Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

"adobe" update, google misdirections, and weak signature algorithms...


  • This topic is locked This topic is locked
4 replies to this topic

#1 iHaveMonsters

iHaveMonsters

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:03 AM

Posted 18 July 2012 - 09:45 PM


i figured out this much. i have it, too.

00:12:02.0561 5704 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
00:12:03.0263 5704 ============================================================
00:12:03.0263 5704 Current date / time: 2012/07/19 00:12:03.0263
00:12:03.0263 5704 SystemInfo:
00:12:03.0263 5704
00:12:03.0263 5704 OS Version: 6.1.7600 ServicePack: 0.0
00:12:03.0263 5704 Product type: Workstation
00:12:03.0263 5704 ComputerName: DELL
00:12:03.0263 5704 UserName: admin
00:12:03.0263 5704 Windows directory: C:\Windows
00:12:03.0263 5704 System windows directory: C:\Windows
00:12:03.0263 5704 Running under WOW64
00:12:03.0263 5704 Processor architecture: Intel x64
00:12:03.0263 5704 Number of processors: 2
00:12:03.0263 5704 Page size: 0x1000
00:12:03.0263 5704 Boot type: Normal boot
00:12:03.0263 5704 ============================================================
00:12:04.0261 5704 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:12:04.0355 5704 Drive \Device\Harddisk1\DR3 - Size: 0x75E00000 (1.84 Gb), SectorSize: 0x200, Cylinders: 0xF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:12:04.0433 5704 ============================================================
00:12:04.0433 5704 \Device\Harddisk0\DR0:
00:12:04.0433 5704 MBR partitions:
00:12:04.0433 5704 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x95800, BlocksNum 0x25C0000
00:12:04.0433 5704 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2655800, BlocksNum 0x1ADF4AB0
00:12:04.0464 5704 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D44B000, BlocksNum 0x7FE3000
00:12:04.0464 5704 \Device\Harddisk1\DR3:
00:12:04.0526 5704 MBR partitions:
00:12:04.0526 5704 \Device\Harddisk1\DR3\Partition0: MBR, Type 0x6, StartLBA 0x87, BlocksNum 0x3AE039
00:12:04.0526 5704 ============================================================
00:12:04.0558 5704 C: <-> \Device\Harddisk0\DR0\Partition1
00:12:04.0604 5704 E: <-> \Device\Harddisk0\DR0\Partition2
00:12:04.0604 5704 ============================================================
00:12:04.0604 5704 Initialize success
00:12:04.0604 5704 ============================================================
00:12:19.0021 5552 ============================================================
00:12:19.0021 5552 Scan started
00:12:19.0021 5552 Mode: Manual; TDLFS;
00:12:19.0021 5552 ============================================================
00:12:20.0987 5552 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
00:12:21.0002 5552 1394ohci - ok
00:12:21.0065 5552 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
00:12:21.0080 5552 ACPI - ok
00:12:21.0127 5552 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
00:12:21.0143 5552 AcpiPmi - ok
00:12:21.0268 5552 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:12:21.0268 5552 AdobeARMservice - ok
00:12:21.0361 5552 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
00:12:21.0424 5552 adp94xx - ok
00:12:21.0486 5552 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
00:12:21.0502 5552 adpahci - ok
00:12:21.0580 5552 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
00:12:21.0595 5552 adpu320 - ok
00:12:21.0658 5552 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
00:12:21.0658 5552 AeLookupSvc - ok
00:12:21.0736 5552 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys
00:12:21.0767 5552 AFD - ok
00:12:21.0829 5552 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
00:12:21.0845 5552 agp440 - ok
00:12:21.0892 5552 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
00:12:21.0907 5552 ALG - ok
00:12:21.0954 5552 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
00:12:21.0970 5552 aliide - ok
00:12:21.0985 5552 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
00:12:22.0001 5552 amdide - ok
00:12:22.0063 5552 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
00:12:22.0079 5552 AmdK8 - ok
00:12:22.0094 5552 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
00:12:22.0110 5552 AmdPPM - ok
00:12:22.0157 5552 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
00:12:22.0157 5552 amdsata - ok
00:12:22.0204 5552 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
00:12:22.0235 5552 amdsbs - ok
00:12:22.0266 5552 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
00:12:22.0282 5552 amdxata - ok
00:12:22.0360 5552 ApfiltrService (1412e9a88fe1f7e35ce6058a2ef03664) C:\Windows\system32\DRIVERS\Apfiltr.sys
00:12:22.0406 5552 ApfiltrService - ok
00:12:22.0453 5552 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
00:12:22.0484 5552 AppID - ok
00:12:22.0548 5552 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
00:12:22.0548 5552 AppIDSvc - ok
00:12:22.0595 5552 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
00:12:22.0595 5552 Appinfo - ok
00:12:22.0751 5552 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:12:22.0751 5552 Apple Mobile Device - ok
00:12:22.0797 5552 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
00:12:22.0797 5552 arc - ok
00:12:22.0844 5552 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
00:12:22.0875 5552 arcsas - ok
00:12:22.0938 5552 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
00:12:22.0938 5552 AsyncMac - ok
00:12:22.0985 5552 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
00:12:23.0000 5552 atapi - ok
00:12:23.0078 5552 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
00:12:23.0125 5552 AudioEndpointBuilder - ok
00:12:23.0156 5552 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
00:12:23.0172 5552 AudioSrv - ok
00:12:23.0968 5552 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
00:12:24.0218 5552 AVGIDSAgent - ok
00:12:24.0405 5552 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
00:12:24.0405 5552 AVGIDSDriver - ok
00:12:24.0468 5552 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
00:12:24.0468 5552 AVGIDSFilter - ok
