Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Partner37 virus- help?!


  • Please log in to reply
3 replies to this topic

#1 Ellie13

Ellie13

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 21 August 2012 - 09:45 AM

Despite having Panda Security, my laptop has become infected with the redirecting Partner37 virus. I run Windows 7 and my preferred browser is Chrome. The browser has been running slow and certain websites, not all, are redirected to this bogus search engine website. Every now and then I get the welcome to nginx also. Panda can't find the infection so I have no idea where to start.

Any help would be very much appreciated.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:19 PM

Posted 21 August 2012 - 09:51 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Ellie13

Ellie13
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:19 PM

Posted 21 August 2012 - 11:59 AM

TDSS Killer log:
09:54:31.0969 1484 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
09:54:32.0250 1484 ============================================================
09:54:32.0250 1484 Current date / time: 2012/08/21 09:54:32.0250
09:54:32.0250 1484 SystemInfo:
09:54:32.0250 1484
09:54:32.0250 1484 OS Version: 6.1.7601 ServicePack: 1.0
09:54:32.0250 1484 Product type: Workstation
09:54:32.0250 1484 ComputerName: ELLIE-HP
09:54:32.0250 1484 UserName: Ellie
09:54:32.0250 1484 Windows directory: C:\Windows
09:54:32.0250 1484 System windows directory: C:\Windows
09:54:32.0250 1484 Running under WOW64
09:54:32.0250 1484 Processor architecture: Intel x64
09:54:32.0250 1484 Number of processors: 4
09:54:32.0250 1484 Page size: 0x1000
09:54:32.0250 1484 Boot type: Safe boot with network
09:54:32.0250 1484 ============================================================
09:54:32.0577 1484 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:54:32.0577 1484 ============================================================
09:54:32.0577 1484 \Device\Harddisk0\DR0:
09:54:32.0577 1484 MBR partitions:
09:54:32.0577 1484 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
09:54:32.0577 1484 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x48BFB800
09:54:32.0577 1484 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x48C5F800, BlocksNum 0x1BC4800
09:54:32.0577 1484 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A824000, BlocksNum 0x33AB0
09:54:32.0577 1484 ============================================================
09:54:32.0608 1484 C: <-> \Device\Harddisk0\DR0\Partition2
09:54:32.0640 1484 D: <-> \Device\Harddisk0\DR0\Partition3
09:54:32.0640 1484 ============================================================
09:54:32.0640 1484 Initialize success
09:54:32.0640 1484 ============================================================
09:54:50.0408 1864 ============================================================
09:54:50.0408 1864 Scan started
09:54:50.0408 1864 Mode: Manual; SigCheck; TDLFS;
09:54:50.0408 1864 ============================================================
09:54:51.0032 1864 ================ Scan system memory ========================
09:54:51.0032 1864 System memory - ok
09:54:51.0032 1864 ================ Scan services =============================
09:54:51.0204 1864 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:54:51.0250 1864 1394ohci - ok
09:54:51.0282 1864 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:54:51.0297 1864 ACPI - ok
09:54:51.0313 1864 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:54:51.0375 1864 AcpiPmi - ok
09:54:51.0438 1864 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
09:54:51.0453 1864 adp94xx - ok
09:54:51.0516 1864 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
09:54:51.0531 1864 adpahci - ok
09:54:51.0562 1864 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
09:54:51.0578 1864 adpu320 - ok
09:54:51.0640 1864 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:54:51.0828 1864 AeLookupSvc - ok
09:54:51.0890 1864 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
09:54:51.0921 1864 AFD - ok
09:54:52.0030 1864 [ 91B76D91C781E9DD49D9D03A2AB3E8C3 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
09:54:52.0046 1864 AffinegyService - ok
09:54:52.0093 1864 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:54:52.0093 1864 agp440 - ok
09:54:52.0140 1864 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
09:54:52.0171 1864 ALG - ok
09:54:52.0218 1864 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
09:54:52.0233 1864 aliide - ok
09:54:52.0233 1864 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
09:54:52.0249 1864 amdide - ok
09:54:52.0280 1864 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
09:54:52.0311 1864 AmdK8 - ok
09:54:52.0358 1864 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
09:54:52.0389 1864 AmdPPM - ok
09:54:52.0420 1864 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:54:52.0436 1864 amdsata - ok
09:54:52.0467 1864 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
09:54:52.0483 1864 amdsbs - ok
09:54:52.0498 1864 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:54:52.0498 1864 amdxata - ok
09:54:52.0545 1864 [ 71336E77F98A65EFAAEB950902611D3F ] AmFSM C:\Windows\system32\DRIVERS\amm6460.sys
09:54:52.0561 1864 AmFSM - ok
09:54:52.0608 1864 [ B1A935537BE5C168C223946572E2EDD1 ] APPFLT C:\Windows\system32\Drivers\APPFLT64.SYS
09:54:52.0608 1864 APPFLT - ok
09:54:52.0639 1864 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
09:54:52.0701 1864 AppID - ok
09:54:52.0732 1864 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:54:52.0779 1864 AppIDSvc - ok
09:54:52.0795 1864 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
09:54:52.0842 1864 Appinfo - ok
09:54:52.0904 1864 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:54:52.0920 1864 Apple Mobile Device - ok
09:54:52.0966 1864 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
09:54:52.0966 1864 arc - ok
09:54:52.0982 1864 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
09:54:52.0998 1864 arcsas - ok
09:54:53.0013 1864 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:54:53.0060 1864 AsyncMac - ok
09:54:53.0091 1864 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
09:54:53.0091 1864 atapi - ok
09:54:53.0138 1864 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:54:53.0200 1864 AudioEndpointBuilder - ok
09:54:53.0216 1864 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:54:53.0247 1864 AudioSrv - ok
09:54:53.0278 1864 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:54:53.0356 1864 AxInstSV - ok
