Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirects/trojan horse.Dropper.Generic_c.MMI


  • This topic is locked This topic is locked
4 replies to this topic

#1 Mikeyb1

Mikeyb1

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:06:56 PM

Posted 11 August 2012 - 04:09 PM

I am trying to help a friend get rid of this virus...Google redirects/trojan horse.Dropper.Generic_c.MMI. Google works sometimes, but it later starts redirecting me to other websites. Also, my antivirus sees the virus, but does not remove it. Please help...Thanks!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:56 PM

Posted 11 August 2012 - 04:46 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Mikeyb1

Mikeyb1
  • Topic Starter

  • Members
  • 133 posts
  • OFFLINE
  •  
  • Local time:06:56 PM

Posted 11 August 2012 - 11:27 PM

21:17:11.0682 2784 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:17:12.0181 2784 ============================================================
21:17:12.0181 2784 Current date / time: 2012/08/11 21:17:12.0181
21:17:12.0181 2784 SystemInfo:
21:17:12.0181 2784
21:17:12.0181 2784 OS Version: 6.1.7601 ServicePack: 1.0
21:17:12.0181 2784 Product type: Workstation
21:17:12.0181 2784 ComputerName: VAIO
21:17:12.0181 2784 UserName: Tamara
21:17:12.0181 2784 Windows directory: C:\Windows
21:17:12.0181 2784 System windows directory: C:\Windows
21:17:12.0181 2784 Running under WOW64
21:17:12.0181 2784 Processor architecture: Intel x64
21:17:12.0181 2784 Number of processors: 2
21:17:12.0181 2784 Page size: 0x1000
21:17:12.0181 2784 Boot type: Normal boot
21:17:12.0181 2784 ============================================================
21:17:12.0790 2784 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:17:12.0805 2784 Drive \Device\Harddisk3\DR6 - Size: 0x3CB00000 (0.95 Gb), SectorSize: 0x200, Cylinders: 0x7B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:17:12.0805 2784 ============================================================
21:17:12.0805 2784 \Device\Harddisk0\DR0:
21:17:12.0805 2784 MBR partitions:
21:17:12.0805 2784 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x15FF800, BlocksNum 0x32000
21:17:12.0805 2784 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1631800, BlocksNum 0x23DFCAB0
21:17:12.0805 2784 \Device\Harddisk3\DR6:
21:17:12.0821 2784 MBR partitions:
21:17:12.0821 2784 \Device\Harddisk3\DR6\Partition0: MBR, Type 0x6, StartLBA 0x81, BlocksNum 0x1DDE1F
21:17:12.0821 2784 ============================================================
21:17:12.0899 2784 C: <-> \Device\Harddisk0\DR0\Partition1
21:17:12.0899 2784 ============================================================
21:17:12.0899 2784 Initialize success
21:17:12.0899 2784 ============================================================
21:17:40.0105 4176 ============================================================
21:17:40.0105 4176 Scan started
21:17:40.0105 4176 Mode: Manual; TDLFS;
21:17:40.0105 4176 ============================================================
21:17:40.0729 4176 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:17:40.0745 4176 1394ohci - ok
21:17:40.0823 4176 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:17:40.0839 4176 ACDaemon - ok
21:17:40.0963 4176 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:17:40.0963 4176 ACPI - ok
21:17:41.0073 4176 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:17:41.0073 4176 AcpiPmi - ok
21:17:41.0244 4176 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:17:41.0244 4176 AdobeARMservice - ok
21:17:41.0494 4176 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:17:41.0494 4176 AdobeFlashPlayerUpdateSvc - ok
21:17:41.0603 4176 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
21:17:41.0603 4176 adp94xx - ok
21:17:41.0665 4176 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
21:17:41.0665 4176 adpahci - ok
21:17:41.0728 4176 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
21:17:41.0728 4176 adpu320 - ok
21:17:41.0759 4176 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:17:41.0759 4176 AeLookupSvc - ok
21:17:41.0884 4176 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:17:41.0884 4176 AFD - ok
21:17:42.0009 4176 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:17:42.0009 4176 agp440 - ok
21:17:42.0071 4176 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:17:42.0071 4176 ALG - ok
21:17:42.0165 4176 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:17:42.0165 4176 aliide - ok
21:17:42.0180 4176 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:17:42.0180 4176 amdide - ok
21:17:42.0243 4176 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
21:17:42.0243 4176 AmdK8 - ok
21:17:42.0274 4176 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
21:17:42.0274 4176 AmdPPM - ok
21:17:42.0383 4176 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:17:42.0383 4176 amdsata - ok
21:17:42.0586 4176 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
21:17:42.0586 4176 amdsbs - ok
21:17:42.0648 4176 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:17:42.0648 4176 amdxata - ok
21:17:42.0695 4176 ApfiltrService (56bd886820c4aedf493cfcdf1ccfb004) C:\Windows\system32\drivers\Apfiltr.sys
21:17:42.0695 4176 ApfiltrService - ok
21:17:42.0789 4176 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:17:42.0789 4176 AppID - ok
21:17:42.0851 4176 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:17:42.0867 4176 AppIDSvc - ok
21:17:42.0945 4176 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:17:42.0960 4176 Appinfo - ok
21:17:43.0210 4176 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:17:43.0210 4176 Apple Mobile Device - ok
21:17:43.0272 4176 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
21:17:43.0272 4176 arc - ok
21:17:43.0335 4176 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
21:17:43.0335 4176 arcsas - ok
21:17:43.0381 4176 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
21:17:43.0381 4176 ArcSoftKsUFilter - ok
21:17:43.0475 4176 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:17:43.0491 4176 AsyncMac - ok
21:17:43.0600 4176 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:17:43.0600 4176 atapi - ok
21:17:43.0787 4176 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys
21:17:43.0803 4176 athr - ok
21:17:44.0489 4176 atikmdag (de0ede41bc530f1759c6fffcb8c7a0cf) C:\Windows\system32\DRIVERS\atikmdag.sys
21:17:44.0520 4176 atikmdag - ok
21:17:44.0848 4176 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:17:44.0848 4176 AudioEndpointBuilder - ok
21:17:44.0863 4176 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:17:44.0863 4176 AudioSrv - ok
21:17:45.0441 4176 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
21:17:45.0472 4176 AVGIDSAgent - ok
21:17:45.0784 4176 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:17:45.0784 4176 AVGIDSDriver - ok
21:17:45.0940 4176 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
21:17:45.0940 4176 AVGIDSFilter - ok
21:17:46.0018 4176 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
21:17:46.0018 4176 AVGIDSHA - ok
21:17:46.0174 4176 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
21:17:46.0174 4176 Avgldx64 - ok
21:17:46.0252 4176 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
21:17:46.0252 4176 Avgmfx64 - ok
21:17:46.0314 4176 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
21:17:46.0314 4176 Avgrkx64 - ok
21:17:46.0408 4176 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
21:17:46.0408 4176 Avgtdia - ok
21:17:46.0642 4176 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
21:17:46.0642 4176 avgwd - ok
21:17:46.0782 4176 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:17:46.0782 4176 AxInstSV - ok
21:17:46.0876 4176 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
21:17:46.0876 4176 b06bdrv - ok
21:17:46.0969 4176 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:17:46.0969 4176 b57nd60a - ok
21:17:47.0032 4176 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:17:47.0032 4176 BDESVC - ok
21:17:47.0047 4176 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:17:47.0047 4176 Beep - ok
21:17:47.0141 4176 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
21:17:47.0141 4176 blbdrive - ok
21:17:47.0328 4176 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:17:47.0328 4176 Bonjour Service - ok
21:17:47.0437 4176 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:17:47.0437 4176 bowser - ok
21:17:47.0500 4176 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
21:17:47.0500 4176 BrFiltLo - ok
21:17:47.0531 4176 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
21:17:47.0531 4176 BrFiltUp - ok
21:17:47.0593 4176 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:17:47.0593 4176 Browser - ok
21:17:47.0671 4176 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:17:47.0671 4176 Brserid - ok
21:17:47.0703 4176 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:17:47.0718 4176 BrSerWdm - ok
