Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected


  • This topic is locked This topic is locked
11 replies to this topic

#1 KPE

KPE

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 01:15 PM

Hello everyone! Have somewhat of an issue with some malware/spyware. Started last week with website redirection. I found a few things via "Malwarebytes", Avira Antivir in which i thought got most of it. Everything was good for a few days but today computer is very sluggish and i have noticed my taskbar was automatically changed to the "classic" style. I am using XP Pro SP3. I would be greatful if someone could help me get everything cleaned and running smooth again! Thanks and let me know what you need to get going!

Ken

BC AdBot (Login to Remove)

 


#2 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:03:42 AM

Posted 06 August 2012 - 02:08 PM

Hi Ken,

Download TDSSkiller
Run it on the infected PC, click on change parameters and check the box for TDLFS file system.

Click on "Scan". If it finds suspicious objects leave it as Skip. Locate the log generated (should be in your C drive) with a name like this TDSSKiller.Version_Date_Time_log.txt.

Please post the log on your reply.

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#3 KPE

KPE
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 02:35 PM

Here ya go.

15:32:37.0259 4712 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
15:32:37.0649 4712 ============================================================
15:32:37.0649 4712 Current date / time: 2012/08/06 15:32:37.0649
15:32:37.0649 4712 SystemInfo:
15:32:37.0649 4712
15:32:37.0649 4712 OS Version: 5.1.2600 ServicePack: 3.0
15:32:37.0649 4712 Product type: Workstation
15:32:37.0649 4712 ComputerName: WORKSTATION
15:32:37.0649 4712 UserName: kenneth.edwards
15:32:37.0649 4712 Windows directory: C:\WINDOWS
15:32:37.0649 4712 System windows directory: C:\WINDOWS
15:32:37.0649 4712 Processor architecture: Intel x86
15:32:37.0649 4712 Number of processors: 2
15:32:37.0649 4712 Page size: 0x1000
15:32:37.0649 4712 Boot type: Normal boot
15:32:37.0649 4712 ============================================================
15:32:37.0790 4712 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:32:37.0790 4712 Drive \Device\Harddisk1\DR5 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:32:37.0790 4712 ============================================================
15:32:37.0790 4712 \Device\Harddisk0\DR0:
15:32:37.0790 4712 MBR partitions:
15:32:37.0790 4712 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B747, BlocksNum 0x1D189832
15:32:37.0790 4712 \Device\Harddisk1\DR5:
15:32:37.0790 4712 MBR partitions:
15:32:37.0790 4712 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x6, StartLBA 0x63, BlocksNum 0x7A59D
15:32:37.0790 4712 ============================================================
15:32:37.0821 4712 C: <-> \Device\Harddisk0\DR0\Partition0
15:32:37.0821 4712 ============================================================
15:32:37.0821 4712 Initialize success
15:32:37.0821 4712 ============================================================
15:32:51.0555 6836 ============================================================
15:32:51.0555 6836 Scan started
15:32:51.0555 6836 Mode: Manual; TDLFS;
15:32:51.0555 6836 ============================================================
15:32:51.0993 6836 Abiosdsk - ok
15:32:52.0024 6836 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:32:52.0024 6836 abp480n5 - ok
15:32:52.0055 6836 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:32:52.0055 6836 ACPI - ok
15:32:52.0071 6836 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
15:32:52.0071 6836 ACPIEC - ok
15:32:52.0087 6836 ADIHdAudAddService (de25fc7de3a464e455c0d0012757b0ac) C:\WINDOWS\system32\drivers\ADIHdAud.sys
15:32:52.0087 6836 ADIHdAudAddService - ok
15:32:52.0102 6836 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:32:52.0102 6836 adpu160m - ok
15:32:52.0134 6836 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:32:52.0134 6836 aec - ok
15:32:52.0180 6836 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
15:32:52.0180 6836 AFD - ok
15:32:52.0212 6836 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
15:32:52.0212 6836 agp440 - ok
15:32:52.0212 6836 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:32:52.0212 6836 agpCPQ - ok
15:32:52.0227 6836 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:32:52.0243 6836 Aha154x - ok
15:32:52.0243 6836 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:32:52.0243 6836 aic78u2 - ok
15:32:52.0259 6836 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:32:52.0259 6836 aic78xx - ok
15:32:52.0290 6836 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
15:32:52.0290 6836 Alerter - ok
15:32:52.0305 6836 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
15:32:52.0305 6836 ALG - ok
15:32:52.0305 6836 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
15:32:52.0305 6836 AliIde - ok
15:32:52.0321 6836 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:32:52.0321 6836 alim1541 - ok
15:32:52.0321 6836 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:32:52.0321 6836 amdagp - ok
15:32:52.0337 6836 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
15:32:52.0337 6836 amsint - ok
15:32:52.0446 6836 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:32:52.0446 6836 AntiVirSchedulerService - ok
15:32:52.0477 6836 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:32:52.0477 6836 AntiVirService - ok
15:32:52.0524 6836 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
15:32:52.0524 6836 AppMgmt - ok
15:32:52.0540 6836 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
15:32:52.0540 6836 asc - ok
15:32:52.0540 6836 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:32:52.0540 6836 asc3350p - ok
15:32:52.0555 6836 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:32:52.0555 6836 asc3550 - ok
15:32:52.0571 6836 ASFIPmon (6295dd28d0ecbc4e6e450c279fef5ed9) C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
15:32:52.0571 6836 ASFIPmon - ok
15:32:52.0868 6836 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:32:52.0868 6836 aspnet_state - ok
15:32:52.0884 6836 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:32:52.0884 6836 AsyncMac - ok
15:32:52.0899 6836 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:32:52.0899 6836 atapi - ok
15:32:52.0899 6836 Atdisk - ok
15:32:52.0915 6836 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:32:52.0915 6836 Atmarpc - ok
15:32:52.0946 6836 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
15:32:52.0946 6836 AudioSrv - ok
15:32:52.0962 6836 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:32:52.0962 6836 audstub - ok
15:32:53.0087 6836 Autodesk Licensing Service (6b1eee64c8d2c56cacb16b01deebc058) C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
15:32:53.0087 6836 Autodesk Licensing Service - ok
15:32:53.0118 6836 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
15:32:53.0118 6836 avgio - ok
15:32:53.0149 6836 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
15:32:53.0149 6836 avgntflt - ok
15:32:53.0165 6836 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
15:32:53.0165 6836 avipbb - ok
15:32:53.0212 6836 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:32:53.0212 6836 b57w2k - ok
15:32:53.0227 6836 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys
15:32:53.0227 6836 BANTExt - ok
15:32:53.0243 6836 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Program Files\Broadcom\ASFIPMon\BASFND.sys
15:32:53.0243 6836 BASFND - ok
15:32:53.0243 6836 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:32:53.0243 6836 Beep - ok
15:32:53.0290 6836 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
15:32:53.0290 6836 BITS - ok
15:32:53.0337 6836 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
15:32:53.0337 6836 Bonjour Service - ok
15:32:53.0384 6836 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
15:32:53.0384 6836 Browser - ok
15:32:53.0415 6836 C-DillaCdaC11BA (9bdbda21d3ba8e374fd06a405be10215) C:\WINDOWS\system32\drivers\CDAC11BA.EXE
15:32:53.0415 6836 C-DillaCdaC11BA - ok
15:32:53.0665 6836 catchme - ok
15:32:53.0696 6836 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:32:53.0696 6836 cbidf - ok
15:32:53.0696 6836 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:32:53.0696 6836 cbidf2k - ok
15:32:53.0727 6836 CBUSB (e6de3f6a87eaafc3f5c3cc2618d8e5e6) C:\WINDOWS\system32\drivers\CBUSB.sys
15:32:53.0727 6836 CBUSB - ok
15:32:53.0743 6836 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:32:53.0743 6836 cd20xrnt - ok
15:32:53.0743 6836 CdaC15BA (f76cb7259aa575cc53f3996bc6b68c18) C:\WINDOWS\system32\drivers\CDAC15BA.SYS
15:32:53.0743 6836 CdaC15BA - ok
15:32:53.0759 6836 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:32:53.0759 6836 Cdaudio - ok
15:32:53.0790 6836 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:32:53.0790 6836 Cdfs - ok
15:32:53.0821 6836 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:32:53.0821 6836 Cdrom - ok
15:32:53.0821 6836 Changer - ok
15:32:53.0852 6836 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
15:32:53.0852 6836 CiSvc - ok
15:32:53.0868 6836 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
15:32:53.0868 6836 ClipSrv - ok
15:32:53.0962 6836 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:32:53.0962 6836 clr_optimization_v2.0.50727_32 - ok
15:32:54.0212 6836 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:32:54.0212 6836 clr_optimization_v4.0.30319_32 - ok
15:32:54.0227 6836 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:32:54.0227 6836 CmdIde - ok
15:32:54.0227 6836 COMSysApp - ok
15:32:54.0259 6836 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:32:54.0259 6836 Cpqarray - ok
15:32:54.0290 6836 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
15:32:54.0290 6836 CryptSvc - ok
15:32:54.0305 6836 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:32:54.0305 6836 dac2w2k - ok
15:32:54.0321 6836 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:32:54.0321 6836 dac960nt - ok
15:32:54.0368 6836 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
15:32:54.0368 6836 DcomLaunch - ok
15:32:54.0399 6836 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
15:32:54.0399 6836 Dhcp - ok
15:32:54.0430 6836 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:32:54.0430 6836 Disk - ok
15:32:54.0462 6836 DLABMFSM (0659e6e0a95564f958d9df7313f7701e) C:\WINDOWS\system32\DLA\DLABMFSM.SYS
15:32:54.0462 6836 DLABMFSM - ok
15:32:54.0462 6836 DLABOIOM (8691c78908f0bd66170669db268369f2) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
15:32:54.0462 6836 DLABOIOM - ok
15:32:54.0477 6836 DLACDBHM (76167b5eb2dffc729edc36386876b40b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
15:32:54.0477 6836 DLACDBHM - ok
15:32:54.0477 6836 DLADResM (5615744a1056933b90e6ac54feb86f35) C:\WINDOWS\system32\DLA\DLADResM.SYS
15:32:54.0477 6836 DLADResM - ok
15:32:54.0493 6836 DLAIFS_M (1aeca2afa5005ce4a550cf8eb55a8c88) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
15:32:54.0493 6836 DLAIFS_M - ok
15:32:54.0493 6836 DLAOPIOM (840e7f6abb885c72b9ffddb022ef5b6d) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
15:32:54.0493 6836 DLAOPIOM - ok
15:32:54.0509 6836 DLAPoolM (0294d18731ac05da80132ce88f8a876b) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
15:32:54.0509 6836 DLAPoolM - ok
15:32:54.0540 6836 DLARTL_M (91886fed52a3f9966207bce46cfd794f) C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
15:32:54.0540 6836 DLARTL_M - ok
15:32:54.0555 6836 DLAUDFAM (cca4e121d599d7d1706a30f603731e59) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
15:32:54.0555 6836 DLAUDFAM - ok
15:32:54.0555 6836 DLAUDF_M (7dab85c33135df24419951da4e7d38e5) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
15:32:54.0555 6836 DLAUDF_M - ok
15:32:54.0555 6836 dmadmin - ok
15:32:54.0634 6836 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
15:32:54.0634 6836 dmboot - ok
15:32:54.0649 6836 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
15:32:54.0649 6836 dmio - ok
15:32:54.0665 6836 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:32:54.0665 6836 dmload - ok
15:32:54.0696 6836 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
15:32:54.0696 6836 dmserver - ok
15:32:54.0712 6836 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:32:54.0712 6836 DMusic - ok
15:32:54.0712 6836 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll
15:32:54.0712 6836 Dnscache - ok
15:32:54.0759 6836 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
15:32:54.0759 6836 Dot3svc - ok
15:32:54.0774 6836 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:32:54.0774 6836 dpti2o - ok
15:32:54.0805 6836 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:32:54.0805 6836 drmkaud - ok
15:32:54.0821 6836 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
15:32:54.0821 6836 DRVMCDB - ok
15:32:54.0852 6836 DRVNDDM (6e6ab29d3c06e64ce81feacda85394b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
15:32:54.0852 6836 DRVNDDM - ok
15:32:54.0930 6836 DynDNS Updater (2ea0df303216e711eff4dc6b11e469e0) C:\Program Files\DynDNS Updater\DynUpSvc.exe
15:32:54.0930 6836 DynDNS Updater - ok
15:32:54.0962 6836 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
15:32:54.0962 6836 E100B - ok
15:32:54.0993 6836 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
15:32:54.0993 6836 EapHost - ok
15:32:55.0024 6836 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
15:32:55.0024 6836 ERSvc - ok
15:32:55.0055 6836 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
15:32:55.0055 6836 Eventlog - ok
15:32:55.0087 6836 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
15:32:55.0087 6836 EventSystem - ok
15:32:55.0118 6836 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:32:55.0118 6836 Fastfat - ok
15:32:55.0134 6836 FastUserSwitchingCompatibility (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
15:32:55.0134 6836 FastUserSwitchingCompatibility - ok
15:32:55.0149 6836 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
15:32:55.0149 6836 Fax - ok
15:32:55.0180 6836 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
15:32:55.0180 6836 Fdc - ok
15:32:55.0212 6836 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
15:32:55.0212 6836 Fips - ok
15:32:55.0290 6836 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:32:55.0290 6836 FLEXnet Licensing Service - ok
15:32:55.0305 6836 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:32:55.0305 6836 Flpydisk - ok
15:32:55.0337 6836 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
15:32:55.0337 6836 FltMgr - ok
15:32:55.0462 6836 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:32:55.0462 6836 FontCache3.0.0.0 - ok
15:32:55.0493 6836 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:32:55.0493 6836 Fs_Rec - ok
15:32:55.0524 6836 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:32:55.0524 6836 Ftdisk - ok
15:32:55.0555 6836 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:32:55.0555 6836 Gpc - ok
15:32:55.0618 6836 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
15:32:55.0618 6836 gupdate - ok
15:32:55.0618 6836 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
15:32:55.0618 6836 gupdatem - ok
15:32:55.0649 6836 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
15:32:55.0649 6836 hamachi - ok
15:32:55.0727 6836 Hamachi2Svc (2a4713ad248723d0820dcbb927e6c881) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
15:32:55.0743 6836 Hamachi2Svc - ok
15:32:55.0759 6836 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:32:55.0759 6836 HDAudBus - ok
15:32:55.0805 6836 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:32:55.0805 6836 helpsvc - ok
15:32:55.0805 6836 HidServ - ok
15:32:55.0868 6836 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:32:55.0868 6836 HidUsb - ok
15:32:56.0009 6836 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
15:32:56.0009 6836 hkmsvc - ok
15:32:56.0024 6836 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
15:32:56.0024 6836 hpn - ok
15:32:56.0071 6836 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
15:32:56.0071 6836 HTTP - ok
15:32:56.0102 6836 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
15:32:56.0102 6836 HTTPFilter - ok
15:32:56.0118 6836 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
15:32:56.0118 6836 i2omgmt - ok
15:32:56.0134 6836 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:32:56.0134 6836 i2omp - ok
15:32:56.0149 6836 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:32:56.0149 6836 i8042prt - ok
15:32:56.0243 6836 IAANTMON (6ac8ac8e3b413fa1ee8256e65fe0ba72) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
15:32:56.0243 6836 IAANTMON - ok
15:32:56.0274 6836 iaStor (bdc361489a7f22e568060fa6fb3c960e) C:\WINDOWS\system32\drivers\iaStor.sys
15:32:56.0274 6836 iaStor - ok
15:32:56.0337 6836 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:32:56.0337 6836 IDriverT - ok
15:32:56.0493 6836 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:32:56.0493 6836 idsvc - ok
15:32:56.0665 6836 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:32:56.0665 6836 Imapi - ok
15:32:56.0696 6836 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
15:32:56.0696 6836 ImapiService - ok
15:32:56.0727 6836 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:32:56.0727 6836 ini910u - ok
15:32:56.0743 6836 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
15:32:56.0743 6836 IntelIde - ok
15:32:56.0759 6836 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:32:56.0759 6836 intelppm - ok
15:32:56.0790 6836 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
15:32:56.0790 6836 Ip6Fw - ok
15:32:56.0821 6836 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:32:56.0821 6836 IpFilterDriver - ok
15:32:56.0821 6836 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:32:56.0821 6836 IpInIp - ok
15:32:56.0837 6836 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:32:56.0837 6836 IpNat - ok
15:32:56.0852 6836 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:32:56.0852 6836 IPSec - ok
15:32:56.0852 6836 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:32:56.0852 6836 IRENUM - ok
15:32:56.0868 6836 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:32:56.0868 6836 isapnp - ok
15:32:56.0977 6836 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
15:32:56.0977 6836 JavaQuickStarterService - ok
15:32:57.0009 6836 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:32:57.0009 6836 Kbdclass - ok
15:32:57.0024 6836 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:32:57.0024 6836 kbdhid - ok
15:32:57.0055 6836 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:32:57.0055 6836 kmixer - ok
15:32:57.0071 6836 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:32:57.0071 6836 KSecDD - ok
15:32:57.0087 6836 lanmanserver (f385f4b02c535bffe1d70cab80838123) C:\WINDOWS\System32\srvsvc.dll
15:32:57.0087 6836 lanmanserver - ok
15:32:57.0118 6836 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
15:32:57.0134 6836 lanmanworkstation - ok
15:32:57.0134 6836 Lbd - ok
15:32:57.0134 6836 lbrtfdc - ok
15:32:57.0180 6836 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
15:32:57.0180 6836 LmHosts - ok
15:32:57.0290 6836 LMIGuardianSvc (63daf163d1617dd611bd0ab8e41a43e8) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
15:32:57.0290 6836 LMIGuardianSvc - ok
15:32:57.0321 6836 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
15:32:57.0321 6836 LMIInfo - ok
15:32:57.0352 6836 LMIMaint (175f50f37eeaa1d4d744bcccbb7cf68c) C:\Program Files\LogMeIn\x86\RaMaint.exe
15:32:57.0352 6836 LMIMaint - ok
15:32:57.0384 6836 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
15:32:57.0384 6836 lmimirr - ok
15:32:57.0384 6836 LMIRfsClientNP - ok
15:32:57.0446 6836 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
15:32:57.0446 6836 LMIRfsDriver - ok
15:32:57.0493 6836 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
15:32:57.0493 6836 LogMeIn - ok
15:32:57.0696 6836 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
15:32:57.0696 6836 MDM - ok
15:32:57.0727 6836 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
15:32:57.0727 6836 Messenger - ok
15:32:57.0743 6836 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:32:57.0743 6836 mnmdd - ok
15:32:57.0774 6836 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