09:54:53.0403 1864 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
09:54:53.0434 1864 b06bdrv - ok
09:54:53.0466 1864 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:54:53.0497 1864 b57nd60a - ok
09:54:53.0575 1864 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
09:54:53.0590 1864 BBSvc - ok
09:54:53.0637 1864 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
09:54:53.0684 1864 BCM43XX - ok
09:54:53.0715 1864 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
09:54:53.0746 1864 BDESVC - ok
09:54:53.0762 1864 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
09:54:53.0809 1864 Beep - ok
09:54:53.0871 1864 [ 299E54DB3638A18E47BD3A2D2EF499F7 ] Belkin Local Backup Service C:\Program Files\Belkin\Belkin USB Print and Storage Center\BkBackupScheduler.exe
09:54:53.0887 1864 Belkin Local Backup Service ( UnsignedFile.Multi.Generic ) - warning
09:54:53.0887 1864 Belkin Local Backup Service - detected UnsignedFile.Multi.Generic (1)
09:54:53.0902 1864 [ E62A04D615A8CAC83601E1F07C010D3C ] Belkin Network USB Helper C:\Program Files\Belkin\Belkin USB Print and Storage Center\Bkapcs.exe
09:54:53.0918 1864 Belkin Network USB Helper ( UnsignedFile.Multi.Generic ) - warning
09:54:53.0918 1864 Belkin Network USB Helper - detected UnsignedFile.Multi.Generic (1)
09:54:53.0980 1864 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
09:54:54.0027 1864 BFE - ok
09:54:54.0074 1864 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
09:54:54.0121 1864 BITS - ok
09:54:54.0152 1864 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
09:54:54.0183 1864 blbdrive - ok
09:54:54.0261 1864 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:54:54.0277 1864 Bonjour Service - ok
09:54:54.0324 1864 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:54:54.0355 1864 bowser - ok
09:54:54.0370 1864 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
09:54:54.0402 1864 BrFiltLo - ok
09:54:54.0433 1864 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
09:54:54.0433 1864 BrFiltUp - ok
09:54:54.0464 1864 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
09:54:54.0511 1864 Browser - ok
09:54:54.0542 1864 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:54:54.0589 1864 Brserid - ok
09:54:54.0604 1864 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:54:54.0620 1864 BrSerWdm - ok
09:54:54.0651 1864 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:54:54.0682 1864 BrUsbMdm - ok
09:54:54.0698 1864 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:54:54.0714 1864 BrUsbSer - ok
09:54:54.0745 1864 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
09:54:54.0760 1864 BTHMODEM - ok
09:54:54.0807 1864 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
09:54:54.0854 1864 bthserv - ok
09:54:54.0885 1864 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:54:54.0932 1864 cdfs - ok
09:54:54.0979 1864 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:54:54.0994 1864 cdrom - ok
09:54:55.0041 1864 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
09:54:55.0088 1864 CertPropSvc - ok
09:54:55.0104 1864 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
09:54:55.0135 1864 circlass - ok
09:54:55.0150 1864 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
09:54:55.0166 1864 CLFS - ok
09:54:55.0244 1864 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:54:55.0244 1864 clr_optimization_v2.0.50727_32 - ok
09:54:55.0275 1864 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:54:55.0291 1864 clr_optimization_v2.0.50727_64 - ok
09:54:55.0338 1864 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:54:55.0369 1864 clr_optimization_v4.0.30319_32 - ok
09:54:55.0384 1864 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:54:55.0400 1864 clr_optimization_v4.0.30319_64 - ok
09:54:55.0431 1864 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
09:54:55.0447 1864 clwvd - ok
09:54:55.0478 1864 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
09:54:55.0509 1864 CmBatt - ok
09:54:55.0525 1864 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:54:55.0540 1864 cmdide - ok
09:54:55.0572 1864 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
09:54:55.0603 1864 CNG - ok
09:54:55.0634 1864 [ 8A64C45F467FB30C47A30AE2819DDD62 ] ComFiltr C:\Windows\system32\DRIVERS\COMFiltr.sys
09:54:55.0650 1864 ComFiltr - ok
09:54:55.0696 1864 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
09:54:55.0696 1864 Compbatt - ok
09:54:55.0743 1864 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:54:55.0759 1864 CompositeBus - ok
09:54:55.0774 1864 COMSysApp - ok
09:54:55.0790 1864 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
09:54:55.0806 1864 crcdisk - ok
09:54:55.0868 1864 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:54:55.0915 1864 CryptSvc - ok
09:54:55.0946 1864 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:54:55.0993 1864 DcomLaunch - ok
09:54:56.0040 1864 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
09:54:56.0086 1864 defragsvc - ok
09:54:56.0133 1864 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:54:56.0180 1864 DfsC - ok
09:54:56.0242 1864 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
09:54:56.0289 1864 Dhcp - ok
09:54:56.0289 1864 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
09:54:56.0336 1864 discache - ok
09:54:56.0398 1864 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
09:54:56.0398 1864 Disk - ok
09:54:56.0430 1864 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:54:56.0445 1864 Dnscache - ok
09:54:56.0492 1864 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
09:54:56.0539 1864 dot3svc - ok
09:54:56.0554 1864 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
09:54:56.0601 1864 DPS - ok
09:54:56.0632 1864 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:54:56.0648 1864 drmkaud - ok
09:54:56.0679 1864 [ 64648B677D5005749F2FE412254512B7 ] DSAFLT C:\Windows\system32\Drivers\DSAFLT64.SYS
09:54:56.0695 1864 DSAFLT - ok
09:54:56.0726 1864 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:54:56.0757 1864 DXGKrnl - ok
09:54:56.0773 1864 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
09:54:56.0835 1864 EapHost - ok
09:54:56.0898 1864 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
09:54:56.0960 1864 ebdrv - ok
09:54:56.0976 1864 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
09:54:56.0991 1864 EFS - ok
09:54:57.0054 1864 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:54:57.0100 1864 ehRecvr - ok
09:54:57.0132 1864 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
09:54:57.0132 1864 ehSched - ok