21:17:47.0781 4176 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:17:47.0781 4176 BrUsbMdm - ok
21:17:47.0843 4176 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:17:47.0843 4176 BrUsbSer - ok
21:17:47.0968 4176 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
21:17:47.0968 4176 BthEnum - ok
21:17:48.0046 4176 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
21:17:48.0046 4176 BTHMODEM - ok
21:17:48.0124 4176 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
21:17:48.0124 4176 BthPan - ok
21:17:48.0217 4176 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
21:17:48.0217 4176 BTHPORT - ok
21:17:48.0311 4176 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:17:48.0311 4176 bthserv - ok
21:17:48.0389 4176 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
21:17:48.0389 4176 BTHUSB - ok
21:17:48.0467 4176 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys
21:17:48.0467 4176 btwaudio - ok
21:17:48.0545 4176 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys
21:17:48.0545 4176 btwavdt - ok
21:17:48.0748 4176 btwdins (31da517946ffe416442e864592548f8a) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:17:48.0748 4176 btwdins - ok
21:17:48.0779 4176 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys
21:17:48.0779 4176 btwl2cap - ok
21:17:48.0857 4176 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\drivers\btwrchid.sys
21:17:48.0857 4176 btwrchid - ok
21:17:48.0919 4176 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:17:48.0919 4176 cdfs - ok
21:17:49.0091 4176 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:17:49.0091 4176 cdrom - ok
21:17:49.0185 4176 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:17:49.0200 4176 CertPropSvc - ok
21:17:49.0263 4176 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
21:17:49.0263 4176 circlass - ok
21:17:49.0325 4176 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:17:49.0341 4176 CLFS - ok
21:17:49.0403 4176 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:17:49.0403 4176 clr_optimization_v2.0.50727_32 - ok
21:17:49.0497 4176 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:17:49.0497 4176 clr_optimization_v2.0.50727_64 - ok
21:17:49.0590 4176 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:17:49.0590 4176 clr_optimization_v4.0.30319_32 - ok
21:17:49.0637 4176 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:17:49.0637 4176 clr_optimization_v4.0.30319_64 - ok
21:17:49.0699 4176 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
21:17:49.0715 4176 CmBatt - ok
21:17:49.0762 4176 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:17:49.0762 4176 cmdide - ok
21:17:49.0840 4176 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:17:49.0855 4176 CNG - ok
21:17:49.0887 4176 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
21:17:49.0887 4176 Compbatt - ok
21:17:49.0980 4176 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:17:49.0980 4176 CompositeBus - ok
21:17:49.0996 4176 COMSysApp - ok
21:17:50.0058 4176 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
21:17:50.0058 4176 crcdisk - ok
21:17:50.0167 4176 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:17:50.0183 4176 CryptSvc - ok
21:17:50.0277 4176 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:17:50.0292 4176 DcomLaunch - ok
21:17:50.0401 4176 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:17:50.0401 4176 defragsvc - ok
21:17:50.0433 4176 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:17:50.0448 4176 DfsC - ok
21:17:50.0542 4176 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:17:50.0542 4176 Dhcp - ok
21:17:50.0604 4176 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:17:50.0604 4176 discache - ok
21:17:50.0635 4176 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
21:17:50.0635 4176 Disk - ok
21:17:50.0745 4176 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:17:50.0745 4176 Dnscache - ok
21:17:50.0901 4176 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:17:50.0901 4176 dot3svc - ok
21:17:51.0010 4176 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
21:17:51.0010 4176 Dot4 - ok
21:17:51.0088 4176 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
21:17:51.0088 4176 Dot4Print - ok
21:17:51.0197 4176 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
21:17:51.0213 4176 dot4usb - ok
21:17:51.0259 4176 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:17:51.0259 4176 DPS - ok
21:17:51.0384 4176 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:17:51.0384 4176 drmkaud - ok
21:17:51.0525 4176 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:17:51.0540 4176 DXGKrnl - ok
21:17:51.0618 4176 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:17:51.0618 4176 EapHost - ok
21:17:51.0946 4176 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
21:17:51.0977 4176 ebdrv - ok
21:17:52.0180 4176 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:17:52.0180 4176 EFS - ok
21:17:52.0367 4176 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:17:52.0383 4176 ehRecvr - ok
21:17:52.0492 4176 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:17:52.0507 4176 ehSched - ok
21:17:52.0601 4176 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
21:17:52.0617 4176 elxstor - ok
21:17:52.0679 4176 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:17:52.0679 4176 ErrDev - ok
21:17:52.0882 4176 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:17:52.0913 4176 EventSystem - ok
21:17:52.0991 4176 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:17:53.0022 4176 exfat - ok
21:17:53.0085 4176 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:17:53.0116 4176 fastfat - ok
21:17:53.0272 4176 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:17:53.0287 4176 Fax - ok
21:17:53.0381 4176 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
21:17:53.0397 4176 fdc - ok
21:17:53.0490 4176 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:17:53.0490 4176 fdPHost - ok
21:17:53.0521 4176 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:17:53.0521 4176 FDResPub - ok
21:17:53.0553 4176 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:17:53.0553 4176 FileInfo - ok
21:17:53.0568 4176 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:17:53.0568 4176 Filetrace - ok
21:17:53.0599 4176 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
21:17:53.0599 4176 flpydisk - ok
21:17:53.0693 4176 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:17:53.0709 4176 FltMgr - ok
21:17:53.0865 4176 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:17:53.0896 4176 FontCache - ok
21:17:54.0005 4176 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:17:54.0005 4176 FontCache3.0.0.0 - ok
21:17:54.0099 4176 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:17:54.0099 4176 FsDepends - ok
21:17:54.0255 4176 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
21:17:54.0255 4176 fssfltr - ok
21:17:54.0691 4176 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:17:54.0723 4176 fsssvc - ok
21:17:54.0972 4176 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:17:54.0972 4176 Fs_Rec - ok
21:17:55.0081 4176 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:17:55.0097 4176 fvevol - ok
21:17:55.0222 4176 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
21:17:55.0222 4176 gagp30kx - ok
21:17:55.0362 4176 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:17:55.0362 4176 GEARAspiWDM - ok
21:17:55.0503 4176 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:17:55.0549 4176 gpsvc - ok
21:17:55.0690 4176 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:17:55.0705 4176 gupdate - ok
21:17:55.0799 4176 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:17:55.0799 4176 gupdatem - ok
21:17:55.0846 4176 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:17:55.0846 4176 hcw85cir - ok
21:17:55.0971 4176 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:17:56.0002 4176 HdAudAddService - ok
21:17:56.0127 4176 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:17:56.0127 4176 HDAudBus - ok
21:17:56.0251 4176 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
21:17:56.0267 4176 HidBatt - ok
21:17:56.0329 4176 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
21:17:56.0329 4176 HidBth - ok
21:17:56.0361 4176 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
21:17:56.0361 4176 HidIr - ok
21:17:56.0407 4176 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:17:56.0423 4176 hidserv - ok
21:17:56.0595 4176 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
21:17:56.0595 4176 HidUsb - ok
21:17:56.0673 4176 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:17:56.0688 4176 hkmsvc - ok
21:17:56.0813 4176 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:17:56.0844 4176 HomeGroupListener - ok
21:17:56.0922 4176 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:17:56.0953 4176 HomeGroupProvider - ok
21:17:57.0234 4176 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
21:17:57.0390 4176 hpqcxs08 - ok
