Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need help removing File Recovery infection


  • This topic is locked This topic is locked
5 replies to this topic

#1 yorick73

yorick73

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 18 July 2012 - 02:47 PM

Hello,
Yesterday I received an e-mail from a friend that had only a link. Figuring this was a virus I googled the web address listed hoping to find some information. What I thought was a topics page was probably the exact same page that was linked in the e-mail (http:birken1011.birkenkrahe.com/wp-content/gnfkvgn.php?cw=irpzcd).I broke the link just in case you make the same boneheaded mistake I did. It looked like a charity page but I immediately received a pop-up asking to install software. Of course I hit cancel but it kept popping up over and over again. As you may have guessed I accidentally clicked OK and the problems began.

I immediately restarted my computer thinking I could interrupt the installation. No luck. I started receiving warnings about hard disc partition space and the File Recovery program began running. It also added an icon to my desktop and then later deleted all of my icons and startup items. I started my computer in safe mode and followed the directions on bleepingcomputer.com for removal of File Recovery. MBAM got rid of a number of hijackers and prompted me to restart. After restarting I ran TDSS killer. That program detected a root kit but could not cure it. I am not at home now but I received a message asking if I wanted to overwrite with a general boot script or something similar (I can post the exact language if needed in a few hours) but I was afraid I'd screw things up even more. So, I have a feeling that I did not rid myself of this thing and I am still missing all of my icons and startup items. On the plus side it appears that the File Recovery program is no longer running in normal startup mode. Also, I ran spybot S&D which prompted me to delete my temp files...unfortunately I did this before reading bleepingcomputer's page on File Recovery. I don't know if I can retrieve those shortcuts now.

I have a Sony Vaio laptop running Windows XP. If anyone can help me with this I would greatly appreciate it.

Thank you,

Mike

Edited by yorick73, 18 July 2012 - 02:59 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:52 PM

Posted 18 July 2012 - 03:30 PM

Welcome, there are likely a few steps you missed.

Please follow our Removal Guide here File Recovery Removal Guide .
After reading how the malware is misleading you ...
You will move to the Automated Removal Instructions

After you completed that, post your scan log here,let me know how things are.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

Also the other tool log.. A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
Copy and paste the contents of that file in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 yorick73

yorick73
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 18 July 2012 - 10:10 PM

Hi Boopme,

Thanks so much for your help. I followed the directions as listed on that page yesterday but stopped after TDSSKiller could not "cure" my root kit infection. I apologize...I accidentally said my system was XP but it is Vista. Sorry for the confusion.

Here is my last MBAM log:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.07.18.01

Windows Vista Service Pack 2 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Marino :: MARINO-PC [administrator]

7/18/2012 12:46:33 AM
mbam-log-2012-07-18 (00-46-33).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 209803
Time elapsed: 3 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SuvYWcBMABLm.exe (FakeAlert) -> Data: C:\ProgramData\SuvYWcBMABLm.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|L4iffU3PJ6dHGo (FakeAlert) -> Data: C:\ProgramData\L4iffU3PJ6dHGo.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 4
C:\Users\Marino\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.exe (PUP.Adware.InstallCore) -> No action taken.
C:\Users\Marino\AppData\Local\Temp\is357113909\GiantSavings_US.exe (PUP.GamePlayLabs) -> No action taken.
C:\ProgramData\SuvYWcBMABLm.exe (FakeAlert) -> Quarantined and deleted successfully.
C:\ProgramData\L4iffU3PJ6dHGo.exe (FakeAlert) -> Quarantined and deleted successfully.

(end)