15:32:57.0774 6836 mnmsrvc - ok
15:32:57.0790 6836 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
15:32:57.0790 6836 Modem - ok
15:32:57.0821 6836 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:32:57.0821 6836 Mouclass - ok
15:32:57.0837 6836 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:32:57.0837 6836 mouhid - ok
15:32:57.0852 6836 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:32:57.0852 6836 MountMgr - ok
15:32:57.0868 6836 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:32:57.0868 6836 mraid35x - ok
15:32:57.0899 6836 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:32:57.0899 6836 MRxDAV - ok
15:32:57.0930 6836 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:32:57.0930 6836 MRxSmb - ok
15:32:57.0962 6836 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
15:32:57.0962 6836 MSDTC - ok
15:32:57.0977 6836 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:32:57.0977 6836 Msfs - ok
15:32:57.0977 6836 MSIServer - ok
15:32:58.0009 6836 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:32:58.0009 6836 MSKSSRV - ok
15:32:58.0024 6836 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:32:58.0024 6836 MSPCLOCK - ok
15:32:58.0024 6836 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:32:58.0024 6836 MSPQM - ok
15:32:58.0055 6836 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:32:58.0055 6836 mssmbios - ok
15:32:58.0071 6836 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
15:32:58.0071 6836 Mup - ok
15:32:58.0102 6836 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
15:32:58.0102 6836 napagent - ok
15:32:58.0149 6836 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:32:58.0149 6836 NDIS - ok
15:32:58.0165 6836 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:32:58.0165 6836 NdisTapi - ok
15:32:58.0165 6836 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:32:58.0165 6836 Ndisuio - ok
15:32:58.0180 6836 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:32:58.0180 6836 NdisWan - ok
15:32:58.0196 6836 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
15:32:58.0196 6836 NDProxy - ok
15:32:58.0196 6836 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:32:58.0196 6836 NetBIOS - ok
15:32:58.0243 6836 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:32:58.0243 6836 NetBT - ok
15:32:58.0259 6836 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
15:32:58.0259 6836 NetDDE - ok
15:32:58.0274 6836 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
15:32:58.0274 6836 NetDDEdsdm - ok
15:32:58.0305 6836 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
15:32:58.0305 6836 Netlogon - ok
15:32:58.0321 6836 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
15:32:58.0321 6836 Netman - ok
15:32:58.0649 6836 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:32:58.0665 6836 NetTcpPortSharing - ok
15:32:58.0696 6836 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll
15:32:58.0696 6836 Nla - ok
15:32:58.0727 6836 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:32:58.0727 6836 Npfs - ok
15:32:58.0727 6836 npggsvc - ok
15:32:58.0790 6836 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:32:58.0790 6836 Ntfs - ok
15:32:58.0790 6836 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
15:32:58.0790 6836 NtLmSsp - ok
15:32:58.0852 6836 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
15:32:58.0852 6836 NtmsSvc - ok
15:32:58.0884 6836 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:32:58.0884 6836 Null - ok
15:32:59.0149 6836 nv (5a6469d861970151e687fb76e10bbb3a) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:32:59.0180 6836 nv - ok
15:32:59.0368 6836 NVSvc (e170979ebdd54b80695d4c994797cb0f) C:\WINDOWS\system32\nvsvc32.exe
15:32:59.0368 6836 NVSvc - ok
15:32:59.0415 6836 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:32:59.0415 6836 NwlnkFlt - ok
15:32:59.0415 6836 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:32:59.0415 6836 NwlnkFwd - ok
15:32:59.0540 6836 odserv (e54aa592a65f317390eee386a8821692) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:59.0540 6836 odserv - ok
15:32:59.0571 6836 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:59.0571 6836 ose - ok
15:32:59.0602 6836 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
15:32:59.0602 6836 Parport - ok
15:32:59.0618 6836 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:32:59.0618 6836 PartMgr - ok
15:32:59.0634 6836 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
15:32:59.0634 6836 ParVdm - ok
15:32:59.0665 6836 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
15:32:59.0665 6836 PCI - ok
15:32:59.0665 6836 PCIDump - ok
15:32:59.0696 6836 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:32:59.0696 6836 PCIIde - ok
15:32:59.0712 6836 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
15:32:59.0712 6836 Pcmcia - ok
15:32:59.0712 6836 PDCOMP - ok
15:32:59.0712 6836 PDFRAME - ok
15:32:59.0727 6836 PDRELI - ok
15:32:59.0727 6836 PDRFRAME - ok
15:32:59.0759 6836 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
15:32:59.0759 6836 perc2 - ok
15:32:59.0759 6836 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:32:59.0759 6836 perc2hib - ok
15:32:59.0805 6836 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
15:32:59.0805 6836 PlugPlay - ok
15:33:00.0024 6836 PMBDeviceInfoProvider (63694c307273062a2167ae4ce80730ef) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
15:33:00.0024 6836 PMBDeviceInfoProvider - ok
15:33:00.0055 6836 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
15:33:00.0055 6836 PolicyAgent - ok
15:33:00.0087 6836 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:33:00.0087 6836 PptpMiniport - ok
15:33:00.0087 6836 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
15:33:00.0102 6836 ProtectedStorage - ok
15:33:00.0118 6836 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:33:00.0118 6836 PSched - ok
15:33:00.0134 6836 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:33:00.0134 6836 Ptilink - ok
15:33:00.0149 6836 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:33:00.0149 6836 PxHelp20 - ok
15:33:00.0165 6836 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:33:00.0165 6836 ql1080 - ok
15:33:00.0180 6836 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:33:00.0180 6836 Ql10wnt - ok
15:33:00.0196 6836 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:33:00.0196 6836 ql12160 - ok
15:33:00.0196 6836 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:33:00.0196 6836 ql1240 - ok
15:33:00.0212 6836 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:33:00.0212 6836 ql1280 - ok
15:33:00.0227 6836 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:33:00.0227 6836 RasAcd - ok
15:33:00.0259 6836 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
15:33:00.0274 6836 RasAuto - ok
15:33:00.0274 6836 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:33:00.0274 6836 Rasl2tp - ok
15:33:00.0305 6836 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
15:33:00.0305 6836 RasMan - ok
15:33:00.0305 6836 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:33:00.0305 6836 RasPppoe - ok
15:33:00.0337 6836 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:33:00.0337 6836 Raspti - ok
15:33:00.0352 6836 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:33:00.0352 6836 Rdbss - ok
15:33:00.0352 6836 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:33:00.0352 6836 RDPCDD - ok
15:33:00.0384 6836 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:33:00.0384 6836 rdpdr - ok
15:33:00.0415 6836 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
15:33:00.0415 6836 RDSessMgr - ok
15:33:00.0430 6836 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:33:00.0430 6836 redbook - ok
15:33:00.0462 6836 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
15:33:00.0462 6836 RemoteAccess - ok
15:33:00.0493 6836 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
15:33:00.0493 6836 RemoteRegistry - ok
15:33:00.0524 6836 RimUsb (f17713d108aca124a139fde877eef68a) C:\WINDOWS\system32\Drivers\RimUsb.sys
15:33:00.0524 6836 RimUsb - ok
15:33:00.0555 6836 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
15:33:00.0555 6836 RimVSerPort - ok
15:33:00.0571 6836 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
15:33:00.0571 6836 ROOTMODEM - ok
15:33:00.0665 6836 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
15:33:00.0665 6836 Roxio UPnP Renderer 9 - ok
15:33:00.0680 6836 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
15:33:00.0696 6836 Roxio Upnp Server 9 - ok
15:33:00.0790 6836 RoxLiveShare9 (e06224cf971d33a680e852dfa212a8ab) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
15:33:00.0790 6836 RoxLiveShare9 - ok
15:33:00.0852 6836 RoxMediaDB9 (fb68fd9505ab89416d70a0e8a5c49e45) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
15:33:00.0852 6836 RoxMediaDB9 - ok
15:33:00.0899 6836 RoxWatch9 (d6bdb50d2a28ff70ce60b4d995f0143a) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
15:33:00.0899 6836 RoxWatch9 - ok
15:33:01.0071 6836 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
15:33:01.0071 6836 RpcLocator - ok
15:33:01.0118 6836 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
15:33:01.0118 6836 RpcSs - ok
15:33:01.0165 6836 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
15:33:01.0165 6836 RSVP - ok
15:33:01.0196 6836 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
15:33:01.0196 6836 SamSs - ok
15:33:01.0243 6836 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:33:01.0243 6836 SASDIFSV - ok
15:33:01.0274 6836 SASENUM (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
15:33:01.0274 6836 SASENUM - ok
15:33:01.0290 6836 SASKUTIL (67d2688756dd304af655349baad82bff) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:33:01.0290 6836 SASKUTIL - ok
15:33:01.0321 6836 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
15:33:01.0321 6836 SCardSvr - ok
15:33:01.0384 6836 SCDEmu (e9bbd87afd80dc1212ecd762858b45c7) C:\WINDOWS\system32\drivers\SCDEmu.sys
15:33:01.0384 6836 SCDEmu - ok
15:33:01.0399 6836 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
15:33:01.0415 6836 Schedule - ok
15:33:01.0430 6836 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:33:01.0430 6836 Secdrv - ok
15:33:01.0477 6836 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
15:33:01.0477 6836 seclogon - ok
15:33:01.0509 6836 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
15:33:01.0509 6836 SenFiltService - ok
15:33:01.0524 6836 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
15:33:01.0524 6836 SENS - ok
15:33:01.0555 6836 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
15:33:01.0555 6836 serenum - ok
15:33:01.0571 6836 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
15:33:01.0571 6836 Serial - ok
15:33:01.0587 6836 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
15:33:01.0587 6836 Sfloppy - ok
15:33:01.0634 6836 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
15:33:01.0634 6836 SharedAccess - ok
15:33:01.0649 6836 ShellHWDetection (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
15:33:01.0649 6836 ShellHWDetection - ok
15:33:01.0649 6836 Simbad - ok
15:33:01.0680 6836 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:33:01.0680 6836 sisagp - ok
15:33:01.0774 6836 Slacker Portable Service (0ef733f5e0b68037d171bf9a96de0bc9) C:\Program Files\Slacker\USB Station Refresher\slacker.portable.service.exe
15:33:01.0774 6836 Slacker Portable Service - ok
15:33:01.0821 6836 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:33:01.0821 6836 Sparrow - ok
15:33:01.0821 6836 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:33:01.0821 6836 splitter - ok
15:33:01.0852 6836 Spooler (d8e14a61acc1d4a6cd0d38aebac7fa3b) C:\WINDOWS\system32\spoolsv.exe
15:33:01.0852 6836 Spooler - ok
15:33:01.0884 6836 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
15:33:01.0884 6836 sr - ok
15:33:01.0915 6836 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
15:33:01.0915 6836 srservice - ok
15:33:01.0962 6836 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
15:33:01.0962 6836 Srv - ok
15:33:02.0009 6836 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
15:33:02.0009 6836 SSDPSRV - ok
15:33:02.0024 6836 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
15:33:02.0024 6836 ssmdrv - ok
15:33:02.0071 6836 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
15:33:02.0071 6836 stisvc - ok
15:33:02.0165 6836 stllssvr (51778fd315c9882f1cbd932743e62a72) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
15:33:02.0165 6836 stllssvr - ok
15:33:02.0274 6836 Stuffit Archive Name Service (1db60cb3e53e2491d5d6c43c06676ca2) C:\Program Files\Smith Micro\StuffIt 2010\ArcNameService.exe
15:33:02.0290 6836 Stuffit Archive Name Service - ok
15:33:02.0415 6836 SupportSoft RemoteAssist (2e5586392cdfbd1d73badb20e9ed6386) C:\Program Files\Common Files\supportsoft\bin\ssrc.exe
15:33:02.0415 6836 SupportSoft RemoteAssist - ok
15:33:02.0665 6836 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:33:02.0665 6836 swenum - ok
15:33:02.0712 6836 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:33:02.0712 6836 swmidi - ok
15:33:02.0727 6836 SwPrv - ok
15:33:02.0774 6836 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
15:33:02.0774 6836 symc810 - ok
15:33:02.0805 6836 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:33:02.0805 6836 symc8xx - ok
15:33:02.0837 6836 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:33:02.0837 6836 sym_hi - ok
15:33:02.0868 6836 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:33:02.0868 6836 sym_u3 - ok
15:33:02.0884 6836 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:33:02.0884 6836 sysaudio - ok
15:33:02.0915 6836 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
15:33:02.0915 6836 SysmonLog - ok
15:33:02.0930 6836 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
15:33:02.0930 6836 TapiSrv - ok
15:33:02.0962 6836 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:33:02.0977 6836 Tcpip - ok
15:33:02.0993 6836 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:33:02.0993 6836 TDPIPE - ok
15:33:03.0009 6836 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:33:03.0009 6836 TermDD - ok
15:33:03.0040 6836 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
15:33:03.0040 6836 TermService - ok
15:33:03.0087 6836 Themes (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
15:33:03.0087 6836 Themes - ok
15:33:03.0149 6836 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
15:33:03.0149 6836 TlntSvr - ok
15:33:03.0180 6836 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
15:33:03.0180 6836 TosIde - ok
15:33:03.0196 6836 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
15:33:03.0196 6836 TrkWks - ok
15:33:03.0337 6836 tvnserver (711561440fdc396cb6e4c69c13375a38) C:\Program Files\TightVNC\tvnserver.exe
15:33:03.0352 6836 tvnserver - ok
15:33:03.0368 6836 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:33:03.0368 6836 Udfs - ok
15:33:03.0384 6836 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
15:33:03.0384 6836 ultra - ok
15:33:03.0430 6836 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:33:03.0430 6836 Update - ok
15:33:03.0477 6836 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
15:33:03.0493 6836 upnphost - ok
15:33:03.0509 6836 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
15:33:03.0509 6836 UPS - ok
15:33:03.0524 6836 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:33:03.0524 6836 usbccgp - ok
15:33:03.0571 6836 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:33:03.0571 6836 usbehci - ok
15:33:03.0587 6836 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:33:03.0587 6836 usbhub - ok
15:33:03.0602 6836 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:33:03.0602 6836 usbprint - ok
15:33:03.0634 6836 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:33:03.0634 6836 usbscan - ok
15:33:03.0649 6836 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:33:03.0649 6836 USBSTOR - ok
15:33:03.0649 6836 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:33:03.0649 6836 usbuhci - ok
15:33:03.0665 6836 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:33:03.0665 6836 VgaSave - ok
15:33:03.0696 6836 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:33:03.0696 6836 viaagp - ok
15:33:03.0712 6836 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
15:33:03.0712 6836 ViaIde - ok
15:33:03.0712 6836 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
15:33:03.0712 6836 VolSnap - ok
15:33:03.0743 6836 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
15:33:03.0759 6836 VSS - ok
15:33:03.0774 6836 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
15:33:03.0774 6836 w32time - ok
15:33:03.0790 6836 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:33:03.0790 6836 Wanarp - ok
15:33:03.0790 6836 WDICA - ok
15:33:03.0805 6836 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:33:03.0805 6836 wdmaud - ok
15:33:03.0821 6836 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
15:33:03.0821 6836 WebClient - ok
15:33:03.0868 6836 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
15:33:03.0868 6836 winmgmt - ok
15:33:03.0899 6836 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
15:33:03.0899 6836 WmdmPmSN - ok
15:33:03.0946 6836 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
15:33:03.0946 6836 Wmi - ok
15:33:03.0977 6836 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:33:03.0977 6836 WmiApSrv - ok
15:33:04.0071 6836 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
15:33:04.0087 6836 WMPNetworkSvc - ok
15:33:04.0134 6836 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:33:04.0134 6836 WpdUsb - ok
15:33:04.0509 6836 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:33:04.0509 6836 WPFFontCache_v0400 - ok
15:33:04.0555 6836 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:33:04.0555 6836 WS2IFSL - ok
15:33:04.0587 6836 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
15:33:04.0587 6836 wscsvc - ok
15:33:04.0602 6836 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
15:33:04.0602 6836 wuauserv - ok
15:33:04.0634 6836 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:33:04.0634 6836 WudfPf - ok
15:33:04.0665 6836 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:33:04.0665 6836 WudfRd - ok
15:33:04.0680 6836 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
15:33:04.0680 6836 WudfSvc - ok
15:33:04.0774 6836 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
15:33:04.0774 6836 WysePocketCloud - ok
15:33:04.0805 6836 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
15:33:04.0821 6836 WZCSVC - ok
15:33:04.0837 6836 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
15:33:04.0837 6836 xmlprov - ok
15:33:04.0868 6836 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
15:33:04.0899 6836 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
15:33:04.0899 6836 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
15:33:04.0915 6836 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:33:04.0915 6836 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:33:04.0915 6836 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR5
15:33:05.0009 6836 \Device\Harddisk1\DR5 - ok
15:33:05.0040 6836 Boot (0x1200) (7bc6218694f15c764205d4a2138f859c) \Device\Harddisk0\DR0\Partition0
15:33:05.0040 6836 \Device\Harddisk0\DR0\Partition0 - ok
15:33:05.0040 6836 Boot (0x1200) (b8acc5f45f61c5a8b1f7a8f50116f915) \Device\Harddisk1\DR5\Partition0
15:33:05.0040 6836 \Device\Harddisk1\DR5\Partition0 - ok
15:33:05.0040 6836 ============================================================
15:33:05.0040 6836 Scan finished
15:33:05.0040 6836 ============================================================
15:33:05.0040 1452 Detected object count: 2
15:33:05.0040 1452 Actual detected object count: 2
15:33:46.0149 1452 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user
15:33:46.0149 1452 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
15:33:46.0149 1452 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:33:46.0149 1452 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

#4 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:03:42 AM

Posted 06 August 2012 - 03:05 PM

Hi Ken,

Run TDSSkiller again this time check the options:
- Verify file digital signatures
- TDLFS file system

On the detected objects change the option to cure. If the program ask for reboot do it and next post the resulting log.