21:17:57.0453 4176 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
21:17:57.0468 4176 hpqddsvc - ok
21:17:57.0515 4176 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:17:57.0515 4176 HpSAMD - ok
21:17:57.0687 4176 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:17:57.0718 4176 HTTP - ok
21:17:57.0796 4176 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:17:57.0796 4176 hwpolicy - ok
21:17:57.0921 4176 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:17:57.0921 4176 i8042prt - ok
21:17:58.0092 4176 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:17:58.0139 4176 IAANTMON - ok
21:17:58.0186 4176 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\drivers\iaStor.sys
21:17:58.0186 4176 iaStor - ok
21:17:58.0279 4176 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:17:58.0295 4176 iaStorV - ok
21:17:58.0467 4176 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:17:58.0498 4176 idsvc - ok
21:17:59.0247 4176 igfx (2d18c9e1f23970de32d78d3b1cdda0a7) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:17:59.0481 4176 igfx - ok
21:17:59.0699 4176 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
21:17:59.0699 4176 iirsp - ok
21:17:59.0855 4176 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:17:59.0871 4176 IKEEXT - ok
21:18:00.0214 4176 IntcAzAudAddService (b16fc828ce7a76a8f1ce682e6ead2627) C:\Windows\system32\drivers\RTKVHD64.sys
21:18:00.0229 4176 IntcAzAudAddService - ok
21:18:00.0527 4176 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\Windows\system32\drivers\IntcHdmi.sys
21:18:00.0567 4176 IntcHdmiAddService - ok
21:18:00.0627 4176 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:18:00.0627 4176 intelide - ok
21:18:00.0707 4176 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
21:18:00.0707 4176 intelppm - ok
21:18:00.0757 4176 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:18:00.0757 4176 IPBusEnum - ok
21:18:00.0807 4176 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:18:00.0807 4176 IpFilterDriver - ok
21:18:00.0897 4176 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:18:00.0967 4176 IPMIDRV - ok
21:18:01.0037 4176 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:18:01.0047 4176 IPNAT - ok
21:18:01.0287 4176 iPod Service (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe
21:18:01.0307 4176 iPod Service - ok
21:18:01.0357 4176 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:18:01.0357 4176 IRENUM - ok
21:18:01.0417 4176 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:18:01.0417 4176 isapnp - ok
21:18:01.0467 4176 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:18:01.0497 4176 iScsiPrt - ok
21:18:01.0527 4176 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:18:01.0527 4176 kbdclass - ok
21:18:01.0597 4176 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:18:01.0657 4176 kbdhid - ok
21:18:01.0747 4176 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:01.0747 4176 KeyIso - ok
21:18:01.0817 4176 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:18:01.0817 4176 KSecDD - ok
21:18:01.0897 4176 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:18:01.0907 4176 KSecPkg - ok
21:18:01.0957 4176 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:18:02.0097 4176 ksthunk - ok
21:18:02.0237 4176 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:18:02.0277 4176 KtmRm - ok
21:18:02.0467 4176 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:18:02.0467 4176 LanmanServer - ok
21:18:02.0517 4176 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:18:02.0547 4176 LanmanWorkstation - ok
21:18:02.0617 4176 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:18:02.0617 4176 lltdio - ok
21:18:02.0667 4176 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:18:02.0727 4176 lltdsvc - ok
21:18:02.0737 4176 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:18:02.0737 4176 lmhosts - ok
21:18:02.0807 4176 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
21:18:02.0807 4176 LSI_FC - ok
21:18:02.0857 4176 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
21:18:02.0857 4176 LSI_SAS - ok
21:18:02.0887 4176 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
21:18:02.0927 4176 LSI_SAS2 - ok
21:18:02.0997 4176 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
21:18:03.0057 4176 LSI_SCSI - ok
21:18:03.0107 4176 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:18:03.0107 4176 luafv - ok
21:18:03.0207 4176 MAUSBFASTTRACK (1ac47df9bac9a893f57ecadc63cd20ee) C:\Windows\system32\DRIVERS\MAudioFastTrack.sys
21:18:03.0257 4176 MAUSBFASTTRACK - ok
21:18:03.0297 4176 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:18:03.0327 4176 Mcx2Svc - ok
21:18:03.0357 4176 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
21:18:03.0367 4176 megasas - ok
21:18:03.0457 4176 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
21:18:03.0507 4176 MegaSR - ok
21:18:03.0537 4176 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:18:03.0537 4176 MMCSS - ok
21:18:03.0567 4176 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:18:03.0617 4176 Modem - ok
21:18:03.0737 4176 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:18:03.0737 4176 monitor - ok
21:18:03.0837 4176 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
21:18:03.0837 4176 mouclass - ok
21:18:03.0927 4176 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\drivers\mouhid.sys
21:18:03.0927 4176 mouhid - ok
21:18:03.0997 4176 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:18:03.0997 4176 mountmgr - ok
21:18:04.0097 4176 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:18:04.0167 4176 mpio - ok
21:18:04.0207 4176 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:18:04.0217 4176 mpsdrv - ok
21:18:04.0307 4176 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:18:04.0317 4176 MRxDAV - ok
21:18:04.0357 4176 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:18:04.0437 4176 mrxsmb - ok
21:18:04.0487 4176 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:18:04.0507 4176 mrxsmb10 - ok
21:18:04.0627 4176 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:18:04.0627 4176 mrxsmb20 - ok
21:18:04.0677 4176 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:18:04.0677 4176 msahci - ok
21:18:04.0757 4176 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:18:04.0767 4176 msdsm - ok
21:18:04.0827 4176 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:18:04.0867 4176 MSDTC - ok
21:18:04.0907 4176 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:18:04.0917 4176 Msfs - ok
21:18:04.0937 4176 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:18:04.0937 4176 mshidkmdf - ok
21:18:05.0027 4176 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:18:05.0027 4176 msisadrv - ok
21:18:05.0087 4176 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:18:05.0137 4176 MSiSCSI - ok
21:18:05.0137 4176 msiserver - ok
21:18:05.0197 4176 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:18:05.0197 4176 MSKSSRV - ok
21:18:05.0277 4176 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:18:05.0277 4176 MSPCLOCK - ok
21:18:05.0307 4176 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:18:05.0317 4176 MSPQM - ok
21:18:05.0517 4176 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:18:05.0567 4176 MsRPC - ok
21:18:05.0617 4176 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:18:05.0617 4176 mssmbios - ok
21:18:05.0787 4176 MSSQL$DDNI - ok
21:18:05.0862 4176 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:18:05.0862 4176 MSSQLServerADHelper100 - ok
21:18:05.0982 4176 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:18:05.0987 4176 MSTEE - ok
21:18:06.0002 4176 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
21:18:06.0002 4176 MTConfig - ok
21:18:06.0082 4176 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:18:06.0117 4176 Mup - ok
21:18:06.0192 4176 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:18:06.0232 4176 napagent - ok
21:18:06.0362 4176 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:18:06.0387 4176 NativeWifiP - ok
21:18:06.0545 4176 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:18:06.0576 4176 NDIS - ok
21:18:06.0606 4176 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:18:06.0608 4176 NdisCap - ok
21:18:06.0666 4176 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:18:06.0668 4176 NdisTapi - ok
21:18:06.0754 4176 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:18:06.0757 4176 Ndisuio - ok
21:18:06.0812 4176 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:18:06.0848 4176 NdisWan - ok
21:18:06.0911 4176 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:18:06.0913 4176 NDProxy - ok
21:18:06.0990 4176 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:18:06.0992 4176 NetBIOS - ok
21:18:07.0067 4176 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:18:07.0089 4176 NetBT - ok
21:18:07.0169 4176 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:07.0171 4176 Netlogon - ok