Here is my TDSSKiller log:
08:10:19.0321 0780 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
08:10:20.0024 0780 ============================================================
08:10:20.0024 0780 Current date / time: 2012/07/18 08:10:20.0024
08:10:20.0024 0780 SystemInfo:
08:10:20.0024 0780
08:10:20.0024 0780 OS Version: 6.0.6002 ServicePack: 2.0
08:10:20.0024 0780 Product type: Workstation
08:10:20.0024 0780 ComputerName: MARINO-PC
08:10:20.0025 0780 UserName: Marino
08:10:20.0025 0780 Windows directory: C:\Windows
08:10:20.0025 0780 System windows directory: C:\Windows
08:10:20.0025 0780 Running under WOW64
08:10:20.0025 0780 Processor architecture: Intel x64
08:10:20.0025 0780 Number of processors: 2
08:10:20.0025 0780 Page size: 0x1000
08:10:20.0025 0780 Boot type: Normal boot
08:10:20.0025 0780 ============================================================
08:10:21.0307 0780 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:10:21.0319 0780 Drive \Device\Harddisk3\DR3 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:10:21.0324 0780 ============================================================
08:10:21.0324 0780 \Device\Harddisk0\DR0:
08:10:21.0324 0780 MBR partitions:
08:10:21.0324 0780 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x145A800, BlocksNum 0x23FD3AB0
08:10:21.0324 0780 \Device\Harddisk3\DR3:
08:10:21.0325 0780 MBR partitions:
08:10:21.0325 0780 \Device\Harddisk3\DR3\Partition0: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0
08:10:21.0325 0780 ============================================================
08:10:21.0389 0780 C: <-> \Device\Harddisk0\DR0\Partition0
08:10:21.0389 0780 ============================================================
08:10:21.0389 0780 Initialize success
08:10:21.0389 0780 ============================================================
08:10:23.0413 3508 ============================================================
08:10:23.0414 3508 Scan started
08:10:23.0414 3508 Mode: Manual;
08:10:23.0414 3508 ============================================================
08:10:23.0827 3508 !SASCORE (a0709b82fa3b5afad1467e565b8b3ba0) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
08:10:24.0023 3508 !SASCORE - ok
08:10:24.0138 3508 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
08:10:24.0400 3508 ACDaemon - ok
08:10:24.0843 3508 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
08:10:24.0853 3508 ACPI - ok
08:10:24.0978 3508 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:10:24.0982 3508 AdobeFlashPlayerUpdateSvc - ok
08:10:25.0054 3508 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
08:10:25.0067 3508 adp94xx - ok
08:10:25.0106 3508 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
08:10:25.0119 3508 adpahci - ok
08:10:25.0156 3508 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
08:10:25.0163 3508 adpu160m - ok
08:10:25.0503 3508 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
08:10:25.0511 3508 adpu320 - ok
08:10:25.0801 3508 ADVService (985e43b02d2443f6c0f440771c77e5d1) C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
08:10:25.0933 3508 ADVService - ok
08:10:25.0969 3508 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
08:10:25.0970 3508 AeLookupSvc - ok
08:10:26.0044 3508 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
08:10:26.0157 3508 AFD - ok
08:10:26.0192 3508 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
08:10:26.0198 3508 agp440 - ok
08:10:26.0215 3508 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
08:10:26.0221 3508 aic78xx - ok
08:10:26.0241 3508 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
08:10:26.0251 3508 ALG - ok
08:10:26.0268 3508 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
08:10:26.0272 3508 aliide - ok
08:10:26.0289 3508 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
08:10:26.0293 3508 amdide - ok
08:10:26.0310 3508 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
08:10:26.0316 3508 AmdK8 - ok
08:10:26.0326 3508 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
08:10:26.0336 3508 Appinfo - ok
08:10:26.0407 3508 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:10:26.0540 3508 Apple Mobile Device - ok
08:10:26.0571 3508 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
08:10:26.0578 3508 arc - ok
08:10:26.0597 3508 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
08:10:26.0602 3508 arcsas - ok
08:10:26.0627 3508 ArcSoftKsUFilter (1ce3822b05a5e229286a15ea39369870) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
08:10:26.0733 3508 ArcSoftKsUFilter - ok
08:10:26.0765 3508 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
08:10:26.0773 3508 AsyncMac - ok
08:10:26.0780 3508 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
08:10:26.0786 3508 atapi - ok
08:10:26.0896 3508 athr (390bc9b68e1ef2a299731bc775d43004) C:\Windows\system32\DRIVERS\athrx.sys
08:10:26.0982 3508 athr - ok
08:10:27.0044 3508 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
08:10:27.0050 3508 AudioEndpointBuilder - ok
08:10:27.0060 3508 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
08:10:27.0067 3508 AudioSrv - ok
08:10:27.0133 3508 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
08:10:27.0152 3508 BFE - ok
08:10:27.0248 3508 BITS (6d316f4859634071cc25c4fd4589ad2c) C:\Windows\System32\qmgr.dll
08:10:27.0273 3508 BITS - ok
08:10:27.0323 3508 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
08:10:27.0329 3508 blbdrive - ok
08:10:27.0440 3508 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
08:10:27.0536 3508 Bonjour Service - ok
08:10:27.0589 3508 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
08:10:27.0664 3508 bowser - ok
08:10:27.0678 3508 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
08:10:27.0686 3508 BrFiltLo - ok
08:10:27.0712 3508 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
08:10:27.0720 3508 BrFiltUp - ok
08:10:27.0752 3508 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
08:10:27.0754 3508 Browser - ok
08:10:27.0779 3508 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
08:10:27.0788 3508 Brserid - ok
08:10:27.0808 3508 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
08:10:27.0817 3508 BrSerWdm - ok
08:10:27.0823 3508 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
08:10:27.0830 3508 BrUsbMdm - ok
08:10:27.0842 3508 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
08:10:27.0847 3508 BrUsbSer - ok
08:10:27.0865 3508 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
08:10:27.0873 3508 BTHMODEM - ok
08:10:27.0926 3508 CAXHWAZL (fdb53a8d3bc52dc29884587e768e3388) C:\Windows\system32\DRIVERS\CAXHWAZL.sys
08:10:28.0030 3508 CAXHWAZL - ok
08:10:28.0069 3508 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
08:10:28.0076 3508 cdfs - ok
08:10:28.0123 3508 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
08:10:28.0129 3508 cdrom - ok
08:10:28.0160 3508 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
08:10:28.0166 3508 CertPropSvc - ok
08:10:28.0194 3508 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
08:10:28.0276 3508 cfwids - ok
