Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer shuts down during full scan


  • This topic is locked This topic is locked
8 replies to this topic

#1 Steven W

Steven W

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 02 August 2012 - 04:59 PM

computer has pentium d processor and uses vista home 32 bit service pack 2 x86 ntfs.

Wife opened an e mail and clicked a link and malware hit it.

I ran malwarebytes quick scan (some hours later) and it found items and quarantined them then computer hung up. I eventually was able to delete the items it found.

I tried to run AVG scan and during the scan the puter shut down, I ran it in safe mode and scan completed but nothing was found.

I downloaded Kaspersky free virus scan tool and ran it, the computer shut down, i uninstalled it.

I downloaded superantispyware did a quick scan and computer shut down, I tried several scans quick and full, once or twice a quick went through and deleted everything it found mostly adaware. I uninstalled it.

I uninstalled AVG and downloaded MS essentials, it works with a quick scan but shuts the puter down on a full scan, but i did get it to scan a full scan in safemode, it found 2 objects, i deleted them, then tried a full scan in reg mode puter shuts down.

I did a full scan with malwarebytes full scan it finds nothing. The logs of scans show no infections.

So basically during normal operation anytime I do a virus scan the puter shuts down, it didn't do this before the initial infection.

BC AdBot (Login to Remove)

 


#2 Steven W

Steven W
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 03 August 2012 - 08:46 AM

I was able to do a full scan this a.m. with MS essentials, it found this:

Trojan:/Hiloti.f

It was quarantined and hopefully i got it removed.

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:38 PM

Posted 03 August 2012 - 11:44 AM

Hello, take another look with these.


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.





I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Steven W

Steven W
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 05 August 2012 - 10:00 AM