21:18:07.0270 4176 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:18:07.0277 4176 Netman - ok
21:18:07.0429 4176 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:18:07.0557 4176 netprofm - ok
21:18:07.0640 4176 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:18:07.0756 4176 NetTcpPortSharing - ok
21:18:07.0813 4176 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
21:18:07.0816 4176 nfrd960 - ok
21:18:07.0950 4176 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:18:07.0964 4176 NlaSvc - ok
21:18:08.0007 4176 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:18:08.0011 4176 Npfs - ok
21:18:08.0085 4176 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:18:08.0088 4176 nsi - ok
21:18:08.0109 4176 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:18:08.0111 4176 nsiproxy - ok
21:18:08.0459 4176 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:18:08.0646 4176 Ntfs - ok
21:18:08.0857 4176 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:18:08.0860 4176 Null - ok
21:18:09.0053 4176 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:18:09.0057 4176 nvraid - ok
21:18:09.0166 4176 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:18:09.0169 4176 nvstor - ok
21:18:09.0215 4176 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:18:09.0218 4176 nv_agp - ok
21:18:09.0291 4176 NWADI (952ab3bdef38a7391aa05bc8c6028f15) C:\Windows\system32\DRIVERS\NWADIenum.sys
21:18:09.0312 4176 NWADI - ok
21:18:09.0406 4176 NWUSBCDFIL64 (de3abd010d9734cd4ad4e0ba81f50b63) C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
21:18:09.0711 4176 NWUSBCDFIL64 - ok
21:18:09.0829 4176 NWUSBModem (6ae72c04633788c3c3b71b5beb17183c) C:\Windows\system32\DRIVERS\nwusbmdm.sys
21:18:09.0980 4176 NWUSBModem - ok
21:18:10.0020 4176 NWUSBPort (6ae72c04633788c3c3b71b5beb17183c) C:\Windows\system32\DRIVERS\nwusbser.sys
21:18:10.0040 4176 NWUSBPort - ok
21:18:10.0120 4176 NWUSBPort2 (6ae72c04633788c3c3b71b5beb17183c) C:\Windows\system32\DRIVERS\nwusbser2.sys
21:18:10.0125 4176 NWUSBPort2 - ok
21:18:10.0160 4176 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:18:10.0162 4176 ohci1394 - ok
21:18:10.0232 4176 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:18:10.0270 4176 ose - ok
21:18:10.0849 4176 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:18:10.0968 4176 osppsvc - ok
21:18:11.0189 4176 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:18:11.0207 4176 p2pimsvc - ok
21:18:11.0276 4176 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:18:11.0310 4176 p2psvc - ok
21:18:11.0440 4176 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
21:18:11.0443 4176 Parport - ok
21:18:11.0490 4176 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:18:11.0493 4176 partmgr - ok
21:18:11.0556 4176 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:18:11.0613 4176 PcaSvc - ok
21:18:11.0691 4176 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:18:11.0695 4176 pci - ok
21:18:11.0749 4176 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:18:11.0768 4176 pciide - ok
21:18:11.0809 4176 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
21:18:11.0849 4176 pcmcia - ok
21:18:11.0896 4176 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:18:11.0899 4176 pcw - ok
21:18:12.0021 4176 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:18:12.0031 4176 PEAUTH - ok
21:18:12.0165 4176 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:18:12.0168 4176 PerfHost - ok
21:18:12.0401 4176 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:18:12.0468 4176 pla - ok
21:18:12.0550 4176 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:18:12.0564 4176 PlugPlay - ok
21:18:12.0770 4176 PMBDeviceInfoProvider (627fa58adc043704f9d14ca44340956f) C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
21:18:12.0780 4176 PMBDeviceInfoProvider - ok
21:18:12.0820 4176 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:18:12.0886 4176 PNRPAutoReg - ok
21:18:12.0981 4176 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:18:12.0988 4176 PNRPsvc - ok
21:18:13.0088 4176 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:18:13.0111 4176 PolicyAgent - ok
21:18:13.0155 4176 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:18:13.0160 4176 Power - ok
21:18:13.0384 4176 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:18:13.0389 4176 PptpMiniport - ok
21:18:13.0425 4176 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
21:18:13.0429 4176 Processor - ok
21:18:13.0485 4176 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:18:13.0507 4176 ProfSvc - ok
21:18:13.0541 4176 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:13.0543 4176 ProtectedStorage - ok
21:18:13.0637 4176 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:18:13.0640 4176 Psched - ok
21:18:13.0699 4176 PTUMWBus (0c7946849036c39475c01ba23d10630b) C:\Windows\system32\DRIVERS\PTUMWBus.sys
21:18:13.0702 4176 PTUMWBus - ok
21:18:13.0883 4176 PTUMWCSP (df37600be6498a66d9b9f667421aad10) C:\Windows\system32\DRIVERS\PTUMWCSP.sys
21:18:13.0898 4176 PTUMWCSP - ok
21:18:13.0937 4176 PTUMWFLT (8f9aec3337a540c7eec11a72211aa9a7) C:\Windows\system32\DRIVERS\PTUMWFLT.sys
21:18:13.0938 4176 PTUMWFLT - ok
21:18:14.0079 4176 PTUMWMdm (7895ebe76f58a31de972a700456c75ff) C:\Windows\system32\DRIVERS\PTUMWMdm.sys
21:18:14.0121 4176 PTUMWMdm - ok
21:18:14.0166 4176 PTUMWNET (60650b5f460c9ce695082ebba50c3c20) C:\Windows\system32\DRIVERS\PTUMWNET.sys
21:18:14.0196 4176 PTUMWNET - ok
21:18:14.0257 4176 PTUMWNSP (91e16446e94b1a7bd46e17fc961754e2) C:\Windows\system32\DRIVERS\PTUMWNSP.sys
21:18:14.0295 4176 PTUMWNSP - ok
21:18:14.0364 4176 PTUMWVsp (5e11f5f77545a1a08c2c12c41f251dba) C:\Windows\system32\DRIVERS\PTUMWVsp.sys
21:18:14.0401 4176 PTUMWVsp - ok
21:18:14.0439 4176 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
21:18:14.0441 4176 PxHlpa64 - ok
21:18:14.0640 4176 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
21:18:14.0715 4176 ql2300 - ok
21:18:15.0024 4176 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
21:18:15.0028 4176 ql40xx - ok
21:18:15.0170 4176 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:18:15.0177 4176 QWAVE - ok
21:18:15.0260 4176 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:18:15.0263 4176 QWAVEdrv - ok
21:18:15.0274 4176 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:18:15.0276 4176 RasAcd - ok
21:18:15.0363 4176 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:18:15.0366 4176 RasAgileVpn - ok
21:18:15.0453 4176 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:18:15.0458 4176 RasAuto - ok
21:18:15.0533 4176 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:18:15.0543 4176 Rasl2tp - ok
21:18:15.0706 4176 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:18:15.0733 4176 RasMan - ok
21:18:15.0792 4176 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:18:15.0796 4176 RasPppoe - ok
21:18:15.0877 4176 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:18:15.0880 4176 RasSstp - ok
21:18:15.0956 4176 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:18:15.0975 4176 rdbss - ok
21:18:16.0019 4176 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
21:18:16.0022 4176 rdpbus - ok
21:18:16.0089 4176 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:18:16.0091 4176 RDPCDD - ok
21:18:16.0125 4176 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:18:16.0127 4176 RDPENCDD - ok
21:18:16.0174 4176 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:18:16.0176 4176 RDPREFMP - ok
21:18:16.0295 4176 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:18:16.0340 4176 RDPWD - ok
21:18:16.0453 4176 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:18:16.0483 4176 rdyboost - ok
21:18:16.0557 4176 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:18:16.0608 4176 RemoteAccess - ok
21:18:16.0689 4176 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:18:16.0749 4176 RemoteRegistry - ok
21:18:16.0839 4176 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
21:18:16.0901 4176 RFCOMM - ok
21:18:16.0986 4176 rimsptsk (258aadb43e3f3468b5cf8cb0f84872c2) C:\Windows\system32\drivers\rimssn64.sys
21:18:17.0103 4176 rimsptsk - ok
21:18:17.0150 4176 risdptsk (71e182a0de1cecb3f912960716345405) C:\Windows\system32\drivers\risdsn64.sys
21:18:17.0184 4176 risdptsk - ok
21:18:17.0286 4176 Roxio UPnP Renderer 10 (d151224bc11078895a60fa970728ff59) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
21:18:17.0292 4176 Roxio UPnP Renderer 10 - ok
21:18:17.0327 4176 Roxio Upnp Server 10 (5022a927944878bd750960bd21e751af) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
21:18:17.0344 4176 Roxio Upnp Server 10 - ok
21:18:17.0397 4176 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:18:17.0401 4176 RpcEptMapper - ok
21:18:17.0440 4176 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:18:17.0443 4176 RpcLocator - ok
21:18:17.0580 4176 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:18:17.0590 4176 RpcSs - ok
21:18:17.0696 4176 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:18:17.0700 4176 rspndr - ok
