Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan Horse Patched_c.LZI


  • Please log in to reply
2 replies to this topic

#1 frizay

frizay

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 31 July 2012 - 10:56 PM

Mod Edit: Moved from Vista to Am I Infected, I sse no record of prior post suggesting logs - Hamluis.


I'm posting the log from my scan as I was previously instructed to do so......
Here it is:
22:41:20.0139 9444 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
22:41:20.0478 9444 ============================================================
22:41:20.0478 9444 Current date / time: 2012/07/31 22:41:20.0478
22:41:20.0478 9444 SystemInfo:
22:41:20.0478 9444
22:41:20.0478 9444 OS Version: 6.0.6002 ServicePack: 2.0
22:41:20.0478 9444 Product type: Workstation
22:41:20.0478 9444 ComputerName: FRIZAY2
22:41:20.0478 9444 UserName: Frizay
22:41:20.0478 9444 Windows directory: C:\Windows
22:41:20.0478 9444 System windows directory: C:\Windows
22:41:20.0478 9444 Running under WOW64
22:41:20.0478 9444 Processor architecture: Intel x64
22:41:20.0478 9444 Number of processors: 4
22:41:20.0478 9444 Page size: 0x1000
22:41:20.0478 9444 Boot type: Normal boot
22:41:20.0478 9444 ============================================================
22:41:20.0916 9444 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:41:20.0916 9444 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:41:20.0939 9444 ============================================================
22:41:20.0939 9444 \Device\Harddisk0\DR0:
22:41:20.0940 9444 MBR partitions:
22:41:20.0940 9444 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x48DF1187
22:41:20.0940 9444 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x48DF11C6, BlocksNum 0x1A65CFB
22:41:20.0940 9444 \Device\Harddisk1\DR1:
22:41:20.0941 9444 MBR partitions:
22:41:20.0941 9444 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x3A384C02
22:41:20.0941 9444 ============================================================
22:41:20.0963 9444 C: <-> \Device\Harddisk0\DR0\Partition0
22:41:20.0982 9444 E: <-> \Device\Harddisk1\DR1\Partition0
22:41:21.0148 9444 D: <-> \Device\Harddisk0\DR0\Partition1
22:41:21.0149 9444 ============================================================
22:41:21.0149 9444 Initialize success
22:41:21.0149 9444 ============================================================
22:41:28.0029 10584 ============================================================
22:41:28.0029 10584 Scan started
22:41:28.0029 10584 Mode: Manual;
22:41:28.0029 10584 ============================================================
22:41:28.0845 10584 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
22:41:28.0849 10584 ACPI - ok
22:41:28.0940 10584 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:41:28.0943 10584 AdobeARMservice - ok
22:41:29.0121 10584 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:41:29.0123 10584 AdobeFlashPlayerUpdateSvc - ok
22:41:29.0244 10584 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
22:41:29.0265 10584 adp94xx - ok
22:41:29.0346 10584 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
22:41:29.0351 10584 adpahci - ok
22:41:29.0388 10584 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
22:41:29.0389 10584 adpu160m - ok
22:41:29.0425 10584 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
22:41:29.0428 10584 adpu320 - ok
22:41:29.0474 10584 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
22:41:29.0475 10584 AeLookupSvc - ok
22:41:29.0542 10584 AFD (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
22:41:29.0548 10584 AFD - ok
22:41:29.0575 10584 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
22:41:29.0577 10584 agp440 - ok
22:41:29.0613 10584 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
22:41:29.0614 10584 aic78xx - ok
22:41:29.0648 10584 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
22:41:29.0650 10584 ALG - ok
22:41:29.0672 10584 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
22:41:29.0674 10584 aliide - ok
22:41:29.0695 10584 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
22:41:29.0696 10584 amdide - ok
22:41:29.0716 10584 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
22:41:29.0717 10584 AmdK8 - ok
22:41:29.0760 10584 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
22:41:29.0762 10584 Appinfo - ok
22:41:29.0925 10584 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:41:29.0927 10584 Apple Mobile Device - ok
22:41:30.0004 10584 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
22:41:30.0006 10584 arc - ok
22:41:30.0040 10584 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
22:41:30.0048 10584 arcsas - ok
22:41:30.0092 10584 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
22:41:30.0093 10584 AsyncMac - ok
22:41:30.0115 10584 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys
22:41:30.0116 10584 atapi - ok
22:41:30.0222 10584 AudioEndpointBuilder (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:41:30.0229 10584 AudioEndpointBuilder - ok
22:41:30.0234 10584 AudioSrv (79318c744693ec983d20e9337a2f8196) C:\Windows\System32\Audiosrv.dll
22:41:30.0237 10584 AudioSrv - ok
22:41:30.0838 10584 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
22:41:30.0931 10584 AVGIDSAgent - ok
22:41:31.0120 10584 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:41:31.0123 10584 AVGIDSDriver - ok
22:41:31.0142 10584 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
22:41:31.0143 10584 AVGIDSFilter - ok
22:41:31.0191 10584 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
22:41:31.0192 10584 AVGIDSHA - ok
22:41:31.0231 10584 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
22:41:31.0243 10584 Avgldx64 - ok
22:41:31.0273 10584 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
22:41:31.0274 10584 Avgmfx64 - ok
22:41:31.0298 10584 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
22:41:31.0299 10584 Avgrkx64 - ok
22:41:31.0345 10584 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
22:41:31.0376 10584 Avgtdia - ok