06:01:44.0757 3772 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
06:01:45.0350 3772 ============================================================
06:01:45.0350 3772 Current date / time: 2012/08/05 06:01:45.0350
06:01:45.0350 3772 SystemInfo:
06:01:45.0350 3772
06:01:45.0350 3772 OS Version: 6.0.6002 ServicePack: 2.0
06:01:45.0350 3772 Product type: Workstation
06:01:45.0350 3772 ComputerName: LINDA-PC
06:01:45.0350 3772 UserName: LINDA
06:01:45.0350 3772 Windows directory: C:\Windows
06:01:45.0350 3772 System windows directory: C:\Windows
06:01:45.0350 3772 Processor architecture: Intel x86
06:01:45.0350 3772 Number of processors: 2
06:01:45.0350 3772 Page size: 0x1000
06:01:45.0350 3772 Boot type: Normal boot
06:01:45.0350 3772 ============================================================
06:01:48.0038 3772 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:01:48.0038 3772 Drive \Device\Harddisk1\DR1 - Size: 0x7B00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
06:01:48.0038 3772 ============================================================
06:01:48.0038 3772 \Device\Harddisk0\DR0:
06:01:48.0038 3772 MBR partitions:
06:01:48.0038 3772 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11C0FFEE
06:01:48.0038 3772 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x11C1002D, BlocksNum 0xE08A94
06:01:48.0038 3772 \Device\Harddisk1\DR1:
06:01:48.0038 3772 MBR partitions:
06:01:48.0038 3772 ============================================================
06:01:48.0069 3772 C: <-> \Device\Harddisk0\DR0\Partition0
06:01:48.0335 3772 D: <-> \Device\Harddisk0\DR0\Partition1
06:01:48.0335 3772 ============================================================
06:01:48.0335 3772 Initialize success
06:01:48.0335 3772 ============================================================
06:02:19.0730 1192 ============================================================
06:02:19.0730 1192 Scan started
06:02:19.0730 1192 Mode: Manual; TDLFS;
06:02:19.0730 1192 ============================================================
06:02:21.0043 1192 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
06:02:21.0074 1192 ACPI - ok
06:02:21.0480 1192 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:02:21.0527 1192 AdobeFlashPlayerUpdateSvc - ok
06:02:21.0980 1192 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
06:02:22.0027 1192 adp94xx - ok
06:02:22.0074 1192 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
06:02:22.0089 1192 adpahci - ok
06:02:22.0105 1192 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
06:02:22.0105 1192 adpu160m - ok
06:02:22.0136 1192 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
06:02:22.0152 1192 adpu320 - ok
06:02:22.0183 1192 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
06:02:22.0183 1192 AeLookupSvc - ok
06:02:22.0261 1192 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
06:02:22.0261 1192 AFD - ok
06:02:22.0308 1192 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
06:02:22.0308 1192 agp440 - ok
06:02:22.0339 1192 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
06:02:22.0355 1192 aic78xx - ok
06:02:22.0386 1192 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
06:02:22.0386 1192 ALG - ok
06:02:22.0402 1192 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
06:02:22.0402 1192 aliide - ok
06:02:22.0449 1192 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
06:02:22.0449 1192 amdagp - ok
06:02:22.0464 1192 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
06:02:22.0464 1192 amdide - ok
06:02:22.0496 1192 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
06:02:22.0496 1192 AmdK7 - ok
06:02:22.0527 1192 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
06:02:22.0527 1192 AmdK8 - ok
06:02:22.0621 1192 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
06:02:22.0621 1192 Appinfo - ok
06:02:22.0668 1192 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
06:02:22.0668 1192 arc - ok
06:02:22.0699 1192 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
06:02:22.0699 1192 arcsas - ok
06:02:22.0730 1192 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
06:02:22.0730 1192 AsyncMac - ok
06:02:22.0761 1192 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
06:02:22.0761 1192 atapi - ok
06:02:22.0824 1192 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
06:02:22.0839 1192 AudioEndpointBuilder - ok
06:02:22.0839 1192 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
06:02:22.0839 1192 Audiosrv - ok
06:02:23.0293 1192 Automatic LiveUpdate Scheduler (018fe8992fe4d70b69ae866ea0d83f0d) C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
06:02:23.0324 1192 Automatic LiveUpdate Scheduler - ok
06:02:23.0355 1192 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
06:02:23.0355 1192 Beep - ok
06:02:23.0418 1192 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
06:02:23.0433 1192 BFE - ok
06:02:23.0730 1192 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
06:02:23.0793 1192 BITS - ok
06:02:23.0793 1192 blbdrive - ok
06:02:23.0886 1192 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
06:02:23.0902 1192 bowser - ok
06:02:23.0949 1192 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
06:02:23.0949 1192 BrFiltLo - ok
06:02:23.0964 1192 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
06:02:23.0964 1192 BrFiltUp - ok
06:02:23.0996 1192 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
06:02:23.0996 1192 Browser - ok
06:02:24.0043 1192 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
06:02:24.0058 1192 Brserid - ok
06:02:24.0074 1192 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
06:02:24.0074 1192 BrSerWdm - ok
06:02:24.0105 1192 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
06:02:24.0105 1192 BrUsbMdm - ok
06:02:24.0121 1192 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
06:02:24.0121 1192 BrUsbSer - ok
06:02:24.0152 1192 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
06:02:24.0168 1192 BTHMODEM - ok
06:02:24.0511 1192 CCALib8 (a9acc4b9730b6d5b0bb2bffdc53f0812) C:\Program Files\Canon\CAL\CALMAIN.exe
06:02:24.0574 1192 CCALib8 - ok
06:02:24.0668 1192 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
06:02:24.0668 1192 cdfs - ok
06:02:24.0699 1192 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