09:54:57.0194 1864 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
09:54:57.0210 1864 elxstor - ok
09:54:57.0241 1864 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:54:57.0256 1864 ErrDev - ok
09:54:57.0319 1864 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
09:54:57.0366 1864 EventSystem - ok
09:54:57.0397 1864 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
09:54:57.0444 1864 exfat - ok
09:54:57.0444 1864 ezSharedSvc - ok
09:54:57.0459 1864 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:54:57.0506 1864 fastfat - ok
09:54:57.0553 1864 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
09:54:57.0584 1864 Fax - ok
09:54:57.0615 1864 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
09:54:57.0631 1864 fdc - ok
09:54:57.0662 1864 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
09:54:57.0709 1864 fdPHost - ok
09:54:57.0724 1864 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
09:54:57.0756 1864 FDResPub - ok
09:54:57.0771 1864 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:54:57.0787 1864 FileInfo - ok
09:54:57.0787 1864 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:54:57.0849 1864 Filetrace - ok
09:54:57.0880 1864 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
09:54:57.0896 1864 flpydisk - ok
09:54:57.0896 1864 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:54:57.0912 1864 FltMgr - ok
09:54:57.0974 1864 [ 50C6C310A98108A94E985FD46B4E150C ] FNETMON C:\Windows\system32\Drivers\fnetm64.SYS
09:54:57.0974 1864 FNETMON - ok
09:54:58.0021 1864 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
09:54:58.0083 1864 FontCache - ok
09:54:58.0130 1864 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:54:58.0130 1864 FontCache3.0.0.0 - ok
09:54:58.0146 1864 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:54:58.0161 1864 FsDepends - ok
09:54:58.0177 1864 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:54:58.0192 1864 Fs_Rec - ok
09:54:58.0208 1864 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:54:58.0224 1864 fvevol - ok
09:54:58.0255 1864 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
09:54:58.0255 1864 gagp30kx - ok
09:54:58.0317 1864 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
09:54:58.0333 1864 GamesAppService - ok
09:54:58.0380 1864 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:54:58.0380 1864 GEARAspiWDM - ok
09:54:58.0411 1864 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
09:54:58.0458 1864 gpsvc - ok
09:54:58.0536 1864 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:54:58.0536 1864 gupdate - ok
09:54:58.0551 1864 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:54:58.0567 1864 gupdatem - ok
09:54:58.0614 1864 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
09:54:58.0629 1864 gusvc - ok
09:54:58.0645 1864 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:54:58.0692 1864 hcw85cir - ok
09:54:58.0723 1864 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:54:58.0754 1864 HdAudAddService - ok
09:54:58.0785 1864 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:54:58.0816 1864 HDAudBus - ok
09:54:58.0848 1864 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
09:54:58.0863 1864 HECIx64 - ok
09:54:58.0879 1864 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
09:54:58.0894 1864 HidBatt - ok
09:54:58.0910 1864 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
09:54:58.0941 1864 HidBth - ok
09:54:58.0988 1864 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
09:54:59.0004 1864 HidIr - ok
09:54:59.0019 1864 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
09:54:59.0066 1864 hidserv - ok
09:54:59.0097 1864 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:54:59.0113 1864 HidUsb - ok
09:54:59.0128 1864 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:54:59.0191 1864 hkmsvc - ok
09:54:59.0206 1864 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:54:59.0238 1864 HomeGroupListener - ok
09:54:59.0269 1864 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:54:59.0300 1864 HomeGroupProvider - ok
09:54:59.0362 1864 [ 170233B8D743EFE35F462A5D516B93E3 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
09:54:59.0378 1864 HP Support Assistant Service - ok
09:54:59.0456 1864 [ 7B8C1B09C11E8DB7C4480ABD7D17E821 ] HPAuto C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
09:54:59.0472 1864 HPAuto - ok
09:54:59.0503 1864 [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
09:54:59.0503 1864 HPClientSvc - ok
09:54:59.0565 1864 [ E040F0064D39F73BB4995D494F3DCBB8 ] hpCMSrv C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
09:54:59.0596 1864 hpCMSrv - ok
09:54:59.0628 1864 [ BCC4A8B2E2E902F52E7F2E7D8E125765 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
09:54:59.0628 1864 HPDrvMntSvc.exe - ok
09:54:59.0659 1864 [ EC9739A46F1F83C6E52A7A4697F44A65 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
09:54:59.0674 1864 hpqwmiex - ok
09:54:59.0706 1864 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:54:59.0721 1864 HpSAMD - ok
09:54:59.0768 1864 [ F630DD7564EBB7248A13B1CC774D9EA6 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
09:54:59.0768 1864 HPWMISVC - ok
09:54:59.0799 1864 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:54:59.0846 1864 HTTP - ok
09:54:59.0877 1864 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:54:59.0877 1864 hwpolicy - ok
09:54:59.0908 1864 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:54:59.0908 1864 i8042prt - ok
09:54:59.0971 1864 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
09:54:59.0971 1864 iaStor - ok
09:55:00.0049 1864 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:55:00.0049 1864 IAStorDataMgrSvc - ok
09:55:00.0111 1864 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:55:00.0127 1864 iaStorV - ok
09:55:00.0158 1864 [ E3FC339DAC4DDF4A12188313DC4DA94F ] IDSFLT C:\Windows\system32\Drivers\IDSFLT64.SYS
09:55:00.0174 1864 IDSFLT - ok
09:55:00.0252 1864 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:55:00.0283 1864 idsvc - ok
09:55:00.0517 1864 [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
09:55:00.0891 1864 igfx - ok
09:55:00.0922 1864 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
09:55:00.0938 1864 iirsp - ok
09:55:00.0985 1864 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
09:55:01.0047 1864 IKEEXT - ok
09:55:01.0078 1864 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
09:55:01.0110 1864 Impcd - ok
09:55:01.0141 1864 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
09:55:01.0156 1864 IntcDAud - ok