08:10:28.0313 3508 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
08:10:28.0323 3508 circlass - ok
08:10:28.0383 3508 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
08:10:28.0394 3508 CLFS - ok
08:10:28.0447 3508 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:10:28.0453 3508 clr_optimization_v2.0.50727_32 - ok
08:10:28.0514 3508 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:10:28.0525 3508 clr_optimization_v2.0.50727_64 - ok
08:10:28.0598 3508 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:10:28.0730 3508 clr_optimization_v4.0.30319_32 - ok
08:10:28.0794 3508 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:10:28.0919 3508 clr_optimization_v4.0.30319_64 - ok
08:10:28.0961 3508 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
08:10:28.0967 3508 CmBatt - ok
08:10:28.0986 3508 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
08:10:28.0990 3508 cmdide - ok
08:10:29.0003 3508 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
08:10:29.0007 3508 Compbatt - ok
08:10:29.0014 3508 COMSysApp - ok
08:10:29.0023 3508 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
08:10:29.0029 3508 crcdisk - ok
08:10:29.0095 3508 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
08:10:29.0098 3508 CryptSvc - ok
08:10:29.0190 3508 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
08:10:29.0200 3508 DcomLaunch - ok
08:10:29.0244 3508 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
08:10:29.0368 3508 DfsC - ok
08:10:29.0627 3508 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
08:10:29.0693 3508 DFSR - ok
08:10:29.0817 3508 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
08:10:29.0820 3508 Dhcp - ok
08:10:29.0862 3508 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
08:10:29.0867 3508 disk - ok
08:10:29.0872 3508 DMICall - ok
08:10:29.0927 3508 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
08:10:29.0929 3508 Dnscache - ok
08:10:29.0973 3508 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
08:10:29.0993 3508 dot3svc - ok
08:10:30.0029 3508 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
08:10:30.0032 3508 DPS - ok
08:10:30.0055 3508 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
08:10:30.0059 3508 drmkaud - ok
08:10:30.0176 3508 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
08:10:30.0277 3508 DXGKrnl - ok
08:10:30.0303 3508 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
08:10:30.0309 3508 E1G60 - ok
08:10:30.0327 3508 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
08:10:30.0331 3508 EapHost - ok
08:10:30.0364 3508 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
08:10:30.0370 3508 Ecache - ok
08:10:30.0463 3508 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
08:10:30.0490 3508 ehRecvr - ok
08:10:30.0509 3508 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
08:10:30.0527 3508 ehSched - ok
08:10:30.0546 3508 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
08:10:30.0554 3508 ehstart - ok
08:10:30.0609 3508 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
08:10:30.0624 3508 elxstor - ok
08:10:30.0674 3508 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
08:10:30.0679 3508 EMDMgmt - ok
08:10:30.0691 3508 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
08:10:30.0695 3508 ErrDev - ok
08:10:30.0763 3508 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
08:10:30.0768 3508 EventSystem - ok
08:10:30.0813 3508 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
08:10:30.0819 3508 exfat - ok
08:10:30.0860 3508 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
08:10:30.0867 3508 fastfat - ok
08:10:30.0899 3508 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
08:10:30.0907 3508 fdc - ok
08:10:30.0938 3508 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
08:10:30.0940 3508 fdPHost - ok
08:10:30.0957 3508 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
08:10:30.0959 3508 FDResPub - ok
08:10:30.0981 3508 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
08:10:30.0986 3508 FileInfo - ok
08:10:31.0006 3508 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
08:10:31.0014 3508 Filetrace - ok
08:10:31.0036 3508 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
08:10:31.0040 3508 flpydisk - ok
08:10:31.0081 3508 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
08:10:31.0091 3508 FltMgr - ok
08:10:31.0149 3508 FlyUsb (6cd6bb45bd3e0eef6ce496bf52854ff1) C:\Windows\system32\DRIVERS\FlyUsb.sys
08:10:31.0247 3508 FlyUsb - ok
08:10:31.0364 3508 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
08:10:31.0437 3508 FontCache - ok
08:10:31.0494 3508 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:10:31.0500 3508 FontCache3.0.0.0 - ok
08:10:31.0552 3508 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
08:10:31.0677 3508 Fs_Rec - ok
08:10:31.0720 3508 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
08:10:31.0728 3508 gagp30kx - ok
08:10:31.0759 3508 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:10:31.0901 3508 GEARAspiWDM - ok
08:10:31.0986 3508 getPlusHelper (0879dc7444a201df84e69c5dd5083d61) C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll
08:10:33.0511 3508 getPlusHelper - ok
08:10:33.0596 3508 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
08:10:33.0616 3508 gpsvc - ok
08:10:33.0652 3508 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
08:10:33.0663 3508 HdAudAddService - ok
08:10:33.0758 3508 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
08:10:33.0778 3508 HDAudBus - ok
08:10:33.0789 3508 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
08:10:33.0796 3508 HidBth - ok
08:10:33.0808 3508 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
08:10:33.0814 3508 HidIr - ok
08:10:33.0848 3508 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\system32\hidserv.dll
08:10:33.0853 3508 hidserv - ok
08:10:33.0863 3508 HidUsb (d02c82cb3a20f391c8aeff94e8e0baa1) C:\Windows\system32\DRIVERS\hidusb.sys
08:10:33.0871 3508 HidUsb - ok
08:10:33.0904 3508 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
08:10:33.0927 3508 hkmsvc - ok
08:10:33.0977 3508 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
08:10:33.0982 3508 HpCISSs - ok
08:10:34.0054 3508 HSFHWAZL (57ba73b5b321291e5114cb21350e1ea0) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
08:10:34.0062 3508 HSFHWAZL - ok
08:10:34.0206 3508 HSF_DPV (e90d0e3d9715f3bec7db2d6321dddee8) C:\Windows\system32\DRIVERS\CAX_DPV.sys
08:10:34.0301 3508 HSF_DPV - ok
08:10:34.0460 3508 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
08:10:34.0475 3508 HTTP - ok
08:10:34.0494 3508 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
08:10:34.0503 3508 i2omp - ok
08:10:34.0518 3508 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
08:10:34.0523 3508 i8042prt - ok
08:10:34.0573 3508 iaStor (8d58627fef3f8767665d9f4dc91cbd97) C:\Windows\system32\DRIVERS\iaStor.sys
08:10:34.0578 3508 iaStor - ok
08:10:34.0618 3508 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
08:10:34.0648 3508 iaStorV - ok
08:10:34.0761 3508 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:10:34.0816 3508 idsvc - ok