06:02:24.0714 1192 cdrom - ok
06:02:24.0746 1192 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
06:02:24.0746 1192 CertPropSvc - ok
06:02:24.0777 1192 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
06:02:24.0793 1192 circlass - ok
06:02:24.0824 1192 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
06:02:24.0839 1192 CLFS - ok
06:02:25.0074 1192 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:02:25.0074 1192 clr_optimization_v2.0.50727_32 - ok
06:02:25.0261 1192 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:02:25.0324 1192 clr_optimization_v4.0.30319_32 - ok
06:02:25.0355 1192 CmBatt (0fed59edb4a83ff17f1778827b88ab1a) C:\Windows\system32\DRIVERS\CmBatt.sys
06:02:25.0355 1192 CmBatt - ok
06:02:25.0386 1192 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
06:02:25.0386 1192 cmdide - ok
06:02:25.0418 1192 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
06:02:25.0418 1192 Compbatt - ok
06:02:25.0433 1192 COMSysApp - ok
06:02:25.0480 1192 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
06:02:25.0480 1192 crcdisk - ok
06:02:25.0574 1192 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
06:02:25.0589 1192 Crusoe - ok
06:02:25.0668 1192 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
06:02:25.0683 1192 CryptSvc - ok
06:02:25.0777 1192 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
06:02:25.0793 1192 DcomLaunch - ok
06:02:25.0824 1192 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
06:02:25.0824 1192 DfsC - ok
06:02:27.0027 1192 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
06:02:27.0136 1192 DFSR - ok
06:02:27.0480 1192 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
06:02:27.0496 1192 Dhcp - ok
06:02:27.0558 1192 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
06:02:27.0558 1192 disk - ok
06:02:27.0574 1192 dlbk_device - ok
06:02:27.0621 1192 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
06:02:27.0621 1192 Dnscache - ok
06:02:27.0668 1192 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
06:02:27.0668 1192 dot3svc - ok
06:02:27.0714 1192 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
06:02:27.0730 1192 Dot4 - ok
06:02:27.0746 1192 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
06:02:27.0746 1192 Dot4Print - ok
06:02:27.0761 1192 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
06:02:27.0761 1192 dot4usb - ok
06:02:27.0808 1192 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
06:02:27.0824 1192 DPS - ok
06:02:27.0855 1192 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
06:02:27.0855 1192 drmkaud - ok
06:02:27.0964 1192 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
06:02:27.0964 1192 DXGKrnl - ok
06:02:28.0011 1192 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
06:02:28.0011 1192 E1G60 - ok
06:02:28.0043 1192 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
06:02:28.0043 1192 EapHost - ok
06:02:28.0089 1192 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
06:02:28.0089 1192 Ecache - ok
06:02:28.0152 1192 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
06:02:28.0168 1192 elxstor - ok
06:02:28.0277 1192 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
06:02:28.0324 1192 EMDMgmt - ok
06:02:28.0402 1192 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
06:02:28.0418 1192 EventSystem - ok
06:02:28.0464 1192 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
06:02:28.0480 1192 exfat - ok
06:02:28.0589 1192 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
06:02:28.0605 1192 fastfat - ok
06:02:28.0636 1192 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
06:02:28.0636 1192 fdc - ok
06:02:28.0668 1192 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
06:02:28.0668 1192 fdPHost - ok
06:02:28.0699 1192 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
06:02:28.0699 1192 FDResPub - ok
06:02:28.0746 1192 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
06:02:28.0746 1192 FileInfo - ok
06:02:28.0777 1192 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
06:02:28.0777 1192 Filetrace - ok
06:02:28.0808 1192 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
06:02:28.0808 1192 flpydisk - ok
06:02:28.0855 1192 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
06:02:28.0855 1192 FltMgr - ok
06:02:29.0089 1192 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
06:02:29.0121 1192 FontCache - ok
06:02:29.0339 1192 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
06:02:29.0371 1192 FontCache3.0.0.0 - ok
06:02:29.0402 1192 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
06:02:29.0402 1192 Fs_Rec - ok
06:02:29.0433 1192 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
06:02:29.0433 1192 gagp30kx - ok
06:02:29.0464 1192 GEARAspiWDM (f877c945233039914dbe63b76f9a1065) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
06:02:29.0464 1192 GEARAspiWDM - ok
06:02:29.0589 1192 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
06:02:29.0621 1192 gpsvc - ok
06:02:30.0027 1192 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
06:02:30.0074 1192 gupdate - ok
06:02:30.0089 1192 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
06:02:30.0089 1192 gupdatem - ok
06:02:30.0261 1192 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
06:02:30.0293 1192 gusvc - ok
06:02:30.0355 1192 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
06:02:30.0371 1192 HdAudAddService - ok
06:02:30.0824 1192 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
06:02:30.0855 1192 HDAudBus - ok
06:02:30.0886 1192 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
06:02:30.0886 1192 HidBth - ok
06:02:30.0918 1192 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
06:02:30.0918 1192 HidIr - ok
06:02:30.0949 1192 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
06:02:30.0949 1192 hidserv - ok
06:02:30.0980 1192 HidUsb (3c64042b95e583b366ba4e5d2450235e) C:\Windows\system32\drivers\hidusb.sys
06:02:30.0980 1192 HidUsb - ok
06:02:31.0011 1192 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
06:02:31.0027 1192 hkmsvc - ok
06:02:31.0043 1192 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
06:02:31.0058 1192 HpCISSs - ok
06:02:31.0574 1192 hpqcxs08 (0a3c6aa4a9fc38c20ba4eac2c3351c05) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
06:02:31.0589 1192 hpqcxs08 - ok