Download aswMBR and run, it will ask to download extra definitions accept that.
Click on Scan and wait until it finish, then press the save log button. Copy the generated log to your next reply

Edited by Rui Paz, 06 August 2012 - 03:06 PM.

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#5 KPE

KPE
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 03:17 PM

16:07:21.0261 8020 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:07:21.0574 8020 ============================================================
16:07:21.0574 8020 Current date / time: 2012/08/06 16:07:21.0574
16:07:21.0574 8020 SystemInfo:
16:07:21.0574 8020
16:07:21.0574 8020 OS Version: 5.1.2600 ServicePack: 3.0
16:07:21.0574 8020 Product type: Workstation
16:07:21.0574 8020 ComputerName: WORKSTATION
16:07:21.0574 8020 UserName: kenneth.edwards
16:07:21.0574 8020 Windows directory: C:\WINDOWS
16:07:21.0574 8020 System windows directory: C:\WINDOWS
16:07:21.0574 8020 Processor architecture: Intel x86
16:07:21.0574 8020 Number of processors: 2
16:07:21.0574 8020 Page size: 0x1000
16:07:21.0574 8020 Boot type: Normal boot
16:07:21.0574 8020 ============================================================
16:07:21.0714 8020 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:07:21.0714 8020 Drive \Device\Harddisk1\DR5 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:07:21.0714 8020 ============================================================
16:07:21.0714 8020 \Device\Harddisk0\DR0:
16:07:21.0714 8020 MBR partitions:
16:07:21.0714 8020 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B747, BlocksNum 0x1D189832
16:07:21.0714 8020 \Device\Harddisk1\DR5:
16:07:21.0730 8020 MBR partitions:
16:07:21.0730 8020 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x6, StartLBA 0x63, BlocksNum 0x7A59D
16:07:21.0730 8020 ============================================================
16:07:21.0745 8020 C: <-> \Device\Harddisk0\DR0\Partition0
16:07:21.0745 8020 ============================================================
16:07:21.0745 8020 Initialize success
16:07:21.0745 8020 ============================================================
16:07:33.0230 7552 ============================================================
16:07:33.0230 7552 Scan started
16:07:33.0230 7552 Mode: Manual; SigCheck; TDLFS;
16:07:33.0230 7552 ============================================================
16:07:34.0464 7552 Abiosdsk - ok
16:07:34.0495 7552 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:07:34.0605 7552 abp480n5 ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0605 7552 abp480n5 - detected UnsignedFile.Multi.Generic (1)
16:07:34.0636 7552 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:07:34.0636 7552 ACPI ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0636 7552 ACPI - detected UnsignedFile.Multi.Generic (1)
16:07:34.0667 7552 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:07:34.0667 7552 ACPIEC ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0667 7552 ACPIEC - detected UnsignedFile.Multi.Generic (1)
16:07:34.0730 7552 ADIHdAudAddService (de25fc7de3a464e455c0d0012757b0ac) C:\WINDOWS\system32\drivers\ADIHdAud.sys
16:07:34.0745 7552 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0745 7552 ADIHdAudAddService - detected UnsignedFile.Multi.Generic (1)
16:07:34.0777 7552 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:07:34.0792 7552 adpu160m ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0792 7552 adpu160m - detected UnsignedFile.Multi.Generic (1)
16:07:34.0839 7552 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
16:07:34.0839 7552 aec ( UnsignedFile.Multi.Generic ) - warning
16:07:34.0839 7552 aec - detected UnsignedFile.Multi.Generic (1)
16:07:34.0902 7552 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
16:07:35.0105 7552 AFD ( UnsignedFile.Multi.Generic ) - warning
16:07:35.0105 7552 AFD - detected UnsignedFile.Multi.Generic (1)
16:07:35.0136 7552 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
16:07:35.0386 7552 agp440 ( UnsignedFile.Multi.Generic ) - warning
16:07:35.0386 7552 agp440 - detected UnsignedFile.Multi.Generic (1)
16:07:35.0386 7552 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:07:35.0667 7552 agpCPQ ( UnsignedFile.Multi.Generic ) - warning
16:07:35.0667 7552 agpCPQ - detected UnsignedFile.Multi.Generic (1)
16:07:35.0683 7552 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:07:35.0855 7552 Aha154x ( UnsignedFile.Multi.Generic ) - warning
16:07:35.0855 7552 Aha154x - detected UnsignedFile.Multi.Generic (1)
16:07:35.0855 7552 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:07:36.0042 7552 aic78u2 ( UnsignedFile.Multi.Generic ) - warning
16:07:36.0042 7552 aic78u2 - detected UnsignedFile.Multi.Generic (1)
16:07:36.0042 7552 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:07:36.0245 7552 aic78xx ( UnsignedFile.Multi.Generic ) - warning
16:07:36.0245 7552 aic78xx - detected UnsignedFile.Multi.Generic (1)
16:07:36.0277 7552 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
16:07:36.0558 7552 Alerter ( UnsignedFile.Multi.Generic ) - warning
16:07:36.0558 7552 Alerter - detected UnsignedFile.Multi.Generic (1)
16:07:36.0558 7552 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
16:07:36.0855 7552 ALG ( UnsignedFile.Multi.Generic ) - warning
16:07:36.0855 7552 ALG - detected UnsignedFile.Multi.Generic (1)
16:07:36.0855 7552 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
16:07:37.0167 7552 AliIde ( UnsignedFile.Multi.Generic ) - warning
16:07:37.0167 7552 AliIde - detected UnsignedFile.Multi.Generic (1)
16:07:37.0167 7552 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:07:37.0355 7552 alim1541 ( UnsignedFile.Multi.Generic ) - warning
16:07:37.0355 7552 alim1541 - detected UnsignedFile.Multi.Generic (1)
16:07:37.0355 7552 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:07:37.0605 7552 amdagp ( UnsignedFile.Multi.Generic ) - warning
16:07:37.0605 7552 amdagp - detected UnsignedFile.Multi.Generic (1)
16:07:37.0605 7552 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
16:07:37.0823 7552 amsint ( UnsignedFile.Multi.Generic ) - warning
16:07:37.0823 7552 amsint - detected UnsignedFile.Multi.Generic (1)
16:07:37.0917 7552 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:07:37.0933 7552 AntiVirSchedulerService - ok
16:07:37.0964 7552 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:07:37.0980 7552 AntiVirService - ok
16:07:38.0027 7552 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
16:07:38.0261 7552 AppMgmt ( UnsignedFile.Multi.Generic ) - warning
16:07:38.0261 7552 AppMgmt - detected UnsignedFile.Multi.Generic (1)
16:07:38.0261 7552 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
16:07:38.0480 7552 asc ( UnsignedFile.Multi.Generic ) - warning
16:07:38.0480 7552 asc - detected UnsignedFile.Multi.Generic (1)
16:07:38.0480 7552 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:07:38.0730 7552 asc3350p ( UnsignedFile.Multi.Generic ) - warning
16:07:38.0730 7552 asc3350p - detected UnsignedFile.Multi.Generic (1)
16:07:38.0745 7552 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:07:38.0917 7552 asc3550 ( UnsignedFile.Multi.Generic ) - warning
16:07:38.0917 7552 asc3550 - detected UnsignedFile.Multi.Generic (1)
16:07:38.0933 7552 ASFIPmon (6295dd28d0ecbc4e6e450c279fef5ed9) C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
16:07:38.0933 7552 ASFIPmon - ok
16:07:39.0230 7552 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:07:39.0230 7552 aspnet_state - ok
16:07:39.0261 7552 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:07:39.0448 7552 AsyncMac ( UnsignedFile.Multi.Generic ) - warning
16:07:39.0448 7552 AsyncMac - detected UnsignedFile.Multi.Generic (1)
16:07:39.0448 7552 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:07:39.0605 7552 atapi ( UnsignedFile.Multi.Generic ) - warning
16:07:39.0605 7552 atapi - detected UnsignedFile.Multi.Generic (1)
16:07:39.0605 7552 Atdisk - ok
16:07:39.0620 7552 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:07:39.0792 7552 Atmarpc ( UnsignedFile.Multi.Generic ) - warning
16:07:39.0792 7552 Atmarpc - detected UnsignedFile.Multi.Generic (1)
16:07:39.0808 7552 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
16:07:40.0011 7552 AudioSrv ( UnsignedFile.Multi.Generic ) - warning
16:07:40.0011 7552 AudioSrv - detected UnsignedFile.Multi.Generic (1)
16:07:40.0027 7552 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:07:40.0198 7552 audstub ( UnsignedFile.Multi.Generic ) - warning
16:07:40.0198 7552 audstub - detected UnsignedFile.Multi.Generic (1)
16:07:40.0308 7552 Autodesk Licensing Service (6b1eee64c8d2c56cacb16b01deebc058) C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
16:07:40.0527 7552 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:07:40.0527 7552 Autodesk Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:07:40.0542 7552 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
16:07:40.0558 7552 avgio - ok
16:07:40.0589 7552 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
16:07:40.0620 7552 avgntflt - ok
16:07:40.0636 7552 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:07:40.0652 7552 avipbb - ok
16:07:40.0683 7552 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
16:07:40.0870 7552 b57w2k ( UnsignedFile.Multi.Generic ) - warning
16:07:40.0870 7552 b57w2k - detected UnsignedFile.Multi.Generic (1)
16:07:40.0886 7552 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys
16:07:41.0089 7552 BANTExt ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0089 7552 BANTExt - detected UnsignedFile.Multi.Generic (1)
16:07:41.0089 7552 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Program Files\Broadcom\ASFIPMon\BASFND.sys
16:07:41.0245 7552 BASFND ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0245 7552 BASFND - detected UnsignedFile.Multi.Generic (1)
16:07:41.0261 7552 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:07:41.0292 7552 Beep ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0292 7552 Beep - detected UnsignedFile.Multi.Generic (1)
16:07:41.0339 7552 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
16:07:41.0355 7552 BITS ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0355 7552 BITS - detected UnsignedFile.Multi.Generic (1)
16:07:41.0401 7552 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
16:07:41.0401 7552 Bonjour Service ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0401 7552 Bonjour Service - detected UnsignedFile.Multi.Generic (1)
16:07:41.0433 7552 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
16:07:41.0448 7552 Browser ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0448 7552 Browser - detected UnsignedFile.Multi.Generic (1)
16:07:41.0480 7552 C-DillaCdaC11BA (9bdbda21d3ba8e374fd06a405be10215) C:\WINDOWS\system32\drivers\CDAC11BA.EXE
16:07:41.0480 7552 C-DillaCdaC11BA ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0480 7552 C-DillaCdaC11BA - detected UnsignedFile.Multi.Generic (1)
16:07:41.0792 7552 catchme - ok
16:07:41.0839 7552 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:07:41.0855 7552 cbidf ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0855 7552 cbidf - detected UnsignedFile.Multi.Generic (1)
16:07:41.0855 7552 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:07:41.0855 7552 cbidf2k ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0855 7552 cbidf2k - detected UnsignedFile.Multi.Generic (1)
16:07:41.0886 7552 CBUSB (e6de3f6a87eaafc3f5c3cc2618d8e5e6) C:\WINDOWS\system32\drivers\CBUSB.sys
16:07:41.0886 7552 CBUSB ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0886 7552 CBUSB - detected UnsignedFile.Multi.Generic (1)
16:07:41.0917 7552 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:07:41.0917 7552 cd20xrnt ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0917 7552 cd20xrnt - detected UnsignedFile.Multi.Generic (1)
16:07:41.0933 7552 CdaC15BA (f76cb7259aa575cc53f3996bc6b68c18) C:\WINDOWS\system32\drivers\CDAC15BA.SYS
16:07:41.0933 7552 CdaC15BA ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0933 7552 CdaC15BA - detected UnsignedFile.Multi.Generic (1)
16:07:41.0948 7552 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:07:41.0948 7552 Cdaudio ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0948 7552 Cdaudio - detected UnsignedFile.Multi.Generic (1)
16:07:41.0980 7552 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
16:07:41.0995 7552 Cdfs ( UnsignedFile.Multi.Generic ) - warning
16:07:41.0995 7552 Cdfs - detected UnsignedFile.Multi.Generic (1)
16:07:42.0058 7552 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:07:42.0058 7552 Cdrom ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0058 7552 Cdrom - detected UnsignedFile.Multi.Generic (1)
16:07:42.0058 7552 Changer - ok
16:07:42.0089 7552 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
16:07:42.0105 7552 CiSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0105 7552 CiSvc - detected UnsignedFile.Multi.Generic (1)
16:07:42.0120 7552 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
16:07:42.0120 7552 ClipSrv ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0120 7552 ClipSrv - detected UnsignedFile.Multi.Generic (1)
16:07:42.0230 7552 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:07:42.0230 7552 clr_optimization_v2.0.50727_32 - ok
16:07:42.0480 7552 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:07:42.0480 7552 clr_optimization_v4.0.30319_32 - ok
16:07:42.0511 7552 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:07:42.0511 7552 CmdIde ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0511 7552 CmdIde - detected UnsignedFile.Multi.Generic (1)
16:07:42.0526 7552 COMSysApp - ok
16:07:42.0542 7552 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:07:42.0558 7552 Cpqarray ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0558 7552 Cpqarray - detected UnsignedFile.Multi.Generic (1)
16:07:42.0589 7552 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
16:07:42.0605 7552 CryptSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0605 7552 CryptSvc - detected UnsignedFile.Multi.Generic (1)
16:07:42.0620 7552 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:07:42.0636 7552 dac2w2k ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0636 7552 dac2w2k - detected UnsignedFile.Multi.Generic (1)
16:07:42.0651 7552 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:07:42.0651 7552 dac960nt ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0651 7552 dac960nt - detected UnsignedFile.Multi.Generic (1)
16:07:42.0698 7552 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
16:07:42.0714 7552 DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0714 7552 DcomLaunch - detected UnsignedFile.Multi.Generic (1)
16:07:42.0761 7552 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
16:07:42.0761 7552 Dhcp ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0761 7552 Dhcp - detected UnsignedFile.Multi.Generic (1)
16:07:42.0792 7552 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
16:07:42.0792 7552 Disk ( UnsignedFile.Multi.Generic ) - warning
16:07:42.0792 7552 Disk - detected UnsignedFile.Multi.Generic (1)
16:07:42.0839 7552 DLABMFSM (0659e6e0a95564f958d9df7313f7701e) C:\WINDOWS\system32\DLA\DLABMFSM.SYS
16:07:42.0839 7552 DLABMFSM - ok
16:07:42.0839 7552 DLABOIOM (8691c78908f0bd66170669db268369f2) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
16:07:42.0855 7552 DLABOIOM - ok
16:07:42.0870 7552 DLACDBHM (76167b5eb2dffc729edc36386876b40b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
16:07:42.0870 7552 DLACDBHM - ok
16:07:42.0870 7552 DLADResM (5615744a1056933b90e6ac54feb86f35) C:\WINDOWS\system32\DLA\DLADResM.SYS
16:07:42.0886 7552 DLADResM - ok
16:07:42.0901 7552 DLAIFS_M (1aeca2afa5005ce4a550cf8eb55a8c88) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
16:07:42.0917 7552 DLAIFS_M - ok
16:07:42.0917 7552 DLAOPIOM (840e7f6abb885c72b9ffddb022ef5b6d) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
16:07:42.0933 7552 DLAOPIOM - ok
16:07:42.0933 7552 DLAPoolM (0294d18731ac05da80132ce88f8a876b) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
16:07:42.0933 7552 DLAPoolM - ok
16:07:42.0964 7552 DLARTL_M (91886fed52a3f9966207bce46cfd794f) C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
16:07:42.0964 7552 DLARTL_M - ok
16:07:42.0980 7552 DLAUDFAM (cca4e121d599d7d1706a30f603731e59) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
16:07:42.0980 7552 DLAUDFAM - ok
16:07:42.0995 7552 DLAUDF_M (7dab85c33135df24419951da4e7d38e5) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
16:07:42.0995 7552 DLAUDF_M - ok
16:07:42.0995 7552 dmadmin - ok
16:07:43.0073 7552 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
16:07:43.0089 7552 dmboot ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0105 7552 dmboot - detected UnsignedFile.Multi.Generic (1)
16:07:43.0120 7552 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
16:07:43.0136 7552 dmio ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0136 7552 dmio - detected UnsignedFile.Multi.Generic (1)
16:07:43.0151 7552 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:07:43.0151 7552 dmload ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0151 7552 dmload - detected UnsignedFile.Multi.Generic (1)
16:07:43.0183 7552 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
16:07:43.0198 7552 dmserver ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0198 7552 dmserver - detected UnsignedFile.Multi.Generic (1)
16:07:43.0198 7552 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
16:07:43.0214 7552 DMusic ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0214 7552 DMusic - detected UnsignedFile.Multi.Generic (1)
16:07:43.0230 7552 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll
16:07:43.0230 7552 Dnscache ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0230 7552 Dnscache - detected UnsignedFile.Multi.Generic (1)
16:07:43.0261 7552 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
16:07:43.0276 7552 Dot3svc ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0276 7552 Dot3svc - detected UnsignedFile.Multi.Generic (1)
16:07:43.0292 7552 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:07:43.0292 7552 dpti2o ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0292 7552 dpti2o - detected UnsignedFile.Multi.Generic (1)
16:07:43.0323 7552 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
16:07:43.0339 7552 drmkaud ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0339 7552 drmkaud - detected UnsignedFile.Multi.Generic (1)
16:07:43.0370 7552 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
16:07:43.0370 7552 DRVMCDB - ok
16:07:43.0401 7552 DRVNDDM (6e6ab29d3c06e64ce81feacda85394b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
16:07:43.0401 7552 DRVNDDM - ok
16:07:43.0480 7552 DynDNS Updater (2ea0df303216e711eff4dc6b11e469e0) C:\Program Files\DynDNS Updater\DynUpSvc.exe
16:07:43.0495 7552 DynDNS Updater - ok
16:07:43.0511 7552 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:07:43.0745 7552 E100B ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0745 7552 E100B - detected UnsignedFile.Multi.Generic (1)
16:07:43.0761 7552 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
16:07:43.0964 7552 EapHost ( UnsignedFile.Multi.Generic ) - warning
16:07:43.0964 7552 EapHost - detected UnsignedFile.Multi.Generic (1)
16:07:43.0980 7552 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
16:07:44.0183 7552 ERSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:44.0183 7552 ERSvc - detected UnsignedFile.Multi.Generic (1)
16:07:44.0214 7552 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:07:44.0401 7552 Eventlog ( UnsignedFile.Multi.Generic ) - warning
16:07:44.0401 7552 Eventlog - detected UnsignedFile.Multi.Generic (1)
16:07:44.0433 7552 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
16:07:44.0651 7552 EventSystem ( UnsignedFile.Multi.Generic ) - warning
16:07:44.0651 7552 EventSystem - detected UnsignedFile.Multi.Generic (1)
16:07:44.0667 7552 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
16:07:44.0839 7552 Fastfat ( UnsignedFile.Multi.Generic ) - warning
16:07:44.0839 7552 Fastfat - detected UnsignedFile.Multi.Generic (1)
16:07:44.0870 7552 FastUserSwitchingCompatibility (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:07:45.0011 7552 FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0011 7552 FastUserSwitchingCompatibility - detected UnsignedFile.Multi.Generic (1)
16:07:45.0058 7552 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
16:07:45.0198 7552 Fax ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0198 7552 Fax - detected UnsignedFile.Multi.Generic (1)
16:07:45.0198 7552 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
16:07:45.0448 7552 Fdc ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0448 7552 Fdc - detected UnsignedFile.Multi.Generic (1)
16:07:45.0480 7552 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
16:07:45.0480 7552 Fips ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0480 7552 Fips - detected UnsignedFile.Multi.Generic (1)
16:07:45.0558 7552 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:07:45.0589 7552 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0589 7552 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
16:07:45.0589 7552 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:07:45.0605 7552 Flpydisk ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0605 7552 Flpydisk - detected UnsignedFile.Multi.Generic (1)
16:07:45.0636 7552 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
16:07:45.0636 7552 FltMgr ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0636 7552 FltMgr - detected UnsignedFile.Multi.Generic (1)
16:07:45.0761 7552 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:07:45.0761 7552 FontCache3.0.0.0 - ok
16:07:45.0792 7552 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:07:45.0792 7552 Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0792 7552 Fs_Rec - detected UnsignedFile.Multi.Generic (1)
16:07:45.0839 7552 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:07:45.0839 7552 Ftdisk ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0839 7552 Ftdisk - detected UnsignedFile.Multi.Generic (1)
16:07:45.0870 7552 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:07:45.0870 7552 Gpc ( UnsignedFile.Multi.Generic ) - warning
16:07:45.0870 7552 Gpc - detected UnsignedFile.Multi.Generic (1)
16:07:45.0964 7552 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:07:45.0964 7552 gupdate - ok
16:07:45.0964 7552 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:07:45.0980 7552 gupdatem - ok
16:07:46.0026 7552 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
16:07:46.0026 7552 hamachi - ok
16:07:46.0120 7552 Hamachi2Svc (2a4713ad248723d0820dcbb927e6c881) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
16:07:46.0183 7552 Hamachi2Svc - ok
16:07:46.0230 7552 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:07:46.0230 7552 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0230 7552 HDAudBus - detected UnsignedFile.Multi.Generic (1)
16:07:46.0276 7552 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:07:46.0292 7552 helpsvc ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0292 7552 helpsvc - detected UnsignedFile.Multi.Generic (1)
16:07:46.0292 7552 HidServ - ok
16:07:46.0292 7552 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:07:46.0308 7552 HidUsb ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0308 7552 HidUsb - detected UnsignedFile.Multi.Generic (1)
16:07:46.0339 7552 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
16:07:46.0339 7552 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0339 7552 hkmsvc - detected UnsignedFile.Multi.Generic (1)
16:07:46.0355 7552 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
16:07:46.0370 7552 hpn ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0370 7552 hpn - detected UnsignedFile.Multi.Generic (1)
16:07:46.0386 7552 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
16:07:46.0386 7552 HTTP ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0386 7552 HTTP - detected UnsignedFile.Multi.Generic (1)
16:07:46.0401 7552 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
16:07:46.0417 7552 HTTPFilter ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0417 7552 HTTPFilter - detected UnsignedFile.Multi.Generic (1)
16:07:46.0417 7552 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
16:07:46.0417 7552 i2omgmt ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0417 7552 i2omgmt - detected UnsignedFile.Multi.Generic (1)
16:07:46.0433 7552 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:07:46.0433 7552 i2omp ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0433 7552 i2omp - detected UnsignedFile.Multi.Generic (1)
16:07:46.0448 7552 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:07:46.0448 7552 i8042prt ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0448 7552 i8042prt - detected UnsignedFile.Multi.Generic (1)
16:07:46.0558 7552 IAANTMON (6ac8ac8e3b413fa1ee8256e65fe0ba72) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
16:07:46.0573 7552 IAANTMON - ok
16:07:46.0620 7552 iaStor (bdc361489a7f22e568060fa6fb3c960e) C:\WINDOWS\system32\drivers\iaStor.sys
16:07:46.0620 7552 iaStor - ok
16:07:46.0698 7552 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:07:46.0714 7552 IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:07:46.0714 7552 IDriverT - detected UnsignedFile.Multi.Generic (1)
16:07:46.0855 7552 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:07:46.0886 7552 idsvc - ok
16:07:47.0073 7552 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:07:47.0089 7552 Imapi ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0089 7552 Imapi - detected UnsignedFile.Multi.Generic (1)
16:07:47.0136 7552 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
16:07:47.0136 7552 ImapiService ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0136 7552 ImapiService - detected UnsignedFile.Multi.Generic (1)
16:07:47.0167 7552 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
16:07:47.0167 7552 ini910u ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0167 7552 ini910u - detected UnsignedFile.Multi.Generic (1)
16:07:47.0198 7552 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
16:07:47.0214 7552 IntelIde ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0214 7552 IntelIde - detected UnsignedFile.Multi.Generic (1)
16:07:47.0245 7552 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:07:47.0245 7552 intelppm ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0245 7552 intelppm - detected UnsignedFile.Multi.Generic (1)
16:07:47.0292 7552 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
16:07:47.0292 7552 Ip6Fw ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0292 7552 Ip6Fw - detected UnsignedFile.Multi.Generic (1)
16:07:47.0323 7552 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:07:47.0323 7552 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0323 7552 IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
16:07:47.0339 7552 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:07:47.0339 7552 IpInIp ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0339 7552 IpInIp - detected UnsignedFile.Multi.Generic (1)
16:07:47.0370 7552 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:07:47.0370 7552 IpNat ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0370 7552 IpNat - detected UnsignedFile.Multi.Generic (1)
16:07:47.0401 7552 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:07:47.0401 7552 IPSec ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0401 7552 IPSec - detected UnsignedFile.Multi.Generic (1)
16:07:47.0433 7552 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:07:47.0448 7552 IRENUM ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0448 7552 IRENUM - detected UnsignedFile.Multi.Generic (1)
16:07:47.0464 7552 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:07:47.0464 7552 isapnp ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0464 7552 isapnp - detected UnsignedFile.Multi.Generic (1)
16:07:47.0573 7552 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
16:07:47.0589 7552 JavaQuickStarterService - ok
16:07:47.0620 7552 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:07:47.0620 7552 Kbdclass ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0620 7552 Kbdclass - detected UnsignedFile.Multi.Generic (1)
16:07:47.0636 7552 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:07:47.0636 7552 kbdhid ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0636 7552 kbdhid - detected UnsignedFile.Multi.Generic (1)
16:07:47.0683 7552 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
16:07:47.0683 7552 kmixer ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0683 7552 kmixer - detected UnsignedFile.Multi.Generic (1)
16:07:47.0714 7552 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
16:07:47.0730 7552 KSecDD ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0730 7552 KSecDD - detected UnsignedFile.Multi.Generic (1)
16:07:47.0745 7552 lanmanserver (f385f4b02c535bffe1d70cab80838123) C:\WINDOWS\System32\srvsvc.dll
16:07:47.0761 7552 lanmanserver ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0761 7552 lanmanserver - detected UnsignedFile.Multi.Generic (1)
16:07:47.0792 7552 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
16:07:47.0808 7552 lanmanworkstation ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0808 7552 lanmanworkstation - detected UnsignedFile.Multi.Generic (1)
16:07:47.0808 7552 Lbd - ok
16:07:47.0808 7552 lbrtfdc - ok
16:07:47.0855 7552 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
16:07:47.0870 7552 LmHosts ( UnsignedFile.Multi.Generic ) - warning
16:07:47.0870 7552 LmHosts - detected UnsignedFile.Multi.Generic (1)
16:07:47.0980 7552 LMIGuardianSvc (63daf163d1617dd611bd0ab8e41a43e8) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
16:07:47.0995 7552 LMIGuardianSvc - ok
16:07:48.0026 7552 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
16:07:48.0026 7552 LMIInfo - ok
16:07:48.0058 7552 LMIMaint (175f50f37eeaa1d4d744bcccbb7cf68c) C:\Program Files\LogMeIn\x86\RaMaint.exe
16:07:48.0073 7552 LMIMaint - ok
16:07:48.0105 7552 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
16:07:48.0120 7552 lmimirr - ok
16:07:48.0120 7552 LMIRfsClientNP - ok
16:07:48.0151 7552 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
16:07:48.0151 7552 LMIRfsDriver - ok
16:07:48.0198 7552 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
16:07:48.0214 7552 LogMeIn - ok
16:07:48.0276 7552 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:07:48.0292 7552 MDM - ok
16:07:48.0323 7552 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
16:07:48.0323 7552 Messenger ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0323 7552 Messenger - detected UnsignedFile.Multi.Generic (1)
16:07:48.0355 7552 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:07:48.0355 7552 mnmdd ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0355 7552 mnmdd - detected UnsignedFile.Multi.Generic (1)
16:07:48.0401 7552 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
16:07:48.0417 7552 mnmsrvc ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0417 7552 mnmsrvc - detected UnsignedFile.Multi.Generic (1)
16:07:48.0464 7552 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
16:07:48.0464 7552 Modem ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0464 7552 Modem - detected UnsignedFile.Multi.Generic (1)
16:07:48.0495 7552 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:07:48.0495 7552 Mouclass ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0495 7552 Mouclass - detected UnsignedFile.Multi.Generic (1)
16:07:48.0511 7552 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:07:48.0526 7552 mouhid ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0526 7552 mouhid - detected UnsignedFile.Multi.Generic (1)
16:07:48.0542 7552 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
16:07:48.0542 7552 MountMgr ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0542 7552 MountMgr - detected UnsignedFile.Multi.Generic (1)
16:07:48.0573 7552 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
16:07:48.0573 7552 mraid35x ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0573 7552 mraid35x - detected UnsignedFile.Multi.Generic (1)
16:07:48.0605 7552 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:07:48.0620 7552 MRxDAV ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0620 7552 MRxDAV - detected UnsignedFile.Multi.Generic (1)
16:07:48.0667 7552 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:07:48.0683 7552 MRxSmb ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0683 7552 MRxSmb - detected UnsignedFile.Multi.Generic (1)
16:07:48.0698 7552 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
16:07:48.0714 7552 MSDTC ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0714 7552 MSDTC - detected UnsignedFile.Multi.Generic (1)
16:07:48.0730 7552 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
16:07:48.0745 7552 Msfs ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0745 7552 Msfs - detected UnsignedFile.Multi.Generic (1)
16:07:48.0745 7552 MSIServer - ok
16:07:48.0761 7552 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:07:48.0776 7552 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0776 7552 MSKSSRV - detected UnsignedFile.Multi.Generic (1)
16:07:48.0776 7552 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:07:48.0792 7552 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0792 7552 MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
16:07:48.0823 7552 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
16:07:48.0839 7552 MSPQM ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0839 7552 MSPQM - detected UnsignedFile.Multi.Generic (1)
16:07:48.0855 7552 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:07:48.0870 7552 mssmbios ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0870 7552 mssmbios - detected UnsignedFile.Multi.Generic (1)
