Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32/sirefef


  • Please log in to reply
20 replies to this topic

#1 rawriminvisible

rawriminvisible

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 13 August 2012 - 09:11 PM

One of my employees, notified me today that they are getting virus alert via CA for...

Sirefef.FY
Sirefef.GY
Sirefef.GL
Sirefef.GK

Her laptop is personal and work. I informed her about you guys and she gave me her laptop hoping you guys can help me.

About a month ago her whole Photoshop suite crashed and even after spending days on the phone with Adobe still remains not working, she is a professional graphic artist. So that was a hard hit for her, but she uses one of the laptops in the office if she needs to. Not sure if that is related or not. Because she was updating her usb drive it updates with or through Adobe and after she finished is when CA popped up the alert.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 13 August 2012 - 09:18 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 13 August 2012 - 10:14 PM

Here is the first log.
Username and computer name removed for privacy.
I ran the second part, updated the Avast! hit scan and a few minutes later the computer crashed and blue screened. Now there is no wireless and CA stopped reporting Sirefef and is no reporting:

Filename
c:\windows\assembly\gac\desktop.ini

Infection
ZAccess.ER

I will now be using one of my laptops and flash drive to install removal software and post logs.
(No worries of infection, this laptop get scrubbed every other month)

Would you like me to try step two again and also attempt step 3?

Below is the log from the first scan...