06:02:31.0636 1192 hpqddsvc (7da3211ac63edd90b8eca1ca1abfd43b) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
06:02:32.0011 1192 hpqddsvc - ok
06:02:32.0105 1192 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
06:02:32.0136 1192 HPSLPSVC - ok
06:02:32.0199 1192 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
06:02:32.0230 1192 HTTP - ok
06:02:32.0261 1192 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
06:02:32.0277 1192 i2omp - ok
06:02:32.0324 1192 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
06:02:32.0324 1192 i8042prt - ok
06:02:32.0480 1192 ialm (14f477463246e35f1dc932be6225598c) C:\Windows\system32\DRIVERS\igdkmd32.sys
06:02:32.0621 1192 ialm - ok
06:02:32.0808 1192 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
06:02:32.0824 1192 iaStorV - ok
06:02:32.0964 1192 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
06:02:32.0964 1192 IDriverT - ok
06:02:33.0121 1192 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:02:33.0168 1192 idsvc - ok
06:02:33.0418 1192 igfx (14f477463246e35f1dc932be6225598c) C:\Windows\system32\DRIVERS\igdkmd32.sys
06:02:33.0433 1192 igfx - ok
06:02:33.0652 1192 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
06:02:33.0652 1192 iirsp - ok
06:02:33.0714 1192 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
06:02:33.0730 1192 IKEEXT - ok
06:02:33.0902 1192 IntcAzAudAddService (c61b3b87f3856cef0c9f204028c6860d) C:\Windows\system32\drivers\RTKVHDA.sys
06:02:33.0918 1192 IntcAzAudAddService - ok
06:02:34.0074 1192 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
06:02:34.0074 1192 intelide - ok
06:02:34.0105 1192 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
06:02:34.0105 1192 intelppm - ok
06:02:34.0136 1192 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
06:02:34.0136 1192 IPBusEnum - ok
06:02:34.0168 1192 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:02:34.0168 1192 IpFilterDriver - ok
06:02:34.0214 1192 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
06:02:34.0214 1192 iphlpsvc - ok
06:02:34.0230 1192 IpInIp - ok
06:02:34.0261 1192 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
06:02:34.0261 1192 IPMIDRV - ok
06:02:34.0293 1192 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
06:02:34.0308 1192 IPNAT - ok
06:02:34.0339 1192 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
06:02:34.0339 1192 IRENUM - ok
06:02:34.0371 1192 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
06:02:34.0386 1192 isapnp - ok
06:02:34.0433 1192 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
06:02:34.0433 1192 iScsiPrt - ok
06:02:34.0511 1192 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
06:02:34.0527 1192 iteatapi - ok
06:02:34.0527 1192 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
06:02:34.0543 1192 iteraid - ok
06:02:34.0574 1192 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
06:02:34.0574 1192 kbdclass - ok
06:02:34.0621 1192 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
06:02:34.0621 1192 kbdhid - ok
06:02:34.0683 1192 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
06:02:34.0699 1192 KeyIso - ok
06:02:34.0761 1192 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
06:02:34.0793 1192 KSecDD - ok
06:02:34.0871 1192 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
06:02:34.0902 1192 KtmRm - ok
06:02:34.0933 1192 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
06:02:34.0933 1192 LanmanServer - ok
06:02:34.0980 1192 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
06:02:34.0996 1192 LanmanWorkstation - ok
06:02:37.0527 1192 LiveUpdate (3c7fcbbc35e0a52ce9b12e9cc4f5b991) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
06:02:37.0683 1192 LiveUpdate - ok
06:02:38.0371 1192 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
06:02:38.0386 1192 lltdio - ok
06:02:38.0433 1192 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
06:02:38.0433 1192 lltdsvc - ok
06:02:38.0464 1192 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
06:02:38.0480 1192 lmhosts - ok
06:02:38.0527 1192 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
06:02:38.0574 1192 LSI_FC - ok
06:02:38.0824 1192 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
06:02:38.0839 1192 LSI_SAS - ok
06:02:38.0886 1192 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
06:02:38.0886 1192 LSI_SCSI - ok
06:02:38.0918 1192 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
06:02:38.0933 1192 luafv - ok
06:02:38.0964 1192 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
06:02:38.0964 1192 megasas - ok
06:02:38.0996 1192 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
06:02:38.0996 1192 MMCSS - ok
06:02:39.0027 1192 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
06:02:39.0027 1192 Modem - ok
06:02:39.0058 1192 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
06:02:39.0058 1192 monitor - ok
06:02:39.0089 1192 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
06:02:39.0105 1192 mouclass - ok
06:02:39.0168 1192 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys
06:02:39.0168 1192 mouhid - ok
06:02:39.0199 1192 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
06:02:39.0199 1192 MountMgr - ok
06:02:39.0246 1192 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
06:02:39.0246 1192 MpFilter - ok
06:02:39.0308 1192 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
06:02:39.0308 1192 mpio - ok
06:02:39.0418 1192 MpKsl670f0cec - ok
06:02:39.0574 1192 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
06:02:39.0605 1192 mpsdrv - ok
06:02:39.0668 1192 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
06:02:39.0683 1192 MpsSvc - ok
06:02:39.0714 1192 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
06:02:39.0730 1192 Mraid35x - ok
06:02:39.0761 1192 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
06:02:39.0761 1192 MRxDAV - ok
06:02:39.0808 1192 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
06:02:39.0808 1192 mrxsmb - ok
06:02:39.0871 1192 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:02:39.0871 1192 mrxsmb10 - ok
06:02:39.0902 1192 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:02:39.0902 1192 mrxsmb20 - ok
06:02:39.0918 1192 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
06:02:39.0918 1192 msahci - ok