00:12:24.0499 5552 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
00:12:24.0514 5552 AVGIDSHA - ok
00:12:24.0642 5552 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
00:12:24.0673 5552 Avgldx64 - ok
00:12:24.0689 5552 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
00:12:24.0705 5552 Avgmfx64 - ok
00:12:24.0751 5552 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
00:12:24.0751 5552 Avgrkx64 - ok
00:12:24.0861 5552 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
00:12:24.0892 5552 Avgtdia - ok
00:12:24.0954 5552 avgtp (3c8f504fa1df6a77b173bdbd0a79e334) C:\Windows\system32\drivers\avgtpx64.sys
00:12:24.0970 5552 avgtp - ok
00:12:25.0110 5552 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
00:12:25.0126 5552 avgwd - ok
00:12:25.0219 5552 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
00:12:25.0219 5552 AxInstSV - ok
00:12:25.0297 5552 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
00:12:25.0344 5552 b06bdrv - ok
00:12:25.0407 5552 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
00:12:25.0438 5552 b57nd60a - ok
00:12:25.0485 5552 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
00:12:25.0485 5552 BCM42RLY - ok
00:12:25.0765 5552 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
00:12:25.0953 5552 BCM43XX - ok
00:12:26.0093 5552 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
00:12:26.0093 5552 BDESVC - ok
00:12:26.0171 5552 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
00:12:26.0265 5552 Beep - ok
00:12:26.0389 5552 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
00:12:26.0452 5552 BITS - ok
00:12:26.0467 5552 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
00:12:26.0655 5552 blbdrive - ok
00:12:26.0779 5552 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
00:12:26.0795 5552 Bonjour Service - ok
00:12:26.0842 5552 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys
00:12:26.0842 5552 bowser - ok
00:12:26.0889 5552 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
00:12:26.0889 5552 BrFiltLo - ok
00:12:26.0920 5552 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
00:12:26.0935 5552 BrFiltUp - ok
00:12:26.0967 5552 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
00:12:26.0982 5552 Browser - ok
00:12:27.0045 5552 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
00:12:27.0076 5552 Brserid - ok
00:12:27.0091 5552 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
00:12:27.0123 5552 BrSerWdm - ok
00:12:27.0169 5552 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
00:12:27.0232 5552 BrUsbMdm - ok
00:12:27.0279 5552 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
00:12:27.0310 5552 BrUsbSer - ok
00:12:27.0372 5552 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
00:12:27.0388 5552 BTHMODEM - ok
00:12:27.0497 5552 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
00:12:27.0513 5552 bthserv - ok
00:12:27.0700 5552 cbVSCService11 (58bf7714a312698108a96d0de2bb6825) C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
00:12:27.0700 5552 cbVSCService11 - ok
00:12:27.0778 5552 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
00:12:27.0793 5552 cdfs - ok
00:12:28.0012 5552 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
00:12:28.0043 5552 cdrom - ok
00:12:28.0105 5552 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
00:12:28.0105 5552 CertPropSvc - ok
00:12:28.0168 5552 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
00:12:28.0183 5552 circlass - ok
00:12:28.0230 5552 CLBStor (e00ec8b584114ea6c227588d046d1646) C:\Windows\system32\DRIVERS\CLBStor.sys
00:12:28.0246 5552 CLBStor - ok
00:12:28.0293 5552 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
00:12:28.0324 5552 CLFS - ok
00:12:28.0433 5552 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:12:28.0480 5552 clr_optimization_v2.0.50727_32 - ok
00:12:28.0527 5552 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:12:28.0527 5552 clr_optimization_v2.0.50727_64 - ok
00:12:28.0605 5552 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:12:28.0620 5552 clr_optimization_v4.0.30319_32 - ok
00:12:28.0683 5552 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:12:28.0714 5552 clr_optimization_v4.0.30319_64 - ok
00:12:28.0745 5552 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
00:12:28.0761 5552 CmBatt - ok
00:12:28.0792 5552 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
00:12:28.0792 5552 cmdide - ok
00:12:28.0854 5552 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
00:12:28.0948 5552 CNG - ok
00:12:28.0979 5552 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
00:12:28.0979 5552 Compbatt - ok
00:12:29.0026 5552 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
00:12:29.0057 5552 CompositeBus - ok
00:12:29.0073 5552 COMSysApp - ok
00:12:29.0135 5552 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
00:12:29.0151 5552 crcdisk - ok
00:12:29.0213 5552 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
00:12:29.0244 5552 CryptSvc - ok
00:12:29.0322 5552 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
00:12:29.0338 5552 CtClsFlt - ok
00:12:29.0447 5552 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
00:12:29.0494 5552 DcomLaunch - ok
00:12:29.0556 5552 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
00:12:29.0603 5552 defragsvc - ok
00:12:29.0634 5552 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys
00:12:29.0650 5552 DfsC - ok
00:12:29.0712 5552 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
00:12:29.0743 5552 Dhcp - ok
00:12:29.0775 5552 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
00:12:29.0775 5552 discache - ok
00:12:29.0837 5552 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
00:12:29.0837 5552 Disk - ok
00:12:29.0884 5552 Dnscache (676108c4e3aa6f6b34633748bd0bebd9) C:\Windows\System32\dnsrslvr.dll
00:12:29.0899 5552 Dnscache - ok
00:12:29.0962 5552 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
00:12:29.0977 5552 dot3svc - ok
00:12:30.0024 5552 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
00:12:30.0055 5552 DPS - ok
00:12:30.0102 5552 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
00:12:30.0133 5552 drmkaud - ok
