPZ12 - ok
17:43:56.0195 6380 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
17:43:56.0195 6380 NetBIOS - ok
17:43:56.0248 6380 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
17:43:56.0250 6380 netbt - ok
17:43:56.0298 6380 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:43:56.0299 6380 Netlogon - ok
17:43:56.0336 6380 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
17:43:56.0339 6380 Netman - ok
17:43:56.0372 6380 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
17:43:56.0374 6380 netprofm - ok
17:43:56.0448 6380 netr7364 (b69d6bb680c85243af0263b3e01d5e77) C:\Windows\system32\DRIVERS\netr7364.sys
17:43:56.0452 6380 netr7364 - ok
17:43:56.0555 6380 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:43:56.0556 6380 NetTcpPortSharing - ok
17:43:56.0584 6380 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
17:43:56.0584 6380 nfrd960 - ok
17:43:56.0616 6380 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
17:43:56.0619 6380 NlaSvc - ok
17:43:56.0672 6380 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
17:43:56.0672 6380 Npfs - ok
17:43:56.0743 6380 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
17:43:56.0745 6380 nsi - ok
17:43:56.0757 6380 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
17:43:56.0757 6380 nsiproxy - ok
17:43:56.0942 6380 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
17:43:56.0950 6380 Ntfs - ok
17:43:57.0281 6380 NuidFltr (d4012918d3a3847b44b888d56bc095d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
17:43:57.0282 6380 NuidFltr - ok
17:43:57.0362 6380 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
17:43:57.0363 6380 Null - ok
17:43:58.0636 6380 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:43:58.0714 6380 nvlddmkm - ok
17:43:58.0879 6380 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
17:43:58.0880 6380 nvraid - ok
17:43:58.0918 6380 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
17:43:58.0918 6380 nvstor - ok
17:43:58.0999 6380 nvsvc (dfda089bb2cd0ff7e789e2ef6ba1e4ba) C:\Windows\system32\nvvsvc.exe
17:43:59.0006 6380 nvsvc - ok
17:43:59.0294 6380 nvUpdatusService (e7818cd4fb51284c948d68a7a85a69b8) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:43:59.0307 6380 nvUpdatusService - ok
17:43:59.0716 6380 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
17:43:59.0717 6380 nv_agp - ok
17:43:59.0721 6380 NwlnkFlt - ok
17:43:59.0727 6380 NwlnkFwd - ok
17:43:59.0780 6380 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
17:43:59.0780 6380 ohci1394 - ok
17:44:00.0031 6380 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:44:00.0032 6380 ose - ok
17:44:00.0609 6380 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:44:00.0638 6380 osppsvc - ok
17:44:01.0020 6380 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:44:01.0026 6380 p2pimsvc - ok
17:44:01.0034 6380 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:44:01.0041 6380 p2psvc - ok
17:44:01.0234 6380 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
17:44:01.0235 6380 Parport - ok
17:44:01.0396 6380 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
17:44:01.0396 6380 partmgr - ok
17:44:01.0419 6380 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
17:44:01.0421 6380 PcaSvc - ok
17:44:01.0506 6380 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
17:44:01.0507 6380 pci - ok
17:44:01.0553 6380 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
17:44:01.0553 6380 pciide - ok
17:44:01.0576 6380 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
17:44:01.0578 6380 pcmcia - ok
17:44:01.0767 6380 PDFProFiltSrv (f5f62ac0f051f2c80529aa5eeb7aaf92) C:\Program Files (x86)\Nuance\PDF Professional 5\PDFProFiltSrv.exe
17:44:01.0768 6380 PDFProFiltSrv - ok
17:44:01.0835 6380 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
17:44:01.0839 6380 PEAUTH - ok
17:44:01.0941 6380 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
17:44:01.0943 6380 PerfHost - ok
17:44:02.0252 6380 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
17:44:02.0262 6380 pla - ok
17:44:02.0406 6380 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
17:44:02.0410 6380 PlugPlay - ok
17:44:02.0553 6380 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
17:44:02.0554 6380 Pml Driver HPZ12 - ok
17:44:02.0639 6380 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:44:02.0645 6380 PNRPAutoReg - ok
17:44:02.0655 6380 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
17:44:02.0661 6380 PNRPsvc - ok
17:44:02.0752 6380 Point64 (f69344f62a3dc83d2bd03e5626a16b1c) C:\Windows\system32\DRIVERS\point64k.sys