22:41:31.0452 10584 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
22:41:31.0455 10584 avgwd - ok
22:41:31.0538 10584 BFE (ffb96c2589ffa60473ead78b39fbde29) C:\Windows\System32\bfe.dll
22:41:31.0544 10584 BFE - ok
22:41:31.0571 10584 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
22:41:31.0575 10584 blbdrive - ok
22:41:31.0702 10584 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
22:41:31.0709 10584 Bonjour Service - ok
22:41:31.0742 10584 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
22:41:31.0752 10584 bowser - ok
22:41:31.0789 10584 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
22:41:31.0790 10584 BrFiltLo - ok
22:41:31.0805 10584 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
22:41:31.0806 10584 BrFiltUp - ok
22:41:31.0841 10584 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
22:41:31.0851 10584 Browser - ok
22:41:31.0885 10584 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
22:41:31.0895 10584 Brserid - ok
22:41:31.0927 10584 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
22:41:31.0928 10584 BrSerWdm - ok
22:41:31.0938 10584 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
22:41:31.0939 10584 BrUsbMdm - ok
22:41:31.0951 10584 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
22:41:31.0952 10584 BrUsbSer - ok
22:41:31.0971 10584 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
22:41:31.0972 10584 BTHMODEM - ok
22:41:32.0046 10584 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
22:41:32.0047 10584 cdfs - ok
22:41:32.0075 10584 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
22:41:32.0076 10584 cdrom - ok
22:41:32.0121 10584 CertPropSvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:41:32.0123 10584 CertPropSvc - ok
22:41:32.0179 10584 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
22:41:32.0180 10584 circlass - ok
22:41:32.0240 10584 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
22:41:32.0247 10584 CLFS - ok
22:41:32.0319 10584 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:41:32.0320 10584 clr_optimization_v2.0.50727_32 - ok
22:41:32.0394 10584 clr_optimization_v2.0.50727_64 (ce07a466201096f021cd09d631b21540) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:41:32.0403 10584 clr_optimization_v2.0.50727_64 - ok
22:41:32.0522 10584 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:41:32.0524 10584 clr_optimization_v4.0.30319_32 - ok
22:41:32.0569 10584 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:41:32.0572 10584 clr_optimization_v4.0.30319_64 - ok
22:41:32.0601 10584 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
22:41:32.0602 10584 cmdide - ok
22:41:32.0625 10584 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\drivers\compbatt.sys
22:41:32.0626 10584 Compbatt - ok
22:41:32.0630 10584 COMSysApp - ok
22:41:32.0653 10584 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
22:41:32.0654 10584 crcdisk - ok
22:41:32.0705 10584 CryptSvc (62740b9d2a137e8ced41a9e4239a7a31) C:\Windows\system32\cryptsvc.dll
22:41:32.0709 10584 CryptSvc - ok
22:41:32.0824 10584 DcomLaunch (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:41:32.0836 10584 DcomLaunch - ok
22:41:32.0861 10584 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
22:41:32.0873 10584 DfsC - ok
22:41:33.0245 10584 DFSR (c647f468f7de343df8c143655c5557d4) C:\Windows\system32\DFSR.exe
22:41:33.0341 10584 DFSR - ok
22:41:33.0541 10584 Dhcp (3ed0321127ce70acdaabbf77e157c2a7) C:\Windows\System32\dhcpcsvc.dll
22:41:33.0545 10584 Dhcp - ok
22:41:33.0612 10584 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
22:41:33.0614 10584 disk - ok
22:41:33.0645 10584 Dnscache (06230f1b721494a6df8d47fd395bb1b0) C:\Windows\System32\dnsrslvr.dll
22:41:33.0646 10584 Dnscache - ok
22:41:33.0741 10584 dot3svc (1a7156dd1e850e9914e5e991e3225b94) C:\Windows\System32\dot3svc.dll
22:41:33.0744 10584 dot3svc - ok
22:41:33.0795 10584 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
22:41:33.0801 10584 DPS - ok
22:41:33.0837 10584 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
22:41:33.0838 10584 drmkaud - ok
22:41:33.0920 10584 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
22:41:33.0936 10584 DXGKrnl - ok
22:41:34.0019 10584 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
22:41:34.0025 10584 E1G60 - ok
22:41:34.0062 10584 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
22:41:34.0063 10584 EapHost - ok
22:41:34.0129 10584 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
22:41:34.0131 10584 Ecache - ok
22:41:34.0216 10584 ehRecvr (14ce384d2e27b64c256bda4dc39c312d) C:\Windows\ehome\ehRecvr.exe
22:41:34.0220 10584 ehRecvr - ok
22:41:34.0277 10584 ehSched (b93159c1313d66fdfbbe876f5189cd52) C:\Windows\ehome\ehsched.exe
22:41:34.0291 10584 ehSched - ok
22:41:34.0317 10584 ehstart (f5ee2527d74449868e3c3227a59bcd28) C:\Windows\ehome\ehstart.dll
22:41:34.0318 10584 ehstart - ok
22:41:34.0390 10584 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
22:41:34.0395 10584 elxstor - ok
22:41:34.0466 10584 EMDMgmt (a9b18b63a4fd6baab83326706d857fab) C:\Windows\system32\emdmgmt.dll
22:41:34.0472 10584 EMDMgmt - ok
22:41:34.0507 10584 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
22:41:34.0508 10584 ErrDev - ok
22:41:34.0631 10584 EventSystem (e12f22b73f153dece721cd45ec05b4af) C:\Windows\system32\es.dll
22:41:34.0651 10584 EventSystem - ok
22:41:34.0748 10584 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
22:41:34.0751 10584 exfat - ok
22:41:34.0813 10584 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
22:41:34.0839 10584 fastfat - ok
22:41:34.0877 10584 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
22:41:34.0878 10584 fdc - ok
22:41:34.0897 10584 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
22:41:34.0898 10584 fdPHost - ok
22:41:34.0914 10584 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
22:41:34.0916 10584 FDResPub - ok
22:41:34.0927 10584 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
22:41:34.0929 10584 FileInfo - ok