00:12:30.0243 5552 DXGKrnl (ebce0b0924835f635f620d19f0529dce) C:\Windows\System32\drivers\dxgkrnl.sys
00:12:30.0321 5552 DXGKrnl - ok
00:12:30.0367 5552 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
00:12:30.0383 5552 EapHost - ok
00:12:30.0726 5552 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
00:12:30.0960 5552 ebdrv - ok
00:12:31.0194 5552 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
00:12:31.0210 5552 EFS - ok
00:12:31.0350 5552 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
00:12:31.0413 5552 elxstor - ok
00:12:31.0444 5552 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
00:12:31.0506 5552 ErrDev - ok
00:12:31.0615 5552 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
00:12:31.0647 5552 EventSystem - ok
00:12:31.0709 5552 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
00:12:31.0725 5552 exfat - ok
00:12:31.0787 5552 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
00:12:31.0803 5552 fastfat - ok
00:12:31.0849 5552 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
00:12:31.0881 5552 fdc - ok
00:12:31.0959 5552 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
00:12:31.0959 5552 fdPHost - ok
00:12:31.0990 5552 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
00:12:31.0990 5552 FDResPub - ok
00:12:32.0021 5552 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
00:12:32.0021 5552 FileInfo - ok
00:12:32.0052 5552 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
00:12:32.0068 5552 Filetrace - ok
00:12:32.0083 5552 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
00:12:32.0115 5552 flpydisk - ok
00:12:32.0161 5552 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
00:12:32.0177 5552 FltMgr - ok
00:12:32.0317 5552 FontCache (8ac4cb4ea61e41009fae9ae7b2b5da3a) C:\Windows\system32\FntCache.dll
00:12:32.0380 5552 FontCache - ok
00:12:32.0458 5552 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
00:12:32.0458 5552 FsDepends - ok
00:12:32.0473 5552 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
00:12:32.0489 5552 Fs_Rec - ok
00:12:32.0551 5552 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
00:12:32.0567 5552 fvevol - ok
00:12:32.0629 5552 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
00:12:32.0739 5552 gagp30kx - ok
00:12:32.0817 5552 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:12:32.0817 5552 GEARAspiWDM - ok
00:12:32.0926 5552 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
00:12:32.0926 5552 GoToAssist - ok
00:12:33.0051 5552 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
00:12:33.0160 5552 gpsvc - ok
00:12:33.0285 5552 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:12:33.0285 5552 gupdate - ok
00:12:33.0300 5552 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:12:33.0300 5552 gupdatem - ok
00:12:33.0378 5552 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
00:12:33.0378 5552 hcw85cir - ok
00:12:33.0425 5552 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
00:12:33.0425 5552 HDAudBus - ok
00:12:33.0456 5552 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
00:12:33.0472 5552 HidBatt - ok
00:12:33.0487 5552 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
00:12:33.0519 5552 HidBth - ok
00:12:33.0550 5552 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
00:12:33.0550 5552 HidIr - ok
00:12:33.0581 5552 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
00:12:33.0597 5552 hidserv - ok
00:12:33.0628 5552 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
00:12:33.0643 5552 HidUsb - ok
00:12:33.0659 5552 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
00:12:33.0675 5552 hkmsvc - ok
00:12:33.0706 5552 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
00:12:33.0721 5552 HomeGroupListener - ok
00:12:33.0753 5552 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
00:12:33.0784 5552 HomeGroupProvider - ok
00:12:33.0815 5552 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
00:12:33.0815 5552 HpSAMD - ok
00:12:33.0893 5552 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
00:12:33.0924 5552 HTTP - ok
00:12:34.0018 5552 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
00:12:34.0033 5552 hwpolicy - ok
00:12:34.0065 5552 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
00:12:34.0080 5552 i8042prt - ok
00:12:34.0174 5552 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
00:12:34.0189 5552 IAANTMON - ok
00:12:34.0252 5552 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
00:12:34.0267 5552 iaStor - ok
00:12:34.0392 5552 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
00:12:34.0408 5552 iaStorV - ok
00:12:34.0876 5552 igfx (babd5f9b2bcc82ce556a0baf1ae208a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
00:12:35.0125 5552 igfx - ok
00:12:35.0297 5552 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
00:12:35.0297 5552 iirsp - ok
00:12:35.0391 5552 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
00:12:35.0437 5552 IKEEXT - ok
00:12:35.0469 5552 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
00:12:35.0469 5552 intelide - ok
00:12:35.0500 5552 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
00:12:35.0500 5552 intelppm - ok
00:12:35.0531 5552 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
00:12:35.0547 5552 IPBusEnum - ok
00:12:35.0562 5552 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:12:35.0578 5552 IpFilterDriver - ok
00:12:35.0609 5552 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
00:12:35.0625 5552 IPMIDRV - ok
00:12:35.0656 5552 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
00:12:35.0671 5552 IPNAT - ok
00:12:35.0812 5552 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
00:12:35.0827 5552 iPod Service - ok
00:12:35.0874 5552 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
00:12:35.0874 5552 IRENUM - ok
00:12:35.0905 5552 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
00:12:35.0921 5552 isapnp - ok
00:12:35.0952 5552 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
00:12:35.0999 5552 iScsiPrt - ok
00:12:36.0030 5552 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
00:12:36.0061 5552 kbdclass - ok
00:12:36.0093 5552 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