22:20:01.0445 9452 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
22:20:03.0465 9452 ============================================================
22:20:03.0465 9452 Current date / time: 2012/08/13 22:20:03.0465
22:20:03.0465 9452 SystemInfo:
22:20:03.0465 9452
22:20:03.0465 9452 OS Version: 6.0.6002 ServicePack: 2.0
22:20:03.0466 9452 Product type: Workstation
22:20:03.0466 9452 ComputerName: {Removed by OP}-PC
22:20:03.0466 9452 UserName: {Removed by OP}
22:20:03.0466 9452 Windows directory: C:\Windows
22:20:03.0466 9452 System windows directory: C:\Windows
22:20:03.0466 9452 Processor architecture: Intel x86
22:20:03.0466 9452 Number of processors: 2
22:20:03.0466 9452 Page size: 0x1000
22:20:03.0466 9452 Boot type: Normal boot
22:20:03.0466 9452 ============================================================
22:20:06.0436 9452 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:20:06.0438 9452 ============================================================
22:20:06.0438 9452 \Device\Harddisk0\DR0:
22:20:06.0439 9452 MBR partitions:
22:20:06.0439 9452 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x242C2800
22:20:06.0439 9452 ============================================================
22:20:06.0479 9452 C: <-> \Device\Harddisk0\DR0\Partition0
22:20:06.0479 9452 ============================================================
22:20:06.0479 9452 Initialize success
22:20:06.0479 9452 ============================================================
22:20:59.0221 6224 ============================================================
22:20:59.0221 6224 Scan started
22:20:59.0222 6224 Mode: Manual; TDLFS;
22:20:59.0222 6224 ============================================================
22:21:02.0093 6224 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:21:02.0114 6224 ACPI - ok
22:21:02.0234 6224 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:21:02.0247 6224 AdobeARMservice - ok
22:21:02.0360 6224 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:21:02.0373 6224 AdobeFlashPlayerUpdateSvc - ok
22:21:02.0472 6224 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:21:02.0492 6224 adp94xx - ok
22:21:02.0522 6224 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:21:02.0541 6224 adpahci - ok
22:21:02.0568 6224 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:21:02.0583 6224 adpu160m - ok
22:21:02.0620 6224 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:21:02.0637 6224 adpu320 - ok
22:21:02.0687 6224 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
22:21:02.0699 6224 AeLookupSvc - ok
22:21:02.0778 6224 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:21:02.0798 6224 AFD - ok
22:21:02.0851 6224 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
22:21:02.0863 6224 AgereModemAudio - ok
22:21:02.0950 6224 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
22:21:02.0978 6224 AgereSoftModem - ok
22:21:03.0017 6224 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:21:03.0058 6224 agp440 - ok
22:21:03.0117 6224 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:21:03.0131 6224 aic78xx - ok
22:21:03.0164 6224 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
22:21:03.0197 6224 ALG - ok
22:21:03.0229 6224 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:21:03.0246 6224 aliide - ok
22:21:03.0279 6224 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:21:03.0292 6224 amdagp - ok
22:21:03.0314 6224 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:21:03.0327 6224 amdide - ok
22:21:03.0357 6224 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:21:03.0370 6224 AmdK7 - ok
22:21:03.0397 6224 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:21:03.0409 6224 AmdK8 - ok
22:21:03.0477 6224 androidusb (dd8d9c597af7cd2f6b70a3d6a4a1acea) C:\Windows\system32\Drivers\ssadadb.sys
22:21:03.0526 6224 androidusb - ok
22:21:03.0591 6224 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
22:21:03.0603 6224 Appinfo - ok
22:21:03.0981 6224 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:21:03.0992 6224 Apple Mobile Device - ok
22:21:04.0060 6224 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:21:04.0073 6224 arc - ok
22:21:04.0131 6224 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:21:04.0144 6224 arcsas - ok
22:21:04.0285 6224 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:21:04.0296 6224 aspnet_state - ok
22:21:04.0324 6224 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:21:04.0342 6224 AsyncMac - ok
22:21:04.0385 6224 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:21:04.0398 6224 atapi - ok
22:21:04.0493 6224 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
22:21:04.0535 6224 athr - ok
22:21:04.0621 6224 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:21:04.0639 6224 AudioEndpointBuilder - ok
22:21:04.0645 6224 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
22:21:04.0649 6224 Audiosrv - ok
22:21:04.0694 6224 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:21:04.0704 6224 Beep - ok
22:21:04.0807 6224 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
22:21:04.0821 6224 BFE - ok
22:21:04.0937 6224 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
22:21:04.0977 6224 BITS - ok
22:21:05.0070 6224 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:21:05.0082 6224 blbdrive - ok
22:21:05.0296 6224 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
22:21:05.0313 6224 Bonjour Service - ok
22:21:05.0424 6224 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:21:05.0435 6224 bowser - ok
22:21:05.0499 6224 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:21:05.0509 6224 BrFiltLo - ok
22:21:05.0529 6224 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:21:05.0539 6224 BrFiltUp - ok
22:21:05.0639 6224 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
22:21:05.0651 6224 Browser - ok
22:21:05.0704 6224 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:21:05.0716 6224 Brserid - ok
22:21:05.0740 6224 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:21:05.0752 6224 BrSerWdm - ok
22:21:05.0819 6224 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:21:05.0829 6224 BrUsbMdm - ok
22:21:05.0834 6224 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:21:05.0849 6224 BrUsbSer - ok
22:21:05.0871 6224 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:21:05.0882 6224 BTHMODEM - ok
22:21:05.0991 6224 CaCCProvSP (e8bbdf1199fc425c243191960a78755e) C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
22:21:05.0995 6224 CaCCProvSP - ok
22:21:06.0069 6224 CAISafe (58da9ab565e54a3a7c1fb53ceb075f49) C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
22:21:06.0081 6224 CAISafe - ok
22:21:06.0185 6224 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:21:06.0207 6224 cdfs - ok
22:21:06.0300 6224 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:21:06.0312 6224 cdrom - ok
22:21:06.0381 6224 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:21:06.0393 6224 CertPropSvc - ok
22:21:06.0437 6224 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:21:06.0449 6224 circlass - ok
22:21:06.0609 6224 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:21:06.0629 6224 CLFS - ok
22:21:06.0740 6224 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:21:06.0752 6224 clr_optimization_v2.0.50727_32 - ok
22:21:07.0756 6224 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:21:07.0770 6224 clr_optimization_v4.0.30319_32 - ok
22:21:07.0830 6224 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:21:07.0840 6224 CmBatt - ok
22:21:07.0861 6224 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:21:07.0884 6224 cmdide - ok
22:21:07.0908 6224 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:21:07.0919 6224 Compbatt - ok
22:21:07.0923 6224 COMSysApp - ok
22:21:08.0009 6224 ConfigFree Service (d10d01b2dfcd8d2f32a32ed29e8da1c2) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
22:21:08.0019 6224 ConfigFree Service - ok
22:21:08.0044 6224 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:21:08.0056 6224 crcdisk - ok
22:21:08.0105 6224 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:21:08.0116 6224 Crusoe - ok
22:21:08.0169 6224 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
22:21:08.0183 6224 CryptSvc - ok
22:21:08.0256 6224 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:21:08.0288 6224 DcomLaunch - ok
22:21:08.0337 6224 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:21:08.0352 6224 DfsC - ok
22:21:08.0500 6224 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
22:21:08.0551 6224 DFSR - ok
22:21:08.0774 6224 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
22:21:08.0802 6224 Dhcp - ok
22:21:08.0900 6224 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:21:08.0912 6224 disk - ok
22:21:09.0230 6224 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
22:21:09.0246 6224 Dnscache - ok
22:21:09.0384 6224 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
22:21:09.0402 6224 dot3svc - ok
22:21:09.0488 6224 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
22:21:09.0500 6224 Dot4 - ok
22:21:09.0580 6224 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:21:09.0591 6224 Dot4Print - ok
22:21:09.0603 6224 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
22:21:09.0614 6224 dot4usb - ok
22:21:09.0655 6224 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
22:21:09.0671 6224 DPS - ok
22:21:09.0707 6224 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:21:09.0717 6224 drmkaud - ok
22:21:09.0858 6224 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:21:09.0883 6224 DXGKrnl - ok
22:21:09.0930 6224 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:21:09.0942 6224 E1G60 - ok
22:21:09.0988 6224 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
22:21:10.0004 6224 EapHost - ok
22:21:10.0070 6224 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:21:10.0110 6224 Ecache - ok
22:21:10.0160 6224 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
22:21:10.0178 6224 ehRecvr - ok
22:21:10.0201 6224 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
22:21:10.0215 6224 ehSched - ok
22:21:10.0225 6224 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
22:21:10.0250 6224 ehstart - ok
22:21:10.0430 6224 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:21:10.0453 6224 elxstor - ok
22:21:10.0556 6224 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
22:21:10.0584 6224 EMDMgmt - ok
22:21:10.0627 6224 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:21:10.0638 6224 ErrDev - ok
22:21:10.0693 6224 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
22:21:10.0711 6224 EventSystem - ok
22:21:10.0782 6224 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:21:10.0799 6224 exfat - ok
22:21:10.0873 6224 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:21:10.0962 6224 fastfat - ok
22:21:11.0024 6224 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:21:11.0036 6224 fdc - ok
22:21:11.0071 6224 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
22:21:11.0088 6224 fdPHost - ok
22:21:11.0182 6224 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
22:21:11.0199 6224 FDResPub - ok
22:21:11.0316 6224 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:21:11.0329 6224 FileInfo - ok
22:21:11.0351 6224 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:21:11.0365 6224 Filetrace - ok
22:21:11.0627 6224 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:21:11.0648 6224 FLEXnet Licensing Service - ok
22:21:11.0694 6224 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:21:11.0736 6224 flpydisk - ok
22:21:11.0887 6224 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:21:11.0905 6224 FltMgr - ok
22:21:12.0021 6224 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
22:21:12.0064 6224 FontCache - ok
22:21:12.0160 6224 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:21:12.0171 6224 FontCache3.0.0.0 - ok
22:21:12.0221 6224 fssfltr (b0082808a6856a252f7cdd939892ce50) C:\Windows\system32\DRIVERS\fssfltr.sys
22:21:12.0241 6224 fssfltr - ok
22:21:12.0472 6224 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
22:21:12.0514 6224 fsssvc - ok
22:21:12.0653 6224 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
22:21:12.0664 6224 Fs_Rec - ok
22:21:12.0703 6224 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
22:21:12.0715 6224 FwLnk - ok
22:21:13.0319 6224 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:21:13.0662 6224 gagp30kx - ok
22:21:13.0966 6224 GameConsoleService (9dcf7dfe5fdbb0a47f8ee01fe13c2876) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
22:21:14.0030 6224 GameConsoleService - ok
22:21:14.0117 6224 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:21:14.0129 6224 GEARAspiWDM - ok
22:21:14.0215 6224 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
22:21:14.0570 6224 gpsvc - ok
22:21:14.0676 6224 gusvc (649f407a844dde2b97bc086af97d663b) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:21:14.0693 6224 gusvc - ok
22:21:14.0765 6224 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:21:14.0788 6224 HdAudAddService - ok
22:21:14.0852 6224 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:21:14.0922 6224 HDAudBus - ok
22:21:14.0950 6224 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:21:14.0981 6224 HidBth - ok
22:21:15.0008 6224 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:21:16.0338 6224 HidIr - ok
22:21:16.0397 6224 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
22:21:16.0439 6224 hidserv - ok
22:21:16.0478 6224 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:21:16.0514 6224 HidUsb - ok
22:21:16.0545 6224 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
22:21:16.0569 6224 hkmsvc - ok
22:21:16.0615 6224 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:21:16.0627 6224 HpCISSs - ok
22:21:16.0867 6224 hpqcxs08 (97aac45a375168c6a2297beeb9692e31) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:21:16.0886 6224 hpqcxs08 - ok
22:21:16.0924 6224 hpqddsvc (19a4fb67b1c97ea18edff44340973cd9) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:21:16.0937 6224 hpqddsvc - ok
22:21:17.0064 6224 HPSLPSVC (56fc98f1014ea8dc51b92839c32759ec) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
22:21:17.0089 6224 HPSLPSVC - ok
22:21:17.0145 6224 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:21:17.0185 6224 HTTP - ok
22:21:17.0243 6224 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:21:17.0263 6224 i2omp - ok
22:21:17.0311 6224 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:21:17.0325 6224 i8042prt - ok
22:21:17.0441 6224 IAANTMON (cb686f44bf955ea02520710a56874fa4) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
22:21:17.0459 6224 IAANTMON - ok
22:21:17.0519 6224 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
22:21:17.0533 6224 iaStor - ok
22:21:17.0569 6224 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:21:17.0591 6224 iaStorV - ok
22:21:17.0696 6224 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
22:21:17.0715 6224 IDriverT - ok
22:21:17.0835 6224 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:21:17.0872 6224 idsvc - ok
22:21:18.0042 6224 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:21:18.0096 6224 igfx - ok
22:21:18.0221 6224 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:21:18.0235 6224 iirsp - ok
22:21:18.0289 6224 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
22:21:18.0318 6224 IKEEXT - ok
22:21:18.0545 6224 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
22:21:18.0597 6224 IntcAzAudAddService - ok
22:21:18.0717 6224 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:21:18.0756 6224 intelide - ok
22:21:18.0790 6224 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:21:18.0802 6224 intelppm - ok
22:21:18.0842 6224 IO_Memory - ok
22:21:18.0898 6224 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
22:21:18.0920 6224 IPBusEnum - ok
22:21:18.0944 6224 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:21:18.0956 6224 IpFilterDriver - ok
22:21:18.0960 6224 IpInIp - ok
22:21:18.0995 6224 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:21:19.0008 6224 IPMIDRV - ok
22:21:19.0032 6224 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:21:19.0061 6224 IPNAT - ok
22:21:19.0190 6224 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
22:21:19.0214 6224 iPod Service - ok
22:21:19.0248 6224 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:21:19.0261 6224 IRENUM - ok
22:21:19.0287 6224 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:21:19.0300 6224 isapnp - ok
22:21:19.0429 6224 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:21:19.0446 6224 iScsiPrt - ok
22:21:19.0468 6224 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:21:19.0482 6224 iteatapi - ok
22:21:19.0536 6224 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:21:19.0550 6224 iteraid - ok
22:21:19.0631 6224 ITMRTSVC (5e849a81827d643e7e35575e14225e92) C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
22:21:19.0645 6224 ITMRTSVC - ok
22:21:19.0751 6224 jswpsapi (957135960e7533ea5c7ea0bfb34f8efd) C:\Program Files\Jumpstart\jswpsapi.exe
22:21:19.0785 6224 jswpsapi - ok
22:21:19.0912 6224 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:21:19.0935 6224 kbdclass - ok
22:21:19.0969 6224 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
22:21:19.0988 6224 kbdhid - ok
22:21:20.0035 6224 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:21:20.0060 6224 KeyIso - ok
22:21:20.0224 6224 KmxAgent (f4ffca2de8290de6118583bf74962243) C:\Windows\system32\DRIVERS\kmxagent.sys
22:21:20.0511 6224 KmxAgent - ok
22:21:20.0591 6224 KmxCF (990484e1d6c9164caf9ab3ae86b36283) C:\Windows\system32\DRIVERS\KmxCF.sys
22:21:20.0606 6224 KmxCF - ok
22:21:20.0650 6224 KmxCfg (df0de1110162e761a7f60c392ad177dd) C:\Windows\system32\DRIVERS\kmxcfg.sys
22:21:20.0664 6224 KmxCfg - ok
22:21:20.0711 6224 KmxFile (28c7643d33ed066622e93260f818adfd) C:\Windows\system32\DRIVERS\KmxFile.sys
22:21:20.0726 6224 KmxFile - ok
22:21:20.0743 6224 KmxFilter (015e74f5372af2c5e44f7d5192c4ce62) C:\Windows\system32\DRIVERS\KmxFilter.sys
22:21:20.0758 6224 KmxFilter - ok
22:21:20.0773 6224 KmxFw (e382e61fec3a85b283fb23bedf21848a) C:\Windows\system32\DRIVERS\kmxfw.sys
22:21:20.0788 6224 KmxFw - ok
22:21:20.0851 6224 KmxSbx (2df089f8594ae18d5c1a1bfbdd967eab) C:\Windows\system32\DRIVERS\KmxSbx.sys
22:21:20.0867 6224 KmxSbx - ok
22:21:20.0959 6224 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
22:21:20.0977 6224 KR10I - ok
22:21:21.0039 6224 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
22:21:21.0056 6224 KR10N - ok
22:21:21.0123 6224 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
22:21:21.0145 6224 KSecDD - ok
22:21:21.0246 6224 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
22:21:21.0278 6224 KtmRm - ok
22:21:21.0335 6224 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
22:21:21.0375 6224 LanmanServer - ok
22:21:21.0422 6224 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
22:21:21.0461 6224 LanmanWorkstation - ok
22:21:21.0555 6224 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:21:21.0568 6224 lltdio - ok
22:21:21.0630 6224 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
22:21:21.0656 6224 lltdsvc - ok
22:21:21.0677 6224 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
22:21:21.0700 6224 lmhosts - ok
22:21:21.0734 6224 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:21:21.0749 6224 LSI_FC - ok
22:21:21.0792 6224 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:21:21.0806 6224 LSI_SAS - ok
22:21:21.0846 6224 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:21:21.0860 6224 LSI_SCSI - ok
22:21:21.0886 6224 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:21:21.0899 6224 luafv - ok
22:21:22.0301 6224 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
22:21:22.0357 6224 Mcx2Svc - ok
22:21:22.0402 6224 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:21:22.0415 6224 megasas - ok
22:21:22.0468 6224 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:21:22.0488 6224 MegaSR - ok
22:21:22.0680 6224 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:21:22.0717 6224 Microsoft Office Groove Audit Service - ok
22:21:22.0745 6224 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:21:22.0772 6224 MMCSS - ok
22:21:22.0786 6224 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:21:22.0810 6224 Modem - ok
22:21:22.0841 6224 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:21:22.0857 6224 monitor - ok
22:21:22.0867 6224 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:21:22.0883 6224 mouclass - ok
22:21:22.0899 6224 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:21:22.0913 6224 mouhid - ok
22:21:22.0933 6224 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:21:22.0947 6224 MountMgr - ok
22:21:23.0023 6224 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:21:23.0048 6224 MozillaMaintenance - ok
22:21:23.0111 6224 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:21:23.0130 6224 mpio - ok
22:21:23.0164 6224 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:21:23.0196 6224 mpsdrv - ok
22:21:23.0219 6224 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:21:23.0248 6224 Mraid35x - ok
22:21:23.0303 6224 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:21:23.0330 6224 MRxDAV - ok
22:21:23.0379 6224 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:21:23.0394 6224 mrxsmb - ok
22:21:23.0470 6224 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:21:23.0517 6224 mrxsmb10 - ok
22:21:23.0539 6224 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:21:24.0080 6224 mrxsmb20 - ok
22:21:24.0135 6224 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:21:24.0169 6224 msahci - ok
22:21:24.0217 6224 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:21:24.0232 6224 msdsm - ok
22:21:24.0287 6224 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
22:21:24.0314 6224 MSDTC - ok
22:21:24.0345 6224 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:21:24.0358 6224 Msfs - ok
22:21:24.0438 6224 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:21:24.0492 6224 msisadrv - ok
22:21:24.0540 6224 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
22:21:24.0562 6224 MSiSCSI - ok
22:21:24.0566 6224 msiserver - ok
22:21:24.0591 6224 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:21:24.0603 6224 MSKSSRV - ok
22:21:24.0617 6224 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:21:24.0645 6224 MSPCLOCK - ok
22:21:24.0675 6224 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:21:24.0687 6224 MSPQM - ok
22:21:24.0742 6224 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:21:24.0759 6224 MsRPC - ok
22:21:24.0790 6224 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:21:24.0836 6224 mssmbios - ok
22:21:24.0864 6224 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:21:24.0877 6224 MSTEE - ok
22:21:24.0892 6224 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:21:24.0906 6224 Mup - ok
22:21:24.0967 6224 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
22:21:25.0007 6224 napagent - ok
22:21:25.0075 6224 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:21:25.0093 6224 NativeWifiP - ok
22:21:25.0200 6224 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:21:25.0235 6224 NDIS - ok
22:21:25.0258 6224 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:21:25.0271 6224 NdisTapi - ok
22:21:25.0320 6224 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:21:25.0333 6224 Ndisuio - ok
22:21:25.0400 6224 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:21:25.0415 6224 NdisWan - ok
22:21:25.0428 6224 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:21:25.0442 6224 NDProxy - ok
22:21:25.0512 6224 Net Driver HPZ12 (69c503c004f49aee8b8e3067cc047ba7) C:\Windows\system32\HPZinw12.dll
22:21:25.0531 6224 Net Driver HPZ12 - ok
22:21:25.0546 6224 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:21:25.0559 6224 NetBIOS - ok
22:21:25.0615 6224 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:21:25.0635 6224 netbt - ok
22:21:25.0680 6224 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:21:25.0694 6224 Netlogon - ok
22:21:25.0732 6224 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
22:21:25.0762 6224 Netman - ok
22:21:25.0861 6224 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:21:25.0875 6224 NetMsmqActivator - ok
22:21:25.0880 6224 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:21:25.0884 6224 NetPipeActivator - ok
22:21:25.0909 6224 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
22:21:25.0940 6224 netprofm - ok
22:21:25.0945 6224 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:21:25.0949 6224 NetTcpActivator - ok
22:21:25.0953 6224 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:21:25.0957 6224 NetTcpPortSharing - ok
22:21:25.0998 6224 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:21:26.0337 6224 nfrd960 - ok
22:21:26.0371 6224 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
22:21:26.0400 6224 NlaSvc - ok
22:21:26.0447 6224 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:21:26.0493 6224 Npfs - ok
22:21:26.0513 6224 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
22:21:26.0542 6224 nsi - ok
22:21:26.0557 6224 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:21:26.0571 6224 nsiproxy - ok
22:21:26.0662 6224 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:21:26.0701 6224 Ntfs - ok
22:21:26.0729 6224 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:21:26.0758 6224 ntrigdigi - ok
22:21:26.0783 6224 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:21:26.0795 6224 Null - ok
22:21:26.0826 6224 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:21:26.0841 6224 nvraid - ok
22:21:26.0871 6224 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:21:26.0885 6224 nvstor - ok
22:21:26.0920 6224 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:21:26.0935 6224 nv_agp - ok
22:21:26.0940 6224 NwlnkFlt - ok
22:21:26.0946 6224 NwlnkFwd - ok
22:21:27.0086 6224 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:21:27.0108 6224 odserv - ok
22:21:27.0151 6224 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:21:27.0171 6224 ohci1394 - ok
22:21:27.0209 6224 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:21:27.0224 6224 ose - ok
22:21:27.0301 6224 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:21:27.0340 6224 p2pimsvc - ok
22:21:27.0348 6224 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:21:27.0373 6224 p2psvc - ok
22:21:27.0405 6224 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:21:27.0419 6224 Parport - ok
22:21:27.0460 6224 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
22:21:27.0475 6224 partmgr - ok
22:21:27.0509 6224 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:21:27.0522 6224 Parvdm - ok
22:21:27.0543 6224 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
22:21:27.0574 6224 PcaSvc - ok
22:21:27.0622 6224 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:21:27.0640 6224 pci - ok
22:21:27.0656 6224 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
22:21:27.0669 6224 pciide - ok
22:21:27.0715 6224 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:21:27.0736 6224 pcmcia - ok
22:21:27.0787 6224 PCTINDIS5 (a31c8ce8d17b4ee912479c8a2aba23f7) C:\Windows\system32\PCTINDIS5.SYS
22:21:27.0818 6224 PCTINDIS5 - ok
22:21:27.0889 6224 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:21:27.0933 6224 PEAUTH - ok
22:21:28.0043 6224 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
22:21:28.0099 6224 pla - ok
22:21:28.0308 6224 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
22:21:28.0347 6224 PlugPlay - ok
22:21:28.0461 6224 Pml Driver HPZ12 (12b4549d515cb26bb8d375038017ca65) C:\Windows\system32\HPZipm12.dll
22:21:28.0479 6224 Pml Driver HPZ12 - ok
22:21:28.0681 6224 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:21:28.0706 6224 PNRPAutoReg - ok
22:21:28.0716 6224 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
22:21:28.0741 6224 PNRPsvc - ok
22:21:28.0822 6224 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
22:21:28.0847 6224 PolicyAgent - ok
22:21:29.0077 6224 PPCtlPriv (f0d7ba5be2e851b95b03e1b40095d3ff) C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
22:21:29.0091 6224 PPCtlPriv - ok
22:21:29.0172 6224 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:21:29.0187 6224 PptpMiniport - ok
22:21:29.0216 6224 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:21:29.0229 6224 Processor - ok
22:21:29.0288 6224 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
22:21:29.0321 6224 ProfSvc - ok
22:21:29.0358 6224 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:21:29.0372 6224 ProtectedStorage - ok
22:21:29.0570 6224 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:21:29.0589 6224 PSched - ok
22:21:29.0624 6224 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
22:21:29.0639 6224 PxHelp20 - ok
22:21:29.0907 6224 QBCFMonitorService (1431f734dcabc6edaa8791f067a144d9) C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
22:21:29.0916 6224 QBCFMonitorService - ok
22:21:29.0994 6224 QBFCService (6bee1814470dc12fa20c53dfc3c97ebb) C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
22:21:30.0006 6224 QBFCService - ok
22:21:30.0251 6224 QBVSS (25fc19badf78b7fb1d835aac4b0b91a5) C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
22:21:30.0281 6224 QBVSS - ok
22:21:30.0633 6224 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:21:30.0671 6224 ql2300 - ok
22:21:30.0734 6224 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:21:30.0765 6224 ql40xx - ok
22:21:30.0912 6224 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
22:21:30.0946 6224 QWAVE - ok
22:21:31.0192 6224 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:21:31.0236 6224 QWAVEdrv - ok
22:21:31.0275 6224 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:21:31.0289 6224 RasAcd - ok
22:21:31.0332 6224 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
22:21:31.0366 6224 RasAuto - ok
22:21:31.0384 6224 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:21:31.0416 6224 Rasl2tp - ok
22:21:31.0465 6224 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
22:21:31.0498 6224 RasMan - ok
22:21:31.0559 6224 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:21:31.0573 6224 RasPppoe - ok
22:21:31.0681 6224 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:21:31.0730 6224 RasSstp - ok
22:21:31.0781 6224 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:21:31.0807 6224 rdbss - ok
22:21:31.0851 6224 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:21:31.0864 6224 RDPCDD - ok
22:21:31.0906 6224 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:21:31.0928 6224 rdpdr - ok
22:21:31.0932 6224 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:21:31.0946 6224 RDPENCDD - ok
22:21:32.0004 6224 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
22:21:32.0021 6224 RDPWD - ok
22:21:32.0060 6224 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
22:21:32.0085 6224 RemoteAccess - ok
22:21:32.0138 6224 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
22:21:32.0172 6224 RemoteRegistry - ok
22:21:32.0238 6224 RimVSerPort (12a2fd77e334b223531f1e2918480d49) C:\Windows\system32\DRIVERS\RimSerial.sys
22:21:32.0252 6224 RimVSerPort - ok
22:21:32.0282 6224 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
22:21:32.0296 6224 ROOTMODEM - ok
22:21:32.0324 6224 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
22:21:32.0348 6224 RpcLocator - ok
22:21:32.0428 6224 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
22:21:32.0454 6224 RpcSs - ok
22:21:32.0481 6224 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:21:32.0496 6224 rspndr - ok
22:21:32.0559 6224 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:21:32.0577 6224 RTL8169 - ok
22:21:32.0626 6224 RTSTOR (4f31cfdebd0a5bc27d45e7ebfefaaf6f) C:\Windows\system32\drivers\RTSTOR.SYS
22:21:32.0641 6224 RTSTOR - ok
22:21:32.0702 6224 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
22:21:32.0716 6224 SamSs - ok
22:21:32.0758 6224 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:21:32.0773 6224 sbp2port - ok
22:21:32.0822 6224 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
22:21:32.0855 6224 SCardSvr - ok
22:21:32.0929 6224 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
22:21:32.0971 6224 Schedule - ok
22:21:33.0014 6224 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
22:21:33.0026 6224 SCPolicySvc - ok
22:21:33.0104 6224 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
22:21:33.0137 6224 SDRSVC - ok
22:21:33.0161 6224 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:21:33.0194 6224 secdrv - ok
22:21:33.0216 6224 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
22:21:33.0248 6224 seclogon - ok
22:21:33.0267 6224 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
22:21:33.0299 6224 SENS - ok
22:21:33.0330 6224 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:21:33.0344 6224 Serenum - ok
22:21:33.0361 6224 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:21:33.0376 6224 Serial - ok
22:21:33.0432 6224 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:21:33.0446 6224 sermouse - ok
22:21:33.0496 6224 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
22:21:33.0529 6224 SessionEnv - ok
22:21:33.0555 6224 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:21:33.0579 6224 sffdisk - ok
22:21:33.0593 6224 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:21:33.0621 6224 sffp_mmc - ok
22:21:33.0641 6224 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:21:33.0654 6224 sffp_sd - ok
22:21:33.0698 6224 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:21:33.0712 6224 sfloppy - ok
22:21:33.0777 6224 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
22:21:33.0816 6224 ShellHWDetection - ok
22:21:33.0839 6224 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:21:33.0854 6224 sisagp - ok
22:21:33.0884 6224 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:21:33.0899 6224 SiSRaid2 - ok
22:21:33.0924 6224 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:21:33.0982 6224 SiSRaid4 - ok
22:21:34.0224 6224 Skype C2C Service (0f97e7a47a52f4a36969f0fc319654c2) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:21:34.0296 6224 Skype C2C Service - ok
22:21:34.0384 6224 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
22:21:34.0464 6224 SkypeUpdate - ok
22:21:34.0753 6224 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
22:21:34.0843 6224 slsvc - ok
22:21:34.0963 6224 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
22:21:35.0002 6224 SLUINotify - ok
22:21:35.0097 6224 SmartFaceVWatchSrv (3566310df25ea5c3b2e9f50f5b50eac1) C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
22:21:35.0112 6224 SmartFaceVWatchSrv - ok
22:21:35.0202 6224 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:21:35.0238 6224 Smb - ok
22:21:35.0283 6224 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
22:21:35.0325 6224 SNMPTRAP - ok
22:21:35.0346 6224 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:21:35.0366 6224 spldr - ok
22:21:35.0422 6224 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
22:21:35.0479 6224 Spooler - ok
22:21:35.0541 6224 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:21:35.0588 6224 srv - ok
22:21:35.0641 6224 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:21:36.0959 6224 srv2 - ok
22:21:37.0008 6224 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:21:37.0023 6224 srvnet - ok
22:21:37.0070 6224 ssadbus (64e44acd8c238fcbbb78f0ba4bdc4b05) C:\Windows\system32\DRIVERS\ssadbus.sys
22:21:37.0105 6224 ssadbus - ok
22:21:37.0173 6224 ssadmdfl (bb2c84a15c765da89fd832b0e73f26ce) C:\Windows\system32\DRIVERS\ssadmdfl.sys
22:21:37.0187 6224 ssadmdfl - ok
22:21:37.0233 6224 ssadmdm (6d0d132ddc6f43eda00dced6d8b1ca31) C:\Windows\system32\DRIVERS\ssadmdm.sys
22:21:37.0273 6224 ssadmdm - ok
22:21:37.0317 6224 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
22:21:37.0354 6224 SSDPSRV - ok
22:21:37.0406 6224 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
22:21:37.0444 6224 SstpSvc - ok
22:21:37.0517 6224 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
22:21:37.0545 6224 StillCam - ok
22:21:37.0621 6224 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
22:21:37.0666 6224 stisvc - ok
22:21:37.0726 6224 SVRPEDRV (3e4239b92139f7174a0da7d53fe5e1ab) C:\Windows\System32\sysprep\PEDrv.sys
22:21:37.0749 6224 SVRPEDRV - ok
22:21:37.0800 6224 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:21:37.0814 6224 swenum - ok
22:21:37.0874 6224 SWNC8U12 (6803bb3083c962beb8e0bf7a534c6c35) C:\Windows\system32\DRIVERS\swnc8u12.sys
22:21:37.0890 6224 SWNC8U12 - ok
22:21:37.0937 6224 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
22:21:37.0981 6224 swprv - ok
22:21:38.0017 6224 swumx12 (4bcfd32a94ac6bd2acfcf08a23787035) C:\Windows\system32\DRIVERS\swumx12.sys
22:21:38.0031 6224 swumx12 - ok
22:21:38.0089 6224 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:21:38.0104 6224 Symc8xx - ok
22:21:38.0121 6224 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:21:38.0136 6224 Sym_hi - ok
22:21:38.0158 6224 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:21:38.0174 6224 Sym_u3 - ok
22:21:38.0227 6224 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
22:21:38.0244 6224 SynTP - ok
22:21:38.0321 6224 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
22:21:38.0367 6224 SysMain - ok
22:21:38.0396 6224 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
22:21:38.0444 6224 TabletInputService - ok
22:21:38.0487 6224 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
22:21:38.0529 6224 TapiSrv - ok
22:21:38.0548 6224 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
22:21:38.0597 6224 TBS - ok
22:21:38.0686 6224 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
22:21:38.0715 6224 Tcpip - ok
22:21:38.0729 6224 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
22:21:38.0749 6224 Tcpip6 - ok
22:21:38.0792 6224 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:21:38.0806 6224 tcpipreg - ok
22:21:38.0835 6224 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
22:21:38.0849 6224 tdcmdpst - ok
22:21:38.0877 6224 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:21:38.0891 6224 TDPIPE - ok
22:21:38.0909 6224 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:21:38.0923 6224 TDTCP - ok
22:21:38.0961 6224 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:21:38.0977 6224 tdx - ok
22:21:39.0026 6224 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:21:39.0040 6224 TermDD - ok
22:21:39.0112 6224 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
22:21:39.0154 6224 TermService - ok
22:21:39.0211 6224 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
22:21:39.0247 6224 Themes - ok
22:21:39.0267 6224 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
22:21:39.0291 6224 THREADORDER - ok
22:21:39.0399 6224 TMachInfo (f120967184a27e927052e8ddbb727851) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
22:21:39.0410 6224 TMachInfo - ok
22:21:39.0467 6224 TNaviSrv (89f74c86523f5e334628dbce66e6d165) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
22:21:39.0483 6224 TNaviSrv - ok
22:21:39.0514 6224 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
22:21:39.0553 6224 TODDSrv - ok
22:21:39.0613 6224 TosCoSrv (44dbac611b11646683b5b066a049b8e4) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
22:21:39.0634 6224 TosCoSrv - ok
22:21:39.0654 6224 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
22:21:39.0666 6224 TOSHIBA SMART Log Service - ok
22:21:39.0774 6224 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
22:21:39.0795 6224 tos_sps32 - ok
22:21:39.0828 6224 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
22:21:39.0866 6224 TrkWks - ok
22:21:39.0941 6224 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
22:21:39.0967 6224 TrustedInstaller - ok
22:21:40.0004 6224 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:21:40.0025 6224 tssecsrv - ok
22:21:40.0042 6224 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:21:40.0057 6224 tunmp - ok
22:21:40.0117 6224 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:21:40.0139 6224 tunnel - ok
22:21:40.0177 6224 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
22:21:40.0192 6224 TVALZ - ok
22:21:40.0212 6224 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:21:40.0238 6224 uagp35 - ok
22:21:40.0294 6224 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:21:40.0583 6224 udfs - ok
22:21:40.0639 6224 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
22:21:40.0685 6224 UI0Detect - ok
22:21:40.0783 6224 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
22:21:40.0796 6224 UleadBurningHelper - ok
22:21:40.0836 6224 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:21:40.0855 6224 uliagpkx - ok
22:21:40.0881 6224 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:21:40.0901 6224 uliahci - ok
22:21:40.0930 6224 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:21:40.0946 6224 UlSata - ok
22:21:40.0971 6224 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:21:40.0991 6224 ulsata2 - ok
22:21:41.0013 6224 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:21:41.0027 6224 umbus - ok
22:21:41.0247 6224 UmxAgent (fa51583a4a1d4dfc49e5e7d836bae0a5) C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
22:21:41.0275 6224 UmxAgent - ok
22:21:41.0346 6224 UmxCfg (a4c9aaa759014e66057663597a18d825) C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
22:21:41.0611 6224 UmxCfg - ok
22:21:41.0669 6224 UmxFwHlp (902f00f684c6480b81b5bcb9f4367e28) C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
22:21:41.0683 6224 UmxFwHlp - ok
22:21:41.0746 6224 UmxPol (a0f149394d27079b75ff3fa59150733f) C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
22:21:41.0759 6224 UmxPol - ok
22:21:41.0878 6224 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
22:21:42.0351 6224 upnphost - ok
22:21:42.0461 6224 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
22:21:42.0476 6224 USBAAPL - ok
22:21:42.0522 6224 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:21:42.0538 6224 usbccgp - ok
22:21:42.0610 6224 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:21:42.0630 6224 usbcir - ok
22:21:42.0679 6224 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:21:42.0706 6224 usbehci - ok
22:21:42.0728 6224 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:21:42.0783 6224 usbhub - ok
22:21:42.0810 6224 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:21:42.0827 6224 usbohci - ok
22:21:42.0888 6224 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:21:42.0960 6224 usbprint - ok
22:21:43.0016 6224 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:21:43.0030 6224 usbscan - ok
22:21:43.0042 6224 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:21:43.0083 6224 USBSTOR - ok
22:21:43.0122 6224 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:21:43.0137 6224 usbuhci - ok
22:21:43.0167 6224 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:21:43.0184 6224 usbvideo - ok
22:21:43.0202 6224 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS
22:21:43.0217 6224 UVCFTR - ok
22:21:43.0269 6224 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
22:21:43.0305 6224 UxSms - ok
22:21:43.0364 6224 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
22:21:43.0422 6224 vds - ok
22:21:43.0465 6224 VET-FILT (e6287f6c77e71adfc6badb106cd30e7d) C:\Windows\system32\drivers\VET-FILT.sys
22:21:43.0480 6224 VET-FILT - ok
22:21:43.0492 6224 VET-REC (cb98d6c1ade8a891cbbfd9beb1774f48) C:\Windows\system32\drivers\VET-REC.sys
22:21:43.0508 6224 VET-REC - ok
22:21:43.0573 6224 VETEBOOT (c079f80582c31728029f3efcdfeaf221) C:\Windows\system32\drivers\VETEBOOT.sys
22:21:43.0601 6224 VETEBOOT - ok
22:21:43.0650 6224 VETEFILE (31bab965e7af8295c22f641401d622b3) C:\Windows\system32\drivers\VETEFILE.sys
22:21:43.0679 6224 VETEFILE - ok
22:21:43.0690 6224 VETFDDNT (05bdabe6664f48c54a6d3c538c8f2cc1) C:\Windows\system32\drivers\VETFDDNT.sys
22:21:43.0705 6224 VETFDDNT - ok
22:21:43.0726 6224 VETMONNT (f5897ff7eb733670f92e798ef5358b88) C:\Windows\system32\drivers\VETMONNT.sys
22:21:43.0751 6224 VETMONNT - ok
22:21:43.0875 6224 VETMSGNT (85874f218ce1f439a63e70b4b8aafdb8) C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
22:21:43.0889 6224 VETMSGNT - ok
22:21:43.0940 6224 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:21:43.0955 6224 vga - ok
22:21:43.0981 6224 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:21:43.0996 6224 VgaSave - ok
22:21:44.0012 6224 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:21:44.0028 6224 viaagp - ok
22:21:44.0061 6224 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:21:44.0076 6224 ViaC7 - ok
22:21:44.0091 6224 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:21:44.0106 6224 viaide - ok
22:21:44.0143 6224 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:21:44.0159 6224 volmgr - ok
22:21:44.0220 6224 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:21:44.0243 6224 volmgrx - ok
22:21:44.0301 6224 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:21:44.0323 6224 volsnap - ok
22:21:44.0367 6224 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:21:44.0384 6224 vsmraid - ok
22:21:44.0461 6224 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
22:21:44.0519 6224 VSS - ok
22:21:44.0579 6224 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
22:21:44.0619 6224 W32Time - ok
22:21:44.0682 6224 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:21:44.0715 6224 WacomPen - ok
22:21:44.0738 6224 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:21:44.0754 6224 Wanarp - ok
22:21:44.0758 6224 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:21:44.0764 6224 Wanarpv6 - ok
22:21:44.0798 6224 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
22:21:44.0841 6224 wcncsvc - ok
22:21:44.0866 6224 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
22:21:44.0903 6224 WcsPlugInService - ok
22:21:44.0938 6224 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:21:44.0953 6224 Wd - ok
22:21:45.0016 6224 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:21:45.0083 6224 Wdf01000 - ok
22:21:45.0101 6224 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:21:45.0138 6224 WdiServiceHost - ok
22:21:45.0142 6224 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
22:21:45.0171 6224 WdiSystemHost - ok
22:21:45.0232 6224 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
22:21:45.0273 6224 WebClient - ok
22:21:45.0327 6224 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
22:21:45.0395 6224 Wecsvc - ok
22:21:45.0426 6224 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
22:21:45.0462 6224 wercplsupport - ok
22:21:45.0514 6224 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
22:21:45.0552 6224 WerSvc - ok
22:21:45.0569 6224 WinHttpAutoProxySvc - ok
22:21:45.0655 6224 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
22:21:45.0671 6224 Winmgmt - ok
22:21:45.0777 6224 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
22:21:45.0834 6224 WinRM - ok
22:21:45.0918 6224 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
22:21:45.0936 6224 WinUSB - ok
22:21:46.0001 6224 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
22:21:46.0046 6224 Wlansvc - ok
22:21:46.0160 6224 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:21:46.0172 6224 wlcrasvc - ok
22:21:46.0346 6224 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:21:46.0385 6224 wlidsvc - ok
22:21:46.0558 6224 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:21:46.0879 6224 WmiAcpi - ok
22:21:46.0967 6224 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
22:21:47.0008 6224 wmiApSrv - ok
22:21:47.0123 6224 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:21:47.0151 6224 WMPNetworkSvc - ok
22:21:47.0232 6224 WMZuneComm (017695393afffed8de58abd1b085be6d) C:\Program Files\Zune\WMZuneComm.exe
22:21:47.0251 6224 WMZuneComm - ok
22:21:47.0476 6224 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
22:21:47.0538 6224 WPCSvc - ok
22:21:47.0592 6224 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
22:21:47.0632 6224 WPDBusEnum - ok
22:21:47.0703 6224 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:21:47.0721 6224 WpdUsb - ok
22:21:47.0946 6224 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:21:47.0976 6224 WPFFontCache_v0400 - ok
22:21:48.0007 6224 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:21:48.0023 6224 ws2ifsl - ok
22:21:48.0031 6224 WSearch - ok
22:21:48.0171 6224 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
22:21:48.0242 6224 wuauserv - ok
22:21:48.0426 6224 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
22:21:48.0458 6224 WudfPf - ok
22:21:48.0485 6224 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:21:48.0502 6224 WUDFRd - ok
22:21:48.0516 6224 wudfsvc (2c0206ff8d2c75ac027d1096fa2fafda) C:\Windows\System32\WUDFSvc.dll
22:21:48.0562 6224 wudfsvc - ok
22:21:48.0993 6224 ZuneNetworkSvc (1076df9ade4e13ea3bf39d2165aeb903) C:\Program Files\Zune\ZuneNss.exe
22:21:49.0231 6224 ZuneNetworkSvc - ok
22:21:49.0566 6224 ZuneWlanCfgSvc (de1cdb333a402b279f04d627122fa08e) C:\Program Files\Zune\ZuneWlanCfgSvc.exe
22:21:49.0593 6224 ZuneWlanCfgSvc - ok
22:21:49.0626 6224 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
22:21:50.0607 6224 \Device\Harddisk0\DR0 - ok
22:21:50.0653 6224 Boot (0x1200) (6c294de4e485e0726250e70338a8bae7) \Device\Harddisk0\DR0\Partition0
22:21:50.0665 6224 \Device\Harddisk0\DR0\Partition0 - ok
22:21:50.0665 6224 ============================================================
22:21:50.0666 6224 Scan finished
22:21:50.0666 6224 ============================================================
22:21:50.0685 7972 Detected object count: 0
22:21:50.0685 7972 Actual detected object count: 0
22:24:12.0058 2164 Deinitialize success

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 13 August 2012 - 10:51 PM

Boot into safemode with networking and run the other two scans

#5 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 14 August 2012 - 02:28 AM

on 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-14 00:22:14
-----------------------------
00:22:14.379 OS Version: Windows 6.0.6002 Service Pack 2
00:22:14.379 Number of processors: 2 586 0x170A
00:22:14.379 ComputerName: {Removed by OP}-PC UserName: {Removed by OP}
00:23:25.328 Initialize success
00:23:39.228 AVAST engine defs: 12081301
00:23:42.613 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
00:23:42.613 Disk 0 Vendor: TOSHIBA_ LV01 Size: 305245MB BusType: 3
00:23:42.628 Disk 0 MBR read successfully
00:23:42.628 Disk 0 MBR scan
00:23:42.628 Disk 0 Windows VISTA default MBR code
00:23:42.628 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
00:23:42.660 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 296325 MB offset 3074048
00:23:42.691 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 7419 MB offset 609947648
00:23:42.691 Disk 0 scanning sectors +625141760
00:23:42.753 Disk 0 scanning C:\Windows\system32\drivers
00:23:55.686 Service scanning
00:24:30.879 Modules scanning
00:24:36.807 Disk 0 trace - called modules:
00:24:36.823 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
00:24:36.838 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863448d8]
00:24:36.854 3 CLASSPNP.SYS[82ef88b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x85857028]
00:24:38.071 AVAST engine scan C:\Windows
00:24:42.174 AVAST engine scan C:\Windows\system32
00:27:10.588 File: C:\Windows\assembly\GAC\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
00:28:38.430 AVAST engine scan C:\Windows\system32\drivers
00:29:13.300 AVAST engine scan C:\Users\{Removed by OP}
01:13:15.204 AVAST engine scan C:\ProgramData
01:19:28.000 Scan finished successfully
01:19:53.880 Disk 0 MBR has been saved successfully to "C:\Users\{removed by OP}\Desktop\MBR.dat"
01:19:53.880 The log file has been saved successfully to "C:\Users\{Removed by OP}\Desktop\aswMBR.txt"




C:\Users\{Removed by OP}\AppData\Local\Temp\ICReinstall\cnet_Calculator-setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\{Removed by OP}\AppData\Local\{3d0b60df-e633-8721-0437-80a53a6d827b}\n Win32/Sirefef.EV trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\{Removed by OP}\Downloads\cnet_Calculator-setup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\n Win32/Sirefef.EV trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\00000004.@ Win32/Conedex.D trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\000000cb.@ Win32/Conedex.E trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\80000000.@ a variant of Win32/Sirefef.FA trojan cleaned by deleting - quarantined
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\System32\services.exe Win32/Sirefef.FB.Gen trojan unable to clean
Operating memory multiple threats

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 14 August 2012 - 05:53 AM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{3d0b60df-e633-8721-0437-80a53a6d827b}

Click on LOOK,post the generated log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 14 August 2012 - 11:44 AM

Here is the System Look log.