09:55:01.0203 1864 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
09:55:01.0203 1864 intelide - ok
09:55:01.0234 1864 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:55:01.0266 1864 intelppm - ok
09:55:01.0297 1864 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:55:01.0344 1864 IPBusEnum - ok
09:55:01.0344 1864 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:55:01.0375 1864 IpFilterDriver - ok
09:55:01.0390 1864 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:55:01.0453 1864 iphlpsvc - ok
09:55:01.0468 1864 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:55:01.0500 1864 IPMIDRV - ok
09:55:01.0515 1864 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:55:01.0562 1864 IPNAT - ok
09:55:01.0640 1864 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:55:01.0656 1864 iPod Service - ok
09:55:01.0702 1864 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:55:01.0718 1864 IRENUM - ok
09:55:01.0749 1864 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:55:01.0765 1864 isapnp - ok
09:55:01.0780 1864 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:55:01.0796 1864 iScsiPrt - ok
09:55:01.0812 1864 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:55:01.0827 1864 kbdclass - ok
09:55:01.0858 1864 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:55:01.0874 1864 kbdhid - ok
09:55:01.0905 1864 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
09:55:01.0905 1864 KeyIso - ok
09:55:01.0983 1864 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:55:01.0983 1864 KSecDD - ok
09:55:02.0046 1864 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:55:02.0046 1864 KSecPkg - ok
09:55:02.0092 1864 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:55:02.0155 1864 ksthunk - ok
09:55:02.0170 1864 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
09:55:02.0217 1864 KtmRm - ok
09:55:02.0264 1864 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
09:55:02.0326 1864 LanmanServer - ok
09:55:02.0342 1864 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:55:02.0389 1864 LanmanWorkstation - ok
09:55:02.0592 1864 [ 3C879D04BB6466E2853C3155B635CC45 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
09:55:02.0763 1864 LeapFrog Connect Device Service - ok
09:55:02.0826 1864 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:55:02.0872 1864 lltdio - ok
09:55:02.0904 1864 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:55:02.0950 1864 lltdsvc - ok
09:55:02.0966 1864 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:55:02.0997 1864 lmhosts - ok
09:55:03.0075 1864 [ 0405F4BCD1C7A7B309F620FE0B5DE5E6 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:55:03.0091 1864 LMS - ok
09:55:03.0122 1864 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
09:55:03.0138 1864 LSI_FC - ok
09:55:03.0169 1864 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
09:55:03.0184 1864 LSI_SAS - ok
09:55:03.0216 1864 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
09:55:03.0216 1864 LSI_SAS2 - ok
09:55:03.0231 1864 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
09:55:03.0247 1864 LSI_SCSI - ok
09:55:03.0278 1864 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
09:55:03.0325 1864 luafv - ok
09:55:03.0372 1864 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:55:03.0387 1864 MBAMProtector - ok
09:55:03.0481 1864 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
09:55:03.0496 1864 MBAMService - ok
09:55:03.0528 1864 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:55:03.0543 1864 Mcx2Svc - ok
09:55:03.0574 1864 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
09:55:03.0590 1864 megasas - ok
09:55:03.0621 1864 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
09:55:03.0637 1864 MegaSR - ok
09:55:03.0684 1864 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
09:55:03.0730 1864 MMCSS - ok
09:55:03.0762 1864 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
09:55:03.0808 1864 Modem - ok
09:55:03.0855 1864 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:55:03.0886 1864 monitor - ok
09:55:03.0918 1864 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
09:55:03.0933 1864 mouclass - ok
09:55:03.0980 1864 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
09:55:04.0011 1864 mouhid - ok
09:55:04.0058 1864 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:55:04.0058 1864 mountmgr - ok
09:55:04.0105 1864 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
09:55:04.0120 1864 mpio - ok
09:55:04.0136 1864 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:55:04.0183 1864 mpsdrv - ok
09:55:04.0214 1864 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:55:04.0276 1864 MpsSvc - ok
09:55:04.0292 1864 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:55:04.0323 1864 MRxDAV - ok
09:55:04.0354 1864 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:55:04.0386 1864 mrxsmb - ok
09:55:04.0417 1864 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:55:04.0432 1864 mrxsmb10 - ok
09:55:04.0448 1864 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:55:04.0464 1864 mrxsmb20 - ok
09:55:04.0495 1864 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
09:55:04.0495 1864 msahci - ok
09:55:04.0526 1864 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:55:04.0526 1864 msdsm - ok
09:55:04.0557 1864 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
09:55:04.0588 1864 MSDTC - ok
09:55:04.0604 1864 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:55:04.0651 1864 Msfs - ok
09:55:04.0666 1864 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:55:04.0713 1864 mshidkmdf - ok
09:55:04.0729 1864 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:55:04.0729 1864 msisadrv - ok
09:55:04.0760 1864 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:55:04.0822 1864 MSiSCSI - ok
09:55:04.0822 1864 msiserver - ok
09:55:04.0869 1864 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:55:04.0916 1864 MSKSSRV - ok
09:55:04.0916 1864 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:55:04.0963 1864 MSPCLOCK - ok
09:55:04.0978 1864 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:55:05.0010 1864 MSPQM - ok
09:55:05.0025 1864 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:55:05.0041 1864 MsRPC - ok
09:55:05.0072 1864 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:55:05.0088 1864 mssmbios - ok
09:55:05.0119 1864 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:55:05.0166 1864 MSTEE - ok
09:55:05.0181 1864 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
09:55:05.0197 1864 MTConfig - ok