08:10:35.0386 3508 igfx (51d1fc6b0d4c3855a75d167da9d87bba) C:\Windows\system32\DRIVERS\igdkmd64.sys
08:10:35.0664 3508 igfx - ok
08:10:35.0799 3508 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
08:10:35.0807 3508 iirsp - ok
08:10:35.0854 3508 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
08:10:35.0860 3508 IKEEXT - ok
08:10:36.0008 3508 IntcAzAudAddService (18f7691b18d4a93559d2a998ab2142bd) C:\Windows\system32\drivers\RTKVHD64.sys
08:10:36.0122 3508 IntcAzAudAddService - ok
08:10:36.0240 3508 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
08:10:36.0249 3508 intelide - ok
08:10:36.0261 3508 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
08:10:36.0269 3508 intelppm - ok
08:10:36.0304 3508 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
08:10:36.0314 3508 IPBusEnum - ok
08:10:36.0342 3508 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:10:36.0347 3508 IpFilterDriver - ok
08:10:36.0381 3508 iphlpsvc (bf0dbfa9792c5c14fa00f61c75116c1b) C:\Windows\System32\iphlpsvc.dll
08:10:36.0385 3508 iphlpsvc - ok
08:10:36.0390 3508 IpInIp - ok
08:10:36.0409 3508 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
08:10:36.0419 3508 IPMIDRV - ok
08:10:36.0439 3508 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
08:10:36.0458 3508 IPNAT - ok
08:10:36.0590 3508 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
08:10:36.0694 3508 iPod Service - ok
08:10:36.0715 3508 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
08:10:36.0720 3508 IRENUM - ok
08:10:36.0728 3508 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
08:10:36.0735 3508 isapnp - ok
08:10:36.0766 3508 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
08:10:36.0781 3508 iScsiPrt - ok
08:10:36.0803 3508 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
08:10:36.0810 3508 iteatapi - ok
08:10:36.0829 3508 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
08:10:36.0836 3508 iteraid - ok
08:10:36.0889 3508 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
08:10:37.0030 3508 IviRegMgr - ok
08:10:37.0067 3508 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
08:10:37.0072 3508 kbdclass - ok
08:10:37.0087 3508 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
08:10:37.0095 3508 kbdhid - ok
08:10:37.0155 3508 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
08:10:37.0158 3508 KeyIso - ok
08:10:37.0245 3508 KSecDD (88956ad9fa510848ad176777a6c6c1f5) C:\Windows\system32\Drivers\ksecdd.sys
08:10:37.0374 3508 KSecDD - ok
08:10:37.0406 3508 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
08:10:37.0413 3508 ksthunk - ok
08:10:37.0467 3508 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
08:10:37.0478 3508 KtmRm - ok
08:10:37.0520 3508 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\system32\srvsvc.dll
08:10:37.0525 3508 LanmanServer - ok
08:10:37.0568 3508 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
08:10:37.0573 3508 LanmanWorkstation - ok
08:10:37.0614 3508 Lbd (3c46290f7a5d45ba6ef32c248e22aa69) C:\Windows\system32\DRIVERS\Lbd.sys
08:10:37.0753 3508 Lbd - ok
08:10:38.0257 3508 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
08:10:38.0444 3508 LeapFrog Connect Device Service - ok
08:10:38.0609 3508 Leapfrog-USBLAN (797289607a5ebf31353aa5ead141f872) C:\Windows\system32\DRIVERS\btblan.sys
08:10:38.0716 3508 Leapfrog-USBLAN - ok
08:10:38.0764 3508 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
08:10:38.0773 3508 lltdio - ok
08:10:38.0828 3508 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
08:10:38.0852 3508 lltdsvc - ok
08:10:38.0874 3508 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
08:10:38.0877 3508 lmhosts - ok
08:10:38.0904 3508 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
08:10:38.0925 3508 LSI_FC - ok
08:10:38.0970 3508 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
08:10:38.0978 3508 LSI_SAS - ok
08:10:38.0990 3508 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
08:10:38.0998 3508 LSI_SCSI - ok
08:10:39.0024 3508 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
08:10:39.0033 3508 luafv - ok
08:10:39.0161 3508 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:10:39.0165 3508 McMPFSvc - ok
08:10:39.0172 3508 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:10:39.0177 3508 mcmscsvc - ok
08:10:39.0190 3508 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:10:39.0195 3508 McNaiAnn - ok
08:10:39.0224 3508 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:10:39.0228 3508 McNASvc - ok
08:10:39.0323 3508 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\McAfee\VirusScan\mcods.exe
08:10:39.0347 3508 McODS - ok
08:10:39.0354 3508 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:10:39.0358 3508 McProxy - ok
08:10:39.0404 3508 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
08:10:39.0408 3508 McShield - ok
08:10:39.0440 3508 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
08:10:39.0448 3508 Mcx2Svc - ok
08:10:39.0476 3508 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys
08:10:39.0573 3508 mdmxsdk - ok
08:10:39.0612 3508 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
08:10:39.0619 3508 megasas - ok
08:10:39.0662 3508 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
08:10:39.0682 3508 MegaSR - ok
08:10:39.0726 3508 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
08:10:39.0846 3508 mfeapfk - ok
08:10:39.0904 3508 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
08:10:40.0052 3508 mfeavfk - ok
08:10:40.0093 3508 mfeavfk01 - ok
08:10:40.0156 3508 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
08:10:40.0159 3508 mfefire - ok
08:10:40.0219 3508 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
08:10:40.0340 3508 mfefirek - ok
08:10:40.0422 3508 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
08:10:40.0539 3508 mfehidk - ok
08:10:40.0581 3508 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
08:10:40.0699 3508 mfenlfk - ok
08:10:40.0754 3508 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
08:10:40.0835 3508 mferkdet - ok
08:10:40.0881 3508 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
08:10:40.0997 3508 mfevtp - ok
08:10:41.0063 3508 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
08:10:41.0173 3508 mfewfpk - ok
08:10:41.0262 3508 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
08:10:41.0367 3508 Microsoft Office Groove Audit Service - ok
08:10:41.0410 3508 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
08:10:41.0413 3508 MMCSS - ok
08:10:41.0437 3508 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
08:10:41.0442 3508 Modem - ok
08:10:41.0462 3508 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
08:10:41.0471 3508 monitor - ok
08:10:41.0494 3508 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
08:10:41.0500 3508 mouclass - ok
08:10:41.0515 3508 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
08:10:41.0522 3508 mouhid - ok
08:10:41.0545 3508 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
08:10:41.0555 3508 MountMgr - ok