06:02:39.0949 1192 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
06:02:39.0964 1192 msdsm - ok
06:02:40.0043 1192 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
06:02:40.0058 1192 MSDTC - ok
06:02:40.0089 1192 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
06:02:40.0089 1192 Msfs - ok
06:02:40.0121 1192 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
06:02:40.0136 1192 msisadrv - ok
06:02:40.0324 1192 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
06:02:40.0339 1192 MSiSCSI - ok
06:02:40.0355 1192 msiserver - ok
06:02:40.0386 1192 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
06:02:40.0433 1192 MSKSSRV - ok
06:02:40.0636 1192 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
06:02:40.0652 1192 MsMpSvc - ok
06:02:40.0683 1192 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
06:02:40.0683 1192 MSPCLOCK - ok
06:02:40.0699 1192 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
06:02:40.0699 1192 MSPQM - ok
06:02:40.0777 1192 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
06:02:40.0777 1192 MsRPC - ok
06:02:40.0793 1192 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
06:02:40.0793 1192 mssmbios - ok
06:02:40.0824 1192 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
06:02:40.0824 1192 MSTEE - ok
06:02:40.0855 1192 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
06:02:40.0855 1192 Mup - ok
06:02:41.0058 1192 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
06:02:41.0074 1192 napagent - ok
06:02:41.0121 1192 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
06:02:41.0136 1192 NativeWifiP - ok
06:02:41.0324 1192 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
06:02:41.0355 1192 NDIS - ok
06:02:41.0386 1192 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
06:02:41.0386 1192 NdisTapi - ok
06:02:41.0418 1192 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
06:02:41.0418 1192 Ndisuio - ok
06:02:41.0464 1192 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
06:02:41.0464 1192 NdisWan - ok
06:02:41.0511 1192 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
06:02:41.0527 1192 NDProxy - ok
06:02:41.0574 1192 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
06:02:41.0574 1192 Net Driver HPZ12 - ok
06:02:41.0621 1192 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
06:02:41.0621 1192 NetBIOS - ok
06:02:41.0668 1192 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
06:02:41.0683 1192 netbt - ok
06:02:41.0714 1192 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
06:02:41.0714 1192 Netlogon - ok
06:02:41.0808 1192 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
06:02:41.0824 1192 Netman - ok
06:02:41.0871 1192 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
06:02:41.0886 1192 netprofm - ok
06:02:41.0980 1192 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:02:41.0980 1192 NetTcpPortSharing - ok
06:02:42.0199 1192 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
06:02:42.0277 1192 NETw3v32 - ok
06:02:42.0449 1192 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
06:02:42.0449 1192 nfrd960 - ok
06:02:42.0496 1192 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
06:02:42.0496 1192 NisDrv - ok
06:02:42.0668 1192 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
06:02:42.0683 1192 NisSrv - ok
06:02:42.0730 1192 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
06:02:42.0746 1192 NlaSvc - ok
06:02:43.0152 1192 Norton Ghost (d19e2edad48309f31ecb480f2c83ee22) C:\Program Files\Norton Ghost\Agent\VProSvc.exe
06:02:43.0293 1192 Norton Ghost - ok
06:02:43.0449 1192 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
06:02:43.0464 1192 Npfs - ok
06:02:43.0496 1192 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
06:02:43.0496 1192 nsi - ok
06:02:43.0511 1192 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
06:02:43.0511 1192 nsiproxy - ok
06:02:43.0714 1192 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
06:02:43.0746 1192 Ntfs - ok
06:02:43.0777 1192 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
06:02:43.0777 1192 ntrigdigi - ok
06:02:43.0824 1192 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
06:02:43.0824 1192 Null - ok
06:02:43.0855 1192 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
06:02:43.0855 1192 nvraid - ok
06:02:43.0871 1192 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
06:02:43.0886 1192 nvstor - ok
06:02:43.0918 1192 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
06:02:43.0918 1192 nv_agp - ok
06:02:43.0933 1192 NwlnkFlt - ok
06:02:43.0949 1192 NwlnkFwd - ok
06:02:44.0621 1192 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:02:44.0652 1192 odserv - ok
06:02:44.0683 1192 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
06:02:44.0699 1192 ohci1394 - ok
06:02:44.0730 1192 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:02:44.0746 1192 ose - ok
06:02:45.0605 1192 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
06:02:45.0636 1192 p2pimsvc - ok
06:02:45.0652 1192 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
06:02:45.0652 1192 p2psvc - ok
06:02:45.0699 1192 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\DRIVERS\parport.sys
06:02:45.0699 1192 Parport - ok
06:02:45.0746 1192 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
06:02:45.0746 1192 partmgr - ok
06:02:45.0761 1192 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\DRIVERS\parvdm.sys
06:02:45.0761 1192 Parvdm - ok
06:02:45.0793 1192 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
06:02:45.0793 1192 PcaSvc - ok
06:02:45.0824 1192 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
06:02:45.0839 1192 pci - ok
06:02:45.0871 1192 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
06:02:45.0871 1192 pciide - ok
06:02:45.0902 1192 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
06:02:45.0918 1192 pcmcia - ok
06:02:46.0089 1192 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
06:02:46.0121 1192 PEAUTH - ok
06:02:47.0105 1192 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
06:02:47.0183 1192 pla - ok
06:02:47.0949 1192 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
06:02:47.0980 1192 PlugPlay - ok
06:02:48.0011 1192 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
06:02:48.0011 1192 Pml Driver HPZ12 - ok