09:55:05.0244 1864 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
09:55:05.0244 1864 Mup - ok
09:55:05.0290 1864 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
09:55:05.0337 1864 napagent - ok
09:55:05.0368 1864 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:55:05.0400 1864 NativeWifiP - ok
09:55:05.0431 1864 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:55:05.0462 1864 NDIS - ok
09:55:05.0493 1864 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:55:05.0524 1864 NdisCap - ok
09:55:05.0556 1864 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:55:05.0587 1864 NdisTapi - ok
09:55:05.0587 1864 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:55:05.0634 1864 Ndisuio - ok
09:55:05.0649 1864 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:55:05.0680 1864 NdisWan - ok
09:55:05.0696 1864 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:55:05.0727 1864 NDProxy - ok
09:55:05.0727 1864 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:55:05.0774 1864 NetBIOS - ok
09:55:05.0790 1864 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:55:05.0836 1864 NetBT - ok
09:55:05.0868 1864 [ BA99A34A9B5EB737CE54BC0A7C596609 ] NETFLTDI C:\Windows\system32\Drivers\NETTDI64.SYS
09:55:05.0883 1864 NETFLTDI - ok
09:55:05.0930 1864 [ FD0BFED656D9B26C22E439CC0EF5C771 ] NETIMFLT01060044 C:\Windows\system32\DRIVERS\n64i1644.sys
09:55:05.0930 1864 NETIMFLT01060044 - ok
09:55:05.0961 1864 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
09:55:05.0977 1864 Netlogon - ok
09:55:06.0039 1864 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
09:55:06.0086 1864 Netman - ok
09:55:06.0102 1864 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
09:55:06.0148 1864 netprofm - ok
09:55:06.0195 1864 [ 24CF1304D899124336F67F88F3C15E21 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
09:55:06.0226 1864 netr28x - ok
09:55:06.0242 1864 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:55:06.0258 1864 NetTcpPortSharing - ok
09:55:06.0289 1864 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
09:55:06.0289 1864 nfrd960 - ok
09:55:06.0320 1864 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:55:06.0367 1864 NlaSvc - ok
09:55:06.0398 1864 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:55:06.0429 1864 Npfs - ok
09:55:06.0460 1864 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
09:55:06.0507 1864 nsi - ok
09:55:06.0507 1864 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:55:06.0554 1864 nsiproxy - ok
09:55:06.0601 1864 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:55:06.0648 1864 Ntfs - ok
09:55:06.0679 1864 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
09:55:06.0710 1864 Null - ok
09:55:06.0741 1864 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
09:55:06.0772 1864 NVENETFD - ok
09:55:06.0804 1864 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:55:06.0804 1864 nvraid - ok
09:55:06.0866 1864 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:55:06.0882 1864 nvstor - ok
09:55:06.0913 1864 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:55:06.0928 1864 nv_agp - ok
09:55:06.0944 1864 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:55:06.0960 1864 ohci1394 - ok
09:55:06.0991 1864 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:55:07.0038 1864 p2pimsvc - ok
09:55:07.0053 1864 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
09:55:07.0069 1864 p2psvc - ok
09:55:07.0256 1864 [ 78B7642B0C51F24F0835C0226540D58B ] Panda Software Controller C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\PsCtrls.exe
09:55:07.0287 1864 Panda Software Controller - ok
09:55:07.0318 1864 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
09:55:07.0334 1864 Parport - ok
09:55:07.0365 1864 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:55:07.0365 1864 partmgr - ok
09:55:07.0428 1864 [ 337A81B3FF34F9851D245D42A725FC22 ] pavboot C:\Windows\system32\Drivers\pavboot64.sys
09:55:07.0428 1864 pavboot - ok
09:55:07.0506 1864 [ AE848C1613C8738BB83ADAB4F0845E84 ] PAVFNSVR C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\PavFnSvr.exe
09:55:07.0521 1864 PAVFNSVR - ok
09:55:07.0584 1864 [ 2AE3F6B23448443BBEF5DE207159213B ] PavPrSrv C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
09:55:07.0599 1864 PavPrSrv - ok
09:55:07.0677 1864 [ 97005413310966001FB6F4A5C503149C ] PAVSRV C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\pavsrvx86.exe
09:55:07.0693 1864 PAVSRV - ok
09:55:07.0740 1864 PavTPK.sys - ok
09:55:07.0755 1864 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:55:07.0786 1864 PcaSvc - ok
09:55:07.0802 1864 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
09:55:07.0818 1864 pci - ok
09:55:07.0833 1864 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
09:55:07.0849 1864 pciide - ok
09:55:07.0880 1864 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
09:55:07.0896 1864 pcmcia - ok
09:55:07.0896 1864 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
09:55:07.0911 1864 pcw - ok
09:55:07.0927 1864 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:55:07.0989 1864 PEAUTH - ok
09:55:08.0052 1864 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:55:08.0067 1864 PerfHost - ok
09:55:08.0114 1864 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
09:55:08.0192 1864 pla - ok
09:55:08.0239 1864 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:55:08.0270 1864 PlugPlay - ok
09:55:08.0286 1864 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:55:08.0301 1864 PNRPAutoReg - ok
09:55:08.0317 1864 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:55:08.0332 1864 PNRPsvc - ok
09:55:08.0379 1864 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:55:08.0426 1864 PolicyAgent - ok
09:55:08.0457 1864 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
09:55:08.0504 1864 Power - ok
09:55:08.0535 1864 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:55:08.0582 1864 PptpMiniport - ok
09:55:08.0629 1864 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
09:55:08.0644 1864 Processor - ok
09:55:08.0676 1864 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:55:08.0722 1864 ProfSvc - ok
09:55:08.0722 1864 Prot6Flt - ok
09:55:08.0769 1864 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:55:08.0785 1864 ProtectedStorage - ok
09:55:08.0816 1864 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:55:08.0878 1864 Psched - ok
09:55:08.0941 1864 [ 532053E8E3BB8FA7166AB4E7685FDDCC ] PSHost c:\program files (x86)\panda security\panda global protection 2012\firewall\PSHOST.EXE
09:55:08.0956 1864 PSHost - ok