08:10:41.0636 3508 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:10:41.0765 3508 MozillaMaintenance - ok
08:10:41.0806 3508 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
08:10:41.0817 3508 mpio - ok
08:10:41.0835 3508 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
08:10:41.0846 3508 mpsdrv - ok
08:10:41.0914 3508 MpsSvc (897e3baf68ba406a61682ae39c83900c) C:\Windows\system32\mpssvc.dll
08:10:41.0944 3508 MpsSvc - ok
08:10:41.0960 3508 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
08:10:41.0968 3508 Mraid35x - ok
08:10:42.0007 3508 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
08:10:42.0028 3508 MRxDAV - ok
08:10:42.0078 3508 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:10:42.0182 3508 mrxsmb - ok
08:10:42.0263 3508 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:10:42.0375 3508 mrxsmb10 - ok
08:10:42.0415 3508 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:10:42.0531 3508 mrxsmb20 - ok
08:10:42.0565 3508 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
08:10:42.0569 3508 msahci - ok
08:10:42.0591 3508 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
08:10:42.0602 3508 msdsm - ok
08:10:42.0637 3508 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
08:10:42.0649 3508 MSDTC - ok
08:10:42.0683 3508 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
08:10:42.0692 3508 Msfs - ok
08:10:42.0703 3508 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
08:10:42.0709 3508 msisadrv - ok
08:10:42.0752 3508 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
08:10:42.0772 3508 MSiSCSI - ok
08:10:42.0777 3508 msiserver - ok
08:10:42.0810 3508 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
08:10:42.0815 3508 MSKSSRV - ok
08:10:42.0823 3508 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
08:10:42.0828 3508 MSPCLOCK - ok
08:10:42.0836 3508 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
08:10:42.0848 3508 MSPQM - ok
08:10:42.0899 3508 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
08:10:42.0911 3508 MsRPC - ok
08:10:42.0931 3508 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
08:10:42.0937 3508 mssmbios - ok
08:10:42.0943 3508 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
08:10:42.0953 3508 MSTEE - ok
08:10:42.0962 3508 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
08:10:42.0973 3508 Mup - ok
08:10:43.0033 3508 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
08:10:43.0039 3508 napagent - ok
08:10:43.0070 3508 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
08:10:43.0076 3508 NativeWifiP - ok
08:10:43.0104 3508 NAVENG - ok
08:10:43.0112 3508 NAVEX15 - ok
08:10:43.0194 3508 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
08:10:43.0214 3508 NDIS - ok
08:10:43.0239 3508 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
08:10:43.0249 3508 NdisTapi - ok
08:10:43.0256 3508 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
08:10:43.0264 3508 Ndisuio - ok
08:10:43.0305 3508 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
08:10:43.0313 3508 NdisWan - ok
08:10:43.0332 3508 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
08:10:43.0343 3508 NDProxy - ok
08:10:43.0369 3508 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
08:10:43.0375 3508 NetBIOS - ok
08:10:43.0421 3508 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
08:10:43.0438 3508 netbt - ok
08:10:43.0481 3508 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
08:10:43.0484 3508 Netlogon - ok
08:10:43.0534 3508 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
08:10:43.0539 3508 Netman - ok
08:10:43.0571 3508 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
08:10:43.0576 3508 netprofm - ok
08:10:43.0642 3508 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:10:43.0650 3508 NetTcpPortSharing - ok
08:10:43.0675 3508 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
08:10:43.0681 3508 nfrd960 - ok
08:10:43.0713 3508 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
08:10:43.0718 3508 NlaSvc - ok
08:10:43.0744 3508 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
08:10:43.0750 3508 Npfs - ok
08:10:43.0769 3508 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
08:10:43.0771 3508 nsi - ok
08:10:43.0784 3508 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
08:10:43.0787 3508 nsiproxy - ok
08:10:43.0928 3508 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
08:10:43.0957 3508 Ntfs - ok
08:10:44.0093 3508 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
08:10:44.0099 3508 Null - ok
08:10:44.0143 3508 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
08:10:44.0151 3508 nvraid - ok
08:10:44.0183 3508 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
08:10:44.0189 3508 nvstor - ok
08:10:44.0216 3508 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
08:10:44.0237 3508 nv_agp - ok
08:10:44.0243 3508 NwlnkFlt - ok
08:10:44.0257 3508 NwlnkFwd - ok
08:10:44.0361 3508 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:10:44.0416 3508 odserv - ok
08:10:44.0462 3508 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
08:10:44.0469 3508 ohci1394 - ok
08:10:44.0516 3508 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:10:44.0652 3508 ose - ok
08:10:44.0758 3508 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
08:10:44.0788 3508 p2pimsvc - ok
08:10:44.0802 3508 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
08:10:44.0813 3508 p2psvc - ok
08:10:44.0879 3508 PACSPTISVR (b8040c5c1fc1fbbbe5c78cb9eda343ec) C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
08:10:44.0994 3508 PACSPTISVR - ok
08:10:45.0033 3508 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
08:10:45.0041 3508 Parport - ok
08:10:45.0080 3508 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
08:10:45.0203 3508 partmgr - ok
08:10:45.0237 3508 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
08:10:45.0242 3508 PcaSvc - ok
08:10:45.0278 3508 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
08:10:45.0286 3508 pci - ok
08:10:45.0300 3508 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
08:10:45.0308 3508 pciide - ok
08:10:45.0340 3508 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
08:10:45.0359 3508 pcmcia - ok
08:10:45.0424 3508 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
08:10:45.0440 3508 PEAUTH - ok
08:10:45.0527 3508 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
08:10:45.0532 3508 PerfHost - ok
08:10:45.0667 3508 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
08:10:45.0716 3508 pla - ok
08:10:45.0767 3508 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
08:10:45.0791 3508 PlugPlay - ok
08:10:45.0882 3508 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
08:10:45.0892 3508 PNRPAutoReg - ok
08:10:45.0914 3508 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
08:10:45.0925 3508 PNRPsvc - ok
08:10:45.0983 3508 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
08:10:45.0990 3508 PolicyAgent - ok
08:10:46.0056 3508 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
08:10:46.0066 3508 PptpMiniport - ok
08:10:46.0096 3508 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