17:44:02.0753 6380 Point64 - ok
17:44:02.0884 6380 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
17:44:02.0888 6380 PolicyAgent - ok
17:44:03.0059 6380 ppped (d483893aa28f060d2b2cdb69586d1cdb) C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe
17:44:03.0066 6380 ppped - ok
17:44:03.0574 6380 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
17:44:03.0575 6380 PptpMiniport - ok
17:44:03.0610 6380 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
17:44:03.0610 6380 Processor - ok
17:44:03.0652 6380 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
17:44:03.0655 6380 ProfSvc - ok
17:44:03.0714 6380 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:44:03.0715 6380 ProtectedStorage - ok
17:44:03.0754 6380 Ps2 (1d0a3f565397d08707f3d75b88586645) C:\Windows\system32\DRIVERS\PS2.sys
17:44:03.0755 6380 Ps2 - ok
17:44:03.0968 6380 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
17:44:03.0969 6380 PSched - ok
17:44:04.0092 6380 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
17:44:04.0099 6380 ql2300 - ok
17:44:04.0301 6380 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
17:44:04.0302 6380 ql40xx - ok
17:44:04.0361 6380 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
17:44:04.0364 6380 QWAVE - ok
17:44:04.0393 6380 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
17:44:04.0394 6380 QWAVEdrv - ok
17:44:04.0423 6380 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
17:44:04.0424 6380 RasAcd - ok
17:44:04.0439 6380 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
17:44:04.0441 6380 RasAuto - ok
17:44:04.0485 6380 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:44:04.0486 6380 Rasl2tp - ok
17:44:04.0533 6380 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
17:44:04.0536 6380 RasMan - ok
17:44:04.0590 6380 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
17:44:04.0590 6380 RasPppoe - ok
17:44:04.0661 6380 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
17:44:04.0662 6380 RasSstp - ok
17:44:04.0860 6380 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
17:44:04.0861 6380 rdbss - ok
17:44:04.0895 6380 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:44:04.0896 6380 RDPCDD - ok
17:44:05.0066 6380 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
17:44:05.0068 6380 rdpdr - ok
17:44:05.0072 6380 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
17:44:05.0073 6380 RDPENCDD - ok
17:44:05.0144 6380 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
17:44:05.0146 6380 RDPWD - ok
17:44:05.0194 6380 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
17:44:05.0196 6380 RemoteAccess - ok
17:44:05.0268 6380 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
17:44:05.0271 6380 RemoteRegistry - ok
17:44:05.0344 6380 RetroLauncher (6fb9b33d20a2aac7c89884246a0e25fb) C:\Program Files (x86)\Dantz\Retrospect\retrorun.exe
17:44:05.0345 6380 RetroLauncher - ok
17:44:05.0384 6380 RetroWDSvc (6f5386267113fe4e0f87a882de48c577) C:\PROGRA~2\Dantz\RETROS~1\wdsvc.exe
17:44:05.0385 6380 RetroWDSvc - ok
17:44:05.0445 6380 RFCOMM (cd71e053d7260e4102d99a28f9196070) C:\Windows\system32\DRIVERS\rfcomm.sys
17:44:05.0446 6380 RFCOMM - ok
17:44:05.0497 6380 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
17:44:05.0498 6380 RpcLocator - ok
17:44:05.0672 6380 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
17:44:05.0677 6380 RpcSs - ok
17:44:05.0697 6380 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
17:44:05.0698 6380 rspndr - ok
17:44:05.0773 6380 RTL8169 (170a66dfaaa22358e08d6f4b38c8f3df) C:\Windows\system32\DRIVERS\Rtlh64.sys
17:44:05.0774 6380 RTL8169 - ok
17:44:05.0831 6380 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
17:44:05.0832 6380 SamSs - ok
17:44:05.0857 6380 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
17:44:05.0858 6380 sbp2port - ok
17:44:06.0212 6380 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
17:44:06.0219 6380 SBSDWSCService - ok
17:44:06.0374 6380 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
17:44:06.0377 6380 SCardSvr - ok
17:44:06.0485 6380 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
17:44:06.0492 6380 Schedule - ok
17:44:06.0543 6380 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
17:44:06.0544 6380 SCPolicySvc - ok
17:44:06.0574 6380 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
17:44:06.0576 6380 SDRSVC - ok
17:44:06.0630 6380 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:44:06.0631 6380 secdrv - ok