SystemLook 30.07.11 by jpshortstuff
Log created at 07:53 on 14/08/2012 by {Removed by OP}
Administrator - Elevation successful

========== filefind ==========

Searching for "services.exe"
C:\Windows\System32\services.exe --a---- 279552 bytes [08:26 18/09/2009] [06:27 11/04/2009] 8737764F4FD36D6808EE80578409C843
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe --a---- 279040 bytes [02:24 21/01/2008] [02:24 21/01/2008] 2B336AB6286D6C81FA02CBAB914E3C6C
C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe --a---- 279552 bytes [08:26 18/09/2009] [06:27 11/04/2009] D4E6D91C1349B7BFB3599A6ADA56851B

========== folderfind ==========

Searching for "{3d0b60df-e633-8721-0437-80a53a6d827b}"
C:\Users\{Removed by OP}\AppData\Local\{3d0b60df-e633-8721-0437-80a53a6d827b} d--hs-- [10:05 12/01/2012]
C:\Windows\Installer\{3d0b60df-e633-8721-0437-80a53a6d827b} d--hs-- [10:05 12/01/2012]

-= EOF =-



MBA has finished in safemode now running in normal mode. Should be done with in the hour.

Edit:

MBA is still showing one file not removed.
Do I keep running MBA on Full scan until all files are removed?
It's like a 3-4 hour scan. @_@

Edited by rawriminvisible, 14 August 2012 - 01:40 PM.


#8 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 15 August 2012 - 11:18 PM

I never got a response or a clean log so just moved on to the next step.


MiniToolBox by Farbar Version: 23-07-2012
Ran by {Replaced by OP} (administrator) on 15-08-2012 at 23:57:05
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR9281 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.

Windows IP Configuration

Host Name . . . . . . . . . . . . : {Replaced by OP}-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9281 Wireless Network Adapter
Physical Address. . . . . . . . . : 00-24-D2-2A-34-58
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::51a8:e929:1b7a:6ef1%11(Preferred)
Autoconfiguration IPv4 Address. . : 169.254.110.241(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.0.0
Default Gateway . . . . . . . . . :
DHCPv6 IAID . . . . . . . . . . . : 301998435
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-02-34-4E-00-1E-33-92-E0-06
DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
fec0:0:0:ffff::2%1
fec0:0:0:ffff::3%1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-A1-49-0C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{EAD82480-88CC-4B14-9F88-BE4949E058CA}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0A2E6BA9-3B42-4B4C-BBFB-E7D86FD7E9DB}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Ping request could not find host google.com. Please check the name and try again.Ping request could not find host yahoo.com.

Please check the name and try again.Ping request could not find host bleepingcomputer.com. Please check the name and try

again.Pinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32

time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times

in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average =

0ms===========================================================================
Interface List
11 ...00 24 d2 2a 34 58 ...... Atheros AR9281 Wireless Network Adapter
10 ...00 1e 33 a1 49 0c ...... Realtek PCIe FE Family

Controller
1 ........................... Software Loopback Interface 1
15 ...00 00 00 00 00 00 00 e0 isatap.{EAD82480-88CC-4B14

-9F88-BE4949E058CA}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 isatap.

{0A2E6BA9-3B42-4B4C-BBFB-E7D86FD7E9DB}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 169.254.110.241 281
169.254.110.241 255.255.255.255 On-link 169.254.110.241 281
169.254.255.255 255.255.255.255 On-link 169.254.110.241 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 169.254.110.241 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 169.254.110.241 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::51a8:e929:1b7a:6ef1/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\VetRedir.dll [83256] (Computer Associates International, Inc.)
Catalog9 02 C:\Windows\system32\VetRedir.dll [83256] (Computer Associates International, Inc.)
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 C:\Windows\system32\VetRedir.dll [83256] (Computer Associates International, Inc.)
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()
Catalog9 18 mswsock.dll [File Not found] ()
Catalog9 19 mswsock.dll [File Not found] ()
Catalog9 20 mswsock.dll [File Not found] ()
Catalog9 21 mswsock.dll [File Not found] ()
Catalog9 22 mswsock.dll [File Not found] ()
Catalog9 23 mswsock.dll [File Not found] ()
Catalog9 24 mswsock.dll [File Not found] ()
Catalog9 25 mswsock.dll [File Not found] ()
Catalog9 26 mswsock.dll [File Not found] ()
Catalog9 27 mswsock.dll [File Not found] ()
Catalog9 28 mswsock.dll [File Not found] ()
Catalog9 29 mswsock.dll [File Not found] ()
Catalog9 30 mswsock.dll [File Not found] ()
Catalog9 31 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/15/2012 11:57:49 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version

6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0x13dc, application start time 0xnslookup.exe0.

Error: (08/15/2012 11:57:32 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version

6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0x15e0, application start time 0xnslookup.exe0.

Error: (08/15/2012 11:57:22 PM) (Source: Application Error) (User: )
Description: Faulting application nslookup.exe, version 6.0.6002.18005, time stamp 0x49e01d63, faulting module ntdll.dll, version

6.0.6002.18541, time stamp 0x4ec3e3d5, exception code 0xc0000138, fault offset 0x00009f5d,
process id 0x1190, application start time 0xnslookup.exe0.

Error: (08/15/2012 11:45:38 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (08/15/2012 11:45:38 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (08/15/2012 11:45:38 PM) (Source: QuickBooks) (User: )
Description: An unexpected error has occured in "QuickBooks":
Returning NULL QBWinInstance Handle

Error: (08/15/2012 11:43:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND

TargetInstance.LoadPercentage > 990x80041003

Error: (08/15/2012 11:40:53 PM) (Source: UmxAgent) (User: )
Description: Cannot open mailslot of Ask User client. Product 0x1, Session 1, Error 0x2.

Error: (08/15/2012 11:35:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2616433

Error: (08/15/2012 11:35:04 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2616433


System errors:
=============
Error: (08/15/2012 11:43:44 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (08/15/2012 11:43:44 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (08/15/2012 11:43:44 PM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (08/15/2012 11:42:34 PM) (Source: Print) (User: NT AUTHORITY)
Description: The print spooler failed to share printer Adobe PDF with shared resource name Adobe PDF. Error 1753. The printer

cannot be used by others on the network.

Error: (08/15/2012 11:42:34 PM) (Source: Print) (User: NT AUTHORITY)
Description: The print spooler failed to share printer Send To OneNote 2007 with shared resource name Send To OneNote 2007. Error

1753. The printer cannot be used by others on the network.

Error: (08/15/2012 00:11:14 PM) (Source: Microsoft-Windows-FilterManager) (User: NT AUTHORITY)
Description: 0xc000000e34\Device\HarddiskVolumeShadowCopy17

Error: (08/15/2012 00:11:02 PM) (Source: Microsoft-Windows-FilterManager) (User: NT AUTHORITY)
Description: 0xc000000e34\Device\HarddiskVolumeShadowCopy17

Error: (08/15/2012 00:10:58 PM) (Source: Microsoft-Windows-FilterManager) (User: NT AUTHORITY)
Description: 0xc000000e34\Device\HarddiskVolumeShadowCopy17

Error: (08/15/2012 00:10:17 PM) (Source: Microsoft-Windows-FilterManager) (User: NT AUTHORITY)
Description: 0xc000000e34\Device\HarddiskVolumeShadowCopy12

Error: (08/15/2012 00:10:10 PM) (Source: Microsoft-Windows-FilterManager) (User: NT AUTHORITY)
Description: 0xc000000e34\Device\HarddiskVolumeShadowCopy10


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 6.1.2)
8500A909_eDocs (Version: 1.00.0000)
8500A909_Help (Version: 1.00.0000)
8500A909n (Version: 140.0.000.000)
Add or Remove Adobe Creative Suite 3 Master Collection (Version: 1.0)
Adobe Acrobat 8 Professional (Version: 8.1.0)
Adobe After Effects CS3 Presets (Version: 8)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe BridgeTalk Plugin CS3 (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS3 (Version: 13.0)
Adobe InDesign CS3 (Version: 5.0)
Adobe InDesign CS3 Icon Handler (Version: 5.0)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe MotionPicture Color Files (Version: 1.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Setup (Version: 1.0)
Adobe SING CS3 (Version: 0.1)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe Video Profiles (Version: 1.0)
Adobe WAS CS3 (Version: 1.0)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP DVA Panels CS3 (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AHV content for Acrobat and Flash (Version: 1)
Ancestry World Archives Project - Keying Tool (Version: 1.1.0103)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
AT&T Communication Manager (Version: 6.2.10.0)
Atheros Driver Installation Program (Version: 5.2)
Bonjour (Version: 3.0.0.10)
BPD_DSWizards (Version: 1.00.0000)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 140.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 140.0.213.000)
CA Anti-Spyware
CA Anti-Virus (Version: 9.0.0.198)
CA Desktop DNA Migrator (Version: 11.6)
CA Internet Security Suite (Version: 4.0.0.207)
CA Pest Patrol Realtime Protection (Version: 001.001.0037)
CA Website Inspector (Version: 1.0.0.80)
Camera Assistant Software for Toshiba (Version: 1.7.193.0508L)
CD/DVD Drive Acoustic Silencer (Version: 2.02.03)
Cisco EAP-FAST Module (Version: 2.1.6)
Cisco LEAP Module (Version: 1.0.12)
Cisco PEAP Module (Version: 1.0.13)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 140.0.213.000)
DocMgr (Version: 140.0.65.000)
DocProc (Version: 140.0.100.000)
Dropbox (Version: 1.4.7)
DVD MovieFactory for TOSHIBA (Version: 5.51)
ESET Online Scanner v3
Fax (Version: 140.0.213.000)
GPBaseService2 (Version: 140.0.212.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Officejet Pro 8500 A909 Series (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPProductAssistant (Version: 140.0.213.000)
HPSSupply (Version: 140.0.212.000)
iCloud (Version: 1.1.0.40)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 10.6.0.40)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 140.0.214.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Ultimate 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual Studio 2005 Tools for Office Runtime
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Works (Version: 9.7.0621)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft XML Parser (Version: 8.20.8730.4)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
Mozilla Thunderbird 13.0.1 (x86 en-US) (Version: 13.0.1)
MPM (Version: 1.00.0000)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Network (Version: 140.0.215.000)
Nokia Connectivity Adapter Cable DKU-5
OCR Software by I.R.I.S. 14.0 (Version: 14.0)
PDF Settings (Version: 1.0)
Picasa 3 (Version: 3.8)
ProductContext (Version: 140.0.000.000)
QuickBooks (Version: 22.0.4001.2206)
QuickBooks Contact Sync (Version: 1.13.59)
QuickBooks Pro 2012 (Version: 22.0.4001.2206)
QuickTime (Version: 7.71.80.42)
Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5599)
Realtek USB 2.0 Card Reader (Version: )
Safari (Version: 5.34.54.16)
Scan (Version: 140.0.167.000)
Segoe UI (Version: 15.4.2271.0615)
Shop for HP Supplies (Version: 14.0)
Skype Click to Call (Version: 6.1.10441)
Skype™ 5.8 (Version: 5.8.158)
SmartWebPrinting (Version: 140.0.213.000)
SolutionCenter (Version: 140.0.214.000)
Status (Version: 140.0.256.000)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
Toolbox (Version: 140.0.428.000)
TOSHIBA Assist (Version: 2.01.08)
TOSHIBA ConfigFree (Version: 7.2.20)
TOSHIBA Desktop Links (Version: 1.7)
TOSHIBA Disc Creator (Version: 2.0.1.3)
TOSHIBA DVD PLAYER (Version: 1.31.14)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Face Recognition (Version: 2.0.2.32)
TOSHIBA Hardware Setup (Version: 2.00.08)
TOSHIBA Recovery Disc Creator (Version: 2.0.0.2)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA Service Station (Version: 2.2.9)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.04)
TOSHIBA Value Added Package (Version: 1.1.24)
TrayApp (Version: 140.0.213.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687310) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
WebReg (Version: 140.0.213.017)
WildTangent Games (Version: 1.0.0.62)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.3374)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 2939.25 MB
Available physical RAM: 1753.96 MB
Total Pagefile: 6082.81 MB
Available Pagefile: 4654.71 MB
Total Virtual: 2047.88 MB
Available Virtual: 1939.54 MB

========================= Partitions: =====================================

1 Drive c: (SQ004816V03) (Fixed) (Total:289.38 GB) (Free:170.04 GB) NTFS
3 Drive e: () (Removable) (Total:0.24 GB) (Free:0.05 GB) FAT

========================= Users: ========================================

User accounts for \\{Replaced by OP}-PC

Administrator {Replaced by OP} Guest


**** End of log ****




==========





Farbar Service Scanner Version: 06-08-2012
Ran by {Removed by OP} (administrator) on 15-08-2012 at 23:59:32
Running from "C:\Users\{Removed by OP}\Desktop\Scan software"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Other errors
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.

BITS Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open BITS registry key. The service key does not exist.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 15 August 2012 - 11:20 PM

Download a new copy of TDSSkiller from here

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Restart the PC and run MBAM full scan again and post the logs

#10 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 18 August 2012 - 07:44 AM