08:10:46.0106 3508 Processor - ok
08:10:46.0141 3508 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
08:10:46.0154 3508 ProfSvc - ok
08:10:46.0205 3508 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
08:10:46.0207 3508 ProtectedStorage - ok
08:10:46.0238 3508 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
08:10:46.0243 3508 PSched - ok
08:10:46.0280 3508 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys
08:10:46.0398 3508 PxHlpa64 - ok
08:10:46.0478 3508 QBCFMonitorService (17996ca5c59259ae02ca95bd11d7beec) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
08:10:46.0598 3508 QBCFMonitorService - ok
08:10:46.0649 3508 QBFCService (2241eaf40e472c471cb80cf6b97cca11) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
08:10:46.0737 3508 QBFCService - ok
08:10:46.0851 3508 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
08:10:46.0905 3508 ql2300 - ok
08:10:46.0929 3508 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
08:10:46.0937 3508 ql40xx - ok
08:10:46.0976 3508 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
08:10:47.0002 3508 QWAVE - ok
08:10:47.0017 3508 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
08:10:47.0025 3508 QWAVEdrv - ok
08:10:47.0039 3508 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
08:10:47.0044 3508 RasAcd - ok
08:10:47.0064 3508 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
08:10:47.0089 3508 RasAuto - ok
08:10:47.0121 3508 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:10:47.0143 3508 Rasl2tp - ok
08:10:47.0180 3508 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
08:10:47.0189 3508 RasMan - ok
08:10:47.0222 3508 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
08:10:47.0229 3508 RasPppoe - ok
08:10:47.0254 3508 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
08:10:47.0264 3508 RasSstp - ok
08:10:47.0309 3508 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
08:10:47.0325 3508 rdbss - ok
08:10:47.0351 3508 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:10:47.0358 3508 RDPCDD - ok
08:10:47.0401 3508 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
08:10:47.0414 3508 rdpdr - ok
08:10:47.0421 3508 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
08:10:47.0426 3508 RDPENCDD - ok
08:10:47.0495 3508 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
08:10:47.0606 3508 RDPWD - ok
08:10:47.0649 3508 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
08:10:47.0661 3508 RemoteAccess - ok
08:10:47.0712 3508 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
08:10:47.0732 3508 RemoteRegistry - ok
08:10:47.0761 3508 rimsptsk (7eae3999b94a8ce60bfbaa83462b89a1) C:\Windows\system32\DRIVERS\rimssn64.sys
08:10:47.0884 3508 rimsptsk - ok
08:10:47.0895 3508 risdptsk (fa6d7cd63ad08a01d9259f58e0c5c09e) C:\Windows\system32\DRIVERS\risdsn64.sys
08:10:47.0973 3508 risdptsk - ok
08:10:48.0004 3508 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
08:10:48.0014 3508 RpcLocator - ok
08:10:48.0090 3508 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
08:10:48.0120 3508 RpcSs - ok
08:10:48.0160 3508 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
08:10:48.0167 3508 rspndr - ok
08:10:48.0236 3508 SampleCollector (6b318f9443740a907d1c8f3460c19009) C:\Program Files\Sony\VAIO Care\collsvc.exe
08:10:48.0367 3508 SampleCollector - ok
08:10:48.0417 3508 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
08:10:48.0420 3508 SamSs - ok
08:10:48.0444 3508 SASDIFSV (99df79c258b3342b6c8a5f802998de56) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
08:10:48.0550 3508 SASDIFSV - ok
08:10:48.0575 3508 SASKUTIL (2859c35c0651e8eb0d86d48e740388f2) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
08:10:48.0654 3508 SASKUTIL - ok
08:10:48.0693 3508 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
08:10:48.0699 3508 sbp2port - ok
08:10:48.0880 3508 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
08:10:49.0018 3508 SBSDWSCService - ok
08:10:49.0053 3508 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
08:10:49.0078 3508 SCardSvr - ok
08:10:49.0174 3508 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
08:10:49.0185 3508 Schedule - ok
08:10:49.0217 3508 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
08:10:49.0220 3508 SCPolicySvc - ok
08:10:49.0266 3508 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys
08:10:49.0280 3508 sdbus - ok
08:10:49.0323 3508 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
08:10:49.0344 3508 SDRSVC - ok
08:10:49.0359 3508 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
08:10:49.0364 3508 secdrv - ok
08:10:49.0383 3508 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
08:10:49.0387 3508 seclogon - ok
08:10:49.0413 3508 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
08:10:49.0416 3508 SENS - ok
08:10:49.0435 3508 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
08:10:49.0440 3508 Serenum - ok
08:10:49.0466 3508 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
08:10:49.0475 3508 Serial - ok
08:10:49.0490 3508 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
08:10:49.0499 3508 sermouse - ok
08:10:49.0534 3508 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
08:10:49.0545 3508 SessionEnv - ok
08:10:49.0564 3508 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\DRIVERS\SFEP.sys
08:10:49.0689 3508 SFEP - ok
08:10:49.0719 3508 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
08:10:49.0728 3508 sffdisk - ok
08:10:49.0743 3508 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
08:10:49.0749 3508 sffp_mmc - ok
08:10:49.0758 3508 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
08:10:49.0764 3508 sffp_sd - ok
08:10:49.0788 3508 sfloppy (40567781f0785c4a69411d1b40da8987) C:\Windows\system32\DRIVERS\sfloppy.sys
08:10:49.0798 3508 sfloppy - ok
08:10:49.0873 3508 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
08:10:49.0901 3508 SharedAccess - ok
08:10:49.0961 3508 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
08:10:49.0967 3508 ShellHWDetection - ok
08:10:49.0981 3508 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
08:10:49.0988 3508 SiSRaid2 - ok
08:10:50.0007 3508 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
08:10:50.0015 3508 SiSRaid4 - ok
08:10:50.0079 3508 SkypeUpdate (8c5477eb1c03ca76cd8eb66a610a9e90) C:\Program Files (x86)\Skype\Updater\Updater.exe
08:10:55.0845 3508 SkypeUpdate - ok
08:10:56.0098 3508 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
08:10:56.0150 3508 slsvc - ok
08:10:56.0273 3508 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
08:10:56.0280 3508 SLUINotify - ok
08:10:56.0328 3508 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
08:10:56.0336 3508 Smb - ok
08:10:56.0371 3508 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
08:10:56.0383 3508 SNMPTRAP - ok
08:10:56.0483 3508 SOHCImp (7b24efa2a60ba7388fecda63ab24560a) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
08:10:56.0624 3508 SOHCImp - ok
08:10:56.0653 3508 SOHDBSvr (140fcf5ffae4efba9740a9fd8b49e0bf) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