06:02:48.0105 1192 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
06:02:48.0105 1192 PNRPAutoReg - ok
06:02:48.0121 1192 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
06:02:48.0121 1192 PNRPsvc - ok
06:02:48.0574 1192 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
06:02:48.0621 1192 PolicyAgent - ok
06:02:48.0683 1192 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
06:02:48.0683 1192 PptpMiniport - ok
06:02:48.0714 1192 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
06:02:48.0714 1192 Processor - ok
06:02:48.0793 1192 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
06:02:48.0793 1192 ProfSvc - ok
06:02:48.0824 1192 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
06:02:48.0824 1192 ProtectedStorage - ok
06:02:48.0949 1192 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
06:02:48.0949 1192 PSched - ok
06:02:49.0058 1192 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
06:02:49.0105 1192 ql2300 - ok
06:02:49.0152 1192 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
06:02:49.0168 1192 ql40xx - ok
06:02:49.0214 1192 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
06:02:49.0214 1192 QWAVE - ok
06:02:49.0246 1192 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
06:02:49.0246 1192 QWAVEdrv - ok
06:02:49.0277 1192 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
06:02:49.0277 1192 RasAcd - ok
06:02:49.0308 1192 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
06:02:49.0324 1192 RasAuto - ok
06:02:49.0371 1192 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
06:02:49.0371 1192 Rasl2tp - ok
06:02:49.0433 1192 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
06:02:49.0449 1192 RasMan - ok
06:02:49.0464 1192 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
06:02:49.0464 1192 RasPppoe - ok
06:02:49.0496 1192 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
06:02:49.0496 1192 RasSstp - ok
06:02:49.0621 1192 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
06:02:49.0636 1192 rdbss - ok
06:02:49.0652 1192 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
06:02:49.0652 1192 RDPCDD - ok
06:02:49.0918 1192 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
06:02:49.0949 1192 rdpdr - ok
06:02:49.0980 1192 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
06:02:49.0980 1192 RDPENCDD - ok
06:02:50.0027 1192 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
06:02:50.0027 1192 RDPWD - ok
06:02:50.0074 1192 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
06:02:50.0074 1192 RemoteAccess - ok
06:02:50.0121 1192 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
06:02:50.0121 1192 RemoteRegistry - ok
06:02:50.0136 1192 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
06:02:50.0152 1192 RpcLocator - ok
06:02:50.0246 1192 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
06:02:50.0246 1192 RpcSs - ok
06:02:50.0371 1192 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
06:02:50.0371 1192 rspndr - ok
06:02:50.0402 1192 RTL8023xp (f7a8c9024e82534cec50613d87e88645) C:\Windows\system32\DRIVERS\Rtnicxp.sys
06:02:50.0418 1192 RTL8023xp - ok
06:02:50.0449 1192 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
06:02:50.0449 1192 SamSs - ok
06:02:50.0605 1192 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
06:02:50.0621 1192 sbp2port - ok
06:02:50.0668 1192 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
06:02:50.0668 1192 SCardSvr - ok
06:02:51.0058 1192 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
06:02:51.0089 1192 Schedule - ok
06:02:51.0121 1192 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
06:02:51.0121 1192 SCPolicySvc - ok
06:02:51.0168 1192 sdbus (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
06:02:51.0168 1192 sdbus - ok
06:02:51.0214 1192 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
06:02:51.0214 1192 SDRSVC - ok
06:02:51.0246 1192 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
06:02:51.0246 1192 secdrv - ok
06:02:51.0277 1192 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
06:02:51.0277 1192 seclogon - ok
06:02:51.0293 1192 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
06:02:51.0293 1192 SENS - ok
06:02:51.0324 1192 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
06:02:51.0324 1192 Serenum - ok
06:02:51.0355 1192 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
06:02:51.0371 1192 Serial - ok
06:02:51.0386 1192 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
06:02:51.0402 1192 sermouse - ok
06:02:51.0464 1192 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
06:02:51.0480 1192 SessionEnv - ok
06:02:51.0511 1192 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
06:02:51.0511 1192 sffdisk - ok
06:02:51.0543 1192 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
06:02:51.0543 1192 sffp_mmc - ok
06:02:51.0605 1192 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
06:02:51.0605 1192 sffp_sd - ok
06:02:51.0636 1192 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
06:02:51.0636 1192 sfloppy - ok
06:02:51.0683 1192 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
06:02:51.0699 1192 SharedAccess - ok
06:02:51.0824 1192 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
06:02:51.0839 1192 ShellHWDetection - ok
06:02:51.0871 1192 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
06:02:51.0871 1192 sisagp - ok
06:02:51.0902 1192 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
06:02:51.0902 1192 SiSRaid2 - ok
06:02:51.0949 1192 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
06:02:51.0949 1192 SiSRaid4 - ok
06:02:52.0293 1192 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
06:02:52.0449 1192 slsvc - ok
06:02:52.0652 1192 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
06:02:52.0652 1192 SLUINotify - ok
06:02:52.0699 1192 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
06:02:52.0699 1192 Smb - ok
06:02:52.0839 1192 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys
06:02:52.0871 1192 smserial - ok
06:02:52.0933 1192 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
06:02:52.0933 1192 SNMPTRAP - ok
06:02:52.0964 1192 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
06:02:52.0964 1192 spldr - ok
06:02:53.0011 1192 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
06:02:53.0011 1192 Spooler - ok