12:34:02.0129 3664 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
12:34:04.0142 3664 ============================================================
12:34:04.0142 3664 Current date / time: 2012/08/16 12:34:04.0142
12:34:04.0142 3664 SystemInfo:
12:34:04.0142 3664
12:34:04.0142 3664 OS Version: 6.0.6002 ServicePack: 2.0
12:34:04.0142 3664 Product type: Workstation
12:34:04.0142 3664 ComputerName: {Removed by OP}-PC
12:34:04.0142 3664 UserName: {Removed by OP}
12:34:04.0142 3664 Windows directory: C:\Windows
12:34:04.0142 3664 System windows directory: C:\Windows
12:34:04.0142 3664 Processor architecture: Intel x86
12:34:04.0142 3664 Number of processors: 2
12:34:04.0142 3664 Page size: 0x1000
12:34:04.0142 3664 Boot type: Normal boot
12:34:04.0142 3664 ============================================================
12:34:04.0516 3664 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:34:04.0563 3664 Drive \Device\Harddisk1\DR1 - Size: 0xF700000 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:34:04.0563 3664 ============================================================
12:34:04.0563 3664 \Device\Harddisk0\DR0:
12:34:04.0563 3664 MBR partitions:
12:34:04.0563 3664 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x242C2800
12:34:04.0563 3664 \Device\Harddisk1\DR1:
12:34:04.0563 3664 MBR partitions:
12:34:04.0563 3664 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x7B7DF
12:34:04.0563 3664 ============================================================
12:34:04.0610 3664 C: <-> \Device\Harddisk0\DR0\Partition1
12:34:04.0610 3664 ============================================================
12:34:04.0610 3664 Initialize success
12:34:04.0610 3664 ============================================================
12:34:26.0029 5180 ============================================================
12:34:26.0029 5180 Scan started
12:34:26.0029 5180 Mode: Manual; TDLFS;
12:34:26.0029 5180 ============================================================
12:34:26.0512 5180 ================ Scan services =============================
12:34:26.0699 5180 [ 2a8681aea24003040ca7d677be9f1702 ] 13736327 C:\Windows\system32\drivers\42003874.sys
12:34:26.0793 5180 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
12:34:26.0793 5180 ACPI - ok
12:34:26.0918 5180 [ 62b7936f9036dd6ed36e6a7efa805dc0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:34:26.0933 5180 AdobeARMservice - ok
12:34:27.0043 5180 [ f19c98ad81d2c0e1bbfd8153d2c80ee8 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:34:27.0058 5180 AdobeFlashPlayerUpdateSvc - ok
12:34:27.0121 5180 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:34:27.0136 5180 adp94xx - ok
12:34:27.0152 5180 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:34:27.0167 5180 adpahci - ok
12:34:27.0183 5180 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
12:34:27.0199 5180 adpu160m - ok
12:34:27.0214 5180 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:34:27.0230 5180 adpu320 - ok
12:34:27.0277 5180 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:34:27.0292 5180 AeLookupSvc - ok
12:34:27.0355 5180 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
12:34:27.0370 5180 AFD - ok
12:34:27.0417 5180 [ 39e435c90c9c4f780fa0ed05ca3c3a1b ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
12:34:27.0433 5180 AgereModemAudio - ok
12:34:27.0495 5180 [ ce91b158fa490cf4c4d487a4130f4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
12:34:27.0511 5180 AgereSoftModem - ok
12:34:27.0526 5180 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:34:27.0542 5180 agp440 - ok
12:34:27.0589 5180 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:34:27.0604 5180 aic78xx - ok
12:34:27.0620 5180 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
12:34:27.0635 5180 ALG - ok
12:34:27.0667 5180 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
12:34:27.0682 5180 aliide - ok
12:34:27.0698 5180 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:34:27.0713 5180 amdagp - ok
12:34:27.0713 5180 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
12:34:27.0729 5180 amdide - ok
12:34:27.0760 5180 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
12:34:27.0760 5180 AmdK7 - ok
12:34:27.0776 5180 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:34:27.0791 5180 AmdK8 - ok
12:34:27.0838 5180 [ dd8d9c597af7cd2f6b70a3d6a4a1acea ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
12:34:27.0854 5180 androidusb - ok
12:34:27.0901 5180 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
12:34:27.0916 5180 Appinfo - ok
12:34:28.0057 5180 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:34:28.0072 5180 Apple Mobile Device - ok
12:34:28.0088 5180 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
12:34:28.0103 5180 arc - ok
12:34:28.0135 5180 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:34:28.0166 5180 arcsas - ok
12:34:28.0291 5180 [ 776acefa0ca9df0faa51a5fb2f435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:34:28.0306 5180 aspnet_state - ok
12:34:28.0322 5180 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:34:28.0337 5180 AsyncMac - ok
12:34:28.0369 5180 [ 0d83c87a801a3dfcd1bf73893fe7518c ] atapi C:\Windows\system32\drivers\atapi.sys
12:34:28.0384 5180 atapi - ok
12:34:28.0447 5180 [ 8be56f8300e1c37b578da23c71816b7a ] athr C:\Windows\system32\DRIVERS\athr.sys
12:34:28.0462 5180 athr - ok
12:34:28.0540 5180 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:34:28.0556 5180 AudioEndpointBuilder - ok
12:34:28.0556 5180 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:34:28.0556 5180 Audiosrv - ok
12:34:28.0603 5180 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
12:34:28.0618 5180 Beep - ok
12:34:28.0618 5180 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
12:34:28.0634 5180 blbdrive - ok
12:34:28.0759 5180 [ db5bea73edaf19ac68b2c0fad0f92b1a ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:34:28.0774 5180 Bonjour Service - ok
12:34:28.0837 5180 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:34:28.0837 5180 bowser - ok
12:34:28.0868 5180 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
12:34:28.0883 5180 BrFiltLo - ok
12:34:28.0899 5180 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
12:34:28.0899 5180 BrFiltUp - ok
12:34:28.0930 5180 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
12:34:28.0946 5180 Browser - ok
12:34:28.0977 5180 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
12:34:28.0993 5180 Brserid - ok
12:34:29.0008 5180 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
12:34:29.0024 5180 BrSerWdm - ok
12:34:29.0039 5180 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
12:34:29.0055 5180 BrUsbMdm - ok
12:34:29.0055 5180 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
12:34:29.0071 5180 BrUsbSer - ok
12:34:29.0086 5180 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:34:29.0102 5180 BTHMODEM - ok
12:34:29.0195 5180 [ e8bbdf1199fc425c243191960a78755e ] CaCCProvSP C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
12:34:29.0195 5180 CaCCProvSP - ok
12:34:29.0258 5180 [ 58da9ab565e54a3a7c1fb53ceb075f49 ] CAISafe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
12:34:29.0258 5180 CAISafe - ok
12:34:29.0305 5180 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:34:29.0320 5180 cdfs - ok
12:34:29.0367 5180 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:34:29.0383 5180 cdrom - ok
12:34:29.0445 5180 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
12:34:29.0461 5180 CertPropSvc - ok
12:34:29.0492 5180 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\drivers\circlass.sys
12:34:29.0507 5180 circlass - ok
12:34:29.0570 5180 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
12:34:29.0585 5180 CLFS - ok
12:34:29.0648 5180 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:34:29.0663 5180 clr_optimization_v2.0.50727_32 - ok
12:34:29.0726 5180 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:34:29.0741 5180 clr_optimization_v4.0.30319_32 - ok
12:34:29.0788 5180 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:34:29.0804 5180 CmBatt - ok
12:34:29.0819 5180 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:34:29.0835 5180 cmdide - ok
12:34:29.0851 5180 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:34:29.0866 5180 Compbatt - ok
12:34:29.0866 5180 COMSysApp - ok
12:34:29.0944 5180 [ d10d01b2dfcd8d2f32a32ed29e8da1c2 ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
12:34:29.0960 5180 ConfigFree Service - ok
12:34:29.0991 5180 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:34:29.0991 5180 crcdisk - ok
12:34:30.0007 5180 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
12:34:30.0022 5180 Crusoe - ok
12:34:30.0069 5180 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:34:30.0085 5180 CryptSvc - ok
12:34:30.0147 5180 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:34:30.0178 5180 DcomLaunch - ok
12:34:30.0194 5180 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:34:30.0209 5180 DfsC - ok
12:34:30.0319 5180 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
12:34:30.0350 5180 DFSR - ok
12:34:30.0428 5180 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
12:34:30.0443 5180 Dhcp - ok
12:34:30.0490 5180 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
12:34:30.0506 5180 disk - ok
12:34:30.0568 5180 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:34:30.0584 5180 Dnscache - ok
12:34:30.0662 5180 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:34:30.0677 5180 dot3svc - ok
12:34:30.0755 5180 [ 4f59c172c094e1a1d46463a8dc061cbd ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
12:34:30.0771 5180 Dot4 - ok
12:34:30.0802 5180 [ 80bf3ba09f6f2523c8f6b7cc6dbf7bd5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:34:30.0818 5180 Dot4Print - ok
12:34:30.0833 5180 [ c55004ca6b419b6695970dfe849b122f ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
12:34:30.0849 5180 dot4usb - ok
12:34:30.0880 5180 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
12:34:30.0911 5180 DPS - ok
12:34:30.0943 5180 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:34:30.0943 5180 drmkaud - ok
12:34:31.0021 5180 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:34:31.0036 5180 DXGKrnl - ok
12:34:31.0067 5180 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
12:34:31.0067 5180 E1G60 - ok
12:34:31.0114 5180 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
12:34:31.0130 5180 EapHost - ok
12:34:31.0192 5180 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
12:34:31.0208 5180 Ecache - ok
12:34:31.0255 5180 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:34:31.0270 5180 ehRecvr - ok
12:34:31.0301 5180 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
12:34:31.0317 5180 ehSched - ok
12:34:31.0317 5180 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
12:34:31.0333 5180 ehstart - ok
12:34:31.0364 5180 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:34:31.0395 5180 elxstor - ok
12:34:31.0457 5180 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
12:34:31.0489 5180 EMDMgmt - ok
12:34:31.0504 5180 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:34:31.0520 5180 ErrDev - ok
12:34:31.0567 5180 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
12:34:31.0582 5180 EventSystem - ok
12:34:31.0660 5180 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
12:34:31.0676 5180 exfat - ok
12:34:31.0738 5180 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:34:31.0738 5180 fastfat - ok
12:34:31.0785 5180 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:34:31.0785 5180 fdc - ok
12:34:31.0832 5180 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
12:34:31.0847 5180 fdPHost - ok
12:34:31.0863 5180 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
12:34:31.0879 5180 FDResPub - ok
12:34:31.0894 5180 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:34:31.0910 5180 FileInfo - ok
12:34:31.0925 5180 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:34:31.0941 5180 Filetrace - ok
12:34:32.0019 5180 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
12:34:32.0035 5180 FLEXnet Licensing Service - ok
12:34:32.0066 5180 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:34:32.0066 5180 flpydisk - ok
12:34:32.0144 5180 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:34:32.0159 5180 FltMgr - ok
12:34:32.0237 5180 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
12:34:32.0269 5180 FontCache - ok
12:34:32.0362 5180 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:34:32.0378 5180 FontCache3.0.0.0 - ok
12:34:32.0440 5180 [ b0082808a6856a252f7cdd939892ce50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
12:34:32.0456 5180 fssfltr - ok
12:34:32.0627 5180 [ 28ddeeec44e988657b732cf404d504cb ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
12:34:32.0659 5180 fsssvc - ok
12:34:32.0705 5180 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:34:32.0721 5180 Fs_Rec - ok
12:34:32.0752 5180 [ cbc22823628544735625b280665e434e ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
12:34:32.0768 5180 FwLnk - ok
12:34:32.0783 5180 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:34:32.0799 5180 gagp30kx - ok
12:34:32.0893 5180 [ 9dcf7dfe5fdbb0a47f8ee01fe13c2876 ] GameConsoleService C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
12:34:32.0893 5180 GameConsoleService - ok
12:34:32.0955 5180 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:34:32.0955 5180 GEARAspiWDM - ok
12:34:33.0017 5180 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
12:34:33.0049 5180 gpsvc - ok
12:34:33.0111 5180 [ 649f407a844dde2b97bc086af97d663b ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:34:33.0127 5180 gusvc - ok
12:34:33.0173 5180 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:34:33.0205 5180 HdAudAddService - ok
12:34:33.0251 5180 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:34:33.0283 5180 HDAudBus - ok
12:34:33.0283 5180 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:34:33.0298 5180 HidBth - ok
12:34:33.0314 5180 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
12:34:33.0329 5180 HidIr - ok
12:34:33.0376 5180 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
12:34:33.0392 5180 hidserv - ok
12:34:33.0439 5180 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:34:33.0454 5180 HidUsb - ok
12:34:33.0470 5180 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:34:33.0501 5180 hkmsvc - ok
12:34:33.0532 5180 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
12:34:33.0548 5180 HpCISSs - ok
12:34:33.0751 5180 [ 97aac45a375168c6a2297beeb9692e31 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
12:34:33.0751 5180 hpqcxs08 - ok
12:34:33.0797 5180 [ 19a4fb67b1c97ea18edff44340973cd9 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
12:34:33.0813 5180 hpqddsvc - ok
12:34:33.0922 5180 [ 56fc98f1014ea8dc51b92839c32759ec ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
12:34:33.0953 5180 HPSLPSVC - ok
12:34:34.0000 5180 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:34:34.0031 5180 HTTP - ok
12:34:34.0063 5180 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
12:34:34.0078 5180 i2omp - ok
12:34:34.0125 5180 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:34:34.0125 5180 i8042prt - ok
12:34:34.0187 5180 [ cb686f44bf955ea02520710a56874fa4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
12:34:34.0203 5180 IAANTMON - ok
12:34:34.0281 5180 [ db0cc620b27a928d968c1a1e9cd9cb87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
12:34:34.0297 5180 iaStor - ok
12:34:34.0328 5180 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
12:34:34.0359 5180 iaStorV - ok
12:34:34.0421 5180 [ 6f95324909b502e2651442c1548ab12f ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
12:34:34.0453 5180 IDriverT - ok
12:34:34.0531 5180 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:34:34.0546 5180 idsvc - ok
12:34:34.0655 5180 [ 6fb1858d1f0923d122b0331865695041 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
12:34:34.0702 5180 igfx - ok
12:34:34.0718 5180 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:34:34.0733 5180 iirsp - ok
12:34:34.0796 5180 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
12:34:34.0827 5180 IKEEXT - ok
12:34:34.0905 5180 [ b9cbd3dea7ca02868621173bf7a2af9f ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:34:34.0936 5180 IntcAzAudAddService - ok
12:34:34.0983 5180 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
12:34:34.0999 5180 intelide - ok
12:34:35.0030 5180 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:34:35.0045 5180 intelppm - ok
12:34:35.0077 5180 IO_Memory - ok
12:34:35.0108 5180 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:34:35.0139 5180 IPBusEnum - ok
12:34:35.0155 5180 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:34:35.0155 5180 IpFilterDriver - ok
12:34:35.0170 5180 IpInIp - ok
12:34:35.0186 5180 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
12:34:35.0201 5180 IPMIDRV - ok
12:34:35.0217 5180 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
12:34:35.0233 5180 IPNAT - ok
12:34:35.0311 5180 [ ce004777b92dea56fe14ec900d20baa4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:34:35.0342 5180 iPod Service - ok
12:34:35.0357 5180 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:34:35.0373 5180 IRENUM - ok
12:34:35.0389 5180 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:34:35.0404 5180 isapnp - ok
12:34:35.0482 5180 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
12:34:35.0498 5180 iScsiPrt - ok
12:34:35.0513 5180 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
12:34:35.0529 5180 iteatapi - ok
12:34:35.0545 5180 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
12:34:35.0560 5180 iteraid - ok
12:34:35.0607 5180 [ 5e849a81827d643e7e35575e14225e92 ] ITMRTSVC C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
12:34:35.0623 5180 ITMRTSVC - ok
12:34:35.0669 5180 [ 957135960e7533ea5c7ea0bfb34f8efd ] jswpsapi C:\Program Files\Jumpstart\jswpsapi.exe
12:34:35.0685 5180 jswpsapi - ok
12:34:35.0701 5180 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:34:35.0716 5180 kbdclass - ok
12:34:35.0747 5180 [ 18247836959ba67e3511b62846b9c2e0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:34:35.0763 5180 kbdhid - ok
12:34:35.0810 5180 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
12:34:35.0841 5180 KeyIso - ok
12:34:35.0888 5180 [ f4ffca2de8290de6118583bf74962243 ] KmxAgent C:\Windows\system32\DRIVERS\kmxagent.sys
12:34:35.0903 5180 KmxAgent - ok
12:34:35.0950 5180 [ 990484e1d6c9164caf9ab3ae86b36283 ] KmxCF C:\Windows\system32\DRIVERS\KmxCF.sys
12:34:35.0966 5180 KmxCF - ok
12:34:35.0981 5180 [ df0de1110162e761a7f60c392ad177dd ] KmxCfg C:\Windows\system32\DRIVERS\kmxcfg.sys
12:34:35.0997 5180 KmxCfg - ok
12:34:36.0013 5180 [ 28c7643d33ed066622e93260f818adfd ] KmxFile C:\Windows\system32\DRIVERS\KmxFile.sys
12:34:36.0028 5180 KmxFile - ok
12:34:36.0044 5180 [ 015e74f5372af2c5e44f7d5192c4ce62 ] KmxFilter C:\Windows\system32\DRIVERS\KmxFilter.sys
12:34:36.0059 5180 KmxFilter - ok
12:34:36.0075 5180 [ e382e61fec3a85b283fb23bedf21848a ] KmxFw C:\Windows\system32\DRIVERS\kmxfw.sys
12:34:36.0091 5180 KmxFw - ok
12:34:36.0106 5180 [ 2df089f8594ae18d5c1a1bfbdd967eab ] KmxSbx C:\Windows\system32\DRIVERS\KmxSbx.sys
12:34:36.0122 5180 KmxSbx - ok
12:34:36.0153 5180 [ e8ca038f51f7761bd6e3a3b0b8014263 ] KR10I C:\Windows\system32\drivers\kr10i.sys
12:34:36.0153 5180 KR10I - ok
12:34:36.0184 5180 [ 6a4adb9186dd0e114e623daf57e42b31 ] KR10N C:\Windows\system32\drivers\kr10n.sys
12:34:36.0200 5180 KR10N - ok
12:34:36.0247 5180 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:34:36.0262 5180 KSecDD - ok
12:34:36.0309 5180 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:34:36.0340 5180 KtmRm - ok
12:34:36.0387 5180 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
12:34:36.0418 5180 LanmanServer - ok
12:34:36.0481 5180 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:34:36.0512 5180 LanmanWorkstation - ok
12:34:36.0543 5180 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:34:36.0559 5180 lltdio - ok
12:34:36.0574 5180 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:34:36.0605 5180 lltdsvc - ok
12:34:36.0621 5180 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:34:36.0637 5180 lmhosts - ok
12:34:36.0668 5180 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:34:36.0683 5180 LSI_FC - ok
12:34:36.0699 5180 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:34:36.0715 5180 LSI_SAS - ok
12:34:36.0730 5180 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:34:36.0746 5180 LSI_SCSI - ok
12:34:36.0761 5180 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
12:34:36.0777 5180 luafv - ok
12:34:36.0793 5180 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:34:36.0808 5180 Mcx2Svc - ok
12:34:36.0839 5180 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
12:34:36.0855 5180 megasas - ok
12:34:36.0886 5180 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
12:34:36.0902 5180 MegaSR - ok
12:34:36.0995 5180 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
12:34:37.0011 5180 Microsoft Office Groove Audit Service - ok
12:34:37.0042 5180 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
12:34:37.0073 5180 MMCSS - ok
12:34:37.0089 5180 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
12:34:37.0105 5180 Modem - ok
12:34:37.0136 5180 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:34:37.0151 5180 monitor - ok
12:34:37.0183 5180 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:34:37.0183 5180 mouclass - ok
12:34:37.0198 5180 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:34:37.0214 5180 mouhid - ok
12:34:37.0245 5180 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
12:34:37.0261 5180 MountMgr - ok
12:34:37.0323 5180 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:34:37.0339 5180 MozillaMaintenance - ok
12:34:37.0385 5180 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
12:34:37.0401 5180 mpio - ok
12:34:37.0417 5180 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:34:37.0432 5180 mpsdrv - ok
12:34:37.0463 5180 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
12:34:37.0495 5180 Mraid35x - ok
12:34:37.0541 5180 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:34:37.0573 5180 MRxDAV - ok
12:34:37.0604 5180 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:34:37.0619 5180 mrxsmb - ok
12:34:37.0682 5180 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:34:37.0713 5180 mrxsmb10 - ok
12:34:37.0729 5180 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:34:37.0744 5180 mrxsmb20 - ok
12:34:37.0775 5180 [ f70590424eefbf5c27a40c67afdb8383 ] msahci C:\Windows\system32\drivers\msahci.sys
12:34:37.0791 5180 msahci - ok
12:34:37.0807 5180 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:34:37.0822 5180 msdsm - ok
12:34:37.0869 5180 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
12:34:37.0885 5180 MSDTC - ok
12:34:37.0916 5180 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:34:37.0931 5180 Msfs - ok
12:34:37.0994 5180 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:34:38.0009 5180 msisadrv - ok
12:34:38.0025 5180 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:34:38.0056 5180 MSiSCSI - ok
12:34:38.0056 5180 msiserver - ok
12:34:38.0087 5180 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:34:38.0103 5180 MSKSSRV - ok
12:34:38.0119 5180 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:34:38.0134 5180 MSPCLOCK - ok
12:34:38.0150 5180 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:34:38.0165 5180 MSPQM - ok
12:34:38.0212 5180 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:34:38.0228 5180 MsRPC - ok
12:34:38.0259 5180 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:34:38.0275 5180 mssmbios - ok
12:34:38.0306 5180 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:34:38.0321 5180 MSTEE - ok
12:34:38.0384 5180 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
12:34:38.0399 5180 Mup - ok
12:34:38.0446 5180 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
12:34:38.0493 5180 napagent - ok
12:34:38.0555 5180 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:34:38.0571 5180 NativeWifiP - ok
12:34:38.0602 5180 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:34:38.0618 5180 NDIS - ok
12:34:38.0649 5180 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:34:38.0665 5180 NdisTapi - ok
12:34:38.0696 5180 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:34:38.0711 5180 Ndisuio - ok
12:34:38.0743 5180 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:34:38.0758 5180 NdisWan - ok
12:34:38.0774 5180 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:34:38.0789 5180 NDProxy - ok
12:34:38.0867 5180 [ 69c503c004f49aee8b8e3067cc047ba7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
12:34:38.0883 5180 Net Driver HPZ12 - ok
12:34:38.0899 5180 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:34:38.0900 5180 NetBIOS - ok
12:34:38.0962 5180 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
12:34:38.0993 5180 netbt - ok
12:34:38.0993 5180 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
12:34:39.0024 5180 Netlogon - ok
12:34:39.0056 5180 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
12:34:39.0087 5180 Netman - ok
12:34:39.0134 5180 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:34:39.0165 5180 NetMsmqActivator - ok
12:34:39.0165 5180 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:34:39.0180 5180 NetPipeActivator - ok
12:34:39.0196 5180 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
12:34:39.0243 5180 netprofm - ok
12:34:39.0243 5180 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:34:39.0258 5180 NetTcpActivator - ok
12:34:39.0274 5180 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:34:39.0274 5180 NetTcpPortSharing - ok
12:34:39.0305 5180 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:34:39.0321 5180 nfrd960 - ok
12:34:39.0336 5180 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:34:39.0664 5180 NlaSvc - ok
12:34:39.0726 5180 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:34:39.0742 5180 Npfs - ok
12:34:39.0773 5180 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
12:34:39.0804 5180 nsi - ok
12:34:39.0820 5180 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:34:39.0836 5180 nsiproxy - ok
12:34:39.0914 5180 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:34:39.0929 5180 Ntfs - ok
12:34:39.0976 5180 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
12:34:39.0992 5180 ntrigdigi - ok
12:34:40.0007 5180 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
12:34:40.0023 5180 Null - ok
12:34:40.0038 5180 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:34:40.0054 5180 nvraid - ok
12:34:40.0085 5180 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:34:40.0101 5180 nvstor - ok
12:34:40.0116 5180 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:34:40.0132 5180 nv_agp - ok
12:34:40.0132 5180 NwlnkFlt - ok
12:34:40.0148 5180 NwlnkFwd - ok
12:34:40.0226 5180 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:34:40.0257 5180 odserv - ok