00:12:36.0093 5552 kbdhid - ok
00:12:36.0124 5552 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
00:12:36.0139 5552 KeyIso - ok
00:12:36.0171 5552 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
00:12:36.0202 5552 KSecDD - ok
00:12:36.0249 5552 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
00:12:36.0280 5552 KSecPkg - ok
00:12:36.0327 5552 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
00:12:36.0327 5552 ksthunk - ok
00:12:36.0405 5552 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
00:12:36.0467 5552 KtmRm - ok
00:12:36.0545 5552 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
00:12:36.0576 5552 LanmanServer - ok
00:12:36.0623 5552 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
00:12:36.0639 5552 LanmanWorkstation - ok
00:12:36.0685 5552 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
00:12:36.0685 5552 lltdio - ok
00:12:36.0732 5552 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
00:12:36.0748 5552 lltdsvc - ok
00:12:36.0779 5552 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
00:12:36.0779 5552 lmhosts - ok
00:12:36.0841 5552 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
00:12:36.0857 5552 LSI_FC - ok
00:12:36.0888 5552 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
00:12:36.0888 5552 LSI_SAS - ok
00:12:36.0919 5552 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
00:12:36.0919 5552 LSI_SAS2 - ok
00:12:36.0951 5552 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
00:12:36.0966 5552 LSI_SCSI - ok
00:12:37.0013 5552 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
00:12:37.0013 5552 luafv - ok
00:12:37.0060 5552 mbamchameleon (4a0489f1cce69bb7371f8ea66efe78ec) C:\Windows\system32\drivers\mbamchameleon.sys
00:12:37.0075 5552 mbamchameleon - ok
00:12:37.0091 5552 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
00:12:37.0107 5552 megasas - ok
00:12:37.0185 5552 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
00:12:37.0200 5552 MegaSR - ok
00:12:37.0247 5552 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:12:37.0247 5552 MMCSS - ok
00:12:37.0278 5552 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
00:12:37.0341 5552 Modem - ok
00:12:37.0372 5552 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
00:12:37.0372 5552 monitor - ok
00:12:37.0403 5552 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
00:12:37.0450 5552 mouclass - ok
00:12:37.0497 5552 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
00:12:37.0512 5552 mouhid - ok
00:12:37.0543 5552 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
00:12:37.0559 5552 mountmgr - ok
00:12:37.0590 5552 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
00:12:37.0621 5552 mpio - ok
00:12:37.0653 5552 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
00:12:37.0668 5552 mpsdrv - ok
00:12:37.0684 5552 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
00:12:37.0731 5552 MRxDAV - ok
00:12:37.0762 5552 mrxsmb (767a4c3bcf9410c286ced15a2db17108) C:\Windows\system32\DRIVERS\mrxsmb.sys
00:12:37.0777 5552 mrxsmb - ok
00:12:37.0824 5552 mrxsmb10 (920ee0ff995fcfdeb08c41605a959e1c) C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:12:37.0840 5552 mrxsmb10 - ok
00:12:37.0887 5552 mrxsmb20 (740d7ea9d72c981510a5292cf6adc941) C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:12:37.0902 5552 mrxsmb20 - ok
00:12:37.0933 5552 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
00:12:37.0933 5552 msahci - ok
00:12:37.0966 5552 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
00:12:37.0981 5552 msdsm - ok
00:12:38.0012 5552 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
00:12:38.0075 5552 MSDTC - ok
00:12:38.0137 5552 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
00:12:38.0137 5552 Msfs - ok
00:12:38.0200 5552 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
00:12:38.0200 5552 mshidkmdf - ok
00:12:38.0215 5552 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
00:12:38.0262 5552 msisadrv - ok
00:12:38.0293 5552 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
00:12:38.0324 5552 MSiSCSI - ok
00:12:38.0340 5552 msiserver - ok
00:12:38.0387 5552 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
00:12:38.0387 5552 MSKSSRV - ok
00:12:38.0418 5552 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
00:12:38.0418 5552 MSPCLOCK - ok
00:12:38.0465 5552 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
00:12:38.0480 5552 MSPQM - ok
00:12:38.0543 5552 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
00:12:38.0574 5552 MsRPC - ok
00:12:38.0621 5552 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
00:12:38.0621 5552 mssmbios - ok
00:12:38.0652 5552 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
00:12:38.0652 5552 MSTEE - ok
00:12:38.0668 5552 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
00:12:38.0668 5552 MTConfig - ok
00:12:38.0699 5552 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
00:12:38.0714 5552 Mup - ok
00:12:38.0777 5552 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
00:12:38.0824 5552 napagent - ok
00:12:38.0917 5552 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
00:12:38.0948 5552 NativeWifiP - ok
00:12:39.0059 5552 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
00:12:39.0105 5552 NDIS - ok
00:12:39.0152 5552 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
00:12:39.0183 5552 NdisCap - ok
00:12:39.0199 5552 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
00:12:39.0215 5552 NdisTapi - ok
00:12:39.0246 5552 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
00:12:39.0261 5552 Ndisuio - ok
00:12:39.0293 5552 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
00:12:39.0324 5552 NdisWan - ok
00:12:39.0355 5552 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
00:12:39.0355 5552 NDProxy - ok
00:12:39.0558 5552 Nero BackItUp Scheduler 3 (40d7d0a208ee863bca8d89e299216f15) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
00:12:39.0573 5552 Nero BackItUp Scheduler 3 - ok
00:12:39.0620 5552 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
00:12:39.0651 5552 NetBIOS - ok
00:12:39.0698 5552 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