06:02:53.0074 1192 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
06:02:53.0089 1192 srv - ok
06:02:53.0136 1192 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
06:02:53.0136 1192 srv2 - ok
06:02:53.0183 1192 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
06:02:53.0183 1192 srvnet - ok
06:02:53.0230 1192 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
06:02:53.0246 1192 SSDPSRV - ok
06:02:53.0293 1192 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
06:02:53.0293 1192 SstpSvc - ok
06:02:53.0355 1192 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
06:02:53.0386 1192 stisvc - ok
06:02:53.0418 1192 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
06:02:53.0418 1192 swenum - ok
06:02:53.0464 1192 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
06:02:53.0480 1192 swprv - ok
06:02:53.0511 1192 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
06:02:53.0511 1192 Symc8xx - ok
06:02:53.0621 1192 symsnap (4b016fa3594b04506b9246d8e3eb0b66) C:\Windows\system32\DRIVERS\symsnap.sys
06:02:53.0621 1192 symsnap - ok
06:02:53.0652 1192 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
06:02:53.0652 1192 Sym_hi - ok
06:02:53.0683 1192 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
06:02:53.0683 1192 Sym_u3 - ok
06:02:53.0761 1192 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
06:02:53.0777 1192 SysMain - ok
06:02:53.0824 1192 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
06:02:53.0824 1192 TabletInputService - ok
06:02:53.0871 1192 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
06:02:53.0886 1192 TapiSrv - ok
06:02:53.0918 1192 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
06:02:53.0918 1192 TBS - ok
06:02:54.0027 1192 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
06:02:54.0074 1192 Tcpip - ok
06:02:54.0089 1192 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
06:02:54.0105 1192 Tcpip6 - ok
06:02:54.0168 1192 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
06:02:54.0183 1192 tcpipreg - ok
06:02:54.0214 1192 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
06:02:54.0214 1192 TDPIPE - ok
06:02:54.0246 1192 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
06:02:54.0246 1192 TDTCP - ok
06:02:54.0277 1192 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
06:02:54.0277 1192 tdx - ok
06:02:54.0308 1192 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
06:02:54.0308 1192 TermDD - ok
06:02:54.0824 1192 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
06:02:54.0855 1192 TermService - ok
06:02:54.0902 1192 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
06:02:54.0902 1192 Themes - ok
06:02:55.0027 1192 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
06:02:55.0027 1192 THREADORDER - ok
06:02:55.0074 1192 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
06:02:55.0074 1192 TrkWks - ok
06:02:55.0121 1192 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
06:02:55.0121 1192 TrustedInstaller - ok
06:02:55.0214 1192 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
06:02:55.0214 1192 tssecsrv - ok
06:02:55.0246 1192 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
06:02:55.0261 1192 tunmp - ok
06:02:55.0293 1192 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
06:02:55.0293 1192 tunnel - ok
06:02:55.0449 1192 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
06:02:55.0464 1192 uagp35 - ok
06:02:55.0496 1192 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
06:02:55.0511 1192 udfs - ok
06:02:55.0605 1192 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
06:02:55.0605 1192 UI0Detect - ok
06:02:55.0636 1192 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
06:02:55.0636 1192 uliagpkx - ok
06:02:55.0683 1192 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
06:02:55.0699 1192 uliahci - ok
06:02:55.0730 1192 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
06:02:55.0730 1192 UlSata - ok
06:02:55.0777 1192 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
06:02:55.0777 1192 ulsata2 - ok
06:02:55.0808 1192 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
06:02:55.0808 1192 umbus - ok
06:02:55.0886 1192 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
06:02:55.0902 1192 upnphost - ok
06:02:55.0933 1192 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
06:02:55.0949 1192 usbccgp - ok
06:02:55.0980 1192 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
06:02:55.0980 1192 usbcir - ok
06:02:56.0043 1192 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
06:02:56.0043 1192 usbehci - ok
06:02:56.0089 1192 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
06:02:56.0089 1192 usbhub - ok
06:02:56.0121 1192 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
06:02:56.0121 1192 usbohci - ok
06:02:56.0152 1192 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
06:02:56.0152 1192 usbprint - ok
06:02:56.0183 1192 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
06:02:56.0199 1192 usbscan - ok
06:02:56.0230 1192 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:02:56.0230 1192 USBSTOR - ok
06:02:56.0261 1192 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
06:02:56.0261 1192 usbuhci - ok
06:02:56.0308 1192 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
06:02:56.0308 1192 UxSms - ok
06:02:56.0339 1192 v2imount (16662738e1ab857fb91ed2d4065440b0) C:\Windows\system32\DRIVERS\v2imount.sys
06:02:56.0339 1192 v2imount - ok
06:02:56.0621 1192 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
06:02:56.0668 1192 vds - ok
06:02:56.0714 1192 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
06:02:56.0714 1192 vga - ok
06:02:56.0777 1192 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
06:02:56.0777 1192 VgaSave - ok
06:02:56.0793 1192 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
06:02:56.0808 1192 viaagp - ok
06:02:56.0839 1192 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
06:02:56.0839 1192 ViaC7 - ok
06:02:56.0855 1192 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
06:02:56.0855 1192 viaide - ok
06:02:56.0886 1192 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
06:02:56.0902 1192 volmgr - ok
06:02:56.0964 1192 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
06:02:56.0980 1192 volmgrx - ok
06:02:57.0027 1192 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