17:44:06.0706 6380 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
17:44:06.0708 6380 seclogon - ok
17:44:06.0727 6380 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
17:44:06.0729 6380 SENS - ok
17:44:07.0071 6380 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
17:44:07.0072 6380 Serenum - ok
17:44:07.0143 6380 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
17:44:07.0144 6380 Serial - ok
17:44:07.0177 6380 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
17:44:07.0177 6380 sermouse - ok
17:44:07.0352 6380 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
17:44:07.0354 6380 SessionEnv - ok
17:44:07.0370 6380 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
17:44:07.0371 6380 sffdisk - ok
17:44:07.0487 6380 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
17:44:07.0487 6380 sffp_mmc - ok
17:44:07.0500 6380 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
17:44:07.0501 6380 sffp_sd - ok
17:44:07.0508 6380 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
17:44:07.0509 6380 sfloppy - ok
17:44:07.0632 6380 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
17:44:07.0635 6380 ShellHWDetection - ok
17:44:07.0650 6380 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
17:44:07.0651 6380 SiSRaid2 - ok
17:44:07.0686 6380 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
17:44:07.0687 6380 SiSRaid4 - ok
17:44:07.0843 6380 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:44:07.0844 6380 SkypeUpdate - ok
17:44:08.0083 6380 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
17:44:08.0100 6380 slsvc - ok
17:44:08.0301 6380 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
17:44:08.0303 6380 SLUINotify - ok
17:44:08.0657 6380 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
17:44:08.0658 6380 Smb - ok
17:44:08.0691 6380 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
17:44:08.0693 6380 SNMPTRAP - ok
17:44:08.0732 6380 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
17:44:08.0732 6380 spldr - ok
17:44:08.0817 6380 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
17:44:08.0820 6380 Spooler - ok
17:44:08.0887 6380 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
17:44:08.0890 6380 srv - ok
17:44:08.0980 6380 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
17:44:08.0981 6380 srv2 - ok
17:44:09.0052 6380 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
17:44:09.0053 6380 srvnet - ok
17:44:09.0093 6380 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
17:44:09.0096 6380 SSDPSRV - ok
17:44:09.0144 6380 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
17:44:09.0147 6380 SstpSvc - ok
17:44:09.0240 6380 StillCam (14b4db4381e4a55f570d8bb699b791d6) C:\Windows\system32\DRIVERS\serscan.sys
17:44:09.0240 6380 StillCam - ok
17:44:09.0333 6380 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
17:44:09.0338 6380 stisvc - ok
17:44:09.0388 6380 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
17:44:09.0389 6380 swenum - ok
17:44:09.0488 6380 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
17:44:09.0492 6380 swprv - ok
17:44:09.0531 6380 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
17:44:09.0532 6380 Symc8xx - ok
17:44:09.0548 6380 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
17:44:09.0548 6380 Sym_hi - ok
17:44:09.0566 6380 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
17:44:09.0567 6380 Sym_u3 - ok
17:44:09.0694 6380 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
17:44:09.0701 6380 SysMain - ok
17:44:09.0728 6380 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
17:44:09.0730 6380 TabletInputService - ok
17:44:09.0920 6380 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
17:44:09.0924 6380 TapiSrv - ok
17:44:09.0957 6380 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
17:44:09.0959 6380 TBS - ok
17:44:10.0146 6380 Tcpip (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\drivers\tcpip.sys
17:44:10.0155 6380 Tcpip - ok
17:44:10.0472 6380 Tcpip6 (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\DRIVERS\tcpip.sys
17:44:10.0481 6380 Tcpip6 - ok
17:44:10.0787 6380 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
17:44:10.0787 6380 tcpipreg - ok
17:44:10.0818 6380 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
17:44:10.0819 6380 TDPIPE - ok
17:44:10.0848 6380 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
17:44:10.0848 6380 TDTCP - ok
17:44:10.0977 6380 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
17:44:10.0978 6380 tdx - ok
17:44:11.0030 6380 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