09:55:08.0988 1864 [ 196C450F2779D0B462C444DA4906EA7F ] PSIMSVC C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\PsImSvc.exe
09:55:09.0003 1864 PSIMSVC - ok
09:55:09.0050 1864 [ 341457B79B3FC31A80C346C767045879 ] PskSvcRetail C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\PskSvc.exe
09:55:09.0066 1864 PskSvcRetail - ok
09:55:09.0128 1864 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
09:55:09.0175 1864 ql2300 - ok
09:55:09.0190 1864 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
09:55:09.0206 1864 ql40xx - ok
09:55:09.0222 1864 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
09:55:09.0237 1864 QWAVE - ok
09:55:09.0268 1864 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:55:09.0284 1864 QWAVEdrv - ok
09:55:09.0315 1864 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:55:09.0362 1864 RasAcd - ok
09:55:09.0409 1864 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:55:09.0440 1864 RasAgileVpn - ok
09:55:09.0487 1864 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
09:55:09.0518 1864 RasAuto - ok
09:55:09.0565 1864 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:55:09.0612 1864 Rasl2tp - ok
09:55:09.0643 1864 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
09:55:09.0674 1864 RasMan - ok
09:55:09.0690 1864 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:55:09.0736 1864 RasPppoe - ok
09:55:09.0752 1864 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:55:09.0783 1864 RasSstp - ok
09:55:09.0814 1864 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:55:09.0846 1864 rdbss - ok
09:55:09.0861 1864 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
09:55:09.0892 1864 rdpbus - ok
09:55:09.0908 1864 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:55:09.0955 1864 RDPCDD - ok
09:55:09.0970 1864 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:55:10.0017 1864 RDPENCDD - ok
09:55:10.0033 1864 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:55:10.0064 1864 RDPREFMP - ok
09:55:10.0095 1864 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:55:10.0126 1864 RDPWD - ok
09:55:10.0173 1864 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:55:10.0189 1864 rdyboost - ok
09:55:10.0204 1864 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:55:10.0251 1864 RemoteAccess - ok
09:55:10.0282 1864 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:55:10.0329 1864 RemoteRegistry - ok
09:55:10.0360 1864 [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
09:55:10.0376 1864 RoxioNow Service - ok
09:55:10.0392 1864 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:55:10.0454 1864 RpcEptMapper - ok
09:55:10.0470 1864 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
09:55:10.0485 1864 RpcLocator - ok
09:55:10.0501 1864 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
09:55:10.0548 1864 RpcSs - ok
09:55:10.0594 1864 [ 546D7F426776090B90EF5F195B6AE662 ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
09:55:10.0610 1864 RSPCIESTOR - ok
09:55:10.0641 1864 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:55:10.0672 1864 rspndr - ok
09:55:10.0719 1864 [ EA5532868BA76923D75BCB2A1448D810 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:55:10.0735 1864 RTL8167 - ok
09:55:10.0750 1864 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
09:55:10.0750 1864 SamSs - ok
09:55:10.0782 1864 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:55:10.0797 1864 sbp2port - ok
09:55:10.0828 1864 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:55:10.0860 1864 SCardSvr - ok
09:55:10.0891 1864 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:55:10.0938 1864 scfilter - ok
09:55:10.0969 1864 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
09:55:11.0031 1864 Schedule - ok
09:55:11.0062 1864 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
09:55:11.0094 1864 SCPolicySvc - ok
09:55:11.0125 1864 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
09:55:11.0140 1864 sdbus - ok
09:55:11.0172 1864 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:55:11.0203 1864 SDRSVC - ok
09:55:11.0265 1864 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
09:55:11.0281 1864 SeaPort - ok
09:55:11.0296 1864 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:55:11.0359 1864 secdrv - ok
09:55:11.0390 1864 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
09:55:11.0421 1864 seclogon - ok
09:55:11.0437 1864 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
09:55:11.0484 1864 SENS - ok
09:55:11.0499 1864 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:55:11.0530 1864 SensrSvc - ok
09:55:11.0562 1864 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
09:55:11.0577 1864 Serenum - ok
09:55:11.0608 1864 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
09:55:11.0640 1864 Serial - ok
09:55:11.0655 1864 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
09:55:11.0686 1864 sermouse - ok
09:55:11.0733 1864 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
09:55:11.0780 1864 SessionEnv - ok
09:55:11.0811 1864 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:55:11.0827 1864 sffdisk - ok
09:55:11.0874 1864 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:55:11.0889 1864 sffp_mmc - ok
09:55:11.0920 1864 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:55:11.0952 1864 sffp_sd - ok
09:55:11.0983 1864 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
09:55:12.0014 1864 sfloppy - ok
09:55:12.0045 1864 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:55:12.0092 1864 SharedAccess - ok
09:55:12.0123 1864 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:55:12.0186 1864 ShellHWDetection - ok
09:55:12.0232 1864 [ 03639A3B26AA808BAE79D89FDB4B151C ] ShldFlt C:\Windows\system32\DRIVERS\ShldFlt.sys
09:55:12.0248 1864 ShldFlt - ok
09:55:12.0264 1864 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
09:55:12.0279 1864 SiSRaid2 - ok
09:55:12.0295 1864 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
09:55:12.0310 1864 SiSRaid4 - ok
09:55:12.0373 1864 [ 6128E98EAAED364ED1A32708D2FD22CB ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
09:55:12.0388 1864 SkypeUpdate - ok
09:55:12.0420 1864 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:55:12.0466 1864 Smb - ok
09:55:12.0498 1864 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:55:12.0529 1864 SNMPTRAP - ok
09:55:12.0560 1864 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
09:55:12.0576 1864 spldr - ok
09:55:12.0591 1864 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
09:55:12.0638 1864 Spooler - ok