08:10:56.0770 3508 SOHDBSvr - ok
08:10:56.0820 3508 SOHDms (d8c244121a06b581b097d9617d94cff1) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
08:10:56.0996 3508 SOHDms - ok
08:10:57.0023 3508 SOHDs (2db561887ea122b946bbe2821473edd8) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
08:10:57.0118 3508 SOHDs - ok
08:10:57.0140 3508 SOHPlMgr (ab9ee246a1eb2c3c7c6cb16e0b9462f7) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
08:10:57.0266 3508 SOHPlMgr - ok
08:10:57.0293 3508 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
08:10:57.0298 3508 spldr - ok
08:10:57.0337 3508 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
08:10:57.0421 3508 Spooler - ok
08:10:57.0427 3508 SRTSP - ok
08:10:57.0440 3508 SRTSPX - ok
08:10:57.0520 3508 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
08:10:57.0639 3508 srv - ok
08:10:57.0692 3508 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
08:10:57.0820 3508 srv2 - ok
08:10:57.0902 3508 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
08:10:58.0015 3508 srvnet - ok
08:10:58.0066 3508 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
08:10:58.0070 3508 SSDPSRV - ok
08:10:58.0107 3508 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
08:10:58.0111 3508 SstpSvc - ok
08:10:58.0175 3508 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
08:10:58.0204 3508 stisvc - ok
08:10:58.0238 3508 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
08:10:58.0246 3508 swenum - ok
08:10:58.0302 3508 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
08:10:58.0339 3508 swprv - ok
08:10:58.0359 3508 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
08:10:58.0369 3508 Symc8xx - ok
08:10:58.0397 3508 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
08:10:58.0409 3508 Sym_hi - ok
08:10:58.0425 3508 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
08:10:58.0430 3508 Sym_u3 - ok
08:10:58.0484 3508 SynTP (465e1231adf3cb6e0be5372c0fa83462) C:\Windows\system32\DRIVERS\SynTP.sys
08:10:58.0620 3508 SynTP - ok
08:10:58.0728 3508 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
08:10:58.0763 3508 SysMain - ok
08:10:58.0800 3508 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
08:10:58.0805 3508 TabletInputService - ok
08:10:58.0860 3508 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
08:10:58.0869 3508 TapiSrv - ok
08:10:58.0884 3508 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
08:10:58.0891 3508 TBS - ok
08:10:59.0046 3508 Tcpip (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\drivers\tcpip.sys
08:10:59.0132 3508 Tcpip - ok
08:10:59.0156 3508 Tcpip6 (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\DRIVERS\tcpip.sys
08:10:59.0171 3508 Tcpip6 - ok
08:10:59.0204 3508 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
08:10:59.0211 3508 tcpipreg - ok
08:10:59.0241 3508 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
08:10:59.0244 3508 TDPIPE - ok
08:10:59.0260 3508 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
08:10:59.0269 3508 TDTCP - ok
08:10:59.0305 3508 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
08:10:59.0311 3508 tdx - ok
08:10:59.0538 3508 TeamViewer6 (c314391535b8bba4238c13d663b07f83) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
08:10:59.0694 3508 TeamViewer6 - ok
08:10:59.0816 3508 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
08:10:59.0824 3508 TermDD - ok
08:10:59.0886 3508 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
08:10:59.0894 3508 TermService - ok
08:10:59.0956 3508 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
08:10:59.0977 3508 Themes - ok
08:11:00.0010 3508 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
08:11:00.0013 3508 THREADORDER - ok
08:11:00.0055 3508 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
08:11:00.0072 3508 TrkWks - ok
08:11:00.0117 3508 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
08:11:00.0126 3508 TrustedInstaller - ok
08:11:00.0167 3508 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:11:00.0171 3508 tssecsrv - ok
08:11:00.0190 3508 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
08:11:00.0194 3508 tunmp - ok
08:11:00.0210 3508 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
08:11:00.0214 3508 tunnel - ok
08:11:00.0234 3508 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
08:11:00.0239 3508 uagp35 - ok
08:11:00.0316 3508 uCamMonitor (63f6d08c54d5b3c1b12a6172032055c7) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
08:11:00.0460 3508 uCamMonitor - ok
08:11:00.0503 3508 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
08:11:00.0512 3508 udfs - ok
08:11:00.0552 3508 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
08:11:00.0564 3508 UI0Detect - ok
08:11:00.0587 3508 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
08:11:00.0594 3508 uliagpkx - ok
08:11:00.0625 3508 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
08:11:00.0635 3508 uliahci - ok
08:11:00.0656 3508 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
08:11:00.0664 3508 UlSata - ok
08:11:00.0684 3508 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
08:11:00.0696 3508 ulsata2 - ok
08:11:00.0718 3508 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
08:11:00.0727 3508 umbus - ok
08:11:00.0761 3508 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
08:11:00.0780 3508 upnphost - ok
08:11:00.0822 3508 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
08:11:00.0829 3508 usbccgp - ok
08:11:00.0850 3508 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
08:11:00.0860 3508 usbcir - ok
08:11:00.0884 3508 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
08:11:00.0893 3508 usbehci - ok
08:11:00.0923 3508 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
08:11:00.0934 3508 usbhub - ok
08:11:00.0955 3508 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
08:11:00.0961 3508 usbohci - ok
08:11:00.0979 3508 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
08:11:00.0986 3508 usbprint - ok
08:11:01.0009 3508 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:11:01.0014 3508 USBSTOR - ok
08:11:01.0033 3508 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
08:11:01.0038 3508 usbuhci - ok
08:11:01.0067 3508 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
08:11:01.0078 3508 usbvideo - ok
08:11:01.0103 3508 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
08:11:01.0107 3508 UxSms - ok
08:11:01.0210 3508 VAIO Entertainment TV Device Arbitration Service (4e7135d6d0127067e4cfee12259f895d) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
08:11:01.0351 3508 VAIO Entertainment TV Device Arbitration Service - ok
08:11:01.0419 3508 VAIO Event Service (73328c784ecfe7072bd102f370076b50) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
08:11:01.0547 3508 VAIO Event Service - ok
08:11:01.0637 3508 VAIO Power Management (b63f63960e7254d9d9ed28474b40eb31) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
08:11:01.0764 3508 VAIO Power Management - ok
08:11:02.0165 3508 VCFw (0ed1d51dcec67f96cc313d02a1741cf3) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