17:44:11.0030 6380 TermDD - ok
17:44:11.0230 6380 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
17:44:11.0235 6380 TermService - ok
17:44:11.0316 6380 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
17:44:11.0319 6380 Themes - ok
17:44:11.0383 6380 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
17:44:11.0384 6380 THREADORDER - ok
17:44:12.0553 6380 TivoBeacon2 (d4bb308e148bea35bdb861f2a8dec977) C:\Program Files (x86)\TiVo\Desktop\TiVoBeacon.exe
17:44:12.0560 6380 TivoBeacon2 - ok
17:44:12.0591 6380 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
17:44:12.0593 6380 TrkWks - ok
17:44:12.0724 6380 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
17:44:12.0725 6380 TrustedInstaller - ok
17:44:12.0899 6380 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:44:12.0900 6380 tssecsrv - ok
17:44:12.0926 6380 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
17:44:12.0927 6380 tunmp - ok
17:44:13.0076 6380 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
17:44:13.0077 6380 tunnel - ok
17:44:13.0133 6380 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
17:44:13.0133 6380 uagp35 - ok
17:44:13.0205 6380 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
17:44:13.0207 6380 udfs - ok
17:44:13.0266 6380 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
17:44:13.0268 6380 UI0Detect - ok
17:44:13.0297 6380 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
17:44:13.0298 6380 uliagpkx - ok
17:44:13.0324 6380 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
17:44:13.0326 6380 uliahci - ok
17:44:13.0372 6380 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
17:44:13.0374 6380 UlSata - ok
17:44:13.0408 6380 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
17:44:13.0410 6380 ulsata2 - ok
17:44:13.0460 6380 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
17:44:13.0461 6380 umbus - ok
17:44:13.0496 6380 UMPass (01abe05c401e70795b43a8933b44831e) C:\Windows\system32\DRIVERS\umpass.sys
17:44:13.0496 6380 UMPass - ok
17:44:13.0542 6380 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
17:44:13.0546 6380 upnphost - ok
17:44:13.0678 6380 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
17:44:13.0678 6380 USBAAPL64 - ok
17:44:13.0743 6380 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys
17:44:13.0744 6380 usbaudio - ok
17:44:13.0783 6380 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
17:44:13.0784 6380 usbccgp - ok
17:44:13.0795 6380 usbcir (8c39d53e1a343f4c47ee8f3c052126d8) C:\Windows\system32\DRIVERS\usbcir.sys
17:44:13.0796 6380 usbcir - ok
17:44:13.0844 6380 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
17:44:13.0845 6380 usbehci - ok
17:44:13.0969 6380 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
17:44:13.0971 6380 usbhub - ok
17:44:14.0037 6380 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
17:44:14.0037 6380 usbohci - ok
17:44:14.0051 6380 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
17:44:14.0051 6380 usbprint - ok
17:44:14.0273 6380 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:44:14.0274 6380 USBSTOR - ok
17:44:14.0287 6380 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
17:44:14.0288 6380 usbuhci - ok
17:44:14.0365 6380 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
17:44:14.0366 6380 usbvideo - ok
17:44:14.0440 6380 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
17:44:14.0442 6380 UxSms - ok
17:44:14.0446 6380 VcommMgr - ok
17:44:14.0534 6380 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
17:44:14.0538 6380 vds - ok
17:44:14.0583 6380 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
17:44:14.0583 6380 vga - ok
17:44:14.0604 6380 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
17:44:14.0605 6380 VgaSave - ok
17:44:14.0647 6380 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
17:44:14.0647 6380 viaide - ok
17:44:14.0885 6380 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
17:44:14.0886 6380 volmgr - ok
17:44:15.0026 6380 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
17:44:15.0028 6380 volmgrx - ok
17:44:15.0140 6380 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
17:44:15.0142 6380 volsnap - ok
17:44:15.0215 6380 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
17:44:15.0216 6380 vsmraid - ok
17:44:15.0746 6380 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
17:44:15.0757 6380 VSS - ok
17:44:16.0249 6380 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
17:44:16.0253 6380 W32Time - ok
17:44:16.0320 6380 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