06:02:57.0027 1192 volsnap - ok
06:02:57.0058 1192 VProEventMonitor (e14b7ae35be1e97830d42ec191d0dea2) C:\Windows\system32\DRIVERS\vproeventmonitor.sys
06:02:57.0058 1192 VProEventMonitor - ok
06:02:57.0214 1192 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
06:02:57.0230 1192 vsmraid - ok
06:02:57.0777 1192 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
06:02:57.0855 1192 VSS - ok
06:02:57.0902 1192 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
06:02:57.0918 1192 W32Time - ok
06:02:58.0011 1192 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
06:02:58.0027 1192 WacomPen - ok
06:02:58.0058 1192 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
06:02:58.0058 1192 Wanarp - ok
06:02:58.0058 1192 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
06:02:58.0074 1192 Wanarpv6 - ok
06:02:58.0464 1192 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
06:02:58.0511 1192 wcncsvc - ok
06:02:58.0543 1192 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
06:02:58.0543 1192 WcsPlugInService - ok
06:02:58.0589 1192 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
06:02:58.0589 1192 Wd - ok
06:02:59.0058 1192 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
06:02:59.0089 1192 Wdf01000 - ok
06:02:59.0121 1192 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
06:02:59.0136 1192 WdiServiceHost - ok
06:02:59.0152 1192 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
06:02:59.0152 1192 WdiSystemHost - ok
06:02:59.0371 1192 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
06:02:59.0386 1192 WebClient - ok
06:02:59.0449 1192 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
06:02:59.0449 1192 Wecsvc - ok
06:02:59.0480 1192 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
06:02:59.0496 1192 wercplsupport - ok
06:02:59.0574 1192 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
06:02:59.0589 1192 WerSvc - ok
06:02:59.0636 1192 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
06:02:59.0652 1192 WimFltr - ok
06:03:00.0058 1192 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
06:03:00.0074 1192 WinDefend - ok
06:03:00.0089 1192 WinHttpAutoProxySvc - ok
06:03:00.0433 1192 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
06:03:00.0449 1192 Winmgmt - ok
06:03:00.0652 1192 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
06:03:00.0714 1192 WinRM - ok
06:03:01.0058 1192 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
06:03:01.0089 1192 Wlansvc - ok
06:03:01.0183 1192 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
06:03:01.0183 1192 WmiAcpi - ok
06:03:01.0464 1192 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
06:03:01.0480 1192 wmiApSrv - ok
06:03:02.0058 1192 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
06:03:02.0105 1192 WMPNetworkSvc - ok
06:03:02.0136 1192 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
06:03:02.0152 1192 WPCSvc - ok
06:03:02.0183 1192 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
06:03:02.0183 1192 WPDBusEnum - ok
06:03:02.0339 1192 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
06:03:02.0339 1192 WpdUsb - ok
06:03:03.0074 1192 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
06:03:03.0121 1192 WPFFontCache_v0400 - ok
06:03:03.0199 1192 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
06:03:03.0199 1192 ws2ifsl - ok
06:03:03.0230 1192 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
06:03:03.0230 1192 wscsvc - ok
06:03:03.0246 1192 WSearch - ok
06:03:04.0230 1192 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
06:03:04.0324 1192 wuauserv - ok
06:03:04.0746 1192 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
06:03:04.0761 1192 WUDFRd - ok
06:03:04.0793 1192 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
06:03:04.0808 1192 wudfsvc - ok
06:03:04.0855 1192 MBR (0x1B8) (d0a37b66a9b60f135b25640cb1aa1477) \Device\Harddisk0\DR0
06:03:05.0214 1192 \Device\Harddisk0\DR0 - ok
06:03:05.0230 1192 MBR (0x1B8) (2964a96ae5f7a838979ab49c10bf7ec9) \Device\Harddisk1\DR1
06:03:11.0293 1192 \Device\Harddisk1\DR1 - ok
06:03:11.0324 1192 Boot (0x1200) (bef07fb3c2a9e2512f75387444ab515e) \Device\Harddisk0\DR0\Partition0
06:03:11.0339 1192 \Device\Harddisk0\DR0\Partition0 - ok
06:03:11.0371 1192 Boot (0x1200) (2fc1274c2a0ade7134858621852f2b8f) \Device\Harddisk0\DR0\Partition1
06:03:11.0402 1192 \Device\Harddisk0\DR0\Partition1 - ok
06:03:11.0402 1192 ============================================================
06:03:11.0402 1192 Scan finished
06:03:11.0402 1192 ============================================================
06:03:11.0433 3104 Detected object count: 0
06:03:11.0433 3104 Actual detected object count: 0

Eset scan:

C:\BACKUP\09-07-29 0554PM\Program Files\Fast Browser Search\IE\BHO.dll a variant of Win32/BHO.OCS trojan cleaned by deleting - quarantined
C:\BACKUP\09-07-29 0554PM\Program Files\MyWebSearch\bar\1.bin\M3NTSTBR.JAR Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\BACKUP\09-07-29 0554PM\Program Files\SGPSA\BHO.dll a variant of Win32/BHO.OCS trojan cleaned by deleting - quarantined
C:\Users\LINDA\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\425faee5-3bc6c03d Java/Exploit.CVE-2012-1723.T trojan deleted - quarantined

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:38 PM

Posted 05 August 2012 - 02:18 PM

Ok, is still shutting down?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Steven W

Steven W
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 05 August 2012 - 08:49 PM

I can do a full scan with Essentials, however when i try a scan with Mserts it still shuts down in both reg and safe mode.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:38 PM

Posted 06 August 2012 - 11:18 AM

We need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run (it may not on a 64 bit system) skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Steven W

Steven W
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:38 PM

Posted 06 August 2012 - 01:42 PM

I will start the necessary steps, and THANK you for the help!

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:38 PM

Posted 06 August 2012 - 09:17 PM

You're welcome!

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 5 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users