16:07:48.0886 7552 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
16:07:48.0886 7552 Mup ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0886 7552 Mup - detected UnsignedFile.Multi.Generic (1)
16:07:48.0917 7552 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
16:07:48.0933 7552 napagent ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0933 7552 napagent - detected UnsignedFile.Multi.Generic (1)
16:07:48.0948 7552 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
16:07:48.0948 7552 NDIS ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0948 7552 NDIS - detected UnsignedFile.Multi.Generic (1)
16:07:48.0964 7552 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:07:48.0980 7552 NdisTapi ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0980 7552 NdisTapi - detected UnsignedFile.Multi.Generic (1)
16:07:48.0995 7552 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:07:48.0995 7552 Ndisuio ( UnsignedFile.Multi.Generic ) - warning
16:07:48.0995 7552 Ndisuio - detected UnsignedFile.Multi.Generic (1)
16:07:49.0011 7552 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:07:49.0011 7552 NdisWan ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0011 7552 NdisWan - detected UnsignedFile.Multi.Generic (1)
16:07:49.0026 7552 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
16:07:49.0026 7552 NDProxy ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0026 7552 NDProxy - detected UnsignedFile.Multi.Generic (1)
16:07:49.0042 7552 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:07:49.0042 7552 NetBIOS ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0042 7552 NetBIOS - detected UnsignedFile.Multi.Generic (1)
16:07:49.0089 7552 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:07:49.0105 7552 NetBT ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0105 7552 NetBT - detected UnsignedFile.Multi.Generic (1)
16:07:49.0120 7552 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:07:49.0136 7552 NetDDE ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0136 7552 NetDDE - detected UnsignedFile.Multi.Generic (1)
16:07:49.0136 7552 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:07:49.0151 7552 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0151 7552 NetDDEdsdm - detected UnsignedFile.Multi.Generic (1)
16:07:49.0167 7552 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:07:49.0167 7552 Netlogon ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0167 7552 Netlogon - detected UnsignedFile.Multi.Generic (1)
16:07:49.0198 7552 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
16:07:49.0214 7552 Netman ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0214 7552 Netman - detected UnsignedFile.Multi.Generic (1)
16:07:49.0495 7552 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:07:49.0495 7552 NetTcpPortSharing - ok
16:07:49.0542 7552 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll
16:07:49.0542 7552 Nla ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0542 7552 Nla - detected UnsignedFile.Multi.Generic (1)
16:07:49.0573 7552 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
16:07:49.0589 7552 Npfs ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0589 7552 Npfs - detected UnsignedFile.Multi.Generic (1)
16:07:49.0589 7552 npggsvc - ok
16:07:49.0620 7552 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
16:07:49.0636 7552 Ntfs ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0636 7552 Ntfs - detected UnsignedFile.Multi.Generic (1)
16:07:49.0636 7552 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:07:49.0636 7552 NtLmSsp ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0636 7552 NtLmSsp - detected UnsignedFile.Multi.Generic (1)
16:07:49.0698 7552 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
16:07:49.0714 7552 NtmsSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0714 7552 NtmsSvc - detected UnsignedFile.Multi.Generic (1)
16:07:49.0730 7552 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:07:49.0745 7552 Null ( UnsignedFile.Multi.Generic ) - warning
16:07:49.0745 7552 Null - detected UnsignedFile.Multi.Generic (1)
16:07:50.0011 7552 nv (5a6469d861970151e687fb76e10bbb3a) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:07:50.0230 7552 nv ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0230 7552 nv - detected UnsignedFile.Multi.Generic (1)
16:07:50.0401 7552 NVSvc (e170979ebdd54b80695d4c994797cb0f) C:\WINDOWS\system32\nvsvc32.exe
16:07:50.0417 7552 NVSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0417 7552 NVSvc - detected UnsignedFile.Multi.Generic (1)
16:07:50.0464 7552 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:07:50.0464 7552 NwlnkFlt ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0464 7552 NwlnkFlt - detected UnsignedFile.Multi.Generic (1)
16:07:50.0464 7552 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:07:50.0480 7552 NwlnkFwd ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0480 7552 NwlnkFwd - detected UnsignedFile.Multi.Generic (1)
16:07:50.0589 7552 odserv (e54aa592a65f317390eee386a8821692) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:07:50.0605 7552 odserv - ok
16:07:50.0651 7552 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:07:50.0651 7552 ose - ok
16:07:50.0698 7552 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
16:07:50.0698 7552 Parport ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0698 7552 Parport - detected UnsignedFile.Multi.Generic (1)
16:07:50.0745 7552 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
16:07:50.0761 7552 PartMgr ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0761 7552 PartMgr - detected UnsignedFile.Multi.Generic (1)
16:07:50.0776 7552 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
16:07:50.0776 7552 ParVdm ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0776 7552 ParVdm - detected UnsignedFile.Multi.Generic (1)
16:07:50.0808 7552 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
16:07:50.0823 7552 PCI ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0823 7552 PCI - detected UnsignedFile.Multi.Generic (1)
16:07:50.0823 7552 PCIDump - ok
16:07:50.0839 7552 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:07:50.0839 7552 PCIIde ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0839 7552 PCIIde - detected UnsignedFile.Multi.Generic (1)
16:07:50.0870 7552 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:07:50.0886 7552 Pcmcia ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0886 7552 Pcmcia - detected UnsignedFile.Multi.Generic (1)
16:07:50.0886 7552 PDCOMP - ok
16:07:50.0886 7552 PDFRAME - ok
16:07:50.0886 7552 PDRELI - ok
16:07:50.0901 7552 PDRFRAME - ok
16:07:50.0917 7552 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
16:07:50.0933 7552 perc2 ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0933 7552 perc2 - detected UnsignedFile.Multi.Generic (1)
16:07:50.0933 7552 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
16:07:50.0948 7552 perc2hib ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0948 7552 perc2hib - detected UnsignedFile.Multi.Generic (1)
16:07:50.0980 7552 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:07:50.0995 7552 PlugPlay ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0995 7552 PlugPlay - detected UnsignedFile.Multi.Generic (1)
16:07:51.0214 7552 PMBDeviceInfoProvider (63694c307273062a2167ae4ce80730ef) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
16:07:51.0245 7552 PMBDeviceInfoProvider - ok
16:07:51.0276 7552 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:07:51.0276 7552 PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0276 7552 PolicyAgent - detected UnsignedFile.Multi.Generic (1)
16:07:51.0323 7552 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:07:51.0355 7552 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0355 7552 PptpMiniport - detected UnsignedFile.Multi.Generic (1)
16:07:51.0370 7552 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:07:51.0370 7552 ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0370 7552 ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
16:07:51.0386 7552 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
16:07:51.0386 7552 PSched ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0386 7552 PSched - detected UnsignedFile.Multi.Generic (1)
16:07:51.0401 7552 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:07:51.0417 7552 Ptilink ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0417 7552 Ptilink - detected UnsignedFile.Multi.Generic (1)
16:07:51.0433 7552 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:07:51.0433 7552 PxHelp20 - ok
16:07:51.0448 7552 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
16:07:51.0448 7552 ql1080 ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0448 7552 ql1080 - detected UnsignedFile.Multi.Generic (1)
16:07:51.0464 7552 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
16:07:51.0464 7552 Ql10wnt ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0464 7552 Ql10wnt - detected UnsignedFile.Multi.Generic (1)
16:07:51.0480 7552 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
16:07:51.0480 7552 ql12160 ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0480 7552 ql12160 - detected UnsignedFile.Multi.Generic (1)
16:07:51.0495 7552 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
16:07:51.0495 7552 ql1240 ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0495 7552 ql1240 - detected UnsignedFile.Multi.Generic (1)
16:07:51.0511 7552 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
16:07:51.0511 7552 ql1280 ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0511 7552 ql1280 - detected UnsignedFile.Multi.Generic (1)
16:07:51.0542 7552 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:07:51.0558 7552 RasAcd ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0558 7552 RasAcd - detected UnsignedFile.Multi.Generic (1)
16:07:51.0589 7552 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
16:07:51.0589 7552 RasAuto ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0589 7552 RasAuto - detected UnsignedFile.Multi.Generic (1)
16:07:51.0636 7552 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:07:51.0636 7552 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0636 7552 Rasl2tp - detected UnsignedFile.Multi.Generic (1)
16:07:51.0667 7552 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
16:07:51.0667 7552 RasMan ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0667 7552 RasMan - detected UnsignedFile.Multi.Generic (1)
16:07:51.0683 7552 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:07:51.0698 7552 RasPppoe ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0698 7552 RasPppoe - detected UnsignedFile.Multi.Generic (1)
16:07:51.0698 7552 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:07:51.0714 7552 Raspti ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0714 7552 Raspti - detected UnsignedFile.Multi.Generic (1)
16:07:51.0745 7552 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:07:51.0745 7552 Rdbss ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0761 7552 Rdbss - detected UnsignedFile.Multi.Generic (1)
16:07:51.0761 7552 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:07:51.0776 7552 RDPCDD ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0776 7552 RDPCDD - detected UnsignedFile.Multi.Generic (1)
16:07:51.0808 7552 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:07:51.0823 7552 rdpdr ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0823 7552 rdpdr - detected UnsignedFile.Multi.Generic (1)
16:07:51.0839 7552 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
16:07:51.0855 7552 RDSessMgr ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0855 7552 RDSessMgr - detected UnsignedFile.Multi.Generic (1)
16:07:51.0870 7552 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:07:51.0870 7552 redbook ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0870 7552 redbook - detected UnsignedFile.Multi.Generic (1)
16:07:51.0901 7552 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
16:07:51.0901 7552 RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0901 7552 RemoteAccess - detected UnsignedFile.Multi.Generic (1)
16:07:51.0933 7552 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
16:07:51.0933 7552 RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0933 7552 RemoteRegistry - detected UnsignedFile.Multi.Generic (1)
16:07:51.0948 7552 RimUsb (f17713d108aca124a139fde877eef68a) C:\WINDOWS\system32\Drivers\RimUsb.sys
16:07:51.0948 7552 RimUsb ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0948 7552 RimUsb - detected UnsignedFile.Multi.Generic (1)
16:07:51.0980 7552 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
16:07:51.0995 7552 RimVSerPort ( UnsignedFile.Multi.Generic ) - warning
16:07:51.0995 7552 RimVSerPort - detected UnsignedFile.Multi.Generic (1)
16:07:52.0011 7552 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
16:07:52.0026 7552 ROOTMODEM ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0026 7552 ROOTMODEM - detected UnsignedFile.Multi.Generic (1)
16:07:52.0105 7552 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
16:07:52.0105 7552 Roxio UPnP Renderer 9 - ok
16:07:52.0136 7552 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
16:07:52.0151 7552 Roxio Upnp Server 9 - ok
16:07:52.0261 7552 RoxLiveShare9 (e06224cf971d33a680e852dfa212a8ab) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
16:07:52.0276 7552 RoxLiveShare9 - ok
16:07:52.0339 7552 RoxMediaDB9 (fb68fd9505ab89416d70a0e8a5c49e45) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
16:07:52.0355 7552 RoxMediaDB9 - ok
16:07:52.0386 7552 RoxWatch9 (d6bdb50d2a28ff70ce60b4d995f0143a) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
16:07:52.0386 7552 RoxWatch9 - ok
16:07:52.0589 7552 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
16:07:52.0589 7552 RpcLocator ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0589 7552 RpcLocator - detected UnsignedFile.Multi.Generic (1)
16:07:52.0651 7552 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
16:07:52.0683 7552 RpcSs ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0683 7552 RpcSs - detected UnsignedFile.Multi.Generic (1)
16:07:52.0730 7552 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
16:07:52.0730 7552 RSVP ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0730 7552 RSVP - detected UnsignedFile.Multi.Generic (1)
16:07:52.0761 7552 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:07:52.0761 7552 SamSs ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0761 7552 SamSs - detected UnsignedFile.Multi.Generic (1)
16:07:52.0839 7552 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:07:52.0839 7552 SASDIFSV - ok
16:07:52.0870 7552 SASENUM (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
16:07:52.0870 7552 SASENUM - ok
16:07:52.0886 7552 SASKUTIL (67d2688756dd304af655349baad82bff) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:07:52.0886 7552 SASKUTIL - ok
16:07:52.0917 7552 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
16:07:52.0933 7552 SCardSvr ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0933 7552 SCardSvr - detected UnsignedFile.Multi.Generic (1)
16:07:52.0995 7552 SCDEmu (e9bbd87afd80dc1212ecd762858b45c7) C:\WINDOWS\system32\drivers\SCDEmu.sys
16:07:52.0995 7552 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
16:07:52.0995 7552 SCDEmu - detected UnsignedFile.Multi.Generic (1)
16:07:53.0026 7552 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
16:07:53.0042 7552 Schedule ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0042 7552 Schedule - detected UnsignedFile.Multi.Generic (1)
16:07:53.0058 7552 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:07:53.0073 7552 Secdrv ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0073 7552 Secdrv - detected UnsignedFile.Multi.Generic (1)
16:07:53.0073 7552 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
16:07:53.0073 7552 seclogon ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0089 7552 seclogon - detected UnsignedFile.Multi.Generic (1)
16:07:53.0105 7552 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
16:07:53.0120 7552 SenFiltService ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0120 7552 SenFiltService - detected UnsignedFile.Multi.Generic (1)
16:07:53.0136 7552 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
16:07:53.0151 7552 SENS ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0151 7552 SENS - detected UnsignedFile.Multi.Generic (1)
16:07:53.0183 7552 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
16:07:53.0198 7552 serenum ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0198 7552 serenum - detected UnsignedFile.Multi.Generic (1)
16:07:53.0214 7552 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
16:07:53.0230 7552 Serial ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0230 7552 Serial - detected UnsignedFile.Multi.Generic (1)
16:07:53.0261 7552 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
16:07:53.0261 7552 Sfloppy ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0261 7552 Sfloppy - detected UnsignedFile.Multi.Generic (1)
16:07:53.0308 7552 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
16:07:53.0589 7552 SharedAccess ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0589 7552 SharedAccess - detected UnsignedFile.Multi.Generic (1)
16:07:53.0605 7552 ShellHWDetection (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:07:53.0776 7552 ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0776 7552 ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
16:07:53.0776 7552 Simbad - ok
16:07:53.0792 7552 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
16:07:53.0980 7552 sisagp ( UnsignedFile.Multi.Generic ) - warning
16:07:53.0980 7552 sisagp - detected UnsignedFile.Multi.Generic (1)
16:07:54.0073 7552 Slacker Portable Service (0ef733f5e0b68037d171bf9a96de0bc9) C:\Program Files\Slacker\USB Station Refresher\slacker.portable.service.exe
16:07:54.0073 7552 Slacker Portable Service - ok
16:07:54.0089 7552 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
16:07:54.0105 7552 Sparrow ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0105 7552 Sparrow - detected UnsignedFile.Multi.Generic (1)
16:07:54.0105 7552 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
16:07:54.0120 7552 splitter ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0120 7552 splitter - detected UnsignedFile.Multi.Generic (1)
16:07:54.0136 7552 Spooler (d8e14a61acc1d4a6cd0d38aebac7fa3b) C:\WINDOWS\system32\spoolsv.exe
16:07:54.0151 7552 Spooler ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0151 7552 Spooler - detected UnsignedFile.Multi.Generic (1)
16:07:54.0214 7552 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
16:07:54.0214 7552 sr ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0214 7552 sr - detected UnsignedFile.Multi.Generic (1)
16:07:54.0245 7552 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
16:07:54.0261 7552 srservice ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0261 7552 srservice - detected UnsignedFile.Multi.Generic (1)
16:07:54.0292 7552 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
16:07:54.0308 7552 Srv ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0308 7552 Srv - detected UnsignedFile.Multi.Generic (1)
16:07:54.0323 7552 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
16:07:54.0339 7552 SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0339 7552 SSDPSRV - detected UnsignedFile.Multi.Generic (1)
16:07:54.0355 7552 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
16:07:54.0355 7552 ssmdrv - ok
16:07:54.0386 7552 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
16:07:54.0386 7552 stisvc ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0386 7552 stisvc - detected UnsignedFile.Multi.Generic (1)
16:07:54.0480 7552 stllssvr (51778fd315c9882f1cbd932743e62a72) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:07:54.0495 7552 stllssvr ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0495 7552 stllssvr - detected UnsignedFile.Multi.Generic (1)
16:07:54.0605 7552 Stuffit Archive Name Service (1db60cb3e53e2491d5d6c43c06676ca2) C:\Program Files\Smith Micro\StuffIt 2010\ArcNameService.exe
16:07:54.0667 7552 Stuffit Archive Name Service - ok
16:07:54.0730 7552 SupportSoft RemoteAssist (2e5586392cdfbd1d73badb20e9ed6386) C:\Program Files\Common Files\supportsoft\bin\ssrc.exe
16:07:54.0730 7552 SupportSoft RemoteAssist - ok
16:07:54.0964 7552 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:07:54.0964 7552 swenum ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0964 7552 swenum - detected UnsignedFile.Multi.Generic (1)
16:07:54.0964 7552 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
16:07:54.0980 7552 swmidi ( UnsignedFile.Multi.Generic ) - warning
16:07:54.0980 7552 swmidi - detected UnsignedFile.Multi.Generic (1)
16:07:54.0980 7552 SwPrv - ok
16:07:54.0995 7552 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
16:07:55.0011 7552 symc810 ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0011 7552 symc810 - detected UnsignedFile.Multi.Generic (1)
16:07:55.0026 7552 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
16:07:55.0042 7552 symc8xx ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0042 7552 symc8xx - detected UnsignedFile.Multi.Generic (1)
16:07:55.0042 7552 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
16:07:55.0042 7552 sym_hi ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0042 7552 sym_hi - detected UnsignedFile.Multi.Generic (1)
16:07:55.0042 7552 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
16:07:55.0058 7552 sym_u3 ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0058 7552 sym_u3 - detected UnsignedFile.Multi.Generic (1)
16:07:55.0089 7552 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
16:07:55.0105 7552 sysaudio ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0105 7552 sysaudio - detected UnsignedFile.Multi.Generic (1)
16:07:55.0136 7552 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
16:07:55.0136 7552 SysmonLog ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0136 7552 SysmonLog - detected UnsignedFile.Multi.Generic (1)
16:07:55.0167 7552 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
16:07:55.0183 7552 TapiSrv ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0183 7552 TapiSrv - detected UnsignedFile.Multi.Generic (1)
16:07:55.0230 7552 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:07:55.0245 7552 Tcpip ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0245 7552 Tcpip - detected UnsignedFile.Multi.Generic (1)
16:07:55.0276 7552 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:07:55.0292 7552 TDPIPE ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0292 7552 TDPIPE - detected UnsignedFile.Multi.Generic (1)
16:07:55.0339 7552 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:07:55.0339 7552 TermDD ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0339 7552 TermDD - detected UnsignedFile.Multi.Generic (1)
16:07:55.0386 7552 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
16:07:55.0386 7552 TermService ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0386 7552 TermService - detected UnsignedFile.Multi.Generic (1)
16:07:55.0401 7552 Themes (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:07:55.0417 7552 Themes ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0417 7552 Themes - detected UnsignedFile.Multi.Generic (1)
16:07:55.0433 7552 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
16:07:55.0448 7552 TlntSvr ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0448 7552 TlntSvr - detected UnsignedFile.Multi.Generic (1)
16:07:55.0464 7552 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
16:07:55.0464 7552 TosIde ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0464 7552 TosIde - detected UnsignedFile.Multi.Generic (1)
16:07:55.0495 7552 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
16:07:55.0511 7552 TrkWks ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0511 7552 TrkWks - detected UnsignedFile.Multi.Generic (1)
16:07:55.0620 7552 tvnserver (711561440fdc396cb6e4c69c13375a38) C:\Program Files\TightVNC\tvnserver.exe
16:07:55.0636 7552 tvnserver - ok
16:07:55.0667 7552 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
16:07:55.0683 7552 Udfs ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0683 7552 Udfs - detected UnsignedFile.Multi.Generic (1)
16:07:55.0714 7552 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
16:07:55.0714 7552 ultra ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0714 7552 ultra - detected UnsignedFile.Multi.Generic (1)
16:07:55.0761 7552 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
16:07:55.0776 7552 Update ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0776 7552 Update - detected UnsignedFile.Multi.Generic (1)
16:07:55.0823 7552 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
16:07:55.0823 7552 upnphost ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0823 7552 upnphost - detected UnsignedFile.Multi.Generic (1)
16:07:55.0855 7552 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
16:07:55.0870 7552 UPS ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0870 7552 UPS - detected UnsignedFile.Multi.Generic (1)
16:07:55.0901 7552 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:07:55.0901 7552 usbccgp ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0901 7552 usbccgp - detected UnsignedFile.Multi.Generic (1)
16:07:55.0917 7552 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:07:55.0917 7552 usbehci ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0917 7552 usbehci - detected UnsignedFile.Multi.Generic (1)
16:07:55.0933 7552 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:07:55.0948 7552 usbhub ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0948 7552 usbhub - detected UnsignedFile.Multi.Generic (1)
16:07:55.0948 7552 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:07:55.0948 7552 usbprint ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0948 7552 usbprint - detected UnsignedFile.Multi.Generic (1)
16:07:55.0980 7552 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:07:55.0995 7552 usbscan ( UnsignedFile.Multi.Generic ) - warning
16:07:55.0995 7552 usbscan - detected UnsignedFile.Multi.Generic (1)
16:07:56.0011 7552 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:07:56.0011 7552 USBSTOR ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0011 7552 USBSTOR - detected UnsignedFile.Multi.Generic (1)
16:07:56.0026 7552 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:07:56.0026 7552 usbuhci ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0026 7552 usbuhci - detected UnsignedFile.Multi.Generic (1)
16:07:56.0042 7552 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
16:07:56.0058 7552 VgaSave ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0058 7552 VgaSave - detected UnsignedFile.Multi.Generic (1)
16:07:56.0089 7552 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
16:07:56.0089 7552 viaagp ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0089 7552 viaagp - detected UnsignedFile.Multi.Generic (1)
16:07:56.0105 7552 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
16:07:56.0105 7552 ViaIde ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0105 7552 ViaIde - detected UnsignedFile.Multi.Generic (1)
16:07:56.0151 7552 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
16:07:56.0151 7552 VolSnap ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0151 7552 VolSnap - detected UnsignedFile.Multi.Generic (1)
16:07:56.0214 7552 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
16:07:56.0230 7552 VSS ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0230 7552 VSS - detected UnsignedFile.Multi.Generic (1)
16:07:56.0245 7552 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
16:07:56.0245 7552 w32time ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0245 7552 w32time - detected UnsignedFile.Multi.Generic (1)
16:07:56.0276 7552 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:56.0276 7552 Wanarp ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0276 7552 Wanarp - detected UnsignedFile.Multi.Generic (1)
16:07:56.0292 7552 WDICA - ok
16:07:56.0292 7552 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
16:07:56.0308 7552 wdmaud ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0308 7552 wdmaud - detected UnsignedFile.Multi.Generic (1)
16:07:56.0308 7552 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
16:07:56.0323 7552 WebClient ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0323 7552 WebClient - detected UnsignedFile.Multi.Generic (1)
16:07:56.0370 7552 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
16:07:56.0386 7552 winmgmt ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0386 7552 winmgmt - detected UnsignedFile.Multi.Generic (1)
16:07:56.0417 7552 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
16:07:56.0417 7552 WmdmPmSN ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0417 7552 WmdmPmSN - detected UnsignedFile.Multi.Generic (1)
16:07:56.0464 7552 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
16:07:56.0495 7552 Wmi ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0495 7552 Wmi - detected UnsignedFile.Multi.Generic (1)
16:07:56.0526 7552 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:07:56.0542 7552 WmiApSrv ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0542 7552 WmiApSrv - detected UnsignedFile.Multi.Generic (1)
16:07:56.0667 7552 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
16:07:56.0683 7552 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0683 7552 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
16:07:56.0745 7552 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:07:56.0745 7552 WpdUsb ( UnsignedFile.Multi.Generic ) - warning
16:07:56.0745 7552 WpdUsb - detected UnsignedFile.Multi.Generic (1)
16:07:57.0120 7552 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:07:57.0136 7552 WPFFontCache_v0400 - ok
16:07:57.0167 7552 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:07:57.0183 7552 WS2IFSL ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0183 7552 WS2IFSL - detected UnsignedFile.Multi.Generic (1)
16:07:57.0245 7552 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
16:07:57.0245 7552 wscsvc ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0245 7552 wscsvc - detected UnsignedFile.Multi.Generic (1)
16:07:57.0261 7552 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
16:07:57.0276 7552 wuauserv ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0276 7552 wuauserv - detected UnsignedFile.Multi.Generic (1)
16:07:57.0323 7552 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:07:57.0339 7552 WudfPf ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0339 7552 WudfPf - detected UnsignedFile.Multi.Generic (1)
16:07:57.0370 7552 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:07:57.0370 7552 WudfRd ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0370 7552 WudfRd - detected UnsignedFile.Multi.Generic (1)
16:07:57.0386 7552 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
16:07:57.0386 7552 WudfSvc ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0386 7552 WudfSvc - detected UnsignedFile.Multi.Generic (1)
16:07:57.0480 7552 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
16:07:57.0495 7552 WysePocketCloud - ok
16:07:57.0526 7552 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
16:07:57.0542 7552 WZCSVC ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0542 7552 WZCSVC - detected UnsignedFile.Multi.Generic (1)
16:07:57.0558 7552 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
16:07:57.0573 7552 xmlprov ( UnsignedFile.Multi.Generic ) - warning
16:07:57.0573 7552 xmlprov - detected UnsignedFile.Multi.Generic (1)
16:07:57.0589 7552 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
16:07:57.0620 7552 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
16:07:57.0620 7552 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
16:07:57.0636 7552 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:07:57.0636 7552 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:07:57.0636 7552 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR5
16:07:57.0730 7552 \Device\Harddisk1\DR5 - ok
16:07:57.0745 7552 Boot (0x1200) (7bc6218694f15c764205d4a2138f859c) \Device\Harddisk0\DR0\Partition0
16:07:57.0745 7552 \Device\Harddisk0\DR0\Partition0 - ok
16:07:57.0745 7552 Boot (0x1200) (b8acc5f45f61c5a8b1f7a8f50116f915) \Device\Harddisk1\DR5\Partition0
16:07:57.0745 7552 \Device\Harddisk1\DR5\Partition0 - ok
16:07:57.0745 7552 ============================================================
16:07:57.0745 7552 Scan finished
16:07:57.0745 7552 ============================================================
16:07:57.0855 2180 Detected object count: 263
16:07:57.0855 2180 Actual detected object count: 263