22:41:34.0957 10584 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
22:41:34.0959 10584 Filetrace - ok
22:41:35.0155 10584 FLEXnet Licensing Service 64 (259dc094e2d3f08654c8fb73d8ecc0f5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
22:41:35.0199 10584 FLEXnet Licensing Service 64 - ok
22:41:35.0218 10584 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:41:35.0219 10584 flpydisk - ok
22:41:35.0276 10584 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
22:41:35.0312 10584 FltMgr - ok
22:41:35.0467 10584 FontCache (be1c5bd1ca7ed015bc6fa1ae67e592c8) C:\Windows\system32\FntCache.dll
22:41:35.0483 10584 FontCache - ok
22:41:35.0545 10584 FontCache3.0.0.0 (bc5b0be5af3510b0fd8c140ee42c6d3e) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:41:35.0546 10584 FontCache3.0.0.0 - ok
22:41:35.0578 10584 Fs_Rec (5779b86cd8b32519fbecb136394d946a) C:\Windows\system32\drivers\Fs_Rec.sys
22:41:35.0579 10584 Fs_Rec - ok
22:41:35.0604 10584 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
22:41:35.0606 10584 gagp30kx - ok
22:41:35.0641 10584 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:41:35.0642 10584 GEARAspiWDM - ok
22:41:35.0780 10584 gpsvc (a0e1b575ba8f504968cd40c0faeb2384) C:\Windows\System32\gpsvc.dll
22:41:35.0794 10584 gpsvc - ok
22:41:35.0916 10584 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:41:35.0918 10584 gupdate - ok
22:41:35.0969 10584 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:41:35.0998 10584 gupdatem - ok
22:41:36.0072 10584 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:41:36.0073 10584 gusvc - ok
22:41:36.0177 10584 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:41:36.0231 10584 HDAudBus - ok
22:41:36.0266 10584 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
22:41:36.0268 10584 HidBth - ok
22:41:36.0280 10584 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
22:41:36.0281 10584 HidIr - ok
22:41:36.0305 10584 hidserv (59361d38a297755d46a540e450202b2a) C:\Windows\system32\hidserv.dll
22:41:36.0306 10584 hidserv - ok
22:41:36.0333 10584 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
22:41:36.0334 10584 HidUsb - ok
22:41:36.0360 10584 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
22:41:36.0365 10584 hkmsvc - ok
22:41:36.0396 10584 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
22:41:36.0397 10584 HpCISSs - ok
22:41:36.0497 10584 hpqcxs08 (a30e97371e38ef45b0757561b2796733) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:41:36.0506 10584 hpqcxs08 - ok
22:41:36.0588 10584 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
22:41:36.0643 10584 HTTP - ok
22:41:36.0658 10584 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
22:41:36.0659 10584 i2omp - ok
22:41:36.0691 10584 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
22:41:36.0694 10584 i8042prt - ok
22:41:36.0732 10584 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
22:41:36.0738 10584 iaStorV - ok
22:41:36.0850 10584 idsvc (749f5f8cedca70f2a512945325fc489d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:41:36.0866 10584 idsvc - ok
22:41:36.0918 10584 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
22:41:36.0919 10584 iirsp - ok
22:41:37.0031 10584 IKEEXT (0c9ea6e654e7b0471741e343a6c671af) C:\Windows\System32\ikeext.dll
22:41:37.0038 10584 IKEEXT - ok
22:41:37.0284 10584 IntcAzAudAddService (1edab7f9b9de4424beccdef950ce2ff0) C:\Windows\system32\drivers\RTKVHD64.sys
22:41:37.0334 10584 IntcAzAudAddService - ok
22:41:37.0475 10584 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
22:41:37.0476 10584 intelide - ok
22:41:37.0497 10584 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
22:41:37.0498 10584 intelppm - ok
22:41:37.0560 10584 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
22:41:37.0562 10584 IPBusEnum - ok
22:41:37.0587 10584 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:41:37.0590 10584 IpFilterDriver - ok
22:41:37.0594 10584 IpInIp - ok
22:41:37.0653 10584 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
22:41:37.0654 10584 IPMIDRV - ok
22:41:37.0708 10584 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
22:41:37.0710 10584 IPNAT - ok
22:41:37.0896 10584 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
22:41:37.0940 10584 iPod Service - ok
22:41:37.0985 10584 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
22:41:37.0986 10584 IRENUM - ok
22:41:38.0009 10584 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
22:41:38.0010 10584 isapnp - ok
22:41:38.0050 10584 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
22:41:38.0053 10584 iScsiPrt - ok
22:41:38.0077 10584 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
22:41:38.0078 10584 iteatapi - ok
22:41:38.0111 10584 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
22:41:38.0112 10584 iteraid - ok
22:41:38.0132 10584 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
22:41:38.0133 10584 kbdclass - ok
22:41:38.0153 10584 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
22:41:38.0155 10584 kbdhid - ok
22:41:38.0181 10584 KeyIso (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:41:38.0182 10584 KeyIso - ok
22:41:38.0267 10584 KSecDD (88956ad9fa510848ad176777a6c6c1f5) C:\Windows\system32\Drivers\ksecdd.sys
22:41:38.0301 10584 KSecDD - ok
22:41:38.0314 10584 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
22:41:38.0315 10584 ksthunk - ok
22:41:38.0377 10584 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
22:41:38.0412 10584 KtmRm - ok
22:41:38.0443 10584 LanmanServer (50c7a3cb427e9bb5ed0708a669956ab5) C:\Windows\system32\srvsvc.dll
22:41:38.0447 10584 LanmanServer - ok
22:41:38.0504 10584 LanmanWorkstation (caf86fc1388be1e470f1a7b43e348adb) C:\Windows\System32\wkssvc.dll
22:41:38.0508 10584 LanmanWorkstation - ok
22:41:38.0584 10584 LightScribeService (e75adcfafdef3f4c3af3332928d59926) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:41:38.0585 10584 LightScribeService - ok
22:41:38.0618 10584 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