17:44:16.0321 6380 WacomPen - ok
17:44:16.0390 6380 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
17:44:16.0391 6380 Wanarp - ok
17:44:16.0394 6380 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
17:44:16.0396 6380 Wanarpv6 - ok
17:44:16.0587 6380 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
17:44:16.0593 6380 wcncsvc - ok
17:44:16.0620 6380 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
17:44:16.0622 6380 WcsPlugInService - ok
17:44:16.0671 6380 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
17:44:16.0672 6380 Wd - ok
17:44:16.0792 6380 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
17:44:16.0798 6380 Wdf01000 - ok
17:44:16.0886 6380 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
17:44:16.0888 6380 WdiServiceHost - ok
17:44:16.0891 6380 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
17:44:16.0894 6380 WdiSystemHost - ok
17:44:17.0047 6380 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
17:44:17.0050 6380 WebClient - ok
17:44:17.0390 6380 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
17:44:17.0393 6380 Wecsvc - ok
17:44:17.0475 6380 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
17:44:17.0477 6380 wercplsupport - ok
17:44:17.0550 6380 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
17:44:17.0553 6380 WerSvc - ok
17:44:17.0646 6380 WinDefend - ok
17:44:17.0656 6380 WinHttpAutoProxySvc - ok
17:44:17.0835 6380 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
17:44:17.0837 6380 Winmgmt - ok
17:44:18.0061 6380 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
17:44:18.0075 6380 WinRM - ok
17:44:18.0496 6380 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
17:44:18.0502 6380 Wlansvc - ok
17:44:18.0855 6380 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:44:18.0869 6380 wlidsvc - ok
17:44:19.0093 6380 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys
17:44:19.0093 6380 WmiAcpi - ok
17:44:19.0305 6380 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
17:44:19.0306 6380 wmiApSrv - ok
17:44:19.0464 6380 WMPNetworkSvc - ok
17:44:19.0505 6380 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
17:44:19.0508 6380 WPCSvc - ok
17:44:19.0639 6380 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
17:44:19.0642 6380 WPDBusEnum - ok
17:44:19.0703 6380 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
17:44:19.0704 6380 WpdUsb - ok
17:44:20.0110 6380 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:44:20.0116 6380 WPFFontCache_v0400 - ok
17:44:20.0178 6380 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
17:44:20.0178 6380 ws2ifsl - ok
17:44:20.0258 6380 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\system32\wscsvc.dll
17:44:20.0260 6380 wscsvc - ok
17:44:20.0324 6380 WSDPrintDevice (de5f5212ab34221dd1618b5fefe8db6c) C:\Windows\system32\DRIVERS\WSDPrint.sys
17:44:20.0325 6380 WSDPrintDevice - ok
17:44:20.0328 6380 WSearch - ok
17:44:20.0903 6380 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
17:44:20.0919 6380 wuauserv - ok
17:44:21.0090 6380 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:44:21.0091 6380 WUDFRd - ok
17:44:21.0351 6380 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
17:44:21.0353 6380 wudfsvc - ok
17:44:21.0423 6380 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
17:44:22.0202 6380 \Device\Harddisk0\DR0 - ok
17:44:22.0227 6380 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
17:44:22.0300 6380 \Device\Harddisk1\DR1 - ok
17:44:22.0305 6380 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
17:44:24.0899 6380 \Device\Harddisk2\DR2 - ok
17:44:24.0940 6380 Boot (0x1200) (42af3a7b0f3430e1da0ea798cc6bd6f9) \Device\Harddisk0\DR0\Partition0
17:44:24.0941 6380 \Device\Harddisk0\DR0\Partition0 - ok
17:44:25.0016 6380 Boot (0x1200) (803e4d301c164d24d97def3b41543b67) \Device\Harddisk0\DR0\Partition1
17:44:25.0018 6380 \Device\Harddisk0\DR0\Partition1 - ok
17:44:25.0037 6380 Boot (0x1200) (e9ba549dcaf646a85c01b0cf8c74862a) \Device\Harddisk1\DR1\Partition0
17:44:25.0039 6380 \Device\Harddisk1\DR1\Partition0 - ok
17:44:25.0043 6380 Boot (0x1200) (7e189800a60ae102a38281e41153d072) \Device\Harddisk2\DR2\Partition0
17:44:25.0044 6380 \Device\Harddisk2\DR2\Partition0 - ok
17:44:25.0045 6380 ============================================================
17:44:25.0045 6380 Scan finished
17:44:25.0045 6380 ============================================================
17:44:25.0057 6816 Detected object count: 0
17:44:25.0057 6816 Actual detected object count: 0