16:08:37.0636 2180 abp480n5 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0636 2180 abp480n5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0636 2180 ACPI ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0636 2180 ACPI ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0651 2180 ACPIEC ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0651 2180 ACPIEC ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0651 2180 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0651 2180 ADIHdAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0651 2180 adpu160m ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0651 2180 adpu160m ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0651 2180 aec ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0651 2180 aec ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0667 2180 AFD ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0667 2180 AFD ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0667 2180 agp440 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0667 2180 agp440 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0667 2180 agpCPQ ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0667 2180 agpCPQ ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0667 2180 Aha154x ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0667 2180 Aha154x ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0682 2180 aic78u2 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0682 2180 aic78u2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0682 2180 aic78xx ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0682 2180 aic78xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0682 2180 Alerter ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0682 2180 Alerter ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0682 2180 ALG ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0682 2180 ALG ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 AliIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 AliIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 alim1541 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 alim1541 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 amdagp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 amdagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 amsint ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 amsint ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 AppMgmt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 AppMgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 asc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 asc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 asc3350p ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 asc3350p ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 asc3550 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 asc3550 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0698 2180 AsyncMac ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0698 2180 AsyncMac ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0714 2180 atapi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0714 2180 atapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0714 2180 Atmarpc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0714 2180 Atmarpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0714 2180 AudioSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0714 2180 AudioSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0714 2180 audstub ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0714 2180 audstub ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 b57w2k ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 b57w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 BANTExt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 BANTExt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 BASFND ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 BASFND ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 Beep ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0729 2180 BITS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0729 2180 BITS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0745 2180 Bonjour Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0745 2180 Bonjour Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0745 2180 Browser ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0745 2180 Browser ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0745 2180 C-DillaCdaC11BA ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0745 2180 C-DillaCdaC11BA ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0745 2180 cbidf ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0745 2180 cbidf ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0761 2180 cbidf2k ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0761 2180 cbidf2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0761 2180 CBUSB ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0761 2180 CBUSB ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0761 2180 cd20xrnt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0761 2180 cd20xrnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0761 2180 CdaC15BA ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0761 2180 CdaC15BA ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0761 2180 Cdaudio ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0761 2180 Cdaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0776 2180 Cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0776 2180 Cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0776 2180 Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0776 2180 Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0776 2180 CiSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0776 2180 CiSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0776 2180 ClipSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0776 2180 ClipSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0792 2180 CmdIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0792 2180 CmdIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0792 2180 Cpqarray ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0792 2180 Cpqarray ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0792 2180 CryptSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0792 2180 CryptSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0792 2180 dac2w2k ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0792 2180 dac2w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0807 2180 dac960nt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0807 2180 dac960nt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0807 2180 DcomLaunch ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0807 2180 DcomLaunch ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0807 2180 Dhcp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0807 2180 Dhcp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0807 2180 Disk ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0807 2180 Disk ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0823 2180 dmboot ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0823 2180 dmboot ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0823 2180 dmio ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0823 2180 dmio ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0823 2180 dmload ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0823 2180 dmload ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0823 2180 dmserver ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0823 2180 dmserver ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0823 2180 DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0823 2180 DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0839 2180 Dnscache ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0839 2180 Dnscache ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0839 2180 Dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0839 2180 Dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0839 2180 dpti2o ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0839 2180 dpti2o ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0839 2180 drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0839 2180 drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0854 2180 E100B ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0854 2180 E100B ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0854 2180 EapHost ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0854 2180 EapHost ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0854 2180 ERSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0854 2180 ERSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0854 2180 Eventlog ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0854 2180 Eventlog ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0870 2180 EventSystem ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0870 2180 EventSystem ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0870 2180 Fastfat ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0870 2180 Fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0870 2180 FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0870 2180 FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0870 2180 Fax ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0870 2180 Fax ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0870 2180 Fdc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0870 2180 Fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 Fips ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 Fips ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 Flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 Flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 FltMgr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 FltMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 Fs_Rec ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 Fs_Rec ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 Ftdisk ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 Ftdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0886 2180 Gpc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0886 2180 Gpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0901 2180 HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0901 2180 HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0901 2180 helpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0901 2180 helpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0901 2180 HidUsb ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0901 2180 HidUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0901 2180 hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0901 2180 hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0917 2180 hpn ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0917 2180 hpn ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0917 2180 HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0917 2180 HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0917 2180 HTTPFilter ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0917 2180 HTTPFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0917 2180 i2omgmt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0917 2180 i2omgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0932 2180 i2omp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0932 2180 i2omp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0932 2180 i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0932 2180 i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0932 2180 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0932 2180 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0932 2180 Imapi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0932 2180 Imapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 ImapiService ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 ImapiService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 ini910u ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 ini910u ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 IntelIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 IntelIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 intelppm ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 Ip6Fw ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 Ip6Fw ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0948 2180 IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0948 2180 IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0964 2180 IpInIp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0964 2180 IpInIp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0964 2180 IpNat ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0964 2180 IpNat ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0964 2180 IPSec ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0964 2180 IPSec ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0964 2180 IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0964 2180 IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0964 2180 isapnp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0964 2180 isapnp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0979 2180 Kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0979 2180 Kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0979 2180 kbdhid ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0979 2180 kbdhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0979 2180 kmixer ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0979 2180 kmixer ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0979 2180 KSecDD ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0979 2180 KSecDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0995 2180 lanmanserver ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0995 2180 lanmanserver ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0995 2180 lanmanworkstation ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0995 2180 lanmanworkstation ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0995 2180 LmHosts ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0995 2180 LmHosts ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:37.0995 2180 Messenger ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:37.0995 2180 Messenger ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0011 2180 mnmdd ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0011 2180 mnmdd ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0011 2180 mnmsrvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0011 2180 mnmsrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0011 2180 Modem ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0011 2180 Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0011 2180 Mouclass ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0011 2180 Mouclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0011 2180 mouhid ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0011 2180 mouhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0026 2180 MountMgr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0026 2180 MountMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0026 2180 mraid35x ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0026 2180 mraid35x ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0026 2180 MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0026 2180 MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0026 2180 MRxSmb ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0026 2180 MRxSmb ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0042 2180 MSDTC ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0042 2180 MSDTC ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0042 2180 Msfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0042 2180 Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0042 2180 MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0042 2180 MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0042 2180 MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0042 2180 MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0057 2180 MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0057 2180 MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0057 2180 mssmbios ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0057 2180 mssmbios ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0057 2180 Mup ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0057 2180 Mup ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0057 2180 napagent ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0057 2180 napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0073 2180 NDIS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0073 2180 NDIS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0073 2180 NdisTapi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0073 2180 NdisTapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0073 2180 Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0073 2180 Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0073 2180 NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0073 2180 NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0089 2180 NDProxy ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0089 2180 NDProxy ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0089 2180 NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0089 2180 NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0089 2180 NetBT ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0089 2180 NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0089 2180 NetDDE ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0089 2180 NetDDE ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0104 2180 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0104 2180 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0104 2180 Netlogon ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0104 2180 Netlogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0104 2180 Netman ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0104 2180 Netman ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0104 2180 Nla ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0104 2180 Nla ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0104 2180 Npfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0104 2180 Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0120 2180 Ntfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0120 2180 Ntfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0120 2180 NtLmSsp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0120 2180 NtLmSsp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0120 2180 NtmsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0120 2180 NtmsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0120 2180 Null ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0120 2180 Null ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0120 2180 nv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0120 2180 nv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0136 2180 NVSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0136 2180 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0136 2180 NwlnkFlt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0136 2180 NwlnkFlt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0136 2180 NwlnkFwd ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0136 2180 NwlnkFwd ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0136 2180 Parport ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0136 2180 Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0136 2180 PartMgr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0136 2180 PartMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0151 2180 ParVdm ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0151 2180 ParVdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0151 2180 PCI ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0151 2180 PCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0151 2180 PCIIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0151 2180 PCIIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0151 2180 Pcmcia ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0151 2180 Pcmcia ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0167 2180 perc2 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0167 2180 perc2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0167 2180 perc2hib ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0167 2180 perc2hib ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0167 2180 PlugPlay ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0167 2180 PlugPlay ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0167 2180 PolicyAgent ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0167 2180 PolicyAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0182 2180 PptpMiniport ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0182 2180 PptpMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0182 2180 ProtectedStorage ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0182 2180 ProtectedStorage ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0182 2180 PSched ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0182 2180 PSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0182 2180 Ptilink ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0182 2180 Ptilink ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0198 2180 ql1080 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0198 2180 ql1080 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0198 2180 Ql10wnt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0198 2180 Ql10wnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0198 2180 ql12160 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0198 2180 ql12160 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0198 2180 ql1240 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0198 2180 ql1240 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0214 2180 ql1280 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0214 2180 ql1280 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0214 2180 RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0214 2180 RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0214 2180 RasAuto ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0214 2180 RasAuto ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0214 2180 Rasl2tp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0214 2180 Rasl2tp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0214 2180 RasMan ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0214 2180 RasMan ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0229 2180 RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0229 2180 RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0229 2180 Raspti ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0229 2180 Raspti ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0229 2180 Rdbss ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0229 2180 Rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0229 2180 RDPCDD ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0229 2180 RDPCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0229 2180 rdpdr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0229 2180 rdpdr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0245 2180 RDSessMgr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0245 2180 RDSessMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0245 2180 redbook ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0245 2180 redbook ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0245 2180 RemoteAccess ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0245 2180 RemoteAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0245 2180 RemoteRegistry ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0245 2180 RemoteRegistry ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0245 2180 RimUsb ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0245 2180 RimUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 RimVSerPort ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 RimVSerPort ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 ROOTMODEM ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 ROOTMODEM ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 RpcLocator ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 RpcLocator ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 RpcSs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 RpcSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 RSVP ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 RSVP ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0261 2180 SamSs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0261 2180 SamSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0276 2180 SCardSvr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0276 2180 SCardSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0276 2180 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0276 2180 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0276 2180 Schedule ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0276 2180 Schedule ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0276 2180 Secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0276 2180 Secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0292 2180 seclogon ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0292 2180 seclogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0292 2180 SenFiltService ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0292 2180 SenFiltService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0292 2180 SENS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0292 2180 SENS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0292 2180 serenum ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0292 2180 serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0307 2180 Serial ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0307 2180 Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0307 2180 Sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0307 2180 Sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0307 2180 SharedAccess ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0307 2180 SharedAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 ShellHWDetection ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 ShellHWDetection ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 sisagp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 sisagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 Sparrow ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 Sparrow ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 splitter ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 splitter ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 Spooler ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 Spooler ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 sr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 sr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 srservice ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 srservice ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 Srv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 Srv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 SSDPSRV ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 SSDPSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 stisvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 stisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0339 2180 stllssvr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0339 2180 stllssvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 swenum ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 swenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 swmidi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 swmidi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 symc810 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 symc810 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 symc8xx ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 symc8xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 sym_hi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 sym_hi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 sym_u3 ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 sym_u3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 sysaudio ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 sysaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 SysmonLog ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 SysmonLog ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TapiSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TapiSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TDPIPE ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TDPIPE ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TermDD ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TermDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TermService ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TermService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 Themes ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TlntSvr ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TlntSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TosIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TosIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 TrkWks ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 TrkWks ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0354 2180 Udfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0354 2180 Udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 ultra ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 ultra ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 Update ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 Update ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 upnphost ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 upnphost ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 UPS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 UPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbccgp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbccgp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbehci ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbehci ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbhub ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbprint ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbprint ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbscan ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbscan ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 VgaSave ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 VgaSave ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 viaagp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 viaagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 ViaIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 ViaIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 VolSnap ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 VolSnap ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 VSS ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 VSS ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0370 2180 w32time ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0370 2180 w32time ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 Wanarp ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 Wanarp ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 wdmaud ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 wdmaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WebClient ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WebClient ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 winmgmt ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 winmgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WmdmPmSN ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WmdmPmSN ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 Wmi ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 Wmi ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WmiApSrv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WmiApSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WpdUsb ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WpdUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WS2IFSL ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WS2IFSL ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 wscsvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 wscsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 wuauserv ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 wuauserv ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WudfPf ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WudfPf ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WudfRd ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WudfRd ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WudfSvc ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WudfSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 WZCSVC ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 WZCSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0386 2180 xmlprov ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:38.0386 2180 xmlprov ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0839 2180 \Device\Harddisk0\DR0\# - copied to quarantine
16:08:38.0839 2180 \Device\Harddisk0\DR0 - copied to quarantine
16:08:38.0870 2180 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
16:08:38.0886 2180 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
16:08:38.0886 2180 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
16:08:38.0886 2180 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
16:08:38.0886 2180 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
16:08:38.0901 2180 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
16:08:38.0901 2180 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
16:08:38.0901 2180 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
16:08:38.0901 2180 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
16:08:38.0901 2180 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
16:08:38.0917 2180 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
16:08:38.0917 2180 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
16:08:38.0917 2180 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
16:08:38.0917 2180 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
16:08:38.0932 2180 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
16:08:38.0948 2180 \Device\Harddisk0\DR0 - ok
16:08:38.0948 2180 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
16:08:38.0948 2180 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
16:08:38.0948 2180 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
16:08:49.0479 7868 Deinitialize success