21:18:17.0872 4176 RtkAudioService (01e6a1e53e39a0b1e2b6ae62bf52e8ec) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:18:17.0874 4176 RtkAudioService - ok
21:18:18.0034 4176 SampleCollector (6b318f9443740a907d1c8f3460c19009) C:\Program Files\Sony\VAIO Care\collsvc.exe
21:18:18.0083 4176 SampleCollector - ok
21:18:18.0132 4176 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:18.0134 4176 SamSs - ok
21:18:18.0170 4176 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:18:18.0173 4176 sbp2port - ok
21:18:18.0429 4176 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
21:18:18.0449 4176 SBSDWSCService - ok
21:18:18.0487 4176 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:18:18.0602 4176 SCardSvr - ok
21:18:18.0682 4176 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:18:18.0687 4176 scfilter - ok
21:18:18.0809 4176 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:18:18.0859 4176 Schedule - ok
21:18:18.0929 4176 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:18:18.0934 4176 SCPolicySvc - ok
21:18:19.0042 4176 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
21:18:19.0045 4176 sdbus - ok
21:18:19.0109 4176 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:18:19.0144 4176 SDRSVC - ok
21:18:19.0227 4176 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:18:19.0233 4176 secdrv - ok
21:18:19.0342 4176 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:18:19.0348 4176 seclogon - ok
21:18:19.0384 4176 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:18:19.0389 4176 SENS - ok
21:18:19.0422 4176 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:18:19.0427 4176 SensrSvc - ok
21:18:19.0522 4176 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
21:18:19.0523 4176 Serenum - ok
21:18:19.0543 4176 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
21:18:19.0545 4176 Serial - ok
21:18:19.0628 4176 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
21:18:19.0630 4176 sermouse - ok
21:18:19.0873 4176 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:18:19.0877 4176 SessionEnv - ok
21:18:20.0007 4176 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys
21:18:20.0042 4176 SFEP - ok
21:18:20.0089 4176 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:18:20.0093 4176 sffdisk - ok
21:18:20.0124 4176 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:18:20.0127 4176 sffp_mmc - ok
21:18:20.0137 4176 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:18:20.0140 4176 sffp_sd - ok
21:18:20.0212 4176 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
21:18:20.0215 4176 sfloppy - ok
21:18:20.0314 4176 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:18:20.0324 4176 ShellHWDetection - ok
21:18:20.0416 4176 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
21:18:20.0418 4176 SiSRaid2 - ok
21:18:20.0461 4176 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
21:18:20.0465 4176 SiSRaid4 - ok
21:18:20.0565 4176 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:18:20.0568 4176 Smb - ok
21:18:20.0635 4176 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:18:20.0637 4176 SNMPTRAP - ok
21:18:20.0830 4176 SOHCImp (98886c88a1cb13d61672ae2c638b7e1c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:18:20.0880 4176 SOHCImp - ok
21:18:20.0935 4176 SOHDBSvr (442a13f395546f4564c377296d43b564) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
21:18:20.0937 4176 SOHDBSvr - ok
21:18:21.0009 4176 SOHDms (556681be668d71dc162391a45422b52c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
21:18:21.0022 4176 SOHDms - ok
21:18:21.0050 4176 SOHDs (72b46103e4111439109acf5882627c24) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:18:21.0053 4176 SOHDs - ok
21:18:21.0092 4176 SOHPlMgr (725b6e9cd1959271ac993dc035e1606d) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
21:18:21.0095 4176 SOHPlMgr - ok
21:18:21.0128 4176 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:18:21.0130 4176 spldr - ok
21:18:21.0322 4176 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:18:21.0360 4176 Spooler - ok
21:18:21.0712 4176 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:18:21.0817 4176 sppsvc - ok
21:18:22.0015 4176 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:18:22.0046 4176 sppuinotify - ok
21:18:22.0257 4176 SQLAgent$DDNI (a687b5b326afcfcf182c4931d1ff9771) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.DDNI\MSSQL\Binn\SQLAGENT.EXE
21:18:22.0287 4176 SQLAgent$DDNI - ok
21:18:22.0399 4176 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:18:22.0463 4176 SQLBrowser - ok
21:18:22.0633 4176 SQLWriter (6d65985945b03ca59b67d0b73702fc7b) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:18:22.0637 4176 SQLWriter - ok
21:18:22.0774 4176 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:18:22.0797 4176 srv - ok
21:18:22.0955 4176 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:18:22.0969 4176 srv2 - ok
21:18:23.0113 4176 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
21:18:23.0127 4176 SrvHsfHDA - ok
21:18:23.0311 4176 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
21:18:23.0379 4176 SrvHsfV92 - ok
21:18:23.0671 4176 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
21:18:23.0713 4176 SrvHsfWinac - ok
21:18:23.0764 4176 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:18:23.0799 4176 srvnet - ok
21:18:23.0957 4176 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:18:23.0969 4176 SSDPSRV - ok
21:18:24.0015 4176 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:18:24.0042 4176 SstpSvc - ok
21:18:24.0163 4176 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
21:18:24.0165 4176 stexstor - ok
21:18:24.0290 4176 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:18:24.0322 4176 stisvc - ok
21:18:24.0358 4176 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:18:24.0359 4176 swenum - ok
21:18:24.0422 4176 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:18:24.0450 4176 swprv - ok
21:18:24.0778 4176 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:18:24.0834 4176 SysMain - ok
21:18:25.0369 4176 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:18:25.0375 4176 TabletInputService - ok
21:18:25.0494 4176 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:18:25.0502 4176 TapiSrv - ok
21:18:25.0603 4176 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:18:25.0607 4176 TBS - ok
21:18:26.0118 4176 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:18:26.0174 4176 Tcpip - ok
21:18:26.0633 4176 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:18:26.0653 4176 TCPIP6 - ok
21:18:26.0958 4176 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:18:26.0960 4176 tcpipreg - ok
21:18:27.0012 4176 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:18:27.0079 4176 TDPIPE - ok
21:18:27.0149 4176 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:18:27.0152 4176 TDTCP - ok
21:18:27.0251 4176 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:18:27.0288 4176 tdx - ok
21:18:27.0401 4176 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:18:27.0406 4176 TermDD - ok
21:18:27.0726 4176 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:18:27.0756 4176 TermService - ok
21:18:27.0801 4176 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:18:27.0803 4176 Themes - ok
21:18:27.0878 4176 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:18:27.0881 4176 THREADORDER - ok
21:18:27.0996 4176 Tpkd (c676b0f52f2b6483afb88f79cabb011e) C:\Windows\system32\drivers\Tpkd.sys
21:18:28.0031 4176 Tpkd - ok
21:18:28.0103 4176 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:18:28.0108 4176 TrkWks - ok
21:18:28.0218 4176 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:18:28.0251 4176 TrustedInstaller - ok
21:18:28.0286 4176 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:18:28.0293 4176 tssecsrv - ok
21:18:28.0346 4176 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:18:28.0353 4176 TsUsbFlt - ok
21:18:28.0496 4176 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:18:28.0576 4176 tunnel - ok
21:18:28.0696 4176 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
21:18:28.0700 4176 uagp35 - ok
21:18:28.0779 4176 uCamMonitor (63f6d08c54d5b3c1b12a6172032055c7) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:18:28.0781 4176 uCamMonitor - ok
21:18:28.0873 4176 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:18:28.0879 4176 udfs - ok
21:18:28.0941 4176 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:18:28.0945 4176 UI0Detect - ok
21:18:29.0064 4176 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:18:29.0070 4176 uliagpkx - ok
21:18:29.0157 4176 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:18:29.0160 4176 umbus - ok
21:18:29.0189 4176 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
21:18:29.0192 4176 UmPass - ok
21:18:29.0250 4176 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:18:29.0266 4176 upnphost - ok
21:18:29.0397 4176 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:18:29.0400 4176 USBAAPL64 - ok