22:41:38.0622 10584 lltdio - ok
22:41:38.0674 10584 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
22:41:38.0678 10584 lltdsvc - ok
22:41:38.0716 10584 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
22:41:38.0717 10584 lmhosts - ok
22:41:38.0758 10584 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
22:41:38.0790 10584 LSI_FC - ok
22:41:38.0832 10584 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
22:41:38.0840 10584 LSI_SAS - ok
22:41:38.0870 10584 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
22:41:38.0873 10584 LSI_SCSI - ok
22:41:38.0899 10584 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
22:41:38.0903 10584 luafv - ok
22:41:38.0915 10584 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
22:41:38.0917 10584 MBAMProtector - ok
22:41:39.0004 10584 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:41:39.0013 10584 MBAMService - ok
22:41:39.0052 10584 Mcx2Svc (76a58df02bd4ea29f189b82d0bef17f8) C:\Windows\system32\Mcx2Svc.dll
22:41:39.0054 10584 Mcx2Svc - ok
22:41:39.0107 10584 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
22:41:39.0109 10584 megasas - ok
22:41:39.0184 10584 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
22:41:39.0189 10584 MegaSR - ok
22:41:39.0224 10584 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:41:39.0226 10584 MMCSS - ok
22:41:39.0251 10584 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
22:41:39.0252 10584 Modem - ok
22:41:39.0295 10584 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
22:41:39.0296 10584 monitor - ok
22:41:39.0310 10584 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
22:41:39.0312 10584 mouclass - ok
22:41:39.0346 10584 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
22:41:39.0347 10584 mouhid - ok
22:41:39.0371 10584 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
22:41:39.0372 10584 MountMgr - ok
22:41:39.0392 10584 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
22:41:39.0394 10584 mpio - ok
22:41:39.0454 10584 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
22:41:39.0456 10584 mpsdrv - ok
22:41:39.0483 10584 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
22:41:39.0485 10584 Mraid35x - ok
22:41:39.0525 10584 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
22:41:39.0528 10584 MRxDAV - ok
22:41:39.0573 10584 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:41:39.0575 10584 mrxsmb - ok
22:41:39.0667 10584 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:41:39.0672 10584 mrxsmb10 - ok
22:41:39.0737 10584 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:41:39.0787 10584 mrxsmb20 - ok
22:41:39.0807 10584 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
22:41:39.0808 10584 msahci - ok
22:41:39.0838 10584 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
22:41:39.0840 10584 msdsm - ok
22:41:39.0884 10584 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
22:41:39.0887 10584 MSDTC - ok
22:41:39.0941 10584 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
22:41:39.0942 10584 Msfs - ok
22:41:39.0960 10584 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
22:41:39.0961 10584 msisadrv - ok
22:41:39.0993 10584 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
22:41:40.0015 10584 MSiSCSI - ok
22:41:40.0018 10584 msiserver - ok
22:41:40.0083 10584 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
22:41:40.0084 10584 MSKSSRV - ok
22:41:40.0116 10584 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
22:41:40.0117 10584 MSPCLOCK - ok
22:41:40.0149 10584 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
22:41:40.0150 10584 MSPQM - ok
22:41:40.0199 10584 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
22:41:40.0204 10584 MsRPC - ok
22:41:40.0248 10584 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
22:41:40.0249 10584 mssmbios - ok
22:41:40.0292 10584 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
22:41:40.0293 10584 MSTEE - ok
22:41:40.0317 10584 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
22:41:40.0319 10584 Mup - ok
22:41:40.0376 10584 napagent (a5b10c845e7538c60c0f5d87a57cb3f5) C:\Windows\system32\qagentRT.dll
22:41:40.0383 10584 napagent - ok
22:41:40.0468 10584 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
22:41:40.0481 10584 NativeWifiP - ok
22:41:40.0513 10584 NAVENG - ok
22:41:40.0520 10584 NAVEX15 - ok
22:41:40.0676 10584 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
22:41:40.0687 10584 NDIS - ok
22:41:40.0728 10584 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
22:41:40.0730 10584 NdisTapi - ok
22:41:40.0734 10584 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
22:41:40.0735 10584 Ndisuio - ok
22:41:40.0772 10584 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
22:41:40.0775 10584 NdisWan - ok
22:41:40.0794 10584 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
22:41:40.0795 10584 NDProxy - ok
22:41:40.0842 10584 Net Driver HPZ12 (c5ff8bd5eeba90ad66d3e842f8a4be55) C:\Windows\system32\HPZinw12.dll
22:41:40.0844 10584 Net Driver HPZ12 - ok
22:41:40.0865 10584 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
22:41:40.0866 10584 NetBIOS - ok
22:41:40.0898 10584 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
22:41:40.0905 10584 netbt - ok
22:41:40.0930 10584 Netlogon (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:41:40.0931 10584 Netlogon - ok
22:41:40.0972 10584 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
22:41:40.0977 10584 Netman - ok
22:41:41.0030 10584 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
22:41:41.0036 10584 netprofm - ok
22:41:41.0141 10584 netr7364 (b69d6bb680c85243af0263b3e01d5e77) C:\Windows\system32\DRIVERS\netr7364.sys
22:41:41.0150 10584 netr7364 - ok
22:41:41.0220 10584 NetTcpPortSharing (74751dda198165947fd7454d83f49825) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:41:41.0222 10584 NetTcpPortSharing - ok
22:41:41.0248 10584 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
22:41:41.0249 10584 nfrd960 - ok