#6 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:03:42 AM

Posted 06 August 2012 - 03:26 PM

Hi,

Sorry you need to run again this time check only the box for TDLFS file system and select Cure for TDSS File System

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#7 KPE

KPE
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 03:29 PM

aswMBR started running. Ran for about 10 minutes and then ended suddenly. Try running again?

#8 KPE

KPE
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 03:31 PM

16:29:51.0029 0464 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:29:51.0451 0464 ============================================================
16:29:51.0451 0464 Current date / time: 2012/08/06 16:29:51.0451
16:29:51.0451 0464 SystemInfo:
16:29:51.0451 0464
16:29:51.0451 0464 OS Version: 5.1.2600 ServicePack: 3.0
16:29:51.0451 0464 Product type: Workstation
16:29:51.0451 0464 ComputerName: WORKSTATION
16:29:51.0451 0464 UserName: kenneth.edwards
16:29:51.0451 0464 Windows directory: C:\WINDOWS
16:29:51.0451 0464 System windows directory: C:\WINDOWS
16:29:51.0451 0464 Processor architecture: Intel x86
16:29:51.0451 0464 Number of processors: 2
16:29:51.0451 0464 Page size: 0x1000
16:29:51.0451 0464 Boot type: Normal boot
16:29:51.0451 0464 ============================================================
16:29:51.0685 0464 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:29:51.0685 0464 Drive \Device\Harddisk1\DR3 - Size: 0xF4FFE00 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:29:51.0685 0464 ============================================================
16:29:51.0685 0464 \Device\Harddisk0\DR0:
16:29:51.0685 0464 MBR partitions:
16:29:51.0685 0464 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B747, BlocksNum 0x1D189832
16:29:51.0685 0464 \Device\Harddisk1\DR3:
16:29:51.0685 0464 MBR partitions:
16:29:51.0685 0464 \Device\Harddisk1\DR3\Partition0: MBR, Type 0x6, StartLBA 0x63, BlocksNum 0x7A59D
16:29:51.0685 0464 ============================================================
16:29:51.0701 0464 C: <-> \Device\Harddisk0\DR0\Partition0
16:29:51.0701 0464 ============================================================
16:29:51.0701 0464 Initialize success
16:29:51.0701 0464 ============================================================
16:30:01.0811 0584 ============================================================
16:30:01.0811 0584 Scan started
16:30:01.0811 0584 Mode: Manual; TDLFS;
16:30:01.0811 0584 ============================================================
16:30:02.0279 0584 Abiosdsk - ok
16:30:02.0311 0584 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:30:02.0311 0584 abp480n5 - ok
16:30:02.0342 0584 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:30:02.0342 0584 ACPI - ok
16:30:02.0358 0584 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:30:02.0358 0584 ACPIEC - ok
16:30:02.0373 0584 ADIHdAudAddService (de25fc7de3a464e455c0d0012757b0ac) C:\WINDOWS\system32\drivers\ADIHdAud.sys
16:30:02.0373 0584 ADIHdAudAddService - ok
16:30:02.0389 0584 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:30:02.0389 0584 adpu160m - ok
16:30:02.0420 0584 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
16:30:02.0420 0584 aec - ok
16:30:02.0467 0584 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
16:30:02.0467 0584 AFD - ok
16:30:02.0498 0584 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
16:30:02.0498 0584 agp440 - ok
16:30:02.0529 0584 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:30:02.0529 0584 agpCPQ - ok
16:30:02.0545 0584 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:30:02.0545 0584 Aha154x - ok
16:30:02.0561 0584 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:30:02.0561 0584 aic78u2 - ok
16:30:02.0561 0584 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:30:02.0576 0584 aic78xx - ok
16:30:02.0608 0584 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
16:30:02.0608 0584 Alerter - ok
16:30:02.0608 0584 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
16:30:02.0608 0584 ALG - ok
16:30:02.0623 0584 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
16:30:02.0623 0584 AliIde - ok
16:30:02.0623 0584 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:30:02.0623 0584 alim1541 - ok
16:30:02.0639 0584 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:30:02.0639 0584 amdagp - ok
16:30:02.0654 0584 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
16:30:02.0654 0584 amsint - ok
16:30:02.0748 0584 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:30:02.0748 0584 AntiVirSchedulerService - ok
16:30:02.0779 0584 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:30:02.0779 0584 AntiVirService - ok
16:30:02.0826 0584 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
16:30:02.0826 0584 AppMgmt - ok
16:30:02.0842 0584 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
16:30:02.0842 0584 asc - ok
16:30:02.0842 0584 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:30:02.0858 0584 asc3350p - ok
16:30:02.0858 0584 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:30:02.0858 0584 asc3550 - ok
16:30:02.0873 0584 ASFIPmon (6295dd28d0ecbc4e6e450c279fef5ed9) C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe
16:30:02.0873 0584 ASFIPmon - ok
16:30:03.0170 0584 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:30:03.0186 0584 aspnet_state - ok
16:30:03.0217 0584 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:30:03.0217 0584 AsyncMac - ok
16:30:03.0233 0584 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:30:03.0233 0584 atapi - ok
16:30:03.0233 0584 Atdisk - ok
16:30:03.0248 0584 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:30:03.0248 0584 Atmarpc - ok
16:30:03.0279 0584 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
16:30:03.0279 0584 AudioSrv - ok
16:30:03.0295 0584 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:30:03.0295 0584 audstub - ok
16:30:03.0420 0584 Autodesk Licensing Service (6b1eee64c8d2c56cacb16b01deebc058) C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
16:30:03.0420 0584 Autodesk Licensing Service - ok
16:30:03.0467 0584 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
16:30:03.0467 0584 avgio - ok
16:30:03.0483 0584 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
16:30:03.0498 0584 avgntflt - ok
16:30:03.0514 0584 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:30:03.0514 0584 avipbb - ok
16:30:03.0545 0584 b57w2k (d0692f7b8217e3b82d2bfac535816117) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
16:30:03.0561 0584 b57w2k - ok
16:30:03.0576 0584 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys
16:30:03.0576 0584 BANTExt - ok
16:30:03.0576 0584 BASFND (5c68ac6f3e5b3e6d6a78e97d05e42c3a) C:\Program Files\Broadcom\ASFIPMon\BASFND.sys
16:30:03.0576 0584 BASFND - ok
16:30:03.0592 0584 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:30:03.0592 0584 Beep - ok
16:30:03.0639 0584 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
16:30:03.0639 0584 BITS - ok
16:30:03.0686 0584 Bonjour Service (73686fe0b2e0469f89fd2075be724704) C:\Program Files\Bonjour\mDNSResponder.exe
16:30:03.0686 0584 Bonjour Service - ok
16:30:03.0717 0584 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
16:30:03.0717 0584 Browser - ok
16:30:03.0748 0584 C-DillaCdaC11BA (9bdbda21d3ba8e374fd06a405be10215) C:\WINDOWS\system32\drivers\CDAC11BA.EXE
16:30:03.0748 0584 C-DillaCdaC11BA - ok
16:30:03.0983 0584 catchme - ok
16:30:03.0998 0584 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:30:03.0998 0584 cbidf - ok
16:30:04.0014 0584 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:30:04.0014 0584 cbidf2k - ok
16:30:04.0029 0584 CBUSB (e6de3f6a87eaafc3f5c3cc2618d8e5e6) C:\WINDOWS\system32\drivers\CBUSB.sys
16:30:04.0029 0584 CBUSB - ok
16:30:04.0061 0584 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:30:04.0061 0584 cd20xrnt - ok
16:30:04.0061 0584 CdaC15BA (f76cb7259aa575cc53f3996bc6b68c18) C:\WINDOWS\system32\drivers\CDAC15BA.SYS
16:30:04.0061 0584 CdaC15BA - ok
16:30:04.0076 0584 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:30:04.0076 0584 Cdaudio - ok
16:30:04.0108 0584 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
16:30:04.0108 0584 Cdfs - ok
16:30:04.0139 0584 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:30:04.0139 0584 Cdrom - ok
16:30:04.0139 0584 Changer - ok
16:30:04.0170 0584 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
16:30:04.0170 0584 CiSvc - ok
16:30:04.0170 0584 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
16:30:04.0170 0584 ClipSrv - ok
16:30:04.0264 0584 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:30:04.0326 0584 clr_optimization_v2.0.50727_32 - ok
16:30:04.0545 0584 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:30:04.0623 0584 clr_optimization_v4.0.30319_32 - ok
16:30:04.0654 0584 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:30:04.0654 0584 CmdIde - ok
16:30:04.0654 0584 COMSysApp - ok
16:30:04.0686 0584 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:30:04.0686 0584 Cpqarray - ok
16:30:04.0717 0584 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
16:30:04.0717 0584 CryptSvc - ok
16:30:04.0733 0584 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:30:04.0733 0584 dac2w2k - ok
16:30:04.0748 0584 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:30:04.0748 0584 dac960nt - ok
16:30:04.0795 0584 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
16:30:04.0811 0584 DcomLaunch - ok
16:30:04.0826 0584 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
16:30:04.0842 0584 Dhcp - ok
16:30:04.0858 0584 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
16:30:04.0858 0584 Disk - ok
16:30:04.0889 0584 DLABMFSM (0659e6e0a95564f958d9df7313f7701e) C:\WINDOWS\system32\DLA\DLABMFSM.SYS
16:30:04.0889 0584 DLABMFSM - ok
16:30:04.0904 0584 DLABOIOM (8691c78908f0bd66170669db268369f2) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
16:30:04.0904 0584 DLABOIOM - ok
16:30:04.0920 0584 DLACDBHM (76167b5eb2dffc729edc36386876b40b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
16:30:04.0920 0584 DLACDBHM - ok
16:30:04.0920 0584 DLADResM (5615744a1056933b90e6ac54feb86f35) C:\WINDOWS\system32\DLA\DLADResM.SYS
16:30:04.0920 0584 DLADResM - ok
16:30:04.0951 0584 DLAIFS_M (1aeca2afa5005ce4a550cf8eb55a8c88) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
16:30:04.0951 0584 DLAIFS_M - ok
16:30:04.0967 0584 DLAOPIOM (840e7f6abb885c72b9ffddb022ef5b6d) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
16:30:04.0967 0584 DLAOPIOM - ok
16:30:04.0983 0584 DLAPoolM (0294d18731ac05da80132ce88f8a876b) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
16:30:04.0983 0584 DLAPoolM - ok
16:30:05.0029 0584 DLARTL_M (91886fed52a3f9966207bce46cfd794f) C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
16:30:05.0029 0584 DLARTL_M - ok
16:30:05.0045 0584 DLAUDFAM (cca4e121d599d7d1706a30f603731e59) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
16:30:05.0045 0584 DLAUDFAM - ok
16:30:05.0061 0584 DLAUDF_M (7dab85c33135df24419951da4e7d38e5) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
16:30:05.0061 0584 DLAUDF_M - ok
16:30:05.0061 0584 dmadmin - ok
16:30:05.0123 0584 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
16:30:05.0139 0584 dmboot - ok
16:30:05.0170 0584 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
16:30:05.0170 0584 dmio - ok
16:30:05.0170 0584 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:30:05.0186 0584 dmload - ok
16:30:05.0201 0584 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
16:30:05.0201 0584 dmserver - ok
16:30:05.0217 0584 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
16:30:05.0217 0584 DMusic - ok
16:30:05.0233 0584 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll
16:30:05.0233 0584 Dnscache - ok
16:30:05.0264 0584 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
16:30:05.0264 0584 Dot3svc - ok
16:30:05.0279 0584 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:30:05.0279 0584 dpti2o - ok
16:30:05.0311 0584 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
16:30:05.0311 0584 drmkaud - ok
16:30:05.0342 0584 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
16:30:05.0342 0584 DRVMCDB - ok
16:30:05.0358 0584 DRVNDDM (6e6ab29d3c06e64ce81feacda85394b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
16:30:05.0358 0584 DRVNDDM - ok
16:30:05.0451 0584 DynDNS Updater (2ea0df303216e711eff4dc6b11e469e0) C:\Program Files\DynDNS Updater\DynUpSvc.exe
16:30:05.0451 0584 DynDNS Updater - ok
16:30:05.0483 0584 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:30:05.0483 0584 E100B - ok
16:30:05.0514 0584 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
16:30:05.0514 0584 EapHost - ok
16:30:05.0545 0584 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
16:30:05.0545 0584 ERSvc - ok
16:30:05.0576 0584 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:30:05.0576 0584 Eventlog - ok
16:30:05.0623 0584 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
16:30:05.0623 0584 EventSystem - ok
16:30:05.0639 0584 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
16:30:05.0639 0584 Fastfat - ok
16:30:05.0686 0584 FastUserSwitchingCompatibility (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:30:05.0686 0584 FastUserSwitchingCompatibility - ok
16:30:05.0701 0584 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
16:30:05.0701 0584 Fax - ok
16:30:05.0717 0584 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
16:30:05.0717 0584 Fdc - ok
16:30:05.0748 0584 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
16:30:05.0748 0584 Fips - ok
16:30:05.0826 0584 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:30:05.0858 0584 FLEXnet Licensing Service - ok
16:30:05.0889 0584 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:30:05.0889 0584 Flpydisk - ok
16:30:05.0920 0584 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
16:30:05.0920 0584 FltMgr - ok
16:30:06.0045 0584 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:30:06.0045 0584 FontCache3.0.0.0 - ok
16:30:06.0061 0584 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:30:06.0061 0584 Fs_Rec - ok
16:30:06.0092 0584 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:30:06.0092 0584 Ftdisk - ok
16:30:06.0108 0584 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:30:06.0108 0584 Gpc - ok
16:30:06.0170 0584 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:30:06.0186 0584 gupdate - ok
16:30:06.0186 0584 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:30:06.0186 0584 gupdatem - ok
16:30:06.0201 0584 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
16:30:06.0217 0584 hamachi - ok
16:30:06.0295 0584 Hamachi2Svc (2a4713ad248723d0820dcbb927e6c881) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
16:30:06.0342 0584 Hamachi2Svc - ok
16:30:06.0389 0584 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:30:06.0389 0584 HDAudBus - ok
16:30:06.0420 0584 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:30:06.0420 0584 helpsvc - ok
16:30:06.0420 0584 HidServ - ok
16:30:06.0436 0584 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:30:06.0436 0584 HidUsb - ok
16:30:06.0467 0584 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
16:30:06.0467 0584 hkmsvc - ok
16:30:06.0498 0584 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
16:30:06.0498 0584 hpn - ok
16:30:06.0514 0584 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
16:30:06.0514 0584 HTTP - ok
16:30:06.0529 0584 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
16:30:06.0529 0584 HTTPFilter - ok
16:30:06.0545 0584 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
16:30:06.0545 0584 i2omgmt - ok
16:30:06.0561 0584 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:30:06.0561 0584 i2omp - ok
16:30:06.0561 0584 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:30:06.0561 0584 i8042prt - ok
16:30:06.0654 0584 IAANTMON (6ac8ac8e3b413fa1ee8256e65fe0ba72) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
16:30:06.0654 0584 IAANTMON - ok
16:30:06.0701 0584 iaStor (bdc361489a7f22e568060fa6fb3c960e) C:\WINDOWS\system32\drivers\iaStor.sys
16:30:06.0701 0584 iaStor - ok
16:30:06.0764 0584 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
16:30:06.0764 0584 IDriverT - ok
16:30:06.0920 0584 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:30:06.0983 0584 idsvc - ok
16:30:07.0170 0584 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:30:07.0170 0584 Imapi - ok
16:30:07.0201 0584 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
16:30:07.0201 0584 ImapiService - ok
16:30:07.0233 0584 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
16:30:07.0233 0584 ini910u - ok
16:30:07.0264 0584 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
16:30:07.0264 0584 IntelIde - ok
16:30:07.0279 0584 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:30:07.0279 0584 intelppm - ok
16:30:07.0295 0584 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
16:30:07.0295 0584 Ip6Fw - ok
16:30:07.0311 0584 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:30:07.0311 0584 IpFilterDriver - ok
16:30:07.0311 0584 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:30:07.0311 0584 IpInIp - ok
16:30:07.0326 0584 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:30:07.0326 0584 IpNat - ok
16:30:07.0358 0584 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:30:07.0358 0584 IPSec - ok
16:30:07.0358 0584 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:30:07.0358 0584 IRENUM - ok
16:30:07.0373 0584 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:30:07.0373 0584 isapnp - ok
16:30:07.0483 0584 JavaQuickStarterService (a38441ed570f190cc041a7be49488fa7) C:\Program Files\Java\jre6\bin\jqs.exe
16:30:07.0483 0584 JavaQuickStarterService - ok
16:30:07.0514 0584 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:30:07.0514 0584 Kbdclass - ok
16:30:07.0529 0584 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:30:07.0529 0584 kbdhid - ok
16:30:07.0561 0584 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
16:30:07.0561 0584 kmixer - ok
16:30:07.0576 0584 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
16:30:07.0576 0584 KSecDD - ok
16:30:07.0592 0584 lanmanserver (f385f4b02c535bffe1d70cab80838123) C:\WINDOWS\System32\srvsvc.dll
16:30:07.0592 0584 lanmanserver - ok
16:30:07.0623 0584 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
16:30:07.0623 0584 lanmanworkstation - ok
16:30:07.0639 0584 Lbd - ok
16:30:07.0639 0584 lbrtfdc - ok
16:30:07.0686 0584 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
16:30:07.0686 0584 LmHosts - ok
16:30:07.0779 0584 LMIGuardianSvc (63daf163d1617dd611bd0ab8e41a43e8) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
16:30:07.0779 0584 LMIGuardianSvc - ok
16:30:07.0811 0584 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
16:30:07.0811 0584 LMIInfo - ok
16:30:07.0842 0584 LMIMaint (175f50f37eeaa1d4d744bcccbb7cf68c) C:\Program Files\LogMeIn\x86\RaMaint.exe
16:30:07.0842 0584 LMIMaint - ok
16:30:07.0873 0584 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
16:30:07.0873 0584 lmimirr - ok
16:30:07.0873 0584 LMIRfsClientNP - ok
16:30:07.0889 0584 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
16:30:07.0889 0584 LMIRfsDriver - ok
16:30:07.0936 0584 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
16:30:07.0936 0584 LogMeIn - ok
16:30:07.0998 0584 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:30:07.0998 0584 MDM - ok
16:30:08.0045 0584 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
16:30:08.0045 0584 Messenger - ok
16:30:08.0061 0584 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:30:08.0061 0584 mnmdd - ok
16:30:08.0092 0584 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
16:30:08.0092 0584 mnmsrvc - ok
16:30:08.0092 0584 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
16:30:08.0092 0584 Modem - ok
16:30:08.0123 0584 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:30:08.0123 0584 Mouclass - ok
16:30:08.0139 0584 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:30:08.0154 0584 mouhid - ok
16:30:08.0154 0584 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
16:30:08.0154 0584 MountMgr - ok
16:30:08.0170 0584 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