21:18:29.0481 4176 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:18:29.0485 4176 usbccgp - ok
21:18:29.0594 4176 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:18:29.0599 4176 usbcir - ok
21:18:29.0647 4176 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
21:18:29.0650 4176 usbehci - ok
21:18:29.0735 4176 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:18:29.0752 4176 usbhub - ok
21:18:29.0817 4176 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:18:29.0819 4176 usbohci - ok
21:18:29.0913 4176 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:18:29.0915 4176 usbprint - ok
21:18:29.0985 4176 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:18:29.0987 4176 usbscan - ok
21:18:30.0030 4176 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:18:30.0033 4176 USBSTOR - ok
21:18:30.0124 4176 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
21:18:30.0129 4176 usbuhci - ok
21:18:30.0217 4176 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:18:30.0239 4176 usbvideo - ok
21:18:30.0287 4176 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:18:30.0290 4176 UxSms - ok
21:18:30.0416 4176 VAIO Entertainment TV Device Arbitration Service (4e7135d6d0127067e4cfee12259f895d) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
21:18:30.0459 4176 VAIO Entertainment TV Device Arbitration Service - ok
21:18:30.0553 4176 VAIO Event Service (d4197cf0c8567046fd4af28ff47af528) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
21:18:30.0587 4176 VAIO Event Service - ok
21:18:30.0913 4176 VAIO Power Management (b8c9a7010afd5cbbe194cb9ef7c4fd14) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
21:18:30.0919 4176 VAIO Power Management - ok
21:18:31.0096 4176 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:18:31.0098 4176 VaultSvc - ok
21:18:31.0273 4176 VCFw (6a740f5ff3246c3be3dd317299efc88e) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
21:18:31.0295 4176 VCFw - ok
21:18:31.0429 4176 VcmIAlzMgr (fd03ac6cd1571aa8b2ff56d3c600e26e) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
21:18:31.0438 4176 VcmIAlzMgr - ok
21:18:31.0498 4176 VcmINSMgr (9d9b34b430b4dc683112f59c80d20ab8) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
21:18:31.0535 4176 VcmINSMgr - ok
21:18:31.0638 4176 VcmXmlIfHelper (dfe10c68ef4684f7754fcca39a4cc6ba) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
21:18:31.0687 4176 VcmXmlIfHelper - ok
21:18:32.0289 4176 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:18:32.0291 4176 vdrvroot - ok
21:18:32.0402 4176 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:18:32.0464 4176 vds - ok
21:18:32.0564 4176 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:18:32.0567 4176 vga - ok
21:18:32.0619 4176 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:18:32.0622 4176 VgaSave - ok
21:18:32.0720 4176 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:18:32.0725 4176 vhdmp - ok
21:18:32.0775 4176 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:18:32.0777 4176 viaide - ok
21:18:32.0847 4176 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:18:32.0849 4176 volmgr - ok
21:18:32.0979 4176 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:18:33.0000 4176 volmgrx - ok
21:18:33.0062 4176 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:18:33.0082 4176 volsnap - ok
21:18:33.0142 4176 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
21:18:33.0167 4176 vsmraid - ok
21:18:33.0464 4176 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:18:33.0511 4176 VSS - ok
21:18:33.0862 4176 VUAgent (d62d16e057be87f5b84a54d1b83822c4) C:\Program Files\Sony\VAIO Update Common\VUAgent.exe
21:18:33.0873 4176 VUAgent - ok
21:18:34.0217 4176 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:18:34.0219 4176 vwifibus - ok
21:18:34.0271 4176 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:18:34.0274 4176 vwififlt - ok
21:18:34.0396 4176 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:18:34.0398 4176 vwifimp - ok
21:18:34.0563 4176 VzCdbSvc (d8bef4ac1eac809dbdbd441d6cff6c4c) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
21:18:34.0585 4176 VzCdbSvc - ok
21:18:34.0639 4176 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:18:34.0780 4176 W32Time - ok
21:18:34.0834 4176 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
21:18:34.0836 4176 WacomPen - ok
21:18:34.0954 4176 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:18:34.0957 4176 WANARP - ok
21:18:35.0033 4176 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:18:35.0034 4176 Wanarpv6 - ok
21:18:35.0272 4176 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:18:35.0322 4176 WatAdminSvc - ok
21:18:35.0564 4176 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:18:35.0666 4176 wbengine - ok
21:18:35.0837 4176 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:18:35.0844 4176 WbioSrvc - ok
21:18:36.0026 4176 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:18:36.0053 4176 wcncsvc - ok
21:18:36.0113 4176 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:18:36.0235 4176 WcsPlugInService - ok
21:18:36.0329 4176 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
21:18:36.0331 4176 Wd - ok
21:18:36.0424 4176 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:18:36.0468 4176 Wdf01000 - ok
21:18:36.0511 4176 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:18:36.0528 4176 WdiServiceHost - ok
21:18:36.0532 4176 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:18:36.0535 4176 WdiSystemHost - ok
21:18:36.0652 4176 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:18:36.0742 4176 WebClient - ok
21:18:36.0803 4176 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:18:36.0838 4176 Wecsvc - ok
21:18:36.0878 4176 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:18:36.0886 4176 wercplsupport - ok
21:18:36.0918 4176 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:18:36.0981 4176 WerSvc - ok
21:18:37.0216 4176 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:18:37.0218 4176 WfpLwf - ok
21:18:37.0288 4176 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:18:37.0290 4176 WIMMount - ok
21:18:37.0297 4176 WinHttpAutoProxySvc - ok
21:18:37.0447 4176 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:18:37.0466 4176 Winmgmt - ok
21:18:37.0942 4176 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:18:38.0051 4176 WinRM - ok
21:18:38.0444 4176 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:18:38.0447 4176 WinUsb - ok
21:18:38.0608 4176 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:18:38.0665 4176 Wlansvc - ok
21:18:38.0852 4176 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:18:38.0923 4176 wlcrasvc - ok
21:18:39.0346 4176 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:18:39.0427 4176 wlidsvc - ok
21:18:39.0614 4176 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:18:39.0623 4176 WmiAcpi - ok
21:18:39.0739 4176 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:18:39.0761 4176 wmiApSrv - ok
21:18:39.0887 4176 WMPNetworkSvc - ok
21:18:39.0968 4176 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:18:39.0972 4176 WPCSvc - ok
21:18:40.0012 4176 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:18:40.0030 4176 WPDBusEnum - ok
21:18:40.0092 4176 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:18:40.0094 4176 ws2ifsl - ok
21:18:40.0099 4176 WSearch - ok
21:18:40.0145 4176 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:18:40.0149 4176 WudfPf - ok
21:18:40.0319 4176 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:18:40.0323 4176 WUDFRd - ok
21:18:40.0425 4176 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:18:40.0430 4176 wudfsvc - ok
21:18:40.0709 4176 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:18:40.0759 4176 WwanSvc - ok
21:18:40.0859 4176 yukonw7 (6affd75c6807b3dd3ab018e27b88ef95) C:\Windows\system32\DRIVERS\yk62x64.sys
21:18:40.0874 4176 yukonw7 - ok
21:18:41.0331 4176 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:18:42.0315 4176 \Device\Harddisk0\DR0 - ok
21:18:42.0324 4176 MBR (0x1B8) (06449e7c4af0550b77e260798769aa40) \Device\Harddisk3\DR6
21:18:42.0447 4176 \Device\Harddisk3\DR6 - ok
21:18:42.0488 4176 Boot (0x1200) (9f28d15db0c45a50d6e406a15ff487a6) \Device\Harddisk0\DR0\Partition0
21:18:42.0494 4176 \Device\Harddisk0\DR0\Partition0 - ok
21:18:42.0526 4176 Boot (0x1200) (87945f300c357a4f2aee92e445406b59) \Device\Harddisk0\DR0\Partition1
21:18:42.0528 4176 \Device\Harddisk0\DR0\Partition1 - ok
21:18:42.0534 4176 Boot (0x1200) (2bfa03d755c41244fe462c52dee80140) \Device\Harddisk3\DR6\Partition0
21:18:42.0535 4176 \Device\Harddisk3\DR6\Partition0 - ok
21:18:42.0536 4176 ============================================================
21:18:42.0536 4176 Scan finished
21:18:42.0536 4176 ============================================================
21:18:42.0551 4780 Detected object count: 0
21:18:42.0551 4780 Actual detected object count: 0
21:22:48.0149 2332 Deinitialize success




aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-11 21:46:40
-----------------------------
21:46:40.775 OS Version: Windows x64 6.1.7601 Service Pack 1
21:46:40.775 Number of processors: 2 586 0x170A
21:46:40.775 ComputerName: VAIO UserName:
21:46:41.664 Initialize success
21:46:51.149 AVAST engine defs: 12081101
21:46:57.748 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:46:57.748 Disk 0 Vendor: WDC_WD32 11.0 Size: 305245MB BusType: 3
21:46:57.748 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000074
21:46:57.763 Disk 1 Vendor: RICOH 01 Size: 305245MB BusType: 0
21:46:57.763 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000075
21:46:57.763 Disk 2 Vendor: RICOH 02 Size: 305245MB BusType: 0
21:46:57.779 Disk 0 MBR read successfully
21:46:57.779 Disk 0 MBR scan
21:46:57.795 Disk 0 Windows 7 default MBR code
21:46:57.810 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 11262 MB offset 2048
21:46:57.826 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 23066624
21:46:57.841 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 293881 MB offset 23271424
21:46:57.857 Disk 0 scanning C:\Windows\system32\drivers
21:47:20.954 Service scanning
21:47:56.336 Modules scanning
21:47:56.336 Disk 0 trace - called modules:
21:47:56.383 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
21:47:56.398 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8005768520]
21:47:56.414 3 CLASSPNP.SYS[fffff88001bae43f] -> nt!IofCallDriver -> [0xfffffa8003d0f950]
21:47:56.414 5 ACPI.sys[fffff88000f9a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800476b050]
21:47:57.443 AVAST engine scan C:\Windows
21:48:00.532 AVAST engine scan C:\Windows\system32
21:50:40.493 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
21:50:48.611 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
21:54:35.107 AVAST engine scan C:\Windows\system32\drivers
21:54:51.475 AVAST engine scan C:\Users\Tamara
21:55:53.239 Disk 0 MBR has been saved successfully to "D:\MBR.dat"
21:55:53.259 The log file has been saved successfully to "D:\aswMBR.txt"