22:41:41.0286 10584 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
22:41:41.0290 10584 NlaSvc - ok
22:41:41.0315 10584 Norton Internet Security - ok
22:41:41.0332 10584 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
22:41:41.0334 10584 Npfs - ok
22:41:41.0349 10584 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
22:41:41.0351 10584 nsi - ok
22:41:41.0362 10584 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
22:41:41.0363 10584 nsiproxy - ok
22:41:41.0554 10584 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
22:41:41.0615 10584 Ntfs - ok
22:41:41.0751 10584 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
22:41:41.0752 10584 Null - ok
22:41:41.0973 10584 NVENETFD (98350606682594521d56eccb5d01ecf7) C:\Windows\system32\DRIVERS\nvmfdx64.sys
22:41:42.0012 10584 NVENETFD - ok
22:41:43.0152 10584 nvlddmkm (1d135cc25b5ac1b9d2b6004d9de28df3) C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:41:43.0335 10584 nvlddmkm - ok
22:41:43.0490 10584 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
22:41:43.0492 10584 nvraid - ok
22:41:43.0529 10584 nvrd64 (011db85affd2368348181c552e025d98) C:\Windows\system32\drivers\nvrd64.sys
22:41:43.0532 10584 nvrd64 - ok
22:41:43.0561 10584 nvsmu (e58d81fb8616d0cb55c1e36aa0b213c9) C:\Windows\system32\DRIVERS\nvsmu.sys
22:41:43.0562 10584 nvsmu - ok
22:41:43.0576 10584 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
22:41:43.0578 10584 nvstor - ok
22:41:43.0591 10584 nvstor64 (fa6d13aa972967eb46862d0f0372a65a) C:\Windows\system32\drivers\nvstor64.sys
22:41:43.0592 10584 nvstor64 - ok
22:41:43.0719 10584 nvsvc (9dfc3de793a130592a5a579d611d412e) C:\Windows\system32\nvvsvc.exe
22:41:43.0725 10584 nvsvc - ok
22:41:43.0782 10584 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
22:41:43.0784 10584 nv_agp - ok
22:41:43.0788 10584 NwlnkFlt - ok
22:41:43.0793 10584 NwlnkFwd - ok
22:41:44.0035 10584 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:41:44.0070 10584 odserv - ok
22:41:44.0131 10584 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
22:41:44.0142 10584 ohci1394 - ok
22:41:44.0180 10584 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:41:44.0181 10584 ose - ok
22:41:44.0318 10584 p2pimsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:41:44.0338 10584 p2pimsvc - ok
22:41:44.0346 10584 p2psvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:41:44.0353 10584 p2psvc - ok
22:41:44.0409 10584 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
22:41:44.0413 10584 Parport - ok
22:41:44.0457 10584 partmgr (b43751085e2abe389da466bc62a4b987) C:\Windows\system32\drivers\partmgr.sys
22:41:44.0458 10584 partmgr - ok
22:41:44.0478 10584 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
22:41:44.0484 10584 PcaSvc - ok
22:41:44.0501 10584 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
22:41:44.0511 10584 pci - ok
22:41:44.0548 10584 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
22:41:44.0549 10584 pciide - ok
22:41:44.0581 10584 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
22:41:44.0600 10584 pcmcia - ok
22:41:44.0693 10584 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
22:41:44.0715 10584 PEAUTH - ok
22:41:44.0812 10584 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
22:41:44.0814 10584 PerfHost - ok
22:41:44.0945 10584 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
22:41:45.0014 10584 pla - ok
22:41:45.0070 10584 PlugPlay (fe6b0f59215c9fd9f9d26539c58c8b82) C:\Windows\system32\umpnpmgr.dll
22:41:45.0075 10584 PlugPlay - ok
22:41:45.0152 10584 Pml Driver HPZ12 (e59d5619d60903e66bf85d8452f7fb67) C:\Windows\system32\HPZipm12.dll
22:41:45.0154 10584 Pml Driver HPZ12 - ok
22:41:45.0269 10584 PNRPAutoReg (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:41:45.0277 10584 PNRPAutoReg - ok
22:41:45.0286 10584 PNRPsvc (9ae31d2e1d15c10d91318e0ec149ceac) C:\Windows\system32\p2psvc.dll
22:41:45.0293 10584 PNRPsvc - ok
22:41:45.0421 10584 PolicyAgent (89a5560671c2d8b4a4b51f3e1aa069d8) C:\Windows\System32\ipsecsvc.dll
22:41:45.0430 10584 PolicyAgent - ok
22:41:45.0520 10584 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
22:41:45.0524 10584 PptpMiniport - ok
22:41:45.0551 10584 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\DRIVERS\processr.sys
22:41:45.0552 10584 Processor - ok
22:41:45.0598 10584 ProfSvc (e058ce4fc2449d8bfa14739c83b7ff2a) C:\Windows\system32\profsvc.dll
22:41:45.0608 10584 ProfSvc - ok
22:41:45.0630 10584 ProtectedStorage (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:41:45.0631 10584 ProtectedStorage - ok
22:41:45.0649 10584 Ps2 (1d0a3f565397d08707f3d75b88586645) C:\Windows\system32\DRIVERS\PS2.sys
22:41:45.0650 10584 Ps2 - ok
22:41:45.0677 10584 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
22:41:45.0687 10584 PSched - ok
22:41:45.0727 10584 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
22:41:45.0730 10584 PxHlpa64 - ok
22:41:45.0911 10584 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
22:41:45.0928 10584 ql2300 - ok
22:41:45.0954 10584 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
22:41:45.0961 10584 ql40xx - ok
22:41:46.0031 10584 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
22:41:46.0037 10584 QWAVE - ok
22:41:46.0071 10584 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
22:41:46.0073 10584 QWAVEdrv - ok
22:41:46.0081 10584 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
22:41:46.0082 10584 RasAcd - ok
22:41:46.0100 10584 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
22:41:46.0110 10584 RasAuto - ok
22:41:46.0139 10584 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:41:46.0148 10584 Rasl2tp - ok
22:41:46.0181 10584 RasMan (3ad83e4046c43be510de681588acb8af) C:\Windows\System32\rasmans.dll
22:41:46.0191 10584 RasMan - ok
22:41:46.0245 10584 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
22:41:46.0246 10584 RasPppoe - ok
22:41:46.0280 10584 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
22:41:46.0282 10584 RasSstp - ok