00:12:39.0729 5552 NetBT - ok
00:12:39.0745 5552 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
00:12:39.0761 5552 Netlogon - ok
00:12:39.0823 5552 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
00:12:39.0854 5552 Netman - ok
00:12:39.0901 5552 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
00:12:39.0948 5552 netprofm - ok
00:12:39.0996 5552 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
00:12:40.0011 5552 nfrd960 - ok
00:12:40.0058 5552 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
00:12:40.0089 5552 NlaSvc - ok
00:12:40.0105 5552 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
00:12:40.0105 5552 Npfs - ok
00:12:40.0136 5552 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
00:12:40.0136 5552 nsi - ok
00:12:40.0152 5552 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
00:12:40.0167 5552 nsiproxy - ok
00:12:40.0292 5552 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
00:12:40.0354 5552 Ntfs - ok
00:12:40.0479 5552 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
00:12:40.0495 5552 Null - ok
00:12:40.0526 5552 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
00:12:40.0557 5552 nvraid - ok
00:12:40.0588 5552 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
00:12:40.0604 5552 nvstor - ok
00:12:40.0729 5552 NvtlService (23e6a6a7d4930b70d9fffd371450ef1c) C:\Program Files (x86)\Novatel Wireless\Novacore\Server\NvtlSrvr.exe
00:12:40.0729 5552 NvtlService - ok
00:12:40.0776 5552 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
00:12:40.0776 5552 nv_agp - ok
00:12:40.0854 5552 NWVMModem (a3fadcf96abf4803e7a946cd48641ac3) C:\Windows\system32\DRIVERS\nwvmmdm.sys
00:12:40.0869 5552 NWVMModem - ok
00:12:40.0885 5552 NWVMPort (a3fadcf96abf4803e7a946cd48641ac3) C:\Windows\system32\DRIVERS\nwvmser.sys
00:12:40.0900 5552 NWVMPort - ok
00:12:40.0947 5552 NWVMPort2 (a3fadcf96abf4803e7a946cd48641ac3) C:\Windows\system32\DRIVERS\nwvmser2.sys
00:12:40.0978 5552 NWVMPort2 - ok
00:12:41.0025 5552 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
00:12:41.0025 5552 ohci1394 - ok
00:12:41.0072 5552 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:12:41.0088 5552 p2pimsvc - ok
00:12:41.0212 5552 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
00:12:41.0259 5552 p2psvc - ok
00:12:41.0290 5552 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
00:12:41.0306 5552 Parport - ok
00:12:41.0337 5552 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
00:12:41.0337 5552 partmgr - ok
00:12:41.0368 5552 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
00:12:41.0384 5552 PcaSvc - ok
00:12:41.0415 5552 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
00:12:41.0431 5552 pci - ok
00:12:41.0462 5552 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
00:12:41.0478 5552 pciide - ok
00:12:41.0509 5552 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
00:12:41.0524 5552 pcmcia - ok
00:12:41.0556 5552 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
00:12:41.0556 5552 pcw - ok
00:12:41.0649 5552 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
00:12:41.0696 5552 PEAUTH - ok
00:12:41.0790 5552 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
00:12:41.0790 5552 PerfHost - ok
00:12:41.0946 5552 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
00:12:42.0008 5552 pla - ok
00:12:42.0102 5552 PLFlash DeviceIoControl Service (875e4e0661f3a5994df9e5e3a0a4f96b) C:\Windows\SysWOW64\IoctlSvc.exe
00:12:42.0102 5552 PLFlash DeviceIoControl Service - ok
00:12:42.0258 5552 PlugPlay (23157d583244400e1d7fbaee2e4b31b7) C:\Windows\system32\umpnpmgr.dll
00:12:42.0304 5552 PlugPlay - ok
00:12:42.0351 5552 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
00:12:42.0351 5552 PNRPAutoReg - ok
00:12:42.0398 5552 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
00:12:42.0398 5552 PNRPsvc - ok
00:12:42.0460 5552 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
00:12:42.0492 5552 PolicyAgent - ok
00:12:42.0523 5552 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
00:12:42.0554 5552 Power - ok
00:12:42.0616 5552 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
00:12:42.0632 5552 PptpMiniport - ok
00:12:42.0663 5552 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
00:12:42.0663 5552 Processor - ok
00:12:42.0726 5552 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
00:12:42.0741 5552 ProfSvc - ok
00:12:42.0772 5552 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
00:12:42.0772 5552 ProtectedStorage - ok
00:12:42.0819 5552 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
00:12:42.0835 5552 Psched - ok
00:12:42.0944 5552 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
00:12:43.0006 5552 ql2300 - ok
00:12:43.0116 5552 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
00:12:43.0131 5552 ql40xx - ok
00:12:43.0178 5552 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
00:12:43.0209 5552 QWAVE - ok
00:12:43.0240 5552 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
00:12:43.0240 5552 QWAVEdrv - ok
00:12:43.0256 5552 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
00:12:43.0272 5552 RasAcd - ok
00:12:43.0287 5552 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
00:12:43.0303 5552 RasAgileVpn - ok
00:12:43.0318 5552 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
00:12:43.0334 5552 RasAuto - ok
00:12:43.0428 5552 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
00:12:43.0443 5552 Rasl2tp - ok
00:12:43.0490 5552 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
00:12:43.0521 5552 RasMan - ok
00:12:43.0552 5552 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
00:12:43.0568 5552 RasPppoe - ok
00:12:43.0599 5552 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
00:12:43.0599 5552 RasSstp - ok
00:12:43.0630 5552 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
00:12:43.0662 5552 rdbss - ok
00:12:43.0693 5552 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
00:12:43.0724 5552 rdpbus - ok
00:12:43.0740 5552 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
00:12:43.0740 5552 RDPCDD - ok
00:12:43.0786 5552 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