12:34:40.0288 5180 [ be32da025a0be1878f0ee8d6d9386cd5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:34:40.0304 5180 ohci1394 - ok
12:34:40.0335 5180 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:34:40.0350 5180 ose - ok
12:34:40.0413 5180 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
12:34:40.0460 5180 p2pimsvc - ok
12:34:40.0475 5180 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
12:34:40.0506 5180 p2psvc - ok
12:34:40.0522 5180 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
12:34:40.0538 5180 Parport - ok
12:34:40.0584 5180 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:34:40.0600 5180 partmgr - ok
12:34:40.0647 5180 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
12:34:40.0662 5180 Parvdm - ok
12:34:40.0678 5180 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
12:34:40.0725 5180 PcaSvc - ok
12:34:40.0772 5180 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
12:34:40.0787 5180 pci - ok
12:34:40.0803 5180 [ fc175f5ddab666d7f4d17449a547626f ] pciide C:\Windows\system32\DRIVERS\pciide.sys
12:34:40.0818 5180 pciide - ok
12:34:40.0850 5180 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:34:40.0865 5180 pcmcia - ok
12:34:40.0912 5180 [ a31c8ce8d17b4ee912479c8a2aba23f7 ] PCTINDIS5 C:\Windows\system32\PCTINDIS5.SYS
12:34:40.0943 5180 PCTINDIS5 - ok
12:34:41.0006 5180 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:34:41.0037 5180 PEAUTH - ok
12:34:41.0099 5180 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
12:34:41.0146 5180 pla - ok
12:34:41.0193 5180 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:34:41.0240 5180 PlugPlay - ok
12:34:41.0318 5180 [ 12b4549d515cb26bb8d375038017ca65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
12:34:41.0333 5180 Pml Driver HPZ12 - ok
12:34:41.0364 5180 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
12:34:41.0396 5180 PNRPAutoReg - ok
12:34:41.0411 5180 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
12:34:41.0427 5180 PNRPsvc - ok
12:34:41.0458 5180 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:34:41.0474 5180 PolicyAgent - ok
12:34:41.0567 5180 [ f0d7ba5be2e851b95b03e1b40095d3ff ] PPCtlPriv C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
12:34:41.0583 5180 PPCtlPriv - ok
12:34:41.0614 5180 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:34:41.0630 5180 PptpMiniport - ok
12:34:41.0645 5180 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
12:34:41.0661 5180 Processor - ok
12:34:41.0723 5180 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
12:34:41.0754 5180 ProfSvc - ok
12:34:41.0786 5180 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
12:34:41.0801 5180 ProtectedStorage - ok
12:34:41.0864 5180 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
12:34:41.0879 5180 PSched - ok
12:34:41.0895 5180 [ 49452bfcec22f36a7a9b9c2181bc3042 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
12:34:41.0910 5180 PxHelp20 - ok
12:34:42.0020 5180 [ 1431f734dcabc6edaa8791f067a144d9 ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
12:34:42.0035 5180 QBCFMonitorService - ok
12:34:42.0098 5180 [ 6bee1814470dc12fa20c53dfc3c97ebb ] QBFCService C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
12:34:42.0098 5180 QBFCService - ok
12:34:42.0238 5180 [ 25fc19badf78b7fb1d835aac4b0b91a5 ] QBVSS C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
12:34:42.0285 5180 QBVSS - ok
12:34:42.0347 5180 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:34:42.0378 5180 ql2300 - ok
12:34:42.0394 5180 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:34:42.0425 5180 ql40xx - ok
12:34:42.0456 5180 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
12:34:42.0488 5180 QWAVE - ok
12:34:42.0519 5180 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:34:42.0534 5180 QWAVEdrv - ok
12:34:42.0566 5180 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:34:42.0581 5180 RasAcd - ok
12:34:42.0612 5180 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
12:34:42.0644 5180 RasAuto - ok
12:34:42.0659 5180 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:34:42.0675 5180 Rasl2tp - ok
12:34:42.0722 5180 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
12:34:42.0768 5180 RasMan - ok
12:34:42.0800 5180 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:34:42.0815 5180 RasPppoe - ok
12:34:42.0846 5180 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:34:42.0862 5180 RasSstp - ok
12:34:42.0924 5180 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:34:42.0940 5180 rdbss - ok
12:34:42.0987 5180 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:34:43.0002 5180 RDPCDD - ok
12:34:43.0018 5180 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
12:34:43.0034 5180 rdpdr - ok
12:34:43.0049 5180 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:34:43.0065 5180 RDPENCDD - ok
12:34:43.0096 5180 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:34:43.0112 5180 RDPWD - ok
12:34:43.0174 5180 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:34:43.0205 5180 RemoteAccess - ok
12:34:43.0252 5180 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:34:43.0283 5180 RemoteRegistry - ok
12:34:43.0361 5180 [ 12a2fd77e334b223531f1e2918480d49 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
12:34:43.0377 5180 RimVSerPort - ok
12:34:43.0408 5180 [ 75e8a6bfa7374aba833ae92bf41ae4e6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
12:34:43.0424 5180 ROOTMODEM - ok
12:34:43.0439 5180 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
12:34:43.0470 5180 RpcLocator - ok
12:34:43.0533 5180 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
12:34:43.0564 5180 RpcSs - ok
12:34:43.0580 5180 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:34:43.0595 5180 rspndr - ok
12:34:43.0658 5180 [ 2d19a7469ea19993d0c12e627f4530bc ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
12:34:43.0673 5180 RTL8169 - ok
12:34:43.0720 5180 [ 4f31cfdebd0a5bc27d45e7ebfefaaf6f ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
12:34:43.0736 5180 RTSTOR - ok
12:34:43.0751 5180 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
12:34:43.0782 5180 SamSs - ok
12:34:43.0798 5180 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:34:43.0829 5180 sbp2port - ok
12:34:43.0876 5180 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:34:43.0907 5180 SCardSvr - ok
12:34:43.0970 5180 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
12:34:44.0001 5180 Schedule - ok
12:34:44.0063 5180 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:34:44.0063 5180 SCPolicySvc - ok
12:34:44.0094 5180 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:34:44.0126 5180 SDRSVC - ok
12:34:44.0141 5180 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:34:44.0157 5180 secdrv - ok
12:34:44.0188 5180 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
12:34:44.0219 5180 seclogon - ok
12:34:44.0235 5180 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
12:34:44.0266 5180 SENS - ok
12:34:44.0266 5180 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
12:34:44.0282 5180 Serenum - ok
12:34:44.0297 5180 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
12:34:44.0313 5180 Serial - ok
12:34:44.0328 5180 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:34:44.0344 5180 sermouse - ok
12:34:44.0375 5180 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
12:34:44.0406 5180 SessionEnv - ok
12:34:44.0406 5180 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:34:44.0422 5180 sffdisk - ok
12:34:44.0438 5180 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:34:44.0453 5180 sffp_mmc - ok
12:34:44.0469 5180 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:34:44.0484 5180 sffp_sd - ok
12:34:44.0516 5180 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:34:44.0531 5180 sfloppy - ok
12:34:44.0594 5180 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:34:44.0640 5180 ShellHWDetection - ok
12:34:44.0656 5180 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:34:44.0672 5180 sisagp - ok
12:34:44.0687 5180 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
12:34:44.0703 5180 SiSRaid2 - ok
12:34:44.0750 5180 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:34:44.0765 5180 SiSRaid4 - ok
12:34:44.0890 5180 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:34:44.0937 5180 Skype C2C Service - ok
12:34:45.0015 5180 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
12:34:45.0093 5180 SkypeUpdate - ok
12:34:45.0218 5180 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
12:34:45.0280 5180 slsvc - ok
12:34:45.0327 5180 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
12:34:45.0374 5180 SLUINotify - ok
12:34:45.0452 5180 [ 3566310df25ea5c3b2e9f50f5b50eac1 ] SmartFaceVWatchSrv C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
12:34:45.0467 5180 SmartFaceVWatchSrv - ok
12:34:45.0514 5180 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:34:45.0530 5180 Smb - ok
12:34:45.0576 5180 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:34:45.0608 5180 SNMPTRAP - ok
12:34:45.0623 5180 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
12:34:45.0639 5180 spldr - ok
12:34:45.0701 5180 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
12:34:45.0732 5180 Spooler - ok
12:34:45.0795 5180 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:34:45.0810 5180 srv - ok
12:34:45.0857 5180 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:34:45.0873 5180 srv2 - ok
12:34:45.0888 5180 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:34:45.0920 5180 srvnet - ok
12:34:45.0966 5180 [ 64e44acd8c238fcbbb78f0ba4bdc4b05 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
12:34:46.0013 5180 ssadbus - ok
12:34:46.0076 5180 [ bb2c84a15c765da89fd832b0e73f26ce ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
12:34:46.0091 5180 ssadmdfl - ok
12:34:46.0154 5180 [ 6d0d132ddc6f43eda00dced6d8b1ca31 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
12:34:46.0200 5180 ssadmdm - ok
12:34:46.0232 5180 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:34:46.0278 5180 SSDPSRV - ok
12:34:46.0310 5180 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:34:46.0341 5180 SstpSvc - ok
12:34:46.0419 5180 [ ef70b3d22b4bffda6ea851ecb063efaa ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
12:34:46.0434 5180 StillCam - ok
12:34:46.0497 5180 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
12:34:46.0544 5180 stisvc - ok
12:34:46.0575 5180 [ 3e4239b92139f7174a0da7d53fe5e1ab ] SVRPEDRV C:\Windows\System32\sysprep\PEDrv.sys
12:34:46.0590 5180 SVRPEDRV - ok
12:34:46.0606 5180 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:34:46.0622 5180 swenum - ok
12:34:46.0684 5180 [ 6803bb3083c962beb8e0bf7a534c6c35 ] SWNC8U12 C:\Windows\system32\DRIVERS\swnc8u12.sys
12:34:46.0700 5180 SWNC8U12 - ok
12:34:46.0746 5180 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
12:34:46.0793 5180 swprv - ok
12:34:46.0856 5180 [ 4bcfd32a94ac6bd2acfcf08a23787035 ] swumx12 C:\Windows\system32\DRIVERS\swumx12.sys
12:34:46.0871 5180 swumx12 - ok
12:34:46.0902 5180 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
12:34:46.0918 5180 Symc8xx - ok
12:34:46.0949 5180 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
12:34:46.0965 5180 Sym_hi - ok
12:34:46.0980 5180 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
12:34:46.0996 5180 Sym_u3 - ok
12:34:47.0058 5180 [ 70534d1e4f9ac990536d5fb5b550b3de ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
12:34:47.0074 5180 SynTP - ok
12:34:47.0136 5180 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
12:34:47.0183 5180 SysMain - ok
12:34:47.0214 5180 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:34:47.0246 5180 TabletInputService - ok
12:34:47.0308 5180 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:34:47.0339 5180 TapiSrv - ok
12:34:47.0355 5180 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
12:34:47.0386 5180 TBS - ok
12:34:47.0464 5180 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:34:47.0480 5180 Tcpip - ok
12:34:47.0511 5180 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
12:34:47.0526 5180 Tcpip6 - ok
12:34:47.0573 5180 [ 608c345a255d82a6289c2d468eb41fd7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:34:47.0589 5180 tcpipreg - ok
12:34:47.0604 5180 [ 6fdfba25002ce4bac463ac866ae71405 ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
12:34:47.0620 5180 tdcmdpst - ok
12:34:47.0651 5180 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:34:47.0667 5180 TDPIPE - ok
12:34:47.0682 5180 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:34:47.0698 5180 TDTCP - ok
12:34:47.0729 5180 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:34:47.0745 5180 tdx - ok
12:34:47.0760 5180 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:34:47.0792 5180 TermDD - ok
12:34:47.0838 5180 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
12:34:47.0901 5180 TermService - ok
12:34:47.0916 5180 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
12:34:47.0963 5180 Themes - ok
12:34:47.0994 5180 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
12:34:48.0010 5180 THREADORDER - ok
12:34:48.0057 5180 [ f120967184a27e927052e8ddbb727851 ] TMachInfo C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
12:34:48.0072 5180 TMachInfo - ok
12:34:48.0119 5180 [ 89f74c86523f5e334628dbce66e6d165 ] TNaviSrv C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
12:34:48.0135 5180 TNaviSrv - ok
12:34:48.0150 5180 [ c5ac715b65b01788abc22d10749dddd8 ] TODDSrv C:\Windows\system32\TODDSrv.exe
12:34:48.0197 5180 TODDSrv - ok
12:34:48.0244 5180 [ 44dbac611b11646683b5b066a049b8e4 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
12:34:48.0260 5180 TosCoSrv - ok
12:34:48.0291 5180 [ 22690dffc7f2a18279a7a0489aa02bac ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
12:34:48.0291 5180 TOSHIBA SMART Log Service - ok
12:34:48.0338 5180 [ 4399a9bf7d8f49991a07fd86590a1619 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
12:34:48.0353 5180 tos_sps32 - ok
12:34:48.0384 5180 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
12:34:48.0431 5180 TrkWks - ok
12:34:48.0494 5180 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:34:48.0509 5180 TrustedInstaller - ok
12:34:48.0540 5180 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:34:48.0556 5180 tssecsrv - ok
12:34:48.0572 5180 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
12:34:48.0587 5180 tunmp - ok
12:34:48.0634 5180 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:34:48.0650 5180 tunnel - ok
12:34:48.0696 5180 [ 792a8b80f8188aba4b2be271583f3e46 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
12:34:48.0712 5180 TVALZ - ok
12:34:48.0728 5180 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:34:48.0743 5180 uagp35 - ok
12:34:48.0806 5180 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:34:48.0821 5180 udfs - ok
12:34:48.0868 5180 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:34:48.0915 5180 UI0Detect - ok
12:34:48.0977 5180 [ 332d341d92b933600d41953b08360dfb ] UleadBurningHelper C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
12:34:48.0993 5180 UleadBurningHelper - ok
12:34:49.0024 5180 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:34:49.0040 5180 uliagpkx - ok
12:34:49.0071 5180 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
12:34:49.0086 5180 uliahci - ok
12:34:49.0118 5180 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
12:34:49.0133 5180 UlSata - ok
12:34:49.0164 5180 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
12:34:49.0180 5180 ulsata2 - ok
12:34:49.0196 5180 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:34:49.0211 5180 umbus - ok
12:34:49.0274 5180 [ fa51583a4a1d4dfc49e5e7d836bae0a5 ] UmxAgent C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
12:34:49.0305 5180 UmxAgent - ok
12:34:49.0367 5180 [ a4c9aaa759014e66057663597a18d825 ] UmxCfg C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
12:34:49.0398 5180 UmxCfg - ok
12:34:49.0414 5180 [ 902f00f684c6480b81b5bcb9f4367e28 ] UmxFwHlp C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
12:34:49.0430 5180 UmxFwHlp - ok
12:34:49.0445 5180 [ a0f149394d27079b75ff3fa59150733f ] UmxPol C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
12:34:49.0445 5180 UmxPol - ok
12:34:49.0476 5180 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
12:34:49.0523 5180 upnphost - ok
12:34:49.0586 5180 [ eafe1e00739afe6c51487a050e772e17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
12:34:49.0601 5180 USBAAPL - ok
12:34:49.0648 5180 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:34:49.0664 5180 usbccgp - ok
12:34:49.0679 5180 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:34:49.0695 5180 usbcir - ok
12:34:49.0757 5180 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:34:49.0773 5180 usbehci - ok
12:34:49.0804 5180 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:34:49.0820 5180 usbhub - ok
12:34:49.0835 5180 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:34:49.0851 5180 usbohci - ok
12:34:49.0898 5180 [ e75c4b5269091d15a2e7dc0b6d35f2f5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:34:49.0913 5180 usbprint - ok
12:34:49.0976 5180 [ a508c9bd8724980512136b039bba65e9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:34:49.0991 5180 usbscan - ok
12:34:50.0007 5180 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:34:50.0022 5180 USBSTOR - ok
12:34:50.0054 5180 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:34:50.0069 5180 usbuhci - ok
12:34:50.0100 5180 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:34:50.0116 5180 usbvideo - ok
12:34:50.0132 5180 [ 8c5094a8ab24de7496c7c19942f2df04 ] UVCFTR C:\Windows\system32\Drivers\UVCFTR_S.SYS
12:34:50.0147 5180 UVCFTR - ok
12:34:50.0194 5180 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
12:34:50.0241 5180 UxSms - ok
12:34:50.0288 5180 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
12:34:50.0334 5180 vds - ok
12:34:50.0381 5180 [ e6287f6c77e71adfc6badb106cd30e7d ] VET-FILT C:\Windows\system32\drivers\VET-FILT.sys
12:34:50.0381 5180 VET-FILT - ok
12:34:50.0397 5180 [ cb98d6c1ade8a891cbbfd9beb1774f48 ] VET-REC C:\Windows\system32\drivers\VET-REC.sys
12:34:50.0412 5180 VET-REC - ok
12:34:50.0475 5180 [ c079f80582c31728029f3efcdfeaf221 ] VETEBOOT C:\Windows\system32\drivers\VETEBOOT.sys
12:34:50.0506 5180 VETEBOOT - ok
12:34:50.0537 5180 [ 31bab965e7af8295c22f641401d622b3 ] VETEFILE C:\Windows\system32\drivers\VETEFILE.sys
12:34:50.0568 5180 VETEFILE - ok
12:34:50.0584 5180 [ 05bdabe6664f48c54a6d3c538c8f2cc1 ] VETFDDNT C:\Windows\system32\drivers\VETFDDNT.sys
12:34:50.0600 5180 VETFDDNT - ok
12:34:50.0615 5180 [ f5897ff7eb733670f92e798ef5358b88 ] VETMONNT C:\Windows\system32\drivers\VETMONNT.sys
12:34:50.0631 5180 VETMONNT - ok
12:34:50.0693 5180 [ 85874f218ce1f439a63e70b4b8aafdb8 ] VETMSGNT C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
12:34:50.0709 5180 VETMSGNT - ok
12:34:50.0740 5180 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:34:50.0756 5180 vga - ok
12:34:50.0771 5180 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
12:34:50.0787 5180 VgaSave - ok
12:34:50.0802 5180 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:34:50.0818 5180 viaagp - ok
12:34:50.0834 5180 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
12:34:50.0849 5180 ViaC7 - ok
12:34:50.0865 5180 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
12:34:50.0880 5180 viaide - ok
12:34:50.0896 5180 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:34:50.0912 5180 volmgr - ok
12:34:50.0974 5180 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:34:50.0990 5180 volmgrx - ok
12:34:51.0036 5180 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:34:51.0068 5180 volsnap - ok
12:34:51.0099 5180 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:34:51.0130 5180 vsmraid - ok
12:34:51.0161 5180 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
12:34:51.0224 5180 VSS - ok
12:34:51.0270 5180 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
12:34:51.0317 5180 W32Time - ok
12:34:51.0333 5180 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:34:51.0348 5180 WacomPen - ok
12:34:51.0364 5180 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:34:51.0380 5180 Wanarp - ok
12:34:51.0395 5180 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:34:51.0395 5180 Wanarpv6 - ok
12:34:51.0426 5180 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:34:51.0458 5180 wcncsvc - ok
12:34:51.0489 5180 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:34:51.0520 5180 WcsPlugInService - ok
12:34:51.0551 5180 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
12:34:51.0567 5180 Wd - ok
12:34:51.0629 5180 [ 9950e3d0f08141c7e89e64456ae7dc73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:34:51.0645 5180 Wdf01000 - ok
12:34:51.0660 5180 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:34:51.0723 5180 WdiServiceHost - ok
12:34:51.0723 5180 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:34:51.0770 5180 WdiSystemHost - ok
12:34:51.0816 5180 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
12:34:51.0863 5180 WebClient - ok
12:34:51.0926 5180 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:34:51.0972 5180 Wecsvc - ok
12:34:52.0004 5180 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:34:52.0035 5180 wercplsupport - ok
12:34:52.0082 5180 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
12:34:52.0128 5180 WerSvc - ok
12:34:52.0144 5180 WinHttpAutoProxySvc - ok
12:34:52.0222 5180 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:34:52.0253 5180 Winmgmt - ok
12:34:52.0331 5180 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
12:34:52.0394 5180 WinRM - ok
12:34:52.0440 5180 [ 676f4b665bdd8053eaa53ac1695b8074 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
12:34:52.0456 5180 WinUSB - ok
12:34:52.0534 5180 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:34:52.0581 5180 Wlansvc - ok
12:34:52.0643 5180 [ 6067acef367e79914af628fa1e9b5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:34:52.0659 5180 wlcrasvc - ok
12:34:52.0737 5180 [ fb01d4ae207b9efdbabfc55dc95c7e31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:34:52.0768 5180 wlidsvc - ok
12:34:52.0784 5180 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:34:52.0815 5180 WmiAcpi - ok
12:34:52.0862 5180 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:34:52.0877 5180 wmiApSrv - ok
12:34:52.0955 5180 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:34:52.0971 5180 WMPNetworkSvc - ok
12:34:53.0080 5180 [ 017695393afffed8de58abd1b085be6d ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
12:34:53.0080 5180 WMZuneComm - ok
12:34:53.0142 5180 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:34:53.0174 5180 WPCSvc - ok
12:34:53.0236 5180 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:34:53.0283 5180 WPDBusEnum - ok
12:34:53.0314 5180 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
12:34:53.0330 5180 WpdUsb - ok
12:34:53.0470 5180 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:34:53.0486 5180 WPFFontCache_v0400 - ok
12:34:53.0501 5180 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:34:53.0517 5180 ws2ifsl - ok
12:34:53.0532 5180 WSearch - ok
12:34:53.0610 5180 [ 6f9b6c0c93232cff47d0f72d6db1d21e ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:34:53.0626 5180 WudfPf - ok
12:34:53.0688 5180 [ f91ff1e51fca30b3c3981db7d5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:34:53.0704 5180 WUDFRd - ok
12:34:53.0720 5180 [ 2c0206ff8d2c75ac027d1096fa2fafda ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:34:53.0766 5180 wudfsvc - ok
12:34:53.0954 5180 [ 1076df9ade4e13ea3bf39d2165aeb903 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
12:34:54.0016 5180 ZuneNetworkSvc - ok
12:34:54.0078 5180 [ de1cdb333a402b279f04d627122fa08e ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
12:34:54.0110 5180 ZuneWlanCfgSvc - ok
12:34:54.0110 5180 ================ Scan global ===============================
12:34:54.0141 5180 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
12:34:54.0203 5180 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
12:34:54.0266 5180 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
12:34:54.0359 5180 (8737764f4fd36d6808ee80578409c843) C:\Windows\system32\services.exe
12:34:54.0406 5180 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - infected
12:34:54.0406 5180 C:\Windows\system32\services.exe - detected Virus.Win32.ZAccess.m (0)
12:34:54.0406 5180 ================ Scan MBR ==================================
12:34:54.0422 5180 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
12:34:55.0826 5180 \Device\Harddisk0\DR0 - ok
12:34:55.0841 5180 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR1
12:34:58.0462 5180 \Device\Harddisk1\DR1 - ok
12:34:58.0462 5180 ================ Scan VBR ==================================
12:34:58.0524 5180 Boot (0x1200) (6c294de4e485e0726250e70338a8bae7) \Device\Harddisk0\DR0\Partition1
12:34:58.0524 5180 \Device\Harddisk0\DR0\Partition1 - ok
12:34:58.0524 5180 Boot (0x1200) (2ae14d68cb5c57694dbd04d3d237811e) \Device\Harddisk1\DR1\Partition1
12:34:58.0524 5180 \Device\Harddisk1\DR1\Partition1 - ok
12:34:58.0524 5180 ============================================================
12:34:58.0524 5180 Scan finished
12:34:58.0524 5180 ============================================================
12:34:58.0540 3864 Detected object count: 1
12:34:58.0540 3864 Actual detected object count: 1
12:35:22.0361 3864 C:\Windows\system32\services.exe - copied to quarantine
12:35:25.0138 3864 C:\Windows\assembly\GAC\desktop.ini - copied to quarantine
12:35:25.0185 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\@ - copied to quarantine
12:35:25.0216 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\L\00000004.@ - copied to quarantine
12:35:25.0247 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\00000008.@ - copied to quarantine
12:35:25.0278 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\000000cb.@ - copied to quarantine
12:35:25.0310 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\80000032.@ - copied to quarantine
12:35:25.0356 3864 C:\Users\floressherry\AppData\Local\{3d0b60df-e633-8721-0437-80a53a6d827b}\@ - copied to quarantine
12:35:26.0183 3864 Backup copy found, using it..
12:35:26.0916 3864 C:\Windows\assembly\GAC\desktop.ini - will be deleted on reboot
12:35:26.0932 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\@ - will be deleted on reboot
12:35:26.0932 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\00000008.@ - will be deleted on reboot
12:35:26.0932 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\000000cb.@ - will be deleted on reboot
12:35:26.0932 3864 C:\Windows\installer\{3d0b60df-e633-8721-0437-80a53a6d827b}\U\80000032.@ - will be deleted on reboot
12:35:26.0963 3864 C:\Users\floressherry\AppData\Local\{3d0b60df-e633-8721-0437-80a53a6d827b}\@ - will be deleted on reboot
12:35:26.0979 3864 C:\Windows\system32\services.exe - will be cured on reboot
12:35:26.0979 3864 C:\Windows\system32\services.exe ( Virus.Win32.ZAccess.m ) - User select action: Cure
12:35:34.0358 4560 Deinitialize success






Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.14.02

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19272
floressherry :: {removed by OP}-PC [administrator]

8/16/2012 12:43:55 PM
mbam-log-2012-08-16 (12-43-55).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 446075
Time elapsed: 2 hour(s), 46 minute(s), 40 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\TDSSKiller_Quarantine\16.08.2012_12.32.44\zasubsys0000\zafs0000\tsk0004.dta (Rootkit.0Access) -> Quarantined and deleted successfully.
C:\TDSSKiller_Quarantine\16.08.2012_12.34.04\zasubsys0000\zafs0000\tsk0000.dta (Rootkit.0Access) -> Quarantined and deleted successfully.

(end)


_______


I reran malwarebytes last night. Log was clean.
However the internet still isn't working. It says it's connected with full bars but won't load any websites. I tried ipconfig release/renew and it just times out and bring up a error.

Edited by rawriminvisible, 18 August 2012 - 08:12 AM.


#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 18 August 2012 - 07:52 AM

Restart the PC

Run TDSSkiller again and post the new log

Download

Rkill

Launch it,After scan finishes

Post the contents of Rkill log located on desktop here

#12 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 18 August 2012 - 11:06 AM

11:53:51.0015 4196 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
11:53:51.0187 4196 ============================================================
11:53:51.0187 4196 Current date / time: 2012/08/18 11:53:51.0187
11:53:51.0187 4196 SystemInfo:
11:53:51.0187 4196
11:53:51.0187 4196 OS Version: 6.0.6002 ServicePack: 2.0
11:53:51.0187 4196 Product type: Workstation
11:53:51.0187 4196 ComputerName: {Replaced by OP}-PC
11:53:51.0187 4196 UserName: {Replaced by OP}
11:53:51.0187 4196 Windows directory: C:\Windows
11:53:51.0187 4196 System windows directory: C:\Windows
11:53:51.0187 4196 Processor architecture: Intel x86
11:53:51.0187 4196 Number of processors: 2
11:53:51.0187 4196 Page size: 0x1000
11:53:51.0187 4196 Boot type: Normal boot
11:53:51.0187 4196 ============================================================
11:53:52.0325 4196 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:53:52.0325 4196 Drive \Device\Harddisk1\DR1 - Size: 0xF700000 (0.24 Gb), SectorSize: 0x200, Cylinders: 0x1F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:53:52.0325 4196 ============================================================
11:53:52.0325 4196 \Device\Harddisk0\DR0:
11:53:52.0325 4196 MBR partitions:
11:53:52.0325 4196 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x242C2800
11:53:52.0325 4196 \Device\Harddisk1\DR1:
11:53:52.0341 4196 MBR partitions:
11:53:52.0341 4196 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x7B7DF
11:53:52.0341 4196 ============================================================
11:53:52.0466 4196 C: <-> \Device\Harddisk0\DR0\Partition1
11:53:52.0466 4196 ============================================================
11:53:52.0466 4196 Initialize success
11:53:52.0466 4196 ============================================================
11:53:57.0053 2580 ============================================================
11:53:57.0147 2580 Scan started
11:53:57.0147 2580 Mode: Manual; TDLFS;
11:53:57.0147 2580 ============================================================
11:53:57.0849 2580 ================ Scan services =============================
11:53:58.0036 2580 [ 82b296ae1892fe3dbee00c9cf92f8ac7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:53:58.0052 2580 ACPI - ok
11:53:58.0176 2580 [ 62b7936f9036dd6ed36e6a7efa805dc0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:53:58.0192 2580 AdobeARMservice - ok
11:53:58.0286 2580 [ f19c98ad81d2c0e1bbfd8153d2c80ee8 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:53:58.0301 2580 AdobeFlashPlayerUpdateSvc - ok
11:53:58.0364 2580 [ 04f0fcac69c7c71a3ac4eb97fafc8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:53:58.0395 2580 adp94xx - ok
11:53:58.0410 2580 [ 60505e0041f7751bdbb80f88bf45c2ce ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:53:58.0426 2580 adpahci - ok
11:53:58.0442 2580 [ 8a42779b02aec986eab64ecfc98f8bd7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:53:58.0457 2580 adpu160m - ok
11:53:58.0504 2580 [ 241c9e37f8ce45ef51c3de27515ca4e5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:53:58.0520 2580 adpu320 - ok
11:53:58.0566 2580 [ 9d1fda9e086ba64e3c93c9de32461bcf ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:53:58.0582 2580 AeLookupSvc - ok
11:53:58.0660 2580 [ 3911b972b55fea0478476b2e777b29fa ] AFD C:\Windows\system32\drivers\afd.sys
11:53:58.0676 2580 AFD - ok
11:53:58.0722 2580 [ 39e435c90c9c4f780fa0ed05ca3c3a1b ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
11:53:58.0738 2580 AgereModemAudio - ok
11:53:58.0800 2580 [ ce91b158fa490cf4c4d487a4130f4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
11:53:58.0816 2580 AgereSoftModem - ok
11:53:58.0863 2580 [ 13f9e33747e6b41a3ff305c37db0d360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:53:58.0878 2580 agp440 - ok
11:53:58.0910 2580 [ ae1fdf7bf7bb6c6a70f67699d880592a ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:53:58.0941 2580 aic78xx - ok
11:53:58.0972 2580 [ a1545b731579895d8cc44fc0481c1192 ] ALG C:\Windows\System32\alg.exe
11:53:59.0003 2580 ALG - ok
11:53:59.0019 2580 [ 9eaef5fc9b8e351afa7e78a6fae91f91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:53:59.0034 2580 aliide - ok
11:53:59.0066 2580 [ c47344bc706e5f0b9dce369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:53:59.0081 2580 amdagp - ok
11:53:59.0097 2580 [ 9b78a39a4c173fdbc1321e0dd659b34c ] amdide C:\Windows\system32\drivers\amdide.sys
11:53:59.0112 2580 amdide - ok
11:53:59.0144 2580 [ 18f29b49ad23ecee3d2a826c725c8d48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:53:59.0159 2580 AmdK7 - ok
11:53:59.0190 2580 [ 93ae7f7dd54ab986a6f1a1b37be7442d ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:53:59.0206 2580 AmdK8 - ok
11:53:59.0253 2580 [ dd8d9c597af7cd2f6b70a3d6a4a1acea ] androidusb C:\Windows\system32\Drivers\ssadadb.sys
11:53:59.0284 2580 androidusb - ok
11:53:59.0331 2580 [ c6d704c7f0434dc791aac37cac4b6e14 ] Appinfo C:\Windows\System32\appinfo.dll
11:53:59.0346 2580 Appinfo - ok
11:53:59.0502 2580 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:53:59.0518 2580 Apple Mobile Device - ok
11:53:59.0549 2580 [ 5d2888182fb46632511acee92fdad522 ] arc C:\Windows\system32\drivers\arc.sys
11:53:59.0549 2580 arc - ok
11:53:59.0580 2580 [ 5e2a321bd7c8b3624e41fdec3e244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:53:59.0596 2580 arcsas - ok
11:53:59.0736 2580 [ 776acefa0ca9df0faa51a5fb2f435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:53:59.0736 2580 aspnet_state - ok
11:53:59.0768 2580 [ 53b202abee6455406254444303e87be1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:53:59.0783 2580 AsyncMac - ok
11:53:59.0814 2580 [ 0d83c87a801a3dfcd1bf73893fe7518c ] atapi C:\Windows\system32\drivers\atapi.sys
11:53:59.0830 2580 atapi - ok
11:53:59.0892 2580 [ 8be56f8300e1c37b578da23c71816b7a ] athr C:\Windows\system32\DRIVERS\athr.sys
11:53:59.0924 2580 athr - ok
11:53:59.0986 2580 [ 68e2a1a0407a66cf50da0300852424ab ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:54:00.0002 2580 AudioEndpointBuilder - ok
11:54:00.0017 2580 [ 68e2a1a0407a66cf50da0300852424ab ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:54:00.0017 2580 Audiosrv - ok
11:54:00.0048 2580 [ 67e506b75bd5326a3ec7b70bd014dfb6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:54:00.0064 2580 Beep - ok
11:54:00.0080 2580 [ d4df28447741fd3d953526e33a617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:54:00.0095 2580 blbdrive - ok
11:54:00.0220 2580 [ db5bea73edaf19ac68b2c0fad0f92b1a ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:54:00.0236 2580 Bonjour Service - ok
11:54:00.0298 2580 [ 35f376253f687bde63976ccb3f2108ca ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:54:00.0298 2580 bowser - ok
11:54:00.0329 2580 [ 9f9acc7f7ccde8a15c282d3f88b43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:54:00.0345 2580 BrFiltLo - ok
11:54:00.0360 2580 [ 56801ad62213a41f6497f96dee83755a ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:54:00.0360 2580 BrFiltUp - ok
11:54:00.0392 2580 [ a3629a0c4226f9e9c72faaeebc3ad33c ] Browser C:\Windows\System32\browser.dll
11:54:00.0407 2580 Browser - ok
11:54:00.0438 2580 [ b304e75cff293029eddf094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:54:00.0454 2580 Brserid - ok
11:54:00.0470 2580 [ 203f0b1e73adadbbb7b7b1fabd901f6b ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:54:00.0485 2580 BrSerWdm - ok
11:54:00.0501 2580 [ bd456606156ba17e60a04e18016ae54b ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:54:00.0516 2580 BrUsbMdm - ok
11:54:00.0516 2580 [ af72ed54503f717a43268b3cc5faec2e ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:54:00.0532 2580 BrUsbSer - ok
11:54:00.0548 2580 [ ad07c1ec6665b8b35741ab91200c6b68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:54:00.0563 2580 BTHMODEM - ok
11:54:00.0657 2580 [ e8bbdf1199fc425c243191960a78755e ] CaCCProvSP C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
11:54:00.0657 2580 CaCCProvSP - ok
11:54:00.0719 2580 [ 58da9ab565e54a3a7c1fb53ceb075f49 ] CAISafe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
11:54:00.0735 2580 CAISafe - ok
11:54:00.0750 2580 [ 7add03e75beb9e6dd102c3081d29840a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:54:00.0766 2580 cdfs - ok
11:54:00.0828 2580 [ 6b4bffb9becd728097024276430db314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:54:00.0844 2580 cdrom - ok
11:54:00.0891 2580 [ 312ec3e37a0a1f2006534913e37b4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:54:00.0906 2580 CertPropSvc - ok
11:54:00.0938 2580 [ e5d4133f37219dbcfe102bc61072589d ] circlass C:\Windows\system32\drivers\circlass.sys
11:54:00.0953 2580 circlass - ok
11:54:01.0016 2580 [ d7659d3b5b92c31e84e53c1431f35132 ] CLFS C:\Windows\system32\CLFS.sys
11:54:01.0031 2580 CLFS - ok
11:54:01.0094 2580 [ 8ee772032e2fe80a924f3b8dd5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:54:01.0109 2580 clr_optimization_v2.0.50727_32 - ok
11:54:01.0156 2580 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:54:01.0187 2580 clr_optimization_v4.0.30319_32 - ok
11:54:01.0218 2580 [ 99afc3795b58cc478fbbbcdc658fcb56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:54:01.0234 2580 CmBatt - ok
11:54:01.0250 2580 [ 0ca25e686a4928484e9fdabd168ab629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:54:01.0265 2580 cmdide - ok
11:54:01.0281 2580 [ 6afef0b60fa25de07c0968983ee4f60a ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:54:01.0296 2580 Compbatt - ok
11:54:01.0296 2580 COMSysApp - ok
11:54:01.0374 2580 [ d10d01b2dfcd8d2f32a32ed29e8da1c2 ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
11:54:01.0390 2580 ConfigFree Service - ok
11:54:01.0406 2580 [ 741e9dff4f42d2d8477d0fc1dc0df871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:54:01.0406 2580 crcdisk - ok
11:54:01.0421 2580 [ 1f07becdca750766a96cda811ba86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:54:01.0437 2580 Crusoe - ok
11:54:01.0515 2580 [ 75c6a297e364014840b48eccd7525e30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:54:01.0530 2580 CryptSvc - ok
11:54:01.0593 2580 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:54:01.0624 2580 DcomLaunch - ok
11:54:01.0640 2580 [ 622c41a07ca7e6dd91770f50d532cb6c ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:54:01.0655 2580 DfsC - ok
11:54:01.0733 2580 [ 2cc3dcfb533a1035b13dcab6160ab38b ] DFSR C:\Windows\system32\DFSR.exe
11:54:01.0764 2580 DFSR - ok
11:54:01.0827 2580 [ 9028559c132146fb75eb7acf384b086a ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:54:01.0858 2580 Dhcp - ok
11:54:01.0905 2580 [ 5d4aefc3386920236a548271f8f1af6a ] disk C:\Windows\system32\drivers\disk.sys
11:54:01.0920 2580 disk - ok
11:54:01.0983 2580 [ 57d762f6f5974af0da2be88a3349baaa ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:54:02.0279 2580 Dnscache - ok
11:54:02.0435 2580 [ 324fd74686b1ef5e7c19a8af49e748f6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:54:02.0466 2580 dot3svc - ok
11:54:02.0529 2580 [ 4f59c172c094e1a1d46463a8dc061cbd ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:54:02.0544 2580 Dot4 - ok
11:54:02.0591 2580 [ 80bf3ba09f6f2523c8f6b7cc6dbf7bd5 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:54:02.0591 2580 Dot4Print - ok
11:54:02.0607 2580 [ c55004ca6b419b6695970dfe849b122f ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:54:02.0622 2580 dot4usb - ok
11:54:02.0654 2580 [ a622e888f8aa2f6b49e9bc466f0e5def ] DPS C:\Windows\system32\dps.dll
11:54:02.0669 2580 DPS - ok
11:54:02.0716 2580 [ 97fef831ab90bee128c9af390e243f80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:54:02.0732 2580 drmkaud - ok
11:54:02.0794 2580 [ c68ac676b0ef30cfbb1080adce49eb1f ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:54:02.0810 2580 DXGKrnl - ok
11:54:02.0841 2580 [ 5425f74ac0c1dbd96a1e04f17d63f94c ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:54:02.0841 2580 E1G60 - ok
11:54:02.0872 2580 [ c0b95e40d85cd807d614e264248a45b9 ] EapHost C:\Windows\System32\eapsvc.dll
11:54:02.0888 2580 EapHost - ok
11:54:02.0950 2580 [ 7f64ea048dcfac7acf8b4d7b4e6fe371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:54:02.0966 2580 Ecache - ok
11:54:03.0012 2580 [ 9be3744d295a7701eb425332014f0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:54:03.0028 2580 ehRecvr - ok
11:54:03.0044 2580 [ ad1870c8e5d6dd340c829e6074bf3c3f ] ehSched C:\Windows\ehome\ehsched.exe
11:54:03.0059 2580 ehSched - ok
11:54:03.0075 2580 [ c27c4ee8926e74aa72efcab24c5242c3 ] ehstart C:\Windows\ehome\ehstart.dll
11:54:03.0090 2580 ehstart - ok
11:54:03.0122 2580 [ 23b62471681a124889978f6295b3f4c6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:54:03.0137 2580 elxstor - ok
11:54:03.0200 2580 [ 4e6b23dfc917ea39306b529b773950f4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:54:03.0231 2580 EMDMgmt - ok
11:54:03.0246 2580 [ 3db974f3935483555d7148663f726c61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:54:03.0262 2580 ErrDev - ok
11:54:03.0309 2580 [ 67058c46504bc12d821f38cf99b7b28f ] EventSystem C:\Windows\system32\es.dll
11:54:03.0324 2580 EventSystem - ok
11:54:03.0387 2580 [ 22b408651f9123527bcee54b4f6c5cae ] exfat C:\Windows\system32\drivers\exfat.sys
11:54:03.0402 2580 exfat - ok
11:54:03.0465 2580 [ 1e9b9a70d332103c52995e957dc09ef8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:54:03.0480 2580 fastfat - ok
11:54:03.0512 2580 [ afe1e8b9782a0dd7fb46bbd88e43f89a ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:54:03.0527 2580 fdc - ok
11:54:03.0558 2580 [ 6629b5f0e98151f4afdd87567ea32ba3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:54:03.0590 2580 fdPHost - ok
11:54:03.0590 2580 [ 89ed56dce8e47af40892778a5bd31fd2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:54:03.0621 2580 FDResPub - ok
11:54:03.0636 2580 [ a8c0139a884861e3aae9cfe73b208a9f ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:54:03.0652 2580 FileInfo - ok
11:54:03.0668 2580 [ 0ae429a696aecbc5970e3cf2c62635ae ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:54:03.0668 2580 Filetrace - ok
11:54:03.0746 2580 [ 1f63900e2eb00101b9aca2b7a870704e ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:54:03.0761 2580 FLEXnet Licensing Service - ok
11:54:03.0777 2580 [ 85b7cf99d532820495d68d747fda9ebd ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:54:03.0792 2580 flpydisk - ok
11:54:03.0839 2580 [ 01334f9ea68e6877c4ef05d3ea8abb05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:54:03.0855 2580 FltMgr - ok
11:54:03.0933 2580 [ 8ce364388c8eca59b14b539179276d44 ] FontCache C:\Windows\system32\FntCache.dll
11:54:03.0964 2580 FontCache - ok
11:54:04.0058 2580 [ c7fbdd1ed42f82bfa35167a5c9803ea3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:54:04.0058 2580 FontCache3.0.0.0 - ok
11:54:04.0120 2580 [ b0082808a6856a252f7cdd939892ce50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:54:04.0136 2580 fssfltr - ok
11:54:04.0292 2580 [ 28ddeeec44e988657b732cf404d504cb ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
11:54:04.0323 2580 fsssvc - ok
11:54:04.0385 2580 [ b972a66758577e0bfd1de0f91aaa27b5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:54:04.0401 2580 Fs_Rec - ok
11:54:04.0432 2580 [ cbc22823628544735625b280665e434e ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
11:54:04.0448 2580 FwLnk - ok
11:54:04.0463 2580 [ 34582a6e6573d54a07ece5fe24a126b5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:54:04.0479 2580 gagp30kx - ok
11:54:04.0572 2580 [ 9dcf7dfe5fdbb0a47f8ee01fe13c2876 ] GameConsoleService C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
11:54:04.0588 2580 GameConsoleService - ok
11:54:04.0650 2580 [ 8182ff89c65e4d38b2de4bb0fb18564e ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:54:04.0666 2580 GEARAspiWDM - ok
11:54:04.0728 2580 [ cd5d0aeee35dfd4e986a5aa1500a6e66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:54:04.0760 2580 gpsvc - ok
11:54:04.0838 2580 [ 649f407a844dde2b97bc086af97d663b ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:54:04.0869 2580 gusvc - ok
11:54:04.0916 2580 [ cb04c744be0a61b1d648faed182c3b59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:54:04.0947 2580 HdAudAddService - ok
11:54:04.0994 2580 [ 062452b7ffd68c8c042a6261fe8dff4a ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:54:05.0025 2580 HDAudBus - ok
11:54:05.0040 2580 [ 1338520e78d90154ed6be8f84de5fceb ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:54:05.0056 2580 HidBth - ok
11:54:05.0072 2580 [ ff3160c3a2445128c5a6d9b076da519e ] HidIr C:\Windows\system32\drivers\hidir.sys
11:54:05.0087 2580 HidIr - ok
11:54:05.0134 2580 [ 84067081f3318162797385e11a8f0582 ] hidserv C:\Windows\system32\hidserv.dll
11:54:05.0150 2580 hidserv - ok
11:54:05.0196 2580 [ cca4b519b17e23a00b826c55716809cc ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:54:05.0212 2580 HidUsb - ok
11:54:05.0243 2580 [ d8ad255b37da92434c26e4876db7d418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:54:05.0259 2580 hkmsvc - ok
11:54:05.0290 2580 [ 16ee7b23a009e00d835cdb79574a91a6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:54:05.0306 2580 HpCISSs - ok
11:54:05.0524 2580 [ 97aac45a375168c6a2297beeb9692e31 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
11:54:05.0524 2580 hpqcxs08 - ok
11:54:05.0555 2580 [ 19a4fb67b1c97ea18edff44340973cd9 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
11:54:05.0571 2580 hpqddsvc - ok
11:54:05.0680 2580 [ 56fc98f1014ea8dc51b92839c32759ec ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
11:54:05.0696 2580 HPSLPSVC - ok
11:54:05.0758 2580 [ f870aa3e254628ebeafe754108d664de ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:54:05.0774 2580 HTTP - ok
11:54:05.0805 2580 [ c6b032d69650985468160fc9937cf5b4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:54:05.0820 2580 i2omp - ok
11:54:05.0852 2580 [ 22d56c8184586b7a1f6fa60be5f5a2bd ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:54:05.0867 2580 i8042prt - ok
11:54:05.0930 2580 [ cb686f44bf955ea02520710a56874fa4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
11:54:05.0945 2580 IAANTMON - ok
11:54:06.0008 2580 [ db0cc620b27a928d968c1a1e9cd9cb87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
11:54:06.0008 2580 iaStor - ok
11:54:06.0039 2580 [ 54155ea1b0df185878e0fc9ec3ac3a14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:54:06.0054 2580 iaStorV - ok
11:54:06.0132 2580 [ 6f95324909b502e2651442c1548ab12f ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
11:54:06.0148 2580 IDriverT - ok
11:54:06.0226 2580 [ 98477b08e61945f974ed9fdc4cb6bdab ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:54:06.0257 2580 idsvc - ok
11:54:06.0366 2580 [ 6fb1858d1f0923d122b0331865695041 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
11:54:06.0413 2580 igfx - ok
11:54:06.0429 2580 [ 2d077bf86e843f901d8db709c95b49a5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:54:06.0444 2580 iirsp - ok
11:54:06.0507 2580 [ 9908d8a397b76cd8d31d0d383c5773c9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:54:06.0538 2580 IKEEXT - ok
11:54:06.0616 2580 [ b9cbd3dea7ca02868621173bf7a2af9f ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:54:06.0647 2580 IntcAzAudAddService - ok
11:54:06.0694 2580 [ 83aa759f3189e6370c30de5dc5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:54:06.0694 2580 intelide - ok
11:54:06.0725 2580 [ 224191001e78c89dfa78924c3ea595ff ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:54:06.0741 2580 intelppm - ok
11:54:06.0772 2580 IO_Memory - ok
11:54:06.0803 2580 [ 9ac218c6e6105477484c6fdbe7d409a4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:54:06.0819 2580 IPBusEnum - ok
11:54:06.0834 2580 [ 62c265c38769b864cb25b4bcf62df6c3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:54:06.0850 2580 IpFilterDriver - ok
11:54:06.0850 2580 IpInIp - ok
11:54:06.0866 2580 [ b25aaf203552b7b3491139d582b39ad1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:54:06.0881 2580 IPMIDRV - ok
11:54:06.0912 2580 [ 8793643a67b42cec66490b2a0cf92d68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:54:06.0928 2580 IPNAT - ok
11:54:07.0006 2580 [ ce004777b92dea56fe14ec900d20baa4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:54:07.0037 2580 iPod Service - ok
11:54:07.0084 2580 [ 109c0dfb82c3632fbd11949b73aeeac9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:54:07.0084 2580 IRENUM - ok
11:54:07.0115 2580 [ 6c70698a3e5c4376c6ab5c7c17fb0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:54:07.0115 2580 isapnp - ok
11:54:07.0193 2580 [ 232fa340531d940aac623b121a595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:54:07.0209 2580 iScsiPrt - ok
11:54:07.0224 2580 [ bced60d16156e428f8df8cf27b0df150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:54:07.0240 2580 iteatapi - ok
11:54:07.0256 2580 [ 06fa654504a498c30adca8bec4e87e7e ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:54:07.0271 2580 iteraid - ok
11:54:07.0318 2580 [ 5e849a81827d643e7e35575e14225e92 ] ITMRTSVC C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
11:54:07.0334 2580 ITMRTSVC - ok
11:54:07.0380 2580 [ 957135960e7533ea5c7ea0bfb34f8efd ] jswpsapi C:\Program Files\Jumpstart\jswpsapi.exe
11:54:07.0412 2580 jswpsapi - ok
11:54:07.0427 2580 [ 37605e0a8cf00cbba538e753e4344c6e ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:54:07.0443 2580 kbdclass - ok
11:54:07.0490 2580 [ 18247836959ba67e3511b62846b9c2e0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:54:07.0505 2580 kbdhid - ok
11:54:07.0599 2580 [ a3e186b4b935905b829219502557314e ] KeyIso C:\Windows\system32\lsass.exe
11:54:07.0661 2580 KeyIso - ok
11:54:07.0755 2580 [ f4ffca2de8290de6118583bf74962243 ] KmxAgent C:\Windows\system32\DRIVERS\kmxagent.sys
11:54:07.0770 2580 KmxAgent - ok
11:54:07.0802 2580 [ 990484e1d6c9164caf9ab3ae86b36283 ] KmxCF C:\Windows\system32\DRIVERS\KmxCF.sys
11:54:07.0833 2580 KmxCF - ok
11:54:07.0848 2580 [ df0de1110162e761a7f60c392ad177dd ] KmxCfg C:\Windows\system32\DRIVERS\kmxcfg.sys
11:54:07.0864 2580 KmxCfg - ok
11:54:07.0911 2580 [ 28c7643d33ed066622e93260f818adfd ] KmxFile C:\Windows\system32\DRIVERS\KmxFile.sys
11:54:07.0926 2580 KmxFile - ok
11:54:07.0942 2580 [ 015e74f5372af2c5e44f7d5192c4ce62 ] KmxFilter C:\Windows\system32\DRIVERS\KmxFilter.sys
11:54:07.0958 2580 KmxFilter - ok
11:54:07.0973 2580 [ e382e61fec3a85b283fb23bedf21848a ] KmxFw C:\Windows\system32\DRIVERS\kmxfw.sys
11:54:07.0989 2580 KmxFw - ok
11:54:08.0004 2580 [ 2df089f8594ae18d5c1a1bfbdd967eab ] KmxSbx C:\Windows\system32\DRIVERS\KmxSbx.sys
11:54:08.0020 2580 KmxSbx - ok
11:54:08.0067 2580 [ e8ca038f51f7761bd6e3a3b0b8014263 ] KR10I C:\Windows\system32\drivers\kr10i.sys
11:54:08.0082 2580 KR10I - ok
11:54:08.0098 2580 [ 6a4adb9186dd0e114e623daf57e42b31 ] KR10N C:\Windows\system32\drivers\kr10n.sys
11:54:08.0114 2580 KR10N - ok
11:54:08.0145 2580 [ 4a1445efa932a3baf5bdb02d7131ee20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:54:08.0160 2580 KSecDD - ok
11:54:08.0192 2580 [ 8078f8f8f7a79e2e6b494523a828c585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:54:08.0223 2580 KtmRm - ok
11:54:08.0285 2580 [ 1bf5eebfd518dd7298434d8c862f825d ] LanmanServer C:\Windows\system32\srvsvc.dll
11:54:08.0316 2580 LanmanServer - ok
11:54:08.0363 2580 [ 1db69705b695b987082c8baec0c6b34f ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:54:08.0410 2580 LanmanWorkstation - ok
11:54:08.0441 2580 [ d1c5883087a0c3f1344d9d55a44901f6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:54:08.0441 2580 lltdio - ok
11:54:08.0488 2580 [ 2d5a428872f1442631d0959a34abff63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:54:08.0519 2580 lltdsvc - ok
11:54:08.0535 2580 [ 35d40113e4a5b961b6ce5c5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:54:08.0566 2580 lmhosts - ok
11:54:08.0597 2580 [ c7e15e82879bf3235b559563d4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:54:08.0613 2580 LSI_FC - ok
11:54:08.0628 2580 [ ee01ebae8c9bf0fa072e0ff68718920a ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:54:08.0644 2580 LSI_SAS - ok
11:54:08.0660 2580 [ 912a04696e9ca30146a62afa1463dd5c ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:54:08.0675 2580 LSI_SCSI - ok
11:54:08.0691 2580 [ 8f5c7426567798e62a3b3614965d62cc ] luafv C:\Windows\system32\drivers\luafv.sys
11:54:08.0706 2580 luafv - ok
11:54:08.0722 2580 [ aef9babb8a506bc4ce0451a64aaded46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:54:08.0753 2580 Mcx2Svc - ok
11:54:08.0784 2580 [ 0001ce609d66632fa17b84705f658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:54:08.0800 2580 megasas - ok
11:54:08.0816 2580 [ c252f32cd9a49dbfc25ecf26ebd51a99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:54:08.0847 2580 MegaSR - ok
11:54:08.0956 2580 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
11:54:08.0972 2580 Microsoft Office Groove Audit Service - ok
11:54:09.0003 2580 [ 1076ffcffaae8385fd62dfcb25ac4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:54:09.0050 2580 MMCSS - ok
11:54:09.0050 2580 [ e13b5ea0f51ba5b1512ec671393d09ba ] Modem C:\Windows\system32\drivers\modem.sys
11:54:09.0081 2580 Modem - ok
11:54:09.0112 2580 [ 0a9bb33b56e294f686abb7c1e4e2d8a8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:54:09.0128 2580 monitor - ok
11:54:09.0143 2580 [ 5bf6a1326a335c5298477754a506d263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:54:09.0143 2580 mouclass - ok
11:54:09.0174 2580 [ 93b8d4869e12cfbe663915502900876f ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:54:09.0174 2580 mouhid - ok
11:54:09.0190 2580 [ bdafc88aa6b92f7842416ea6a48e1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:54:09.0206 2580 MountMgr - ok
11:54:09.0268 2580 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:54:09.0284 2580 MozillaMaintenance - ok
11:54:09.0315 2580 [ 511d011289755dd9f9a7579fb0b064e6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:54:09.0330 2580 mpio - ok
11:54:09.0362 2580 [ 22241feba9b2defa669c8cb0a8dd7d2e ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:54:09.0377 2580 mpsdrv - ok
11:54:09.0408 2580 [ 4fbbb70d30fd20ec51f80061703b001e ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:54:09.0424 2580 Mraid35x - ok
11:54:09.0486 2580 [ 82cea0395524aacfeb58ba1448e8325c ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:54:09.0518 2580 MRxDAV - ok
11:54:09.0564 2580 [ 1e94971c4b446ab2290deb71d01cf0c2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:54:09.0580 2580 mrxsmb - ok
11:54:09.0642 2580 [ 4fccb34d793b116423209c0f8b7a3b03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:54:09.0674 2580 mrxsmb10 - ok
11:54:09.0689 2580 [ c3cb1b40ad4a0124d617a1199b0b9d7c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:54:09.0705 2580 mrxsmb20 - ok
11:54:09.0736 2580 [ f70590424eefbf5c27a40c67afdb8383 ] msahci C:\Windows\system32\drivers\msahci.sys
11:54:09.0736 2580 msahci - ok
11:54:09.0752 2580 [ 4468b0f385a86ecddaf8d3ca662ec0e7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:54:09.0767 2580 msdsm - ok
11:54:09.0798 2580 [ fd7520cc3a80c5fc8c48852bb24c6ded ] MSDTC C:\Windows\System32\msdtc.exe
11:54:09.0830 2580 MSDTC - ok
11:54:09.0845 2580 [ a9927f4a46b816c92f461acb90cf8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:54:09.0861 2580 Msfs - ok
11:54:09.0923 2580 [ 0f400e306f385c56317357d6dea56f62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:54:09.0939 2580 msisadrv - ok
11:54:09.0970 2580 [ 85466c0757a23d9a9aecdc0755203cb2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:54:10.0001 2580 MSiSCSI - ok
11:54:10.0001 2580 msiserver - ok
11:54:10.0032 2580 [ d8c63d34d9c9e56c059e24ec7185cc07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:54:10.0048 2580 MSKSSRV - ok
11:54:10.0048 2580 [ 1d373c90d62ddb641d50e55b9e78d65e ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:54:10.0064 2580 MSPCLOCK - ok
11:54:10.0095 2580 [ b572da05bf4e098d4bba3a4734fb505b ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:54:10.0110 2580 MSPQM - ok
11:54:10.0173 2580 [ b49456d70555de905c311bcda6ec6adb ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:54:10.0188 2580 MsRPC - ok
11:54:10.0220 2580 [ e384487cb84be41d09711c30ca79646c ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:54:10.0235 2580 mssmbios - ok
11:54:10.0266 2580 [ 7199c1eec1e4993caf96b8c0a26bd58a ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:54:10.0282 2580 MSTEE - ok
11:54:10.0329 2580 [ 6a57b5733d4cb702c8ea4542e836b96c ] Mup C:\Windows\system32\Drivers\mup.sys
11:54:10.0344 2580 Mup - ok
11:54:10.0391 2580 [ e4eaf0c5c1b41b5c83386cf212ca9584 ] napagent C:\Windows\system32\qagentRT.dll
11:54:10.0438 2580 napagent - ok
11:54:10.0500 2580 [ 85c44fdff9cf7e72a40dcb7ec06a4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:54:10.0516 2580 NativeWifiP - ok
11:54:10.0578 2580 [ 1357274d1883f68300aeadd15d7bbb42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:54:10.0594 2580 NDIS - ok
11:54:10.0625 2580 [ 0e186e90404980569fb449ba7519ae61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:54:10.0641 2580 NdisTapi - ok
11:54:10.0656 2580 [ d6973aa34c4d5d76c0430b181c3cd389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:54:10.0672 2580 Ndisuio - ok
11:54:10.0703 2580 [ 818f648618ae34f729fdb47ec68345c3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:54:10.0719 2580 NdisWan - ok
11:54:10.0734 2580 [ 71dab552b41936358f3b541ae5997fb3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:54:10.0750 2580 NDProxy - ok
11:54:10.0812 2580 [ 69c503c004f49aee8b8e3067cc047ba7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:54:10.0828 2580 Net Driver HPZ12 - ok
11:54:10.0844 2580 [ bcd093a5a6777cf626434568dc7dba78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:54:10.0859 2580 NetBIOS - ok
11:54:10.0922 2580 [ ecd64230a59cbd93c85f1cd1cab9f3f6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:54:10.0937 2580 netbt - ok
11:54:10.0953 2580 [ a3e186b4b935905b829219502557314e ] Netlogon C:\Windows\system32\lsass.exe
11:54:10.0968 2580 Netlogon - ok
11:54:11.0015 2580 [ c8052711daecc48b982434c5116ca401 ] Netman C:\Windows\System32\netman.dll
11:54:11.0062 2580 Netman - ok
11:54:11.0093 2580 [ d22cd77d4f0d63d1169bb35911bff12d ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:11.0109 2580 NetMsmqActivator - ok
11:54:11.0109 2580 [ d22cd77d4f0d63d1169bb35911bff12d ] NetPipeActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:11.0109 2580 NetPipeActivator - ok
11:54:11.0140 2580 [ 2ef3bbe22e5a5acd1428ee387a0d0172 ] netprofm C:\Windows\System32\netprofm.dll