22:41:46.0329 10584 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
22:41:46.0365 10584 rdbss - ok
22:41:46.0405 10584 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:41:46.0405 10584 RDPCDD - ok
22:41:46.0452 10584 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
22:41:46.0457 10584 rdpdr - ok
22:41:46.0461 10584 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
22:41:46.0461 10584 RDPENCDD - ok
22:41:46.0515 10584 RDPWD (ae4bd9e1c33d351d8e607fc81f15160c) C:\Windows\system32\drivers\RDPWD.sys
22:41:46.0528 10584 RDPWD - ok
22:41:46.0564 10584 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
22:41:46.0566 10584 RemoteAccess - ok
22:41:46.0599 10584 RemoteRegistry (44b9d8ec2f3ef3a0efb00857af70d861) C:\Windows\system32\regsvc.dll
22:41:46.0603 10584 RemoteRegistry - ok
22:41:46.0679 10584 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
22:41:46.0680 10584 RpcLocator - ok
22:41:46.0788 10584 RpcSs (cf8b9a3a5e7dc57724a89d0c3e8cf9ef) C:\Windows\system32\rpcss.dll
22:41:46.0794 10584 RpcSs - ok
22:41:46.0806 10584 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
22:41:46.0810 10584 rspndr - ok
22:41:46.0830 10584 SamSs (260bf9c43ee12c6898a9f5aab0fb0e5d) C:\Windows\system32\lsass.exe
22:41:46.0831 10584 SamSs - ok
22:41:46.0859 10584 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
22:41:46.0868 10584 sbp2port - ok
22:41:46.0896 10584 SCardSvr (fd1cdcf108d5ef3366f00d18b70fb89b) C:\Windows\System32\SCardSvr.dll
22:41:46.0954 10584 SCardSvr - ok
22:41:47.0073 10584 Schedule (0f838c811ad295d2a4489b9993096c63) C:\Windows\system32\schedsvc.dll
22:41:47.0116 10584 Schedule - ok
22:41:47.0146 10584 SCPolicySvc (5a268127633c7ee2a7fb87f39d748d56) C:\Windows\System32\certprop.dll
22:41:47.0147 10584 SCPolicySvc - ok
22:41:47.0179 10584 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
22:41:47.0182 10584 SDRSVC - ok
22:41:47.0242 10584 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
22:41:47.0243 10584 secdrv - ok
22:41:47.0258 10584 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
22:41:47.0261 10584 seclogon - ok
22:41:47.0276 10584 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\System32\sens.dll
22:41:47.0279 10584 SENS - ok
22:41:47.0298 10584 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
22:41:47.0299 10584 Serenum - ok
22:41:47.0325 10584 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
22:41:47.0326 10584 Serial - ok
22:41:47.0369 10584 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
22:41:47.0370 10584 sermouse - ok
22:41:47.0397 10584 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
22:41:47.0399 10584 SessionEnv - ok
22:41:47.0412 10584 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
22:41:47.0413 10584 sffdisk - ok
22:41:47.0431 10584 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
22:41:47.0432 10584 sffp_mmc - ok
22:41:47.0452 10584 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
22:41:47.0453 10584 sffp_sd - ok
22:41:47.0466 10584 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
22:41:47.0467 10584 sfloppy - ok
22:41:47.0522 10584 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
22:41:47.0543 10584 SharedAccess - ok
22:41:47.0621 10584 ShellHWDetection (56793271ecdedd350c5add305603e963) C:\Windows\System32\shsvcs.dll
22:41:47.0626 10584 ShellHWDetection - ok
22:41:47.0676 10584 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
22:41:47.0677 10584 SiSRaid2 - ok
22:41:47.0696 10584 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
22:41:47.0698 10584 SiSRaid4 - ok
22:41:47.0898 10584 slsvc (a9a27a8e257b45a604fdad4f26fe7241) C:\Windows\system32\SLsvc.exe
22:41:47.0975 10584 slsvc - ok
22:41:48.0120 10584 SLUINotify (fd74b4b7c2088e390a30c85a896fc3af) C:\Windows\system32\SLUINotify.dll
22:41:48.0124 10584 SLUINotify - ok
22:41:48.0207 10584 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
22:41:48.0208 10584 Smb - ok
22:41:48.0253 10584 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
22:41:48.0256 10584 SNMPTRAP - ok
22:41:48.0279 10584 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
22:41:48.0280 10584 spldr - ok
22:41:48.0320 10584 Spooler (f66ff751e7efc816d266977939ef5dc3) C:\Windows\System32\spoolsv.exe
22:41:48.0383 10584 Spooler - ok
22:41:48.0386 10584 SRTSP - ok
22:41:48.0392 10584 SRTSPX - ok
22:41:48.0463 10584 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
22:41:48.0492 10584 srv - ok
22:41:48.0512 10584 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
22:41:48.0515 10584 srv2 - ok
22:41:48.0539 10584 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
22:41:48.0549 10584 srvnet - ok
22:41:48.0573 10584 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
22:41:48.0577 10584 SSDPSRV - ok
22:41:48.0611 10584 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
22:41:48.0614 10584 SstpSvc - ok
22:41:48.0641 10584 StillCam (14b4db4381e4a55f570d8bb699b791d6) C:\Windows\system32\DRIVERS\serscan.sys
22:41:48.0642 10584 StillCam - ok
22:41:48.0702 10584 stisvc (15825c1fbfb8779992cb65087f316af5) C:\Windows\System32\wiaservc.dll
22:41:48.0711 10584 stisvc - ok
22:41:48.0732 10584 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
22:41:48.0733 10584 swenum - ok
22:41:48.0817 10584 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:41:48.0825 10584 SwitchBoard - ok
22:41:48.0907 10584 swprv (6de37f4de19d4efd9c48c43addbc949a) C:\Windows\System32\swprv.dll
22:41:48.0923 10584 swprv - ok
22:41:48.0978 10584 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
22:41:48.0980 10584 Symc8xx - ok
22:41:49.0031 10584 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
22:41:49.0032 10584 Sym_hi - ok
22:41:49.0052 10584 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
22:41:49.0054 10584 Sym_u3 - ok
22:41:49.0192 10584 SysMain (92d7a8b0f87b036f17d25885937897a6) C:\Windows\system32\sysmain.dll
22:41:49.0257 10584 SysMain - ok
22:41:49.0375 10584 szkg5 (8598e4a12eaa945b35365dd2750b9777) C:\Windows\syswow64\DRIVERS\szkg64.sys
22:41:49.0376 10584 szkg5 - ok