00:12:43.0786 5552 RDPENCDD - ok
00:12:43.0818 5552 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
00:12:43.0818 5552 RDPREFMP - ok
00:12:43.0864 5552 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
00:12:43.0880 5552 RDPWD - ok
00:12:43.0911 5552 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
00:12:43.0942 5552 rdyboost - ok
00:12:44.0005 5552 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
00:12:44.0020 5552 RemoteAccess - ok
00:12:44.0067 5552 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
00:12:44.0083 5552 RemoteRegistry - ok
00:12:44.0114 5552 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
00:12:44.0114 5552 RpcEptMapper - ok
00:12:44.0145 5552 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
00:12:44.0161 5552 RpcLocator - ok
00:12:44.0239 5552 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
00:12:44.0254 5552 RpcSs - ok
00:12:44.0317 5552 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
00:12:44.0317 5552 rspndr - ok
00:12:44.0379 5552 RSUSBSTOR (4a25dc970c58104602ed274dacafd784) C:\Windows\system32\Drivers\RtsUStor.sys
00:12:44.0395 5552 RSUSBSTOR - ok
00:12:44.0457 5552 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
00:12:44.0457 5552 SamSs - ok
00:12:44.0504 5552 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
00:12:44.0520 5552 sbp2port - ok
00:12:44.0660 5552 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
00:12:44.0722 5552 SBSDWSCService - ok
00:12:44.0785 5552 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
00:12:44.0816 5552 SCardSvr - ok
00:12:44.0863 5552 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
00:12:44.0863 5552 scfilter - ok
00:12:44.0988 5552 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
00:12:45.0034 5552 Schedule - ok
00:12:45.0081 5552 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
00:12:45.0081 5552 SCPolicySvc - ok
00:12:45.0159 5552 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
00:12:45.0159 5552 SDRSVC - ok
00:12:45.0237 5552 SeaPort (58dc20eb15f071804c56fccc796417a2) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
00:12:45.0268 5552 SeaPort - ok
00:12:45.0331 5552 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
00:12:45.0331 5552 secdrv - ok
00:12:45.0378 5552 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
00:12:45.0378 5552 seclogon - ok
00:12:45.0409 5552 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
00:12:45.0424 5552 SENS - ok
00:12:45.0440 5552 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
00:12:45.0456 5552 SensrSvc - ok
00:12:45.0502 5552 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
00:12:45.0502 5552 Serenum - ok
00:12:45.0549 5552 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
00:12:45.0549 5552 Serial - ok
00:12:45.0643 5552 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
00:12:45.0658 5552 sermouse - ok
00:12:45.0736 5552 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
00:12:45.0752 5552 SessionEnv - ok
00:12:45.0783 5552 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
00:12:45.0814 5552 sffdisk - ok
00:12:45.0830 5552 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
00:12:45.0846 5552 sffp_mmc - ok
00:12:45.0861 5552 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
00:12:45.0877 5552 sffp_sd - ok
00:12:45.0924 5552 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
00:12:45.0924 5552 sfloppy - ok
00:12:46.0048 5552 SftService (52434693713bdd905972617e21ac0cfc) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
00:12:46.0048 5552 SftService - ok
00:12:46.0126 5552 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
00:12:46.0158 5552 ShellHWDetection - ok
00:12:46.0220 5552 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
00:12:46.0251 5552 SiSRaid2 - ok
00:12:46.0314 5552 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
00:12:46.0329 5552 SiSRaid4 - ok
00:12:46.0360 5552 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
00:12:46.0376 5552 Smb - ok
00:12:46.0454 5552 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
00:12:46.0454 5552 SNMPTRAP - ok
00:12:46.0501 5552 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
00:12:46.0501 5552 spldr - ok
00:12:46.0563 5552 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
00:12:46.0579 5552 Spooler - ok
00:12:46.0835 5552 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
00:12:46.0953 5552 sppsvc - ok
00:12:47.0083 5552 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
00:12:47.0091 5552 sppuinotify - ok
00:12:47.0168 5552 sp_rsdrv2 (b9657a0aff28c1cb114acc0cb93ee4bb) C:\Windows\system32\DRIVERS\stflt.sys
00:12:47.0189 5552 sp_rsdrv2 - ok
00:12:47.0260 5552 srv (de6f5658da951c4bc8e498570b5b0d5f) C:\Windows\system32\DRIVERS\srv.sys
00:12:47.0286 5552 srv - ok
00:12:47.0350 5552 srv2 (4d33d59c0b930c523d29f9bd40cda9d2) C:\Windows\system32\DRIVERS\srv2.sys
00:12:47.0372 5552 srv2 - ok
00:12:47.0401 5552 srvnet (5a663fd67049267bc5c3f3279e631ffb) C:\Windows\system32\DRIVERS\srvnet.sys
00:12:47.0407 5552 srvnet - ok
00:12:47.0464 5552 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
00:12:47.0492 5552 SSDPSRV - ok
00:12:47.0522 5552 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
00:12:47.0547 5552 SstpSvc - ok
00:12:47.0740 5552 ST2012_Svc (c504af1a54ef90ba47d2f75d3c8d3f24) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
00:12:47.0756 5552 ST2012_Svc - ok
00:12:47.0912 5552 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
00:12:47.0912 5552 STacSV - ok
00:12:47.0959 5552 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
00:12:47.0959 5552 stexstor - ok
00:12:48.0006 5552 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
00:12:48.0037 5552 STHDA - ok
00:12:48.0099 5552 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
00:12:48.0146 5552 stisvc - ok
00:12:48.0177 5552 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
00:12:48.0193 5552 swenum - ok
00:12:48.0240 5552 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
00:12:48.0333 5552 swprv - ok
00:12:48.0474 5552 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
00:12:48.0536 5552 SysMain - ok
00:12:48.0676 5552 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