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 07 July 2012 - 07:58 PM

OK, then run aswMBR and Minitool first/

Edited by boopme, 07 July 2012 - 08:08 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 ndbleep12

ndbleep12
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 08:32 PM

aswMRB crashed system on initial scan. Ran successfully 2nd try... Here is the log... 18:12 entries in red.

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-07 18:06:23
-----------------------------
18:06:23.255 OS Version: Windows x64 6.0.6002 Service Pack 2
18:06:23.256 Number of processors: 4 586 0x1707
18:06:23.256 ComputerName: ST-PC UserName: st
18:06:24.829 Initialize success
18:06:35.744 AVAST engine defs: 12070701
18:06:41.510 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:06:41.513 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 8
18:06:41.515 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
18:06:41.517 Disk 1 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 8
18:06:41.636 Disk 0 MBR read successfully
18:06:41.639 Disk 0 MBR scan
18:06:41.665 Disk 0 unknown MBR code
18:06:41.668 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 464316 MB offset 63
18:06:41.704 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 12621 MB offset 950919480
18:06:41.756 Disk 0 scanning C:\Windows\system32\drivers
18:07:16.679 Service scanning
18:07:47.638 Modules scanning
18:07:47.645 Disk 0 trace - called modules:
18:07:48.007 ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
18:07:48.011 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008397120]
18:07:48.016 3 CLASSPNP.SYS[fffffa6000fd3c33] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006152050]
18:07:50.441 AVAST engine scan C:\Windows
18:08:01.265 AVAST engine scan C:\Windows\system32
18:12:27.684 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
18:12:43.659 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
18:17:24.309 AVAST engine scan C:\Windows\system32\drivers
18:18:15.468 AVAST engine scan C:\Users\st
18:26:54.834 Disk 0 MBR has been saved successfully to "C:\Users\st\Desktop\MBR.dat"
18:26:54.841 The log file has been saved successfully to "C:\Users\st\Desktop\aswMBR.txt"

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 07 July 2012 - 08:43 PM

Hi rerun aswMBR
Download latest virus definitions at the startup

Click [Scan]

On completion of the scan click [Fix]

Click [Save log], save it to your desktop and post in your next reply

Reboot
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 ndbleep12

ndbleep12
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 08:51 PM

Results of MiniToolBox run...

--------- Received two errors of

nslookup.exe-ordinal not found
The ordinal 1108 could not be lcated in the dynamic link library Wsock32.dll.

--------- Then this error of

Autoit Error
Line 5838 (file "C:\Users\st\Desktop\MiniToolBox.exe");
Error: Vriable used without being declared.


----------- Result.txt

MiniToolBox by Farbar Version: 25-06-2012
Ran by st (administrator) on 07-07-2012 at 18:40:41
Windows ™ Vista Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

The following helper DLL cannot be loaded: IFMON.DLL.
The following helper DLL cannot be loaded: IPMONTR.DLL.
The following helper DLL cannot be loaded: IPPROMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : st-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : USB Wireless 802.11 b/g Adaptor
Physical Address. . . . . . . . . : 00-22-5F-2D-CA-92
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:475f:6bb1:0:68a6:a76:1728:8568(Preferred)
Temporary IPv6 Address. . . . . . : 2002:475f:6bb1:0:a4de:8891:8810:76d8(Preferred)
Link-local IPv6 Address . . . . . : fe80::68a6:a76:1728:8568%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.117(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, July 07, 2012 6:00:24 PM
Lease Expires . . . . . . . . . . : Sunday, July 08, 2012 6:00:24 PM
Default Gateway . . . . . . . . . : fe80::c2c1:c0ff:fe4c:42f2%11
192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 184558175
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-10-71-1E-48-00-23-54-1F-26-7D
DNS Servers . . . . . . . . . . . : 68.116.46.115
24.205.192.61
24.205.224.36
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-23-54-1F-26-7D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{D84E90EF-72DB-48E2-BF1A-908318289A93}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{E926890A-5CC0-4525-B870-5A712F4BC21F}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes


Pinging google.com [74.125.224.135] with 32 bytes of data:

Reply from 74.125.224.135: bytes=32 time=34ms TTL=52

Reply from 74.125.224.135: bytes=32 time=38ms TTL=52



Ping statistics for 74.125.224.135:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 34ms, Maximum = 38ms, Average = 36ms



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=72ms TTL=50

Reply from 209.191.122.70: bytes=32 time=1768ms TTL=50



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 72ms, Maximum = 1768ms, Average = 920ms



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
11 ...00 22 5f 2d ca 92 ...... USB Wireless 802.11 b/g Adaptor
10 ...00 23 54 1f 26 7d ...... Realtek PCIe GBE Family Controller
1 ........................... Software Loopback Interface 1
15 ...00 00 00 00 00 00 00 e0 isatap.{D84E90EF-72DB-48E2-BF1A-908318289A93}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
16 ...00 00 00 00 00 00 00 e0 isatap.{E926890A-5CC0-4525-B870-5A712F4BC21F}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.117 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.117 281
192.168.0.117 255.255.255.255 On-link 192.168.0.117 281
192.168.0.255 255.255.255.255 On-link 192.168.0.117 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.117 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.117 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 4121 ::/0 fe80::c2c1:c0ff:fe4c:42f2
1 306 ::1/128 On-link
11 33 2002:475f:6bb1::/64 On-link
11 281 2002:475f:6bb1:0:68a6:a76:1728:8568/128
On-link
11 281 2002:475f:6bb1:0:a4de:8891:8810:76d8/128
On-link
11 281 fe80::/64 On-link
11 281 fe80::68a6:a76:1728:8568/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Program Files (x86)\Juniper Networks\Secure Application Manager\samnsp.dll [70952] (Juniper Networks)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Juniper Networks\Secure Application Manager\samnsp.dll [70952] (Juniper Networks)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 07 July 2012 - 09:16 PM

Looks like the rootkit has messed up the Winsock.

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.


Rerun Mimitoolbox
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 ndbleep12

ndbleep12
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 10:14 PM

Just checking in, not trying to bump...aswMBR scan #2 still running, thanks again for your expertise!

#10 ndbleep12

ndbleep12
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:38 PM

Posted 07 July 2012 - 10:20 PM

aswMBR scan#2 just finished, no option to fix available...should I proceed with fixing Winsock / run MiniTool again? Exit out of aswMBR

Here's the log...

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-07 18:56:51
-----------------------------
18:56:51.123 OS Version: Windows x64 6.0.6002 Service Pack 2
18:56:51.123 Number of processors: 4 586 0x1707
18:56:51.124 ComputerName: ST-PC UserName: st
18:56:52.750 Initialize success
18:56:57.641 AVAST engine defs: 12070701
18:57:19.095 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:57:19.097 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 8
18:57:19.100 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IAAStorageDevice-2
18:57:19.102 Disk 1 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 8
18:57:19.127 Disk 0 MBR read successfully
18:57:19.130 Disk 0 MBR scan
18:57:19.135 Disk 0 unknown MBR code
18:57:19.145 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 464316 MB offset 63
18:57:19.191 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 12621 MB offset 950919480
18:57:19.294 Disk 0 scanning C:\Windows\system32\drivers
18:58:19.152 Service scanning
18:59:31.788 Modules scanning
18:59:31.795 Disk 0 trace - called modules:
18:59:31.824 ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
18:59:31.828 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008397120]
18:59:31.833 3 CLASSPNP.SYS[fffffa6000fd3c33] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006152050]
18:59:37.300 AVAST engine scan C:\Windows
19:00:11.352 AVAST engine scan C:\Windows\system32
19:04:02.418 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:04:05.308 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
19:07:00.817 AVAST engine scan C:\Windows\system32\drivers
19:07:38.023 AVAST engine scan C:\Users\st
19:58:38.710 AVAST engine scan C:\ProgramData
20:13:43.647 Scan finished successfully
20:19:53.455 Disk 0 MBR has been saved successfully to "C:\Users\st\Desktop\MBR.dat"
20:19:53.460 The log file has been saved successfully to "C:\Users\st\Desktop\aswMBR2.txt"

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 07 July 2012 - 10:25 PM

Hello,we will need to move and use stronger tools.
Name the new topic Win32:Sirefef-PL [Rtk]

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 AM

Posted 08 July 2012 - 10:12 AM

Now that gringo_pr has replied to the new tioc I will close this. You are in great hands now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users