16:30:08.0170 0584 mraid35x - ok
16:30:08.0201 0584 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:30:08.0201 0584 MRxDAV - ok
16:30:08.0233 0584 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:30:08.0248 0584 MRxSmb - ok
16:30:08.0279 0584 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
16:30:08.0279 0584 MSDTC - ok
16:30:08.0295 0584 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
16:30:08.0295 0584 Msfs - ok
16:30:08.0295 0584 MSIServer - ok
16:30:08.0311 0584 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:30:08.0311 0584 MSKSSRV - ok
16:30:08.0326 0584 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:30:08.0326 0584 MSPCLOCK - ok
16:30:08.0326 0584 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
16:30:08.0326 0584 MSPQM - ok
16:30:08.0358 0584 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:30:08.0358 0584 mssmbios - ok
16:30:08.0373 0584 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
16:30:08.0373 0584 Mup - ok
16:30:08.0404 0584 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
16:30:08.0420 0584 napagent - ok
16:30:08.0451 0584 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
16:30:08.0451 0584 NDIS - ok
16:30:08.0467 0584 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:30:08.0467 0584 NdisTapi - ok
16:30:08.0467 0584 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:30:08.0467 0584 Ndisuio - ok
16:30:08.0483 0584 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:30:08.0483 0584 NdisWan - ok
16:30:08.0483 0584 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
16:30:08.0483 0584 NDProxy - ok
16:30:08.0498 0584 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:30:08.0498 0584 NetBIOS - ok
16:30:08.0529 0584 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:30:08.0529 0584 NetBT - ok
16:30:08.0561 0584 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:30:08.0576 0584 NetDDE - ok
16:30:08.0576 0584 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:30:08.0576 0584 NetDDEdsdm - ok
16:30:08.0592 0584 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:30:08.0592 0584 Netlogon - ok
16:30:08.0608 0584 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
16:30:08.0623 0584 Netman - ok
16:30:08.0904 0584 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:30:08.0936 0584 NetTcpPortSharing - ok
16:30:08.0983 0584 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll
16:30:08.0983 0584 Nla - ok
16:30:09.0014 0584 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
16:30:09.0014 0584 Npfs - ok
16:30:09.0014 0584 npggsvc - ok
16:30:09.0045 0584 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
16:30:09.0061 0584 Ntfs - ok
16:30:09.0061 0584 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:30:09.0076 0584 NtLmSsp - ok
16:30:09.0108 0584 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
16:30:09.0123 0584 NtmsSvc - ok
16:30:09.0139 0584 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:30:09.0139 0584 Null - ok
16:30:09.0404 0584 nv (5a6469d861970151e687fb76e10bbb3a) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:30:09.0514 0584 nv - ok
16:30:09.0686 0584 NVSvc (e170979ebdd54b80695d4c994797cb0f) C:\WINDOWS\system32\nvsvc32.exe
16:30:09.0686 0584 NVSvc - ok
16:30:09.0733 0584 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:30:09.0733 0584 NwlnkFlt - ok
16:30:09.0733 0584 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:30:09.0733 0584 NwlnkFwd - ok
16:30:09.0842 0584 odserv (e54aa592a65f317390eee386a8821692) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:30:09.0873 0584 odserv - ok
16:30:09.0904 0584 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:30:09.0920 0584 ose - ok
16:30:09.0951 0584 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
16:30:09.0951 0584 Parport - ok
16:30:09.0967 0584 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
16:30:09.0967 0584 PartMgr - ok
16:30:09.0983 0584 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
16:30:09.0983 0584 ParVdm - ok
16:30:10.0014 0584 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
16:30:10.0014 0584 PCI - ok
16:30:10.0014 0584 PCIDump - ok
16:30:10.0029 0584 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:30:10.0029 0584 PCIIde - ok
16:30:10.0045 0584 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:30:10.0045 0584 Pcmcia - ok
16:30:10.0045 0584 PDCOMP - ok
16:30:10.0045 0584 PDFRAME - ok
16:30:10.0061 0584 PDRELI - ok
16:30:10.0061 0584 PDRFRAME - ok
16:30:10.0092 0584 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
16:30:10.0092 0584 perc2 - ok
16:30:10.0092 0584 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
16:30:10.0092 0584 perc2hib - ok
16:30:10.0139 0584 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:30:10.0139 0584 PlugPlay - ok
16:30:10.0342 0584 PMBDeviceInfoProvider (63694c307273062a2167ae4ce80730ef) C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
16:30:10.0420 0584 PMBDeviceInfoProvider - ok
16:30:10.0436 0584 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:30:10.0436 0584 PolicyAgent - ok
16:30:10.0467 0584 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:30:10.0467 0584 PptpMiniport - ok
16:30:10.0467 0584 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:30:10.0467 0584 ProtectedStorage - ok
16:30:10.0483 0584 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
16:30:10.0483 0584 PSched - ok
16:30:10.0514 0584 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:30:10.0514 0584 Ptilink - ok
16:30:10.0529 0584 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:30:10.0529 0584 PxHelp20 - ok
16:30:10.0545 0584 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
16:30:10.0545 0584 ql1080 - ok
16:30:10.0545 0584 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
16:30:10.0545 0584 Ql10wnt - ok
16:30:10.0561 0584 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
16:30:10.0561 0584 ql12160 - ok
16:30:10.0576 0584 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
16:30:10.0576 0584 ql1240 - ok
16:30:10.0576 0584 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
16:30:10.0592 0584 ql1280 - ok
16:30:10.0608 0584 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:30:10.0608 0584 RasAcd - ok
16:30:10.0639 0584 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
16:30:10.0639 0584 RasAuto - ok
16:30:10.0654 0584 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:30:10.0654 0584 Rasl2tp - ok
16:30:10.0686 0584 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
16:30:10.0686 0584 RasMan - ok
16:30:10.0701 0584 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:30:10.0701 0584 RasPppoe - ok
16:30:10.0717 0584 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:30:10.0717 0584 Raspti - ok
16:30:10.0733 0584 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:30:10.0733 0584 Rdbss - ok
16:30:10.0733 0584 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:30:10.0733 0584 RDPCDD - ok
16:30:10.0779 0584 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:30:10.0779 0584 rdpdr - ok
16:30:10.0811 0584 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
16:30:10.0811 0584 RDSessMgr - ok
16:30:10.0826 0584 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:30:10.0826 0584 redbook - ok
16:30:10.0842 0584 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
16:30:10.0858 0584 RemoteAccess - ok
16:30:10.0889 0584 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
16:30:10.0889 0584 RemoteRegistry - ok
16:30:10.0904 0584 RimUsb (f17713d108aca124a139fde877eef68a) C:\WINDOWS\system32\Drivers\RimUsb.sys
16:30:10.0904 0584 RimUsb - ok
16:30:10.0936 0584 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
16:30:10.0936 0584 RimVSerPort - ok
16:30:10.0951 0584 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
16:30:10.0951 0584 ROOTMODEM - ok
16:30:11.0045 0584 Roxio UPnP Renderer 9 (afd61a7c48a3e15c86a6fadf0b69a2e4) C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
16:30:11.0045 0584 Roxio UPnP Renderer 9 - ok
16:30:11.0076 0584 Roxio Upnp Server 9 (efbb36e2bb02169d26e9980778fc20d3) C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
16:30:11.0108 0584 Roxio Upnp Server 9 - ok
16:30:11.0201 0584 RoxLiveShare9 (e06224cf971d33a680e852dfa212a8ab) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
16:30:11.0233 0584 RoxLiveShare9 - ok
16:30:11.0295 0584 RoxMediaDB9 (fb68fd9505ab89416d70a0e8a5c49e45) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
16:30:11.0358 0584 RoxMediaDB9 - ok
16:30:11.0389 0584 RoxWatch9 (d6bdb50d2a28ff70ce60b4d995f0143a) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
16:30:11.0404 0584 RoxWatch9 - ok
16:30:11.0592 0584 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
16:30:11.0592 0584 RpcLocator - ok
16:30:11.0639 0584 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
16:30:11.0639 0584 RpcSs - ok
16:30:11.0670 0584 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
16:30:11.0670 0584 RSVP - ok
16:30:11.0701 0584 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:30:11.0701 0584 SamSs - ok
16:30:11.0748 0584 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:30:11.0748 0584 SASDIFSV - ok
16:30:11.0779 0584 SASENUM (7ce61c25c159f50f9eaf6d77fc83fa35) C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
16:30:11.0779 0584 SASENUM - ok
16:30:11.0795 0584 SASKUTIL (67d2688756dd304af655349baad82bff) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:30:11.0795 0584 SASKUTIL - ok
16:30:11.0826 0584 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
16:30:11.0826 0584 SCardSvr - ok
16:30:11.0873 0584 SCDEmu (e9bbd87afd80dc1212ecd762858b45c7) C:\WINDOWS\system32\drivers\SCDEmu.sys
16:30:11.0873 0584 SCDEmu - ok
16:30:11.0904 0584 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
16:30:11.0904 0584 Schedule - ok
16:30:11.0936 0584 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:30:11.0936 0584 Secdrv - ok
16:30:11.0967 0584 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
16:30:11.0967 0584 seclogon - ok
16:30:11.0998 0584 SenFiltService (b6a6b409fda9d9ebd3aadb838d3d7173) C:\WINDOWS\system32\drivers\Senfilt.sys
16:30:12.0014 0584 SenFiltService - ok
16:30:12.0014 0584 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
16:30:12.0014 0584 SENS - ok
16:30:12.0045 0584 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
16:30:12.0045 0584 serenum - ok
16:30:12.0076 0584 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
16:30:12.0076 0584 Serial - ok
16:30:12.0108 0584 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
16:30:12.0108 0584 Sfloppy - ok
16:30:12.0139 0584 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
16:30:12.0155 0584 SharedAccess - ok
16:30:12.0170 0584 ShellHWDetection (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:30:12.0170 0584 ShellHWDetection - ok
16:30:12.0170 0584 Simbad - ok
16:30:12.0201 0584 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
16:30:12.0201 0584 sisagp - ok
16:30:12.0295 0584 Slacker Portable Service (0ef733f5e0b68037d171bf9a96de0bc9) C:\Program Files\Slacker\USB Station Refresher\slacker.portable.service.exe
16:30:12.0295 0584 Slacker Portable Service - ok
16:30:12.0311 0584 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
16:30:12.0311 0584 Sparrow - ok
16:30:12.0326 0584 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
16:30:12.0326 0584 splitter - ok
16:30:12.0342 0584 Spooler (d8e14a61acc1d4a6cd0d38aebac7fa3b) C:\WINDOWS\system32\spoolsv.exe
16:30:12.0358 0584 Spooler - ok
16:30:12.0373 0584 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
16:30:12.0389 0584 sr - ok
16:30:12.0420 0584 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
16:30:12.0420 0584 srservice - ok
16:30:12.0467 0584 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
16:30:12.0467 0584 Srv - ok
16:30:12.0483 0584 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
16:30:12.0483 0584 SSDPSRV - ok
16:30:12.0514 0584 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
16:30:12.0514 0584 ssmdrv - ok
16:30:12.0545 0584 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
16:30:12.0561 0584 stisvc - ok
16:30:12.0639 0584 stllssvr (51778fd315c9882f1cbd932743e62a72) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
16:30:12.0639 0584 stllssvr - ok
16:30:12.0764 0584 Stuffit Archive Name Service (1db60cb3e53e2491d5d6c43c06676ca2) C:\Program Files\Smith Micro\StuffIt 2010\ArcNameService.exe
16:30:12.0764 0584 Stuffit Archive Name Service - ok
16:30:12.0826 0584 SupportSoft RemoteAssist (2e5586392cdfbd1d73badb20e9ed6386) C:\Program Files\Common Files\supportsoft\bin\ssrc.exe
16:30:12.0858 0584 SupportSoft RemoteAssist - ok
16:30:13.0045 0584 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:30:13.0045 0584 swenum - ok
16:30:13.0045 0584 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
16:30:13.0045 0584 swmidi - ok
16:30:13.0045 0584 SwPrv - ok
16:30:13.0076 0584 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
16:30:13.0076 0584 symc810 - ok
16:30:13.0076 0584 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
16:30:13.0076 0584 symc8xx - ok
16:30:13.0092 0584 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
16:30:13.0092 0584 sym_hi - ok
16:30:13.0092 0584 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
16:30:13.0092 0584 sym_u3 - ok
16:30:13.0108 0584 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
16:30:13.0108 0584 sysaudio - ok
16:30:13.0123 0584 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
16:30:13.0123 0584 SysmonLog - ok
16:30:13.0155 0584 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
16:30:13.0155 0584 TapiSrv - ok
16:30:13.0201 0584 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:30:13.0201 0584 Tcpip - ok
16:30:13.0233 0584 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:30:13.0233 0584 TDPIPE - ok
16:30:13.0248 0584 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:30:13.0248 0584 TermDD - ok
16:30:13.0264 0584 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
16:30:13.0264 0584 TermService - ok
16:30:13.0280 0584 Themes (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
16:30:13.0280 0584 Themes - ok
16:30:13.0311 0584 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
16:30:13.0311 0584 TlntSvr - ok
16:30:13.0326 0584 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
16:30:13.0326 0584 TosIde - ok
16:30:13.0342 0584 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
16:30:13.0342 0584 TrkWks - ok
16:30:13.0467 0584 tvnserver (711561440fdc396cb6e4c69c13375a38) C:\Program Files\TightVNC\tvnserver.exe
16:30:13.0498 0584 tvnserver - ok
16:30:13.0530 0584 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
16:30:13.0530 0584 Udfs - ok
16:30:13.0545 0584 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
16:30:13.0545 0584 ultra - ok
16:30:13.0576 0584 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
16:30:13.0592 0584 Update - ok
16:30:13.0623 0584 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
16:30:13.0639 0584 upnphost - ok
16:30:13.0639 0584 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
16:30:13.0639 0584 UPS - ok
16:30:13.0686 0584 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:30:13.0686 0584 usbccgp - ok
16:30:13.0701 0584 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:30:13.0701 0584 usbehci - ok
16:30:13.0717 0584 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:30:13.0717 0584 usbhub - ok
16:30:13.0717 0584 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:30:13.0717 0584 usbprint - ok
16:30:13.0748 0584 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:30:13.0748 0584 usbscan - ok
16:30:13.0764 0584 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:30:13.0764 0584 USBSTOR - ok
16:30:13.0764 0584 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:30:13.0764 0584 usbuhci - ok
16:30:13.0795 0584 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
16:30:13.0795 0584 VgaSave - ok
16:30:13.0826 0584 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
16:30:13.0826 0584 viaagp - ok
16:30:13.0842 0584 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
16:30:13.0842 0584 ViaIde - ok
16:30:13.0842 0584 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
16:30:13.0842 0584 VolSnap - ok
16:30:13.0873 0584 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
16:30:13.0889 0584 VSS - ok
16:30:13.0905 0584 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
16:30:13.0905 0584 w32time - ok
16:30:13.0905 0584 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:30:13.0905 0584 Wanarp - ok
16:30:13.0920 0584 WDICA - ok
16:30:13.0920 0584 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
16:30:13.0920 0584 wdmaud - ok
16:30:13.0936 0584 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
16:30:13.0936 0584 WebClient - ok
16:30:13.0983 0584 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
16:30:13.0998 0584 winmgmt - ok
16:30:14.0014 0584 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
16:30:14.0014 0584 WmdmPmSN - ok
16:30:14.0061 0584 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
16:30:14.0076 0584 Wmi - ok
16:30:14.0092 0584 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:30:14.0092 0584 WmiApSrv - ok
16:30:14.0201 0584 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
16:30:14.0280 0584 WMPNetworkSvc - ok
16:30:14.0326 0584 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
16:30:14.0326 0584 WpdUsb - ok
16:30:14.0701 0584 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
16:30:14.0733 0584 WPFFontCache_v0400 - ok
16:30:14.0764 0584 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:30:14.0764 0584 WS2IFSL - ok
16:30:14.0795 0584 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
16:30:14.0795 0584 wscsvc - ok
16:30:14.0811 0584 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
16:30:14.0811 0584 wuauserv - ok
16:30:14.0842 0584 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:30:14.0842 0584 WudfPf - ok
16:30:14.0873 0584 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:30:14.0873 0584 WudfRd - ok
16:30:14.0905 0584 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
16:30:14.0905 0584 WudfSvc - ok
16:30:14.0998 0584 WysePocketCloud (3d47152cfbe400b1d2b9945164e0255d) C:\Program Files\Wyse\PocketCloud Windows Companion\PocketCloudService.exe
16:30:14.0998 0584 WysePocketCloud - ok
16:30:15.0045 0584 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
16:30:15.0061 0584 WZCSVC - ok
16:30:15.0076 0584 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
16:30:15.0076 0584 xmlprov - ok
16:30:15.0092 0584 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
16:30:15.0389 0584 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:30:15.0389 0584 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:30:15.0389 0584 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR3
16:30:15.0483 0584 \Device\Harddisk1\DR3 - ok
16:30:15.0498 0584 Boot (0x1200) (7bc6218694f15c764205d4a2138f859c) \Device\Harddisk0\DR0\Partition0
16:30:15.0514 0584 \Device\Harddisk0\DR0\Partition0 - ok
16:30:15.0514 0584 Boot (0x1200) (b8acc5f45f61c5a8b1f7a8f50116f915) \Device\Harddisk1\DR3\Partition0
16:30:15.0514 0584 \Device\Harddisk1\DR3\Partition0 - ok
16:30:15.0514 0584 ============================================================
16:30:15.0514 0584 Scan finished
16:30:15.0514 0584 ============================================================
16:30:15.0514 2492 Detected object count: 1
16:30:15.0514 2492 Actual detected object count: 1
16:30:30.0217 2492 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
16:30:30.0217 2492 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
16:30:30.0217 2492 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
16:30:30.0233 2492 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
16:30:30.0233 2492 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
16:30:30.0248 2492 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
16:30:30.0248 2492 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
16:30:30.0248 2492 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
16:30:30.0264 2492 \Device\Harddisk0\DR0\TDLFS - deleted
16:30:30.0264 2492 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete

#9 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:03:42 AM

Posted 06 August 2012 - 03:31 PM

aswMBR started running. Ran for about 10 minutes and then ended suddenly. Try running again?


Finish first with TDSSKill and then if aswMBR doesn't run try running in Safe Mode (press F8 during Boot).

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#10 KPE

KPE
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:10:42 PM

Posted 06 August 2012 - 06:20 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-06 16:31:29
-----------------------------
16:31:29.374 OS Version: Windows 5.1.2600 Service Pack 3
16:31:29.374 Number of processors: 2 586 0xF0B
16:31:29.374 ComputerName: WORKSTATION UserName:
16:31:30.030 Initialize success
16:31:34.545 AVAST engine defs: 12080600
16:31:36.936 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:31:36.936 Disk 0 Vendor: ST325031 3.AD Size: 238418MB BusType: 3
16:31:36.936 Disk 0 MBR read successfully
16:31:36.936 Disk 0 MBR scan
16:31:36.951 Disk 0 Windows XP default MBR code
16:31:36.951 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
16:31:36.967 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 238355 MB offset 112455
16:31:36.983 Disk 0 scanning sectors +488263545
16:31:37.014 Disk 0 malicious Win32:MBRoot code @ sector 488263548 !
16:31:37.092 Disk 0 scanning C:\WINDOWS\system32\drivers
16:31:54.590 Service scanning
16:32:11.806 Modules scanning
16:32:33.132 Disk 0 trace - called modules:
16:32:33.147 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
16:32:33.147 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8adf8030]
16:32:33.147 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x8adf9030]
16:32:33.710 AVAST engine scan C:\WINDOWS
16:32:46.614 AVAST engine scan C:\WINDOWS\system32
16:37:50.582 AVAST engine scan C:\WINDOWS\system32\drivers
16:38:27.611 AVAST engine scan C:\Documents and Settings\kenneth.edwards
16:44:40.659 AVAST engine scan C:\Documents and Settings\All Users
16:54:05.219 Scan finished successfully
19:19:14.098 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\kenneth.edwards\Desktop\Removal 1\MBR.dat"
19:19:14.114 The log file has been saved successfully to "C:\Documents and Settings\kenneth.edwards\Desktop\Removal 1\aswMBR.txt"

#11 SleepyDude

SleepyDude

  • Malware Response Team
  • 3,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Portugal
  • Local time:03:42 AM

Posted 07 August 2012 - 12:43 PM

Hi,

You have a virus hidden on the MBR and TDSSkiller doesn't seems able to kill it.

Due to the forum rules we can't continue to help on this section, you need to start a new thread on the section Virus, Trojan, Spyware, and Malware Removal Logs from this site.

Before posting on that section you should follow the instructions from the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help also its good idea to include the link for this thread when you post requesting for help.

• Please do not PM me asking for support. Post on the forums instead it will increases the chances of getting help for your problem by one of us.
• Posts in the Malware section that are not replied to within 4 days will be closed. PM me or a moderator to reactivate.
• Please post your final results, good or bad. We like to know! Thank you!

 
Proud graduate of GeekU and member of UNITE
___
Rui

 
 


#12 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,947 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:10:42 PM

Posted 09 August 2012 - 02:26 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic464365.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users