00:12:48.0676 5552 TabletInputService - ok
00:12:48.0723 5552 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
00:12:48.0754 5552 TapiSrv - ok
00:12:48.0770 5552 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
00:12:48.0786 5552 TBS - ok
00:12:48.0942 5552 Tcpip (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\drivers\tcpip.sys
00:12:49.0020 5552 Tcpip - ok
00:12:49.0316 5552 TCPIP6 (90a2d722cf64d911879d6c4a4f802a4d) C:\Windows\system32\DRIVERS\tcpip.sys
00:12:49.0347 5552 TCPIP6 - ok
00:12:49.0503 5552 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
00:12:49.0503 5552 tcpipreg - ok
00:12:49.0581 5552 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
00:12:49.0581 5552 TDPIPE - ok
00:12:49.0597 5552 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
00:12:49.0597 5552 TDTCP - ok
00:12:49.0644 5552 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
00:12:49.0644 5552 tdx - ok
00:12:49.0659 5552 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
00:12:49.0675 5552 TermDD - ok
00:12:49.0737 5552 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
00:12:49.0784 5552 TermService - ok
00:12:49.0815 5552 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
00:12:49.0831 5552 Themes - ok
00:12:49.0862 5552 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
00:12:49.0862 5552 THREADORDER - ok
00:12:49.0909 5552 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
00:12:49.0924 5552 TrkWks - ok
00:12:49.0987 5552 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
00:12:50.0002 5552 TrustedInstaller - ok
00:12:50.0034 5552 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
00:12:50.0034 5552 tssecsrv - ok
00:12:50.0096 5552 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
00:12:50.0096 5552 tunnel - ok
00:12:50.0127 5552 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
00:12:50.0143 5552 uagp35 - ok
00:12:50.0205 5552 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
00:12:50.0221 5552 udfs - ok
00:12:50.0268 5552 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
00:12:50.0283 5552 UI0Detect - ok
00:12:50.0314 5552 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
00:12:50.0330 5552 uliagpkx - ok
00:12:50.0377 5552 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
00:12:50.0377 5552 umbus - ok
00:12:50.0392 5552 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
00:12:50.0408 5552 UmPass - ok
00:12:50.0455 5552 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
00:12:50.0486 5552 upnphost - ok
00:12:50.0564 5552 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
00:12:50.0580 5552 USBAAPL64 - ok
00:12:50.0611 5552 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
00:12:50.0611 5552 usbccgp - ok
00:12:50.0642 5552 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
00:12:50.0658 5552 usbcir - ok
00:12:50.0689 5552 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys
00:12:50.0689 5552 usbehci - ok
00:12:50.0751 5552 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys
00:12:50.0798 5552 usbhub - ok
00:12:50.0845 5552 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
00:12:50.0845 5552 usbohci - ok
00:12:50.0876 5552 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
00:12:50.0892 5552 usbprint - ok
00:12:50.0938 5552 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
00:12:50.0938 5552 usbscan - ok
00:12:50.0970 5552 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:12:50.0970 5552 USBSTOR - ok
00:12:51.0001 5552 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
00:12:51.0063 5552 usbuhci - ok
00:12:51.0141 5552 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
00:12:51.0157 5552 usbvideo - ok
00:12:51.0204 5552 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
00:12:51.0204 5552 UxSms - ok
00:12:51.0235 5552 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
00:12:51.0250 5552 VaultSvc - ok
00:12:51.0297 5552 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
00:12:51.0313 5552 vdrvroot - ok
00:12:51.0375 5552 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
00:12:51.0406 5552 vds - ok
00:12:51.0484 5552 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
00:12:51.0500 5552 vga - ok
00:12:51.0516 5552 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
00:12:51.0531 5552 VgaSave - ok
00:12:51.0562 5552 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
00:12:51.0578 5552 vhdmp - ok
00:12:51.0625 5552 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
00:12:51.0625 5552 viaide - ok
00:12:51.0656 5552 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
00:12:51.0672 5552 volmgr - ok
00:12:51.0718 5552 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
00:12:51.0734 5552 volmgrx - ok
00:12:51.0781 5552 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
00:12:51.0812 5552 volsnap - ok
00:12:51.0859 5552 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
00:12:51.0874 5552 vsmraid - ok
00:12:52.0015 5552 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
00:12:52.0077 5552 VSS - ok
00:12:52.0264 5552 vToolbarUpdater12.1.3 (f98a970d02b35870c8013b43736f7904) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe
00:12:52.0280 5552 vToolbarUpdater12.1.3 - ok
00:12:52.0452 5552 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
00:12:52.0483 5552 vwifibus - ok
00:12:52.0530 5552 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
00:12:52.0561 5552 vwififlt - ok
00:12:52.0576 5552 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
00:12:52.0576 5552 vwifimp - ok
00:12:52.0639 5552 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
00:12:52.0654 5552 W32Time - ok
00:12:52.0701 5552 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
00:12:52.0717 5552 WacomPen - ok
00:12:52.0764 5552 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
00:12:52.0795 5552 WANARP - ok
00:12:52.0810 5552 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
00:12:52.0810 5552 Wanarpv6 - ok
00:12:52.0998 5552 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
00:12:53.0060 5552 WatAdminSvc - ok
00:12:53.0233 5552 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