09:55:12.0700 1864 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
09:55:12.0810 1864 sppsvc - ok
09:55:12.0810 1864 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:55:12.0856 1864 sppuinotify - ok
09:55:12.0872 1864 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
09:55:12.0919 1864 srv - ok
09:55:12.0919 1864 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:55:12.0950 1864 srv2 - ok
09:55:12.0981 1864 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
09:55:12.0981 1864 SrvHsfHDA - ok
09:55:13.0028 1864 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
09:55:13.0059 1864 SrvHsfV92 - ok
09:55:13.0090 1864 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
09:55:13.0106 1864 SrvHsfWinac - ok
09:55:13.0122 1864 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:55:13.0137 1864 srvnet - ok
09:55:13.0168 1864 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:55:13.0231 1864 SSDPSRV - ok
09:55:13.0231 1864 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:55:13.0262 1864 SstpSvc - ok
09:55:13.0340 1864 [ B2D8B364A831427A5741F6C408FA8AE3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
09:55:13.0387 1864 STacSV - ok
09:55:13.0418 1864 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
09:55:13.0418 1864 stexstor - ok
09:55:13.0465 1864 [ EF5ACDE92BA3F691BBFEF781CB063501 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
09:55:13.0480 1864 STHDA - ok
09:55:13.0512 1864 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
09:55:13.0543 1864 stisvc - ok
09:55:13.0558 1864 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
09:55:13.0558 1864 swenum - ok
09:55:13.0590 1864 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
09:55:13.0652 1864 swprv - ok
09:55:13.0699 1864 [ 52EB25BD8AB4E331028C48B178441B36 ] sxuptp C:\Windows\system32\DRIVERS\sxuptp.sys
09:55:13.0714 1864 sxuptp - ok
09:55:13.0792 1864 [ 33E6A285DAA5134D8EA2247914C86C09 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
09:55:13.0824 1864 SynTP - ok
09:55:13.0870 1864 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
09:55:13.0917 1864 SysMain - ok
09:55:13.0933 1864 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:55:13.0948 1864 TabletInputService - ok
09:55:13.0964 1864 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:55:14.0026 1864 TapiSrv - ok
09:55:14.0042 1864 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
09:55:14.0073 1864 TBS - ok
09:55:14.0151 1864 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:55:14.0198 1864 Tcpip - ok
09:55:14.0245 1864 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:55:14.0276 1864 TCPIP6 - ok
09:55:14.0323 1864 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:55:14.0370 1864 tcpipreg - ok
09:55:14.0385 1864 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:55:14.0416 1864 TDPIPE - ok
09:55:14.0448 1864 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:55:14.0479 1864 TDTCP - ok
09:55:14.0510 1864 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:55:14.0541 1864 tdx - ok
09:55:14.0572 1864 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:55:14.0588 1864 TermDD - ok
09:55:14.0619 1864 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
09:55:14.0682 1864 TermService - ok
09:55:14.0697 1864 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
09:55:14.0713 1864 Themes - ok
09:55:14.0728 1864 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
09:55:14.0775 1864 THREADORDER - ok
09:55:14.0806 1864 [ B88C4D29CEE2BF7465FA4BF426A24E4E ] TPSrv C:\Program Files (x86)\Panda Security\Panda Global Protection 2012\TPSrvWow.exe
09:55:14.0806 1864 TPSrv - ok
09:55:14.0838 1864 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
09:55:14.0884 1864 TrkWks - ok
09:55:14.0947 1864 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:55:14.0994 1864 TrustedInstaller - ok
09:55:15.0009 1864 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:55:15.0056 1864 tssecsrv - ok
09:55:15.0103 1864 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:55:15.0118 1864 TsUsbFlt - ok
09:55:15.0134 1864 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
09:55:15.0134 1864 TsUsbGD - ok
09:55:15.0165 1864 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:55:15.0212 1864 tunnel - ok
09:55:15.0243 1864 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
09:55:15.0259 1864 uagp35 - ok
09:55:15.0274 1864 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:55:15.0321 1864 udfs - ok
09:55:15.0352 1864 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:55:15.0368 1864 UI0Detect - ok
09:55:15.0399 1864 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:55:15.0399 1864 uliagpkx - ok
09:55:15.0430 1864 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:55:15.0462 1864 umbus - ok
09:55:15.0462 1864 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
09:55:15.0493 1864 UmPass - ok
09:55:15.0602 1864 [ 6F895CA96552069B3D3EF5B4F6E90D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:55:15.0649 1864 UNS - ok
09:55:15.0696 1864 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
09:55:15.0742 1864 upnphost - ok
09:55:15.0774 1864 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
09:55:15.0805 1864 USBAAPL64 - ok
09:55:15.0852 1864 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:55:15.0867 1864 usbccgp - ok
09:55:15.0914 1864 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:55:15.0914 1864 usbcir - ok
09:55:15.0930 1864 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
09:55:15.0945 1864 usbehci - ok
09:55:16.0008 1864 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:55:16.0039 1864 usbhub - ok
09:55:16.0054 1864 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:55:16.0070 1864 usbohci - ok
09:55:16.0086 1864 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
09:55:16.0117 1864 usbprint - ok
09:55:16.0117 1864 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:55:16.0148 1864 USBSTOR - ok
09:55:16.0179 1864 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:55:16.0195 1864 usbuhci - ok
09:55:16.0242 1864 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
09:55:16.0257 1864 usbvideo - ok
09:55:16.0273 1864 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
09:55:16.0320 1864 UxSms - ok
09:55:16.0351 1864 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
09:55:16.0351 1864 VaultSvc - ok
09:55:16.0382 1864 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:55:16.0398 1864 vdrvroot - ok
09:55:16.0429 1864 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
09:55:16.0491 1864 vds - ok