22:41:49.0447 10584 szserver (7d419d086799139c553c336484742d89) C:\Program Files (x86)\STOPzilla!\SZServer.exe
22:41:49.0449 10584 szserver - ok
22:41:49.0614 10584 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
22:41:49.0617 10584 TabletInputService - ok
22:41:49.0690 10584 TapiSrv (cc2562b4d55e0b6a4758c65407f63b79) C:\Windows\System32\tapisrv.dll
22:41:49.0695 10584 TapiSrv - ok
22:41:49.0727 10584 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
22:41:49.0738 10584 TBS - ok
22:41:49.0959 10584 Tcpip (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\drivers\tcpip.sys
22:41:49.0985 10584 Tcpip - ok
22:41:50.0160 10584 Tcpip6 (46d448e9117464e4d3bbf36d7e3fa48e) C:\Windows\system32\DRIVERS\tcpip.sys
22:41:50.0173 10584 Tcpip6 - ok
22:41:50.0245 10584 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
22:41:50.0246 10584 tcpipreg - ok
22:41:50.0265 10584 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
22:41:50.0266 10584 TDPIPE - ok
22:41:50.0285 10584 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
22:41:50.0287 10584 TDTCP - ok
22:41:50.0323 10584 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
22:41:50.0327 10584 tdx - ok
22:41:50.0347 10584 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
22:41:50.0349 10584 TermDD - ok
22:41:50.0383 10584 TermService (5cdd30bc217082dac71a9878d9bfd566) C:\Windows\System32\termsrv.dll
22:41:50.0432 10584 TermService - ok
22:41:50.0505 10584 Themes (56793271ecdedd350c5add305603e963) C:\Windows\system32\shsvcs.dll
22:41:50.0508 10584 Themes - ok
22:41:50.0573 10584 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
22:41:50.0574 10584 THREADORDER - ok
22:41:50.0608 10584 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
22:41:50.0611 10584 TrkWks - ok
22:41:50.0673 10584 TrustedInstaller (66328b08ef5a9305d8ede36b93930369) C:\Windows\servicing\TrustedInstaller.exe
22:41:50.0675 10584 TrustedInstaller - ok
22:41:50.0690 10584 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:41:50.0691 10584 tssecsrv - ok
22:41:50.0702 10584 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
22:41:50.0704 10584 tunmp - ok
22:41:50.0767 10584 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
22:41:50.0768 10584 tunnel - ok
22:41:50.0783 10584 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
22:41:50.0785 10584 uagp35 - ok
22:41:50.0863 10584 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
22:41:50.0868 10584 udfs - ok
22:41:50.0915 10584 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
22:41:50.0917 10584 UI0Detect - ok
22:41:50.0969 10584 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
22:41:50.0970 10584 uliagpkx - ok
22:41:51.0040 10584 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
22:41:51.0043 10584 uliahci - ok
22:41:51.0073 10584 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
22:41:51.0075 10584 UlSata - ok
22:41:51.0106 10584 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
22:41:51.0109 10584 ulsata2 - ok
22:41:51.0124 10584 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
22:41:51.0126 10584 umbus - ok
22:41:51.0167 10584 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
22:41:51.0173 10584 upnphost - ok
22:41:51.0253 10584 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
22:41:51.0255 10584 usbccgp - ok
22:41:51.0329 10584 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
22:41:51.0330 10584 usbcir - ok
22:41:51.0369 10584 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
22:41:51.0370 10584 usbehci - ok
22:41:51.0417 10584 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
22:41:51.0480 10584 usbhub - ok
22:41:51.0492 10584 usbohci (e406b003a354776d317762694956b0fc) C:\Windows\system32\DRIVERS\usbohci.sys
22:41:51.0493 10584 usbohci - ok
22:41:51.0503 10584 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
22:41:51.0505 10584 usbprint - ok
22:41:51.0519 10584 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:41:51.0522 10584 USBSTOR - ok
22:41:51.0535 10584 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
22:41:51.0536 10584 usbuhci - ok
22:41:51.0561 10584 UxSms (d76e231e4850bb3f88a3d9a78df191e3) C:\Windows\System32\uxsms.dll
22:41:51.0563 10584 UxSms - ok
22:41:51.0624 10584 vds (294945381dfa7ce58cecf0a9896af327) C:\Windows\System32\vds.exe
22:41:51.0632 10584 vds - ok
22:41:51.0667 10584 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
22:41:51.0668 10584 vga - ok
22:41:51.0680 10584 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
22:41:51.0682 10584 VgaSave - ok
22:41:51.0700 10584 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
22:41:51.0702 10584 viaide - ok
22:41:51.0729 10584 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
22:41:51.0733 10584 volmgr - ok
22:41:51.0780 10584 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
22:41:51.0810 10584 volmgrx - ok
22:41:51.0847 10584 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
22:41:51.0870 10584 volsnap - ok
22:41:51.0896 10584 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
22:41:51.0904 10584 vsmraid - ok
22:41:52.0073 10584 VSS (b75232dad33bfd95bf6f0a3e6bff51e1) C:\Windows\system32\vssvc.exe
22:41:52.0124 10584 VSS - ok
22:41:52.0319 10584 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
22:41:52.0382 10584 vToolbarUpdater11.2.0 - ok
22:41:52.0551 10584 W32Time (f14a7de2ea41883e250892e1e5230a9a) C:\Windows\system32\w32time.dll
22:41:52.0557 10584 W32Time - ok
22:41:52.0611 10584 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
22:41:52.0612 10584 WacomPen - ok
22:41:52.0650 10584 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:41:52.0652 10584 Wanarp - ok
22:41:52.0656 10584 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
22:41:52.0657 10584 Wanarpv6 - ok
22:41:52.0812 10584 wcncsvc (b4e4c37d0aa6100090a53213ee2bf1c1) C:\Windows\System32\wcncsvc.dll
22:41:52.0823 10584 wcncsvc - ok
22:41:52.0859 10584 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
22:41:52.0862 10584 WcsPlugInService - ok