00:12:53.0295 5552 wbengine - ok
00:12:53.0420 5552 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
00:12:53.0451 5552 WbioSrvc - ok
00:12:53.0482 5552 wcncsvc (8321c2ca3b62b61b293cda3451984468) C:\Windows\System32\wcncsvc.dll
00:12:53.0576 5552 wcncsvc - ok
00:12:53.0591 5552 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
00:12:53.0607 5552 WcsPlugInService - ok
00:12:53.0654 5552 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
00:12:53.0654 5552 Wd - ok
00:12:53.0701 5552 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
00:12:53.0701 5552 WDC_SAM - ok
00:12:53.0779 5552 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
00:12:53.0825 5552 Wdf01000 - ok
00:12:53.0857 5552 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:12:53.0857 5552 WdiServiceHost - ok
00:12:53.0872 5552 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
00:12:53.0872 5552 WdiSystemHost - ok
00:12:53.0950 5552 WebClient (8a438cbb8c032a0c798b0c642ffbe572) C:\Windows\System32\webclnt.dll
00:12:53.0981 5552 WebClient - ok
00:12:54.0044 5552 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
00:12:54.0059 5552 Wecsvc - ok
00:12:54.0091 5552 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
00:12:54.0106 5552 wercplsupport - ok
00:12:54.0137 5552 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
00:12:54.0137 5552 WerSvc - ok
00:12:54.0215 5552 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
00:12:54.0215 5552 WfpLwf - ok
00:12:54.0278 5552 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
00:12:54.0293 5552 WimFltr - ok
00:12:54.0387 5552 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
00:12:54.0465 5552 WIMMount - ok
00:12:54.0481 5552 WinHttpAutoProxySvc - ok
00:12:54.0590 5552 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
00:12:54.0605 5552 Winmgmt - ok
00:12:54.0746 5552 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
00:12:54.0855 5552 WinRM - ok
00:12:55.0042 5552 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
00:12:55.0058 5552 WinUsb - ok
00:12:55.0167 5552 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
00:12:55.0229 5552 Wlansvc - ok
00:12:55.0307 5552 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
00:12:55.0323 5552 wltrysvc - ok
00:12:55.0370 5552 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
00:12:55.0385 5552 WmiAcpi - ok
00:12:55.0495 5552 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
00:12:55.0510 5552 wmiApSrv - ok
00:12:55.0573 5552 WMPNetworkSvc - ok
00:12:55.0619 5552 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
00:12:55.0651 5552 WPCSvc - ok
00:12:55.0697 5552 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
00:12:55.0713 5552 WPDBusEnum - ok
00:12:55.0775 5552 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
00:12:55.0775 5552 ws2ifsl - ok
00:12:55.0791 5552 WSearch - ok
00:12:55.0978 5552 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
00:12:56.0072 5552 wuauserv - ok
00:12:56.0243 5552 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
00:12:56.0259 5552 WudfPf - ok
00:12:56.0306 5552 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
00:12:56.0321 5552 WUDFRd - ok
00:12:56.0368 5552 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
00:12:56.0368 5552 wudfsvc - ok
00:12:56.0431 5552 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
00:12:56.0446 5552 WwanSvc - ok
00:12:56.0540 5552 yukonw7 (79d9ce9614c955dd31aa2556b4014662) C:\Windows\system32\DRIVERS\yk62x64.sys
00:12:56.0633 5552 yukonw7 - ok
00:12:56.0711 5552 {95808DC4-FA4A-4C74-92FE-5B863F82066B} (177590b0d2f8be513626bb8c8d6e6a08) C:\Program Files (x86)\CyberLink\PowerDVD\000.fcl
00:12:56.0711 5552 {95808DC4-FA4A-4C74-92FE-5B863F82066B} - ok
00:12:56.0758 5552 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
00:12:57.0304 5552 \Device\Harddisk0\DR0 - ok
00:12:57.0445 5552 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR3
00:13:06.0712 5552 \Device\Harddisk1\DR3 - ok
00:13:06.0780 5552 Boot (0x1200) (9025f5f50a56850b1f101cd31fc80309) \Device\Harddisk0\DR0\Partition0
00:13:06.0783 5552 \Device\Harddisk0\DR0\Partition0 - ok
00:13:06.0799 5552 Boot (0x1200) (95d0d9e2acede036a744238a7d8b59d8) \Device\Harddisk0\DR0\Partition1
00:13:06.0802 5552 \Device\Harddisk0\DR0\Partition1 - ok
00:13:06.0834 5552 Boot (0x1200) (9b506b45e7a1bbaaff491d5cac7ff339) \Device\Harddisk0\DR0\Partition2
00:13:06.0837 5552 \Device\Harddisk0\DR0\Partition2 - ok
00:13:06.0920 5552 Boot (0x1200) (97d6f4ecf135035ac1013b1e6e99cb7d) \Device\Harddisk1\DR3\Partition0
00:13:06.0927 5552 \Device\Harddisk1\DR3\Partition0 - ok
00:13:06.0928 5552 ============================================================
00:13:06.0928 5552 Scan finished
00:13:06.0928 5552 ============================================================
00:13:06.0957 5524 Detected object count: 0
00:13:06.0957 5524 Actual detected object count: 0

Edited by iHaveMonsters, 19 July 2012 - 12:16 AM.


BC AdBot (Login to Remove)

 


#2 iHaveMonsters

iHaveMonsters
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:03 AM

Posted 18 July 2012 - 09:48 PM

i'm following directions from this thread:

http://www.bleepingcomputer.com/forums/topic461217.html

Edited by iHaveMonsters, 19 July 2012 - 12:22 AM.


#3 iHaveMonsters

iHaveMonsters
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:07:03 AM

Posted 18 July 2012 - 09:52 PM

from AVG:

#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,731 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 AM

Posted 23 July 2012 - 09:50 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

Posted Image In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/461344 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

Posted Image If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS and GMER log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows, you should not bother creating a GMER log.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice


Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,731 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:03 AM

Posted 28 July 2012 - 09:55 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users