11:54:11.0171 2580 netprofm - ok
11:54:11.0171 2580 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:11.0171 2580 NetTcpActivator - ok
11:54:11.0171 2580 [ d22cd77d4f0d63d1169bb35911bff12d ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:11.0187 2580 NetTcpPortSharing - ok
11:54:11.0202 2580 [ 2e7fb731d4790a1bc6270accefacb36e ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:54:11.0218 2580 nfrd960 - ok
11:54:11.0234 2580 [ 2997b15415f9bbe05b5a4c1c85e0c6a2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:54:11.0280 2580 NlaSvc - ok
11:54:11.0327 2580 [ d36f239d7cce1931598e8fb90a0dbc26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:54:11.0343 2580 Npfs - ok
11:54:11.0374 2580 [ 8bb86f0c7eea2bded6fe095d0b4ca9bd ] nsi C:\Windows\system32\nsisvc.dll
11:54:11.0405 2580 nsi - ok
11:54:11.0421 2580 [ 609773e344a97410ce4ebf74a8914fcf ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:54:11.0436 2580 nsiproxy - ok
11:54:11.0499 2580 [ 6a4a98cee84cf9e99564510dda4baa47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:54:11.0530 2580 Ntfs - ok
11:54:11.0561 2580 [ e875c093aec0c978a90f30c9e0dfbb72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:54:11.0639 2580 ntrigdigi - ok
11:54:11.0670 2580 [ c5dbbcda07d780bda9b685df333bb41e ] Null C:\Windows\system32\drivers\Null.sys
11:54:11.0670 2580 Null - ok
11:54:11.0702 2580 [ 2edf9e7751554b42cbb60116de727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:54:11.0702 2580 nvraid - ok
11:54:11.0733 2580 [ abed0c09758d1d97db0042dbb2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:54:11.0748 2580 nvstor - ok
11:54:11.0764 2580 [ 18bbdf913916b71bd54575bdb6eeac0b ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:54:11.0780 2580 nv_agp - ok
11:54:11.0780 2580 NwlnkFlt - ok
11:54:11.0795 2580 NwlnkFwd - ok
11:54:11.0873 2580 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:54:11.0904 2580 odserv - ok
11:54:11.0951 2580 [ be32da025a0be1878f0ee8d6d9386cd5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:54:11.0967 2580 ohci1394 - ok
11:54:11.0998 2580 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:54:12.0014 2580 ose - ok
11:54:12.0076 2580 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:54:12.0123 2580 p2pimsvc - ok
11:54:12.0138 2580 [ 0c8e8e61ad1eb0b250b846712c917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:54:12.0170 2580 p2psvc - ok
11:54:12.0185 2580 [ 0fa9b5055484649d63c303fe404e5f4d ] Parport C:\Windows\system32\drivers\parport.sys
11:54:12.0185 2580 Parport - ok
11:54:12.0248 2580 [ b9c2b89f08670e159f7181891e449cd9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:54:12.0248 2580 partmgr - ok
11:54:12.0279 2580 [ 4f9a6a8a31413180d0fcb279ad5d8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:54:12.0294 2580 Parvdm - ok
11:54:12.0326 2580 [ c6276ad11f4bb49b58aa1ed88537f14a ] PcaSvc C:\Windows\System32\pcasvc.dll
11:54:12.0357 2580 PcaSvc - ok
11:54:12.0419 2580 [ 941dc1d19e7e8620f40bbc206981efdb ] pci C:\Windows\system32\drivers\pci.sys
11:54:12.0435 2580 pci - ok
11:54:12.0450 2580 [ fc175f5ddab666d7f4d17449a547626f ] pciide C:\Windows\system32\DRIVERS\pciide.sys
11:54:12.0466 2580 pciide - ok
11:54:12.0482 2580 [ e6f3fb1b86aa519e7698ad05e58b04e5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:54:12.0513 2580 pcmcia - ok
11:54:12.0575 2580 [ a31c8ce8d17b4ee912479c8a2aba23f7 ] PCTINDIS5 C:\Windows\system32\PCTINDIS5.SYS
11:54:12.0606 2580 PCTINDIS5 - ok
11:54:12.0653 2580 [ 6349f6ed9c623b44b52ea3c63c831a92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:54:12.0684 2580 PEAUTH - ok
11:54:12.0825 2580 [ b1689df169143f57053f795390c99db3 ] pla C:\Windows\system32\pla.dll
11:54:12.0872 2580 pla - ok
11:54:12.0918 2580 [ c5e7f8a996ec0a82d508fd9064a5569e ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:54:12.0965 2580 PlugPlay - ok
11:54:13.0043 2580 [ 12b4549d515cb26bb8d375038017ca65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:54:13.0059 2580 Pml Driver HPZ12 - ok
11:54:13.0090 2580 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:54:13.0121 2580 PNRPAutoReg - ok
11:54:13.0137 2580 [ 0c8e8e61ad1eb0b250b846712c917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:54:13.0168 2580 PNRPsvc - ok
11:54:13.0199 2580 [ d0494460421a03cd5225cca0059aa146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:54:13.0215 2580 PolicyAgent - ok
11:54:13.0308 2580 [ f0d7ba5be2e851b95b03e1b40095d3ff ] PPCtlPriv C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
11:54:13.0324 2580 PPCtlPriv - ok
11:54:13.0355 2580 [ ecfffaec0c1ecd8dbc77f39070ea1db1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:54:13.0371 2580 PptpMiniport - ok
11:54:13.0386 2580 [ 2027293619dd0f047c584cf2e7df4ffd ] Processor C:\Windows\system32\drivers\processr.sys
11:54:13.0402 2580 Processor - ok
11:54:13.0464 2580 [ 0508faa222d28835310b7bfca7a77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:54:13.0496 2580 ProfSvc - ok
11:54:13.0511 2580 [ a3e186b4b935905b829219502557314e ] ProtectedStorage C:\Windows\system32\lsass.exe
11:54:13.0527 2580 ProtectedStorage - ok
11:54:13.0589 2580 [ 99514faa8df93d34b5589187db3aa0ba ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:54:13.0605 2580 PSched - ok
11:54:13.0620 2580 [ 49452bfcec22f36a7a9b9c2181bc3042 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
11:54:13.0652 2580 PxHelp20 - ok
11:54:13.0761 2580 [ 1431f734dcabc6edaa8791f067a144d9 ] QBCFMonitorService C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
11:54:13.0776 2580 QBCFMonitorService - ok
11:54:13.0823 2580 [ 6bee1814470dc12fa20c53dfc3c97ebb ] QBFCService C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
11:54:13.0839 2580 QBFCService - ok
11:54:13.0964 2580 [ 25fc19badf78b7fb1d835aac4b0b91a5 ] QBVSS C:\Program Files\Common Files\Intuit\DataProtect\QBIDPService.exe
11:54:13.0995 2580 QBVSS - ok
11:54:14.0057 2580 [ 0a6db55afb7820c99aa1f3a1d270f4f6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:54:14.0088 2580 ql2300 - ok
11:54:14.0120 2580 [ 81a7e5c076e59995d54bc1ed3a16e60b ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:54:14.0151 2580 ql40xx - ok
11:54:14.0182 2580 [ e9ecae663f47e6cb43962d18ab18890f ] QWAVE C:\Windows\system32\qwave.dll
11:54:14.0213 2580 QWAVE - ok
11:54:14.0229 2580 [ 9f5e0e1926014d17486901c88eca2db7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:54:14.0244 2580 QWAVEdrv - ok
11:54:14.0276 2580 [ 147d7f9c556d259924351feb0de606c3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:54:14.0291 2580 RasAcd - ok
11:54:14.0307 2580 [ f6a452eb4ceadbb51c9e0ee6b3ecef0f ] RasAuto C:\Windows\System32\rasauto.dll
11:54:14.0354 2580 RasAuto - ok
11:54:14.0369 2580 [ a214adbaf4cb47dd2728859ef31f26b0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:54:14.0385 2580 Rasl2tp - ok
11:54:14.0447 2580 [ 75d47445d70ca6f9f894b032fbc64fcf ] RasMan C:\Windows\System32\rasmans.dll
11:54:14.0478 2580 RasMan - ok
11:54:14.0541 2580 [ 509a98dd18af4375e1fc40bc175f1def ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:54:14.0556 2580 RasPppoe - ok
11:54:14.0572 2580 [ 2005f4a1e05fa09389ac85840f0a9e4d ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:54:14.0588 2580 RasSstp - ok
11:54:14.0650 2580 [ b14c9d5b9add2f84f70570bbbfaa7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:54:14.0666 2580 rdbss - ok
11:54:14.0712 2580 [ 89e59be9a564262a3fb6c4f4f1cd9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:54:14.0728 2580 RDPCDD - ok
11:54:14.0744 2580 [ fbc0bacd9c3d7f6956853f64a66e252d ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:54:14.0775 2580 rdpdr - ok
11:54:14.0775 2580 [ 9d91fe5286f748862ecffa05f8a0710c ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:54:14.0790 2580 RDPENCDD - ok
11:54:14.0837 2580 [ c127ebd5afab31524662c48dfceb773a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:54:14.0853 2580 RDPWD - ok
11:54:14.0915 2580 [ bcdd6b4804d06b1f7ebf29e53a57ece9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:54:14.0946 2580 RemoteAccess - ok
11:54:14.0993 2580 [ 9e6894ea18daff37b63e1005f83ae4ab ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:54:15.0024 2580 RemoteRegistry - ok
11:54:15.0102 2580 [ 12a2fd77e334b223531f1e2918480d49 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
11:54:15.0102 2580 RimVSerPort - ok
11:54:15.0149 2580 [ 75e8a6bfa7374aba833ae92bf41ae4e6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
11:54:15.0149 2580 ROOTMODEM - ok
11:54:15.0196 2580 [ 5123f83cbc4349d065534eeb6bbdc42b ] RpcLocator C:\Windows\system32\locator.exe
11:54:15.0212 2580 RpcLocator - ok
11:54:15.0290 2580 [ 3b5b4d53fec14f7476ca29a20cc31ac9 ] RpcSs C:\Windows\system32\rpcss.dll
11:54:15.0321 2580 RpcSs - ok
11:54:15.0336 2580 [ 9c508f4074a39e8b4b31d27198146fad ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:54:15.0352 2580 rspndr - ok
11:54:15.0399 2580 [ 2d19a7469ea19993d0c12e627f4530bc ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
11:54:15.0414 2580 RTL8169 - ok
11:54:15.0477 2580 [ 4f31cfdebd0a5bc27d45e7ebfefaaf6f ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
11:54:15.0508 2580 RTSTOR - ok
11:54:15.0524 2580 [ a3e186b4b935905b829219502557314e ] SamSs C:\Windows\system32\lsass.exe
11:54:15.0539 2580 SamSs - ok
11:54:15.0570 2580 [ 3ce8f073a557e172b330109436984e30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:54:15.0586 2580 sbp2port - ok
11:54:15.0633 2580 [ 77b7a11a0c3d78d3386398fbbea1b632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:54:15.0680 2580 SCardSvr - ok
11:54:15.0726 2580 [ 1a58069db21d05eb2ab58ee5753ebe8d ] Schedule C:\Windows\system32\schedsvc.dll
11:54:15.0773 2580 Schedule - ok
11:54:15.0820 2580 [ 312ec3e37a0a1f2006534913e37b4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:54:15.0836 2580 SCPolicySvc - ok
11:54:15.0851 2580 [ 716313d9f6b0529d03f726d5aaf6f191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:54:15.0882 2580 SDRSVC - ok
11:54:15.0914 2580 [ 90a3935d05b494a5a39d37e71f09a677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:54:15.0929 2580 secdrv - ok
11:54:15.0945 2580 [ fd5199d4d8a521005e4b5ee7fe00fa9b ] seclogon C:\Windows\system32\seclogon.dll
11:54:15.0976 2580 seclogon - ok
11:54:15.0992 2580 [ a9bbab5759771e523f55563d6cbe140f ] SENS C:\Windows\System32\sens.dll
11:54:16.0038 2580 SENS - ok
11:54:16.0054 2580 [ 68e44e331d46f0fb38f0863a84cd1a31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:54:16.0070 2580 Serenum - ok
11:54:16.0070 2580 [ c70d69a918b178d3c3b06339b40c2e1b ] Serial C:\Windows\system32\drivers\serial.sys
11:54:16.0085 2580 Serial - ok
11:54:16.0101 2580 [ 8af3d28a879bf75db53a0ee7a4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:54:16.0132 2580 sermouse - ok
11:54:16.0148 2580 [ d2193326f729b163125610dbf3e17d57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:54:16.0194 2580 SessionEnv - ok
11:54:16.0194 2580 [ 3efa810bdca87f6ecc24f9832243fe86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:54:16.0210 2580 sffdisk - ok
11:54:16.0226 2580 [ e95d451f7ea3e583aec75f3b3ee42dc5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:54:16.0241 2580 sffp_mmc - ok
11:54:16.0257 2580 [ 3d0ea348784b7ac9ea9bd9f317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:54:16.0272 2580 sffp_sd - ok
11:54:16.0319 2580 [ 46ed8e91793b2e6f848015445a0ac188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:54:16.0319 2580 sfloppy - ok
11:54:16.0382 2580 [ c7230fbee14437716701c15be02c27b8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:54:16.0428 2580 ShellHWDetection - ok
11:54:16.0460 2580 [ 1d76624a09a054f682d746b924e2dbc3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:54:16.0475 2580 sisagp - ok
11:54:16.0491 2580 [ 43cb7aa756c7db280d01da9b676cfde2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:54:16.0506 2580 SiSRaid2 - ok
11:54:16.0522 2580 [ a99c6c8b0baa970d8aa59ddc50b57f94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:54:16.0553 2580 SiSRaid4 - ok
11:54:16.0678 2580 [ 0f97e7a47a52f4a36969f0fc319654c2 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
11:54:16.0740 2580 Skype C2C Service - ok
11:54:16.0818 2580 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
11:54:16.0959 2580 SkypeUpdate - ok
11:54:17.0084 2580 [ 862bb4cbc05d80c5b45be430e5ef872f ] slsvc C:\Windows\system32\SLsvc.exe
11:54:17.0146 2580 slsvc - ok
11:54:17.0193 2580 [ 6edc422215cd78aa8a9cde6b30abbd35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:54:17.0224 2580 SLUINotify - ok
11:54:17.0286 2580 [ 3566310df25ea5c3b2e9f50f5b50eac1 ] SmartFaceVWatchSrv C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
11:54:17.0286 2580 SmartFaceVWatchSrv - ok
11:54:17.0333 2580 [ 7b75299a4d201d6a6533603d6914ab04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:54:17.0349 2580 Smb - ok
11:54:17.0380 2580 [ 2a146a055b4401c16ee62d18b8e2a032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:54:17.0427 2580 SNMPTRAP - ok
11:54:17.0442 2580 [ 7aebdeef071fe28b0eef2cdd69102bff ] spldr C:\Windows\system32\drivers\spldr.sys
11:54:17.0458 2580 spldr - ok
11:54:17.0520 2580 [ 8554097e5136c3bf9f69fe578a1b35f4 ] Spooler C:\Windows\System32\spoolsv.exe
11:54:17.0567 2580 Spooler - ok
11:54:17.0614 2580 [ 41987f9fc0e61adf54f581e15029ad91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:54:17.0645 2580 srv - ok
11:54:17.0692 2580 [ ff33aff99564b1aa534f58868cbe41ef ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:54:17.0723 2580 srv2 - ok
11:54:17.0739 2580 [ 7605c0e1d01a08f3ecd743f38b834a44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:54:17.0754 2580 srvnet - ok
11:54:17.0832 2580 [ 64e44acd8c238fcbbb78f0ba4bdc4b05 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
11:54:17.0879 2580 ssadbus - ok
11:54:17.0926 2580 [ bb2c84a15c765da89fd832b0e73f26ce ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
11:54:17.0957 2580 ssadmdfl - ok
11:54:18.0004 2580 [ 6d0d132ddc6f43eda00dced6d8b1ca31 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
11:54:18.0082 2580 ssadmdm - ok
11:54:18.0113 2580 [ 03d50b37234967433a5ea5ba72bc0b62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:54:18.0144 2580 SSDPSRV - ok
11:54:18.0176 2580 [ 6f1a32e7b7b30f004d9a20afadb14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:54:18.0222 2580 SstpSvc - ok
11:54:18.0285 2580 [ ef70b3d22b4bffda6ea851ecb063efaa ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
11:54:18.0300 2580 StillCam - ok
11:54:18.0363 2580 [ 5de7d67e49b88f5f07f3e53c4b92a352 ] stisvc C:\Windows\System32\wiaservc.dll
11:54:18.0410 2580 stisvc - ok
11:54:18.0441 2580 [ 3e4239b92139f7174a0da7d53fe5e1ab ] SVRPEDRV C:\Windows\System32\sysprep\PEDrv.sys
11:54:18.0441 2580 SVRPEDRV - ok
11:54:18.0456 2580 [ 7ba58ecf0c0a9a69d44b3dca62becf56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:54:18.0472 2580 swenum - ok
11:54:18.0534 2580 [ 6803bb3083c962beb8e0bf7a534c6c35 ] SWNC8U12 C:\Windows\system32\DRIVERS\swnc8u12.sys
11:54:18.0550 2580 SWNC8U12 - ok
11:54:18.0612 2580 [ f21fd248040681cca1fb6c9a03aaa93d ] swprv C:\Windows\System32\swprv.dll
11:54:18.0659 2580 swprv - ok
11:54:18.0722 2580 [ 4bcfd32a94ac6bd2acfcf08a23787035 ] swumx12 C:\Windows\system32\DRIVERS\swumx12.sys
11:54:18.0737 2580 swumx12 - ok
11:54:18.0768 2580 [ 192aa3ac01df071b541094f251deed10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:54:18.0784 2580 Symc8xx - ok
11:54:18.0800 2580 [ 8c8eb8c76736ebaf3b13b633b2e64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:54:18.0815 2580 Sym_hi - ok
11:54:18.0846 2580 [ 8072af52b5fd103bbba387a1e49f62cb ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:54:18.0862 2580 Sym_u3 - ok
11:54:18.0909 2580 [ 70534d1e4f9ac990536d5fb5b550b3de ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:54:18.0940 2580 SynTP - ok
11:54:19.0002 2580 [ 9a51b04e9886aa4ee90093586b0ba88d ] SysMain C:\Windows\system32\sysmain.dll
11:54:19.0049 2580 SysMain - ok
11:54:19.0080 2580 [ 2dca225eae15f42c0933e998ee0231c3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:54:19.0127 2580 TabletInputService - ok
11:54:19.0174 2580 [ d7673e4b38ce21ee54c59eeeb65e2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:54:19.0221 2580 TapiSrv - ok
11:54:19.0236 2580 [ cb05822cd9cc6c688168e113c603dbe7 ] TBS C:\Windows\System32\tbssvc.dll
11:54:19.0268 2580 TBS - ok
11:54:19.0346 2580 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:54:19.0361 2580 Tcpip - ok
11:54:19.0392 2580 [ 27d470dabc77bc60d0a3b0e4deb6cb91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:54:19.0408 2580 Tcpip6 - ok
11:54:19.0470 2580 [ 608c345a255d82a6289c2d468eb41fd7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:54:19.0486 2580 tcpipreg - ok
11:54:19.0502 2580 [ 6fdfba25002ce4bac463ac866ae71405 ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
11:54:19.0533 2580 tdcmdpst - ok
11:54:19.0548 2580 [ 5dcf5e267be67a1ae926f2df77fbcc56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:54:19.0580 2580 TDPIPE - ok
11:54:19.0595 2580 [ 389c63e32b3cefed425b61ed92d3f021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:54:19.0611 2580 TDTCP - ok
11:54:19.0658 2580 [ 76b06eb8a01fc8624d699e7045303e54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:54:19.0689 2580 tdx - ok
11:54:19.0720 2580 [ 3cad38910468eab9a6479e2f01db43c7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:54:19.0736 2580 TermDD - ok
11:54:19.0814 2580 [ bb95da09bef6e7a131bff3ba5032090d ] TermService C:\Windows\System32\termsrv.dll
11:54:19.0876 2580 TermService - ok
11:54:19.0923 2580 [ c7230fbee14437716701c15be02c27b8 ] Themes C:\Windows\system32\shsvcs.dll
11:54:19.0985 2580 Themes - ok
11:54:20.0001 2580 [ 1076ffcffaae8385fd62dfcb25ac4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:54:20.0032 2580 THREADORDER - ok
11:54:20.0079 2580 [ f120967184a27e927052e8ddbb727851 ] TMachInfo C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
11:54:20.0094 2580 TMachInfo - ok
11:54:20.0157 2580 [ 89f74c86523f5e334628dbce66e6d165 ] TNaviSrv C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
11:54:20.0157 2580 TNaviSrv - ok
11:54:20.0188 2580 [ c5ac715b65b01788abc22d10749dddd8 ] TODDSrv C:\Windows\system32\TODDSrv.exe
11:54:20.0219 2580 TODDSrv - ok
11:54:20.0282 2580 [ 44dbac611b11646683b5b066a049b8e4 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
11:54:20.0297 2580 TosCoSrv - ok
11:54:20.0313 2580 [ 22690dffc7f2a18279a7a0489aa02bac ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
11:54:20.0328 2580 TOSHIBA SMART Log Service - ok
11:54:20.0360 2580 [ 4399a9bf7d8f49991a07fd86590a1619 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
11:54:20.0391 2580 tos_sps32 - ok
11:54:20.0406 2580 [ ec74e77d0eb004bd3a809b5f8fb8c2ce ] TrkWks C:\Windows\System32\trkwks.dll
11:54:20.0453 2580 TrkWks - ok
11:54:20.0516 2580 [ 97d9d6a04e3ad9b6c626b9931db78dba ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:54:20.0531 2580 TrustedInstaller - ok
11:54:20.0562 2580 [ dcf0f056a2e4f52287264f5ab29cf206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:54:20.0578 2580 tssecsrv - ok
11:54:20.0594 2580 [ caecc0120ac49e3d2f758b9169872d38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:54:20.0609 2580 tunmp - ok
11:54:20.0656 2580 [ 300db877ac094feab0be7688c3454a9c ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:54:20.0672 2580 tunnel - ok
11:54:20.0703 2580 [ 792a8b80f8188aba4b2be271583f3e46 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
11:54:20.0718 2580 TVALZ - ok
11:54:20.0734 2580 [ 7d33c4db2ce363c8518d2dfcf533941f ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:54:20.0750 2580 uagp35 - ok
11:54:20.0812 2580 [ d9728af68c4c7693cb100b8441cbdec6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:54:20.0828 2580 udfs - ok
11:54:20.0859 2580 [ ecef404f62863755951e09c802c94ad5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:54:20.0906 2580 UI0Detect - ok
11:54:20.0968 2580 [ 332d341d92b933600d41953b08360dfb ] UleadBurningHelper C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
11:54:20.0984 2580 UleadBurningHelper - ok
11:54:21.0015 2580 [ b0acfdc9e4af279e9116c03e014b2b27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:54:21.0030 2580 uliagpkx - ok
11:54:21.0046 2580 [ 9224bb254f591de4ca8d572a5f0d635c ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:54:21.0062 2580 uliahci - ok
11:54:21.0093 2580 [ 8514d0e5cd0534467c5fc61be94a569f ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:54:21.0108 2580 UlSata - ok
11:54:21.0124 2580 [ 38c3c6e62b157a6bc46594fada45c62b ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:54:21.0140 2580 ulsata2 - ok
11:54:21.0155 2580 [ 32cff9f809ae9aed85464492bf3e32d2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:54:21.0171 2580 umbus - ok
11:54:21.0218 2580 [ fa51583a4a1d4dfc49e5e7d836bae0a5 ] UmxAgent C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
11:54:21.0249 2580 UmxAgent - ok
11:54:21.0296 2580 [ a4c9aaa759014e66057663597a18d825 ] UmxCfg C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
11:54:21.0327 2580 UmxCfg - ok
11:54:21.0342 2580 [ 902f00f684c6480b81b5bcb9f4367e28 ] UmxFwHlp C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
11:54:21.0374 2580 UmxFwHlp - ok
11:54:21.0389 2580 [ a0f149394d27079b75ff3fa59150733f ] UmxPol C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
11:54:21.0405 2580 UmxPol - ok
11:54:21.0452 2580 [ 68308183f4ae0be7bf8ecd07cb297999 ] upnphost C:\Windows\System32\upnphost.dll
11:54:21.0498 2580 upnphost - ok
11:54:21.0576 2580 [ eafe1e00739afe6c51487a050e772e17 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:54:21.0592 2580 USBAAPL - ok
11:54:21.0623 2580 [ caf811ae4c147ffcd5b51750c7f09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:54:21.0654 2580 usbccgp - ok
11:54:21.0670 2580 [ e9476e6c486e76bc4898074768fb7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:54:21.0686 2580 usbcir - ok
11:54:21.0779 2580 [ 79e96c23a97ce7b8f14d310da2db0c9b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:54:21.0810 2580 usbehci - ok
11:54:21.0826 2580 [ 4673bbcb006af60e7abddbe7a130ba42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:54:21.0857 2580 usbhub - ok
11:54:21.0873 2580 [ 38dbc7dd6cc5a72011f187425384388b ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:54:21.0904 2580 usbohci - ok
11:54:21.0951 2580 [ e75c4b5269091d15a2e7dc0b6d35f2f5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:54:21.0966 2580 usbprint - ok
11:54:22.0029 2580 [ a508c9bd8724980512136b039bba65e9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:54:22.0044 2580 usbscan - ok
11:54:22.0076 2580 [ be3da31c191bc222d9ad503c5224f2ad ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:54:22.0372 2580 USBSTOR - ok
11:54:22.0466 2580 [ 814d653efc4d48be3b04a307eceff56f ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:54:22.0481 2580 usbuhci - ok
11:54:22.0668 2580 [ e67998e8f14cb0627a769f6530bcb352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:54:22.0700 2580 usbvideo - ok
11:54:22.0731 2580 [ 8c5094a8ab24de7496c7c19942f2df04 ] UVCFTR C:\Windows\system32\Drivers\UVCFTR_S.SYS
11:54:22.0762 2580 UVCFTR - ok
11:54:22.0809 2580 [ 1509e705f3ac1d474c92454a5c2dd81f ] UxSms C:\Windows\System32\uxsms.dll
11:54:22.0840 2580 UxSms - ok
11:54:22.0902 2580 [ cd88d1b7776dc17a119049742ec07eb4 ] vds C:\Windows\System32\vds.exe
11:54:22.0934 2580 vds - ok
11:54:22.0980 2580 [ e6287f6c77e71adfc6badb106cd30e7d ] VET-FILT C:\Windows\system32\drivers\VET-FILT.sys
11:54:22.0996 2580 VET-FILT - ok
11:54:23.0012 2580 [ cb98d6c1ade8a891cbbfd9beb1774f48 ] VET-REC C:\Windows\system32\drivers\VET-REC.sys
11:54:23.0027 2580 VET-REC - ok
11:54:23.0090 2580 [ c079f80582c31728029f3efcdfeaf221 ] VETEBOOT C:\Windows\system32\drivers\VETEBOOT.sys
11:54:23.0121 2580 VETEBOOT - ok
11:54:23.0152 2580 [ 31bab965e7af8295c22f641401d622b3 ] VETEFILE C:\Windows\system32\drivers\VETEFILE.sys
11:54:23.0183 2580 VETEFILE - ok
11:54:23.0199 2580 [ 05bdabe6664f48c54a6d3c538c8f2cc1 ] VETFDDNT C:\Windows\system32\drivers\VETFDDNT.sys
11:54:23.0214 2580 VETFDDNT - ok
11:54:23.0230 2580 [ f5897ff7eb733670f92e798ef5358b88 ] VETMONNT C:\Windows\system32\drivers\VETMONNT.sys
11:54:23.0246 2580 VETMONNT - ok
11:54:23.0324 2580 [ 85874f218ce1f439a63e70b4b8aafdb8 ] VETMSGNT C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
11:54:23.0324 2580 VETMSGNT - ok
11:54:23.0355 2580 [ 87b06e1f30b749a114f74622d013f8d4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:54:23.0370 2580 vga - ok
11:54:23.0386 2580 [ 2e93ac0a1d8c79d019db6c51f036636c ] VgaSave C:\Windows\System32\drivers\vga.sys
11:54:23.0402 2580 VgaSave - ok
11:54:23.0417 2580 [ 5d7159def58a800d5781ba3a879627bc ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:54:23.0433 2580 viaagp - ok
11:54:23.0448 2580 [ c4f3a691b5bad343e6249bd8c2d45dee ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:54:23.0464 2580 ViaC7 - ok
11:54:23.0480 2580 [ aadf5587a4063f52c2c3fed7887426fc ] viaide C:\Windows\system32\drivers\viaide.sys
11:54:23.0495 2580 viaide - ok
11:54:23.0511 2580 [ 69503668ac66c77c6cd7af86fbdf8c43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:54:23.0526 2580 volmgr - ok
11:54:23.0589 2580 [ 23e41b834759917bfd6b9a0d625d0c28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:54:23.0604 2580 volmgrx - ok
11:54:23.0651 2580 [ 147281c01fcb1df9252de2a10d5e7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:54:23.0682 2580 volsnap - ok
11:54:23.0714 2580 [ 587253e09325e6bf226b299774b728a9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:54:23.0729 2580 vsmraid - ok
11:54:23.0776 2580 [ db3d19f850c6eb32bdcb9bc0836acddb ] VSS C:\Windows\system32\vssvc.exe
11:54:23.0823 2580 VSS - ok
11:54:23.0870 2580 [ 96ea68b9eb310a69c25ebb0282b2b9de ] W32Time C:\Windows\system32\w32time.dll
11:54:23.0901 2580 W32Time - ok
11:54:23.0916 2580 [ 48dfee8f1af7c8235d4e626f0c4fe031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:54:23.0932 2580 WacomPen - ok
11:54:23.0948 2580 [ 55201897378cca7af8b5efd874374a26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:54:23.0963 2580 Wanarp - ok
11:54:23.0979 2580 [ 55201897378cca7af8b5efd874374a26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:54:23.0979 2580 Wanarpv6 - ok
11:54:24.0010 2580 [ a3cd60fd826381b49f03832590e069af ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:54:24.0041 2580 wcncsvc - ok
11:54:24.0072 2580 [ 11bcb7afcdd7aadacb5746f544d3a9c7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:54:24.0104 2580 WcsPlugInService - ok
11:54:24.0135 2580 [ 78fe9542363f297b18c027b2d7e7c07f ] Wd C:\Windows\system32\drivers\wd.sys
11:54:24.0150 2580 Wd - ok
11:54:24.0213 2580 [ 9950e3d0f08141c7e89e64456ae7dc73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:54:24.0228 2580 Wdf01000 - ok
11:54:24.0244 2580 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:54:24.0291 2580 WdiServiceHost - ok
11:54:24.0306 2580 [ abfc76b48bb6c96e3338d8943c5d93b5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:54:24.0338 2580 WdiSystemHost - ok
11:54:24.0384 2580 [ 04c37d8107320312fbae09926103d5e2 ] WebClient C:\Windows\System32\webclnt.dll
11:54:24.0431 2580 WebClient - ok
11:54:24.0494 2580 [ ae3736e7e8892241c23e4ebbb7453b60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:54:24.0540 2580 Wecsvc - ok
11:54:24.0572 2580 [ 670ff720071ed741206d69bd995ea453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:54:24.0618 2580 wercplsupport - ok
11:54:24.0665 2580 [ 32b88481d3b326da6deb07b1d03481e7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:54:24.0712 2580 WerSvc - ok
11:54:24.0728 2580 WinHttpAutoProxySvc - ok
11:54:24.0821 2580 [ 6b2a1d0e80110e3d04e6863c6e62fd8a ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:54:24.0837 2580 Winmgmt - ok
11:54:24.0915 2580 [ 7cfe68bdc065e55aa5e8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:54:24.0977 2580 WinRM - ok
11:54:25.0024 2580 [ 676f4b665bdd8053eaa53ac1695b8074 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
11:54:25.0040 2580 WinUSB - ok
11:54:25.0102 2580 [ c008405e4feeb069e30da1d823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:54:25.0149 2580 Wlansvc - ok
11:54:25.0211 2580 [ 6067acef367e79914af628fa1e9b5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:54:25.0227 2580 wlcrasvc - ok
11:54:25.0305 2580 [ fb01d4ae207b9efdbabfc55dc95c7e31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:54:25.0352 2580 wlidsvc - ok
11:54:25.0367 2580 [ 2e7255d172df0b8283cdfb7b433b864e ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:54:25.0398 2580 WmiAcpi - ok
11:54:25.0461 2580 [ 43be3875207dcb62a85c8c49970b66cc ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:54:25.0476 2580 wmiApSrv - ok
11:54:25.0554 2580 [ 3978704576a121a9204f8cc49a301a9b ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:54:25.0586 2580 WMPNetworkSvc - ok
11:54:25.0695 2580 [ 017695393afffed8de58abd1b085be6d ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
11:54:25.0710 2580 WMZuneComm - ok
11:54:25.0773 2580 [ cfc5a04558f5070cee3e3a7809f3ff52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:54:25.0835 2580 WPCSvc - ok
11:54:25.0882 2580 [ 801fbdb89d472b3c467eb112a0fc9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:54:25.0929 2580 WPDBusEnum - ok
11:54:25.0960 2580 [ de9d36f91a4df3d911626643debf11ea ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:54:25.0976 2580 WpdUsb - ok
11:54:26.0116 2580 [ dcf3e3edf5109ee8bc02fe6e1f045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:54:26.0147 2580 WPFFontCache_v0400 - ok
11:54:26.0163 2580 [ e3a3cb253c0ec2494d4a61f5e43a389c ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:54:26.0178 2580 ws2ifsl - ok
11:54:26.0194 2580 WSearch - ok
11:54:26.0272 2580 [ 6f9b6c0c93232cff47d0f72d6db1d21e ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:54:26.0288 2580 WudfPf - ok
11:54:26.0319 2580 [ f91ff1e51fca30b3c3981db7d5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:54:26.0350 2580 WUDFRd - ok
11:54:26.0366 2580 [ 2c0206ff8d2c75ac027d1096fa2fafda ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:54:26.0428 2580 wudfsvc - ok
11:54:26.0646 2580 [ 1076df9ade4e13ea3bf39d2165aeb903 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
11:54:26.0724 2580 ZuneNetworkSvc - ok
11:54:26.0802 2580 [ de1cdb333a402b279f04d627122fa08e ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
11:54:26.0818 2580 ZuneWlanCfgSvc - ok
11:54:26.0834 2580 ================ Scan global ===============================
11:54:26.0849 2580 (f31eebc1a1c81fd04005489cc3dcdfe7) C:\Windows\system32\basesrv.dll
11:54:26.0912 2580 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
11:54:26.0974 2580 (d2293b069e4b63dc17b2f08d45e71124) C:\Windows\system32\winsrv.dll
11:54:27.0083 2580 (d4e6d91c1349b7bfb3599a6ada56851b) C:\Windows\system32\services.exe
11:54:27.0114 2580 [Global] - ok
11:54:27.0114 2580 ================ Scan MBR ==================================
11:54:27.0130 2580 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
11:54:28.0534 2580 \Device\Harddisk0\DR0 - ok
11:54:28.0534 2580 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR1
11:54:31.0202 2580 \Device\Harddisk1\DR1 - ok
11:54:31.0202 2580 ================ Scan VBR ==================================
11:54:31.0248 2580 Boot (0x1200) (6c294de4e485e0726250e70338a8bae7) \Device\Harddisk0\DR0\Partition1
11:54:31.0264 2580 \Device\Harddisk0\DR0\Partition1 - ok
11:54:31.0264 2580 Boot (0x1200) (41de3654fd4bc630de3f529a2883720b) \Device\Harddisk1\DR1\Partition1
11:54:31.0264 2580 \Device\Harddisk1\DR1\Partition1 - ok
11:54:31.0264 2580 ============================================================
11:54:31.0264 2580 Scan finished
11:54:31.0264 2580 ============================================================
11:54:31.0280 2064 Detected object count: 0
11:54:31.0280 2064 Actual detected object count: 0