C:\ProgramData\Microsoft\Windows\DRM\538C.tmp a variant of Win32/Kryptik.AJUZ trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\E04.tmp Win64/Olmarik.AH trojan cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\E04.tmp.dat a variant of Win32/Kryptik.AJUZ trojan cleaned by deleting - quarantined
C:\Users\Tamara\AppData\Local\Temp\BD75.tmp a variant of Win32/Kryptik.BG trojan cleaned by deleting - quarantined
C:\Users\Tamara\AppData\Local\Temp\E92.tmp a variant of Win32/Kryptik.AJUZ trojan cleaned by deleting - quarantined
C:\Users\Tamara\AppData\Local\Temp\V.class a variant of Java/Exploit.CVE-2011-3544.BQ trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c07315ef-7f5a-0ee3-28fd-ab06aefa9d09}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c07315ef-7f5a-0ee3-28fd-ab06aefa9d09}\U\000000cb.@ Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c07315ef-7f5a-0ee3-28fd-ab06aefa9d09}\U\80000000.@ Win64/Sirefef.AP trojan cleaned by deleting - quarantined
C:\Windows\Installer\{c07315ef-7f5a-0ee3-28fd-ab06aefa9d09}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
Operating memory a variant of Win32/Sirefef.EZ trojan

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:56 PM

Posted 12 August 2012 - 04:15 AM

We need advanced tools to remove this one

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#5 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,947 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:07:56 PM

Posted 12 August 2012 - 03:27 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic464908.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users