22:41:52.0866 10584 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
22:41:52.0867 10584 Wd - ok
22:41:53.0042 10584 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
22:41:53.0057 10584 Wdf01000 - ok
22:41:53.0089 10584 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:41:53.0091 10584 WdiServiceHost - ok
22:41:53.0095 10584 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
22:41:53.0097 10584 WdiSystemHost - ok
22:41:53.0159 10584 WebClient (3e6d05381cf35f75ebb055544a8ed9ac) C:\Windows\System32\webclnt.dll
22:41:53.0164 10584 WebClient - ok
22:41:53.0207 10584 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
22:41:53.0211 10584 Wecsvc - ok
22:41:53.0270 10584 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
22:41:53.0273 10584 wercplsupport - ok
22:41:53.0367 10584 WerSvc (66b9ecebc46683f47edc06333c075fef) C:\Windows\System32\WerSvc.dll
22:41:53.0371 10584 WerSvc - ok
22:41:53.0387 10584 WinHttpAutoProxySvc - ok
22:41:53.0491 10584 Winmgmt (d2e7296ed1bd26d8db2799770c077a02) C:\Windows\system32\wbem\WMIsvc.dll
22:41:53.0494 10584 Winmgmt - ok
22:41:53.0664 10584 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
22:41:53.0737 10584 WinRM - ok
22:41:53.0922 10584 Wlansvc (ec339c8115e91baed835957e9a677f16) C:\Windows\System32\wlansvc.dll
22:41:53.0932 10584 Wlansvc - ok
22:41:53.0990 10584 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:41:53.0991 10584 WmiAcpi - ok
22:41:54.0054 10584 wmiApSrv (21fa389e65a852698b6a1341f36ee02d) C:\Windows\system32\wbem\WmiApSrv.exe
22:41:54.0058 10584 wmiApSrv - ok
22:41:54.0115 10584 WMPNetworkSvc - ok
22:41:54.0150 10584 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
22:41:54.0154 10584 WPCSvc - ok
22:41:54.0207 10584 WPDBusEnum (490a18b4e4d53dc10879deaa8e8b70d9) C:\Windows\system32\wpdbusenum.dll
22:41:54.0210 10584 WPDBusEnum - ok
22:41:54.0547 10584 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:41:54.0561 10584 WPFFontCache_v0400 - ok
22:41:54.0648 10584 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
22:41:54.0649 10584 ws2ifsl - ok
22:41:54.0653 10584 WSearch - ok
22:41:54.0708 10584 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:41:54.0711 10584 WUDFRd - ok
22:41:54.0741 10584 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
22:41:54.0744 10584 wudfsvc - ok
22:41:54.0897 10584 {55662437-DA8C-40c0-AADA-2C816A897A49} (15cc7077d2dc28776cd430ecabbffd66) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
22:41:54.0898 10584 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
22:41:54.0931 10584 MBR (0x1B8) (81cd5ec01db0ce57edd853f82462ef27) \Device\Harddisk0\DR0
22:41:55.0145 10584 \Device\Harddisk0\DR0 - ok
22:41:55.0148 10584 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk1\DR1
22:41:55.0152 10584 \Device\Harddisk1\DR1 - ok
22:41:55.0155 10584 Boot (0x1200) (a6c315afc6b9a9f3273ea2e39cd7991a) \Device\Harddisk0\DR0\Partition0
22:41:55.0157 10584 \Device\Harddisk0\DR0\Partition0 - ok
22:41:55.0197 10584 Boot (0x1200) (0c7ebe30e032553e3f43751d657ea55b) \Device\Harddisk0\DR0\Partition1
22:41:55.0204 10584 \Device\Harddisk0\DR0\Partition1 - ok
22:41:55.0208 10584 Boot (0x1200) (203c78298253f6296e2901f6430ab052) \Device\Harddisk1\DR1\Partition0
22:41:55.0209 10584 \Device\Harddisk1\DR1\Partition0 - ok
22:41:55.0211 10584 ============================================================
22:41:55.0211 10584 Scan finished
22:41:55.0211 10584 ============================================================
22:41:55.0225 8356 Detected object count: 0
22:41:55.0225 8356 Actual detected object count: 0

Edited by hamluis, 01 August 2012 - 12:20 PM.
Moved from Vista to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 frizay

frizay
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:47 PM

Posted 31 July 2012 - 11:37 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-31 22:57:26
-----------------------------
22:57:26.056 OS Version: Windows x64 6.0.6002 Service Pack 2
22:57:26.056 Number of processors: 4 586 0x203
22:57:26.057 ComputerName: FRIZAY2 UserName: Frizay
22:57:30.842 Initialize success
22:59:06.864 AVAST engine defs: 12073102
23:00:00.133 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000058
23:00:00.136 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 8
23:00:00.138 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000005a
23:00:00.141 Disk 1 Vendor: WDC_WD50 12.0 Size: 476940MB BusType: 8
23:00:00.181 Disk 0 MBR read successfully
23:00:00.184 Disk 0 MBR scan
23:00:00.256 Disk 0 unknown MBR code
23:00:00.259 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 596962 MB offset 63
23:00:00.310 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 13515 MB offset 1222578630
23:00:00.356 Disk 0 scanning C:\Windows\system32\drivers
23:00:11.457 Service scanning
23:00:28.464 Modules scanning
23:00:28.471 Disk 0 trace - called modules:
23:00:28.492 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys storport.sys hal.dll nvstor64.sys
23:00:28.496 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800617d790]
23:00:28.501 3 CLASSPNP.SYS[fffffa600079dc33] -> nt!IofCallDriver -> [0xfffffa8004f8ad30]
23:00:28.505 5 acpi.sys[fffffa60008f9fde] -> nt!IofCallDriver -> \Device\00000058[0xfffffa8004f5c9e0]
23:00:30.710 AVAST engine scan C:\Windows
23:00:34.658 AVAST engine scan C:\Windows\system32
23:04:47.422 AVAST engine scan C:\Windows\system32\drivers
23:05:09.904 AVAST engine scan C:\Users\Frizay
23:14:09.365 File: C:\Users\Frizay\AppData\Local\Netscape\wlenwjzn.dll **INFECTED** Win32:Kryptik-JLW [Trj]
23:19:02.731 AVAST engine scan C:\ProgramData
23:25:14.199 Scan finished successfully
23:35:39.302 Disk 0 MBR has been saved successfully to "C:\Users\Frizay\Documents\MBR.dat"
23:35:39.307 The log file has been saved successfully to "C:\Users\Frizay\Documents\aswMBR.txt"

#3 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:47 PM

Posted 01 August 2012 - 11:08 PM

Welcome aboard Posted Image

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users