Rkill 2.2.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/18/2012 12:01:12 PM in x86 mode.
Windows Version: Windows Vista

Checking for Windows services to stop.

* No malware services found to stop.

Checking for processes to terminate.

* No malware processes found to kill.

Checking Registry for malware related settings.

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks.

* No issues found.

Checking Windows Service Integrity:

* AppMgmt [Missing Service]
* BFE [Missing Service]
* BITS [Missing Service]
* CscService [Missing Service]
* Fax [Missing Service]
* iphlpsvc [Missing Service]
* MpsSvc [Missing Service]
* UmRdpService [Missing Service]
* wbengine [Missing Service]
* WinDefend [Missing Service]
* wscsvc [Missing Service]
* wuauserv [Missing Service]
* SharedAccess [Missing ImagePath]
* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]

Searching for Missing Digital Signatures:
* No issues found.

Program finished at: 08/18/2012 12:01:29 PM
Execution time: 0 hours(s), 0 minute(s), and 17 seconds(s)

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 18 August 2012 - 11:18 AM

ADWARE CLEANER log?


Download

http://download.bleepingcomputer.com/win-services/vista/BFE.reg
http://download.bleepingcomputer.com/win-services/vista/BITS.reg
http://download.bleepingcomputer.com/win-services/vista/wuauserv.reg
http://download.bleepingcomputer.com/win-services/vista/wscsvc.reg
http://download.bleepingcomputer.com/win-services/vista/MpsSvc.reg
http://download.bleepingcomputer.com/win-services/vista/WinDefend.reg
http://download.bleepingcomputer.com/win-services/vista/SharedAccess.reg
http://download.bleepingcomputer.com/win-services/vista/AppMgmt.reg
http://download.bleepingcomputer.com/win-services/vista/CscService.reg
http://download.bleepingcomputer.com/win-services/vista/iphlpsvc.reg
http://download.bleepingcomputer.com/win-services/vista/UmRdpService.reg
http://download.bleepingcomputer.com/win-services/vista/wbengine.reg

Launch all these keys,click YES

Restart the PC ,post the new FSS log

#14 rawriminvisible

rawriminvisible
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 18 August 2012 - 04:33 PM

# AdwCleaner v1.801 - Logfile created 08/18/2012 at 17:14:44
# Updated 14/08/2012 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : {Replaced by OP} - {Replaced by OP}-PC
# Boot Mode : Normal
# Running from : E:\Scan software\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19272

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\{Replaced by OP}\AppData\Roaming\Mozilla\Firefox\Profiles\57qsoy20.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1096 octets] - [16/08/2012 00:00:31]
AdwCleaner[S2].txt - [813 octets] - [18/08/2012 17:14:44]

########## EOF - C:\AdwCleaner[S2].txt - [940 octets] ##########






Farbar Service Scanner Version: 06-08-2012
Ran by {replaced by OP} (administrator) on 18-08-2012 at 17:25:57
Running from "E:\Scan software"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Google IP is accessible.
Attempt to access Google.com returned error: Other errors
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.

bfe Service is not running. Checking service configuration:
The start type of bfe service is OK.
The ImagePath of bfe service is OK.
The ServiceDll of bfe service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll
[2008-01-20 22:24] - [2008-01-20 22:24] - 0288256 ____A (Microsoft Corporation) E1499BD0FF76B1B2FBBF1AF339D91165

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ******

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:55 AM

Posted 18 August 2012 - 04:36 PM

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections
Repair Winsock & DNS Cache
Repair hosts


Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

Edited by narenxp, 19 August 2012 - 08:53 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users