08:11:02.0351 3508 VCFw - ok
08:11:02.0575 3508 VcmIAlzMgr (7295a2b5795e7b8aa128e5df5a29b656) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
08:11:02.0698 3508 VcmIAlzMgr - ok
08:11:02.0786 3508 VcmXmlIfHelper (76df898710495c5b1476719410d8b895) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
08:11:02.0929 3508 VcmXmlIfHelper - ok
08:11:02.0981 3508 Vcsw - ok
08:11:03.0103 3508 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
08:11:03.0121 3508 vds - ok
08:11:03.0164 3508 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
08:11:03.0173 3508 vga - ok
08:11:03.0193 3508 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
08:11:03.0201 3508 VgaSave - ok
08:11:03.0218 3508 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
08:11:03.0224 3508 viaide - ok
08:11:03.0256 3508 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
08:11:03.0265 3508 volmgr - ok
08:11:03.0312 3508 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
08:11:03.0327 3508 volmgrx - ok
08:11:03.0377 3508 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
08:11:03.0387 3508 volsnap - ok
08:11:03.0415 3508 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
08:11:03.0422 3508 vsmraid - ok
08:11:03.0544 3508 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
08:11:03.0602 3508 VSS - ok
08:11:03.0692 3508 VzCdbSvc (79eb419f4a694b4514249e0d3db16ecf) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
08:11:03.0844 3508 VzCdbSvc - ok
08:11:03.0960 3508 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
08:11:03.0967 3508 W32Time - ok
08:11:04.0047 3508 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
08:11:04.0056 3508 WacomPen - ok
08:11:04.0136 3508 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
08:11:04.0141 3508 Wanarp - ok
08:11:04.0148 3508 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
08:11:04.0151 3508 Wanarpv6 - ok
08:11:04.0206 3508 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
08:11:04.0235 3508 wcncsvc - ok
08:11:04.0259 3508 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
08:11:04.0265 3508 WcsPlugInService - ok
08:11:04.0284 3508 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
08:11:04.0291 3508 Wd - ok
08:11:04.0371 3508 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
08:11:04.0391 3508 Wdf01000 - ok
08:11:04.0406 3508 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
08:11:04.0410 3508 WdiServiceHost - ok
08:11:04.0417 3508 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
08:11:04.0422 3508 WdiSystemHost - ok
08:11:04.0451 3508 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
08:11:04.0456 3508 WebClient - ok
08:11:04.0520 3508 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
08:11:04.0633 3508 Wecsvc - ok
08:11:04.0672 3508 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
08:11:04.0679 3508 wercplsupport - ok
08:11:04.0706 3508 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
08:11:04.0726 3508 WerSvc - ok
08:11:04.0791 3508 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
08:11:04.0927 3508 WimFltr - ok
08:11:05.0016 3508 winachsf (057b062cf9a11e04db45b8c3afc28b11) C:\Windows\system32\DRIVERS\CAX_CNXT.sys
08:11:05.0101 3508 winachsf - ok
08:11:05.0129 3508 WinDefend - ok
08:11:05.0152 3508 WinHttpAutoProxySvc - ok
08:11:05.0219 3508 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
08:11:05.0223 3508 Winmgmt - ok
08:11:05.0410 3508 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
08:11:05.0518 3508 WinRM - ok
08:11:05.0671 3508 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
08:11:05.0680 3508 Wlansvc - ok
08:11:05.0734 3508 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys
08:11:05.0738 3508 WmiAcpi - ok
08:11:05.0808 3508 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
08:11:05.0829 3508 wmiApSrv - ok
08:11:05.0878 3508 WMPNetworkSvc - ok
08:11:05.0925 3508 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
08:11:05.0945 3508 WPCSvc - ok
08:11:05.0981 3508 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
08:11:05.0998 3508 WPDBusEnum - ok
08:11:06.0024 3508 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
08:11:06.0029 3508 WpdUsb - ok
08:11:06.0192 3508 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
08:11:06.0297 3508 WPFFontCache_v0400 - ok
08:11:06.0402 3508 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
08:11:06.0410 3508 ws2ifsl - ok
08:11:06.0447 3508 wscsvc (9ea3e6d0ef7a5c2b9181961052a4b01a) C:\Windows\System32\wscsvc.dll
08:11:06.0451 3508 wscsvc - ok
08:11:06.0458 3508 WSearch - ok
08:11:06.0682 3508 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
08:11:06.0807 3508 wuauserv - ok
08:11:06.0935 3508 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:11:06.0958 3508 WUDFRd - ok
08:11:06.0992 3508 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
08:11:06.0997 3508 wudfsvc - ok
08:11:07.0018 3508 XAudio (638c99d993afab0e1fab226e2bbe6d79) C:\Windows\system32\DRIVERS\xaudio64.sys
08:11:07.0133 3508 XAudio - ok
08:11:07.0185 3508 XAudioService (3e775f0bd28ddeff53d78578b97a3cff) C:\Windows\system32\DRIVERS\xaudio64.exe
08:11:07.0313 3508 XAudioService - ok
08:11:07.0366 3508 yukonx64 (3c5b0410faba5b1014eefeee77e1296a) C:\Windows\system32\DRIVERS\yk60x64.sys
08:11:07.0446 3508 yukonx64 - ok
08:11:07.0480 3508 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
08:11:07.0510 3508 \Device\Harddisk0\DR0 ( Rootkit.Boot.SST.b ) - infected
08:11:07.0511 3508 \Device\Harddisk0\DR0 - detected Rootkit.Boot.SST.b (0)
08:11:07.0521 3508 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk3\DR3
08:11:07.0530 3508 \Device\Harddisk3\DR3 - ok
08:11:07.0566 3508 Boot (0x1200) (cb99d71bf539fd9d86c9f1848b001851) \Device\Harddisk0\DR0\Partition0
08:11:07.0568 3508 \Device\Harddisk0\DR0\Partition0 - ok
08:11:07.0575 3508 Boot (0x1200) (5736e32a1b03c37c5b0a4139deb4d8dc) \Device\Harddisk3\DR3\Partition0
08:11:07.0577 3508 \Device\Harddisk3\DR3\Partition0 - ok
08:11:07.0578 3508 ============================================================
08:11:07.0578 3508 Scan finished
08:11:07.0578 3508 ============================================================
08:11:07.0595 4852 Detected object count: 1
08:11:07.0595 4852 Actual detected object count: 1

Edited by yorick73, 19 July 2012 - 09:56 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:52 PM

Posted 19 July 2012 - 07:59 PM

It's still shows 1 count and can't remove it?

Then we need to start a new topic about "can't remove TDSS"



Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 yorick73

yorick73
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Local time:11:52 PM

Posted 19 July 2012 - 11:12 PM

Thanks for your help. I was unable to run GMER but I did everything else and posted the DDS log here: http://www.bleepingcomputer.com/forums/topic461542.html

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:52 PM

Posted 20 July 2012 - 02:40 PM

Thank you! The malware team will review it as soon as possible.
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users