09:55:16.0522 1864 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:55:16.0522 1864 vga - ok
09:55:16.0554 1864 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
09:55:16.0600 1864 VgaSave - ok
09:55:16.0616 1864 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:55:16.0632 1864 vhdmp - ok
09:55:16.0647 1864 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
09:55:16.0663 1864 viaide - ok
09:55:16.0678 1864 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:55:16.0694 1864 volmgr - ok
09:55:16.0725 1864 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:55:16.0756 1864 volmgrx - ok
09:55:16.0772 1864 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:55:16.0788 1864 volsnap - ok
09:55:16.0819 1864 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
09:55:16.0835 1864 vsmraid - ok
09:55:16.0897 1864 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
09:55:16.0959 1864 VSS - ok
09:55:16.0991 1864 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
09:55:17.0022 1864 vwifibus - ok
09:55:17.0022 1864 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
09:55:17.0037 1864 vwififlt - ok
09:55:17.0053 1864 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
09:55:17.0100 1864 W32Time - ok
09:55:17.0131 1864 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
09:55:17.0178 1864 WacomPen - ok
09:55:17.0256 1864 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:55:17.0334 1864 WANARP - ok
09:55:17.0474 1864 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:55:17.0521 1864 Wanarpv6 - ok
09:55:17.0599 1864 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
09:55:17.0630 1864 WatAdminSvc - ok
09:55:17.0693 1864 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
09:55:17.0739 1864 wbengine - ok
09:55:17.0755 1864 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:55:17.0771 1864 WbioSrvc - ok
09:55:17.0786 1864 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:55:17.0817 1864 wcncsvc - ok
09:55:17.0833 1864 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:55:17.0864 1864 WcsPlugInService - ok
09:55:17.0895 1864 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
09:55:17.0895 1864 Wd - ok
09:55:17.0927 1864 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:55:17.0942 1864 Wdf01000 - ok
09:55:17.0958 1864 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:55:18.0020 1864 WdiServiceHost - ok
09:55:18.0020 1864 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:55:18.0036 1864 WdiSystemHost - ok
09:55:18.0067 1864 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
09:55:18.0098 1864 WebClient - ok
09:55:18.0129 1864 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:55:18.0176 1864 Wecsvc - ok
09:55:18.0207 1864 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:55:18.0239 1864 wercplsupport - ok
09:55:18.0270 1864 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
09:55:18.0317 1864 WerSvc - ok
09:55:18.0348 1864 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:55:18.0379 1864 WfpLwf - ok
09:55:18.0395 1864 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:55:18.0410 1864 WIMMount - ok
09:55:18.0426 1864 WinDefend - ok
09:55:18.0426 1864 WinHttpAutoProxySvc - ok
09:55:18.0473 1864 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:55:18.0519 1864 Winmgmt - ok
09:55:18.0582 1864 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
09:55:18.0644 1864 WinRM - ok
09:55:18.0675 1864 [ FE88B288356E7B47B74B13372ADD906D ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
09:55:18.0691 1864 winusb - ok
09:55:18.0738 1864 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
09:55:18.0769 1864 Wlansvc - ok
09:55:18.0800 1864 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:55:18.0816 1864 wlcrasvc - ok
09:55:18.0956 1864 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:55:19.0019 1864 wlidsvc - ok
09:55:19.0034 1864 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:55:19.0065 1864 WmiAcpi - ok
09:55:19.0081 1864 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:55:19.0097 1864 wmiApSrv - ok
09:55:19.0128 1864 WMPNetworkSvc - ok
09:55:19.0190 1864 [ 83B6CA03C846FCD47F9883D77D1EB27B ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
09:55:19.0206 1864 WMZuneComm - ok
09:55:19.0237 1864 [ C1B61612FCCC6E750AD0A6E19C77EE85 ] WNMFLT C:\Windows\system32\Drivers\WNMFLT64.SYS
09:55:19.0253 1864 WNMFLT - ok
09:55:19.0268 1864 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:55:19.0284 1864 WPCSvc - ok
09:55:19.0299 1864 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:55:19.0315 1864 WPDBusEnum - ok
09:55:19.0346 1864 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:55:19.0377 1864 ws2ifsl - ok
09:55:19.0409 1864 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
09:55:19.0440 1864 wscsvc - ok
09:55:19.0455 1864 WSearch - ok
09:55:19.0518 1864 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
09:55:19.0580 1864 wuauserv - ok
09:55:19.0611 1864 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:55:19.0658 1864 WudfPf - ok
09:55:19.0689 1864 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:55:19.0736 1864 WUDFRd - ok
09:55:19.0767 1864 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:55:19.0799 1864 wudfsvc - ok
09:55:19.0830 1864 [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc C:\Windows\System32\wwansvc.dll
09:55:19.0861 1864 WwanSvc - ok
09:55:20.0064 1864 [ 67B787C34FB2888D01B130AE007042D8 ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
09:55:20.0360 1864 ZuneNetworkSvc - ok
09:55:20.0423 1864 [ 4D89FC1C20CF655739EFAC5DA81A67BC ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
09:55:20.0438 1864 ZuneWlanCfgSvc - ok
09:55:20.0454 1864 ================ Scan global ===============================
09:55:20.0485 1864 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
09:55:20.0516 1864 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
09:55:20.0516 1864 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
09:55:20.0563 1864 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
09:55:20.0594 1864 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
09:55:20.0610 1864 [Global] - ok
09:55:20.0610 1864 ================ Scan MBR ==================================
09:55:20.0625 1864 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:55:21.0577 1864 \Device\Harddisk0\DR0 - ok
09:55:21.0593 1864 ================ Scan VBR ==================================
09:55:21.0593 1864 [ 7EAB0D7231CB3FB20B5598AC23C2425F ] \Device\Harddisk0\DR0\Partition1
09:55:21.0593 1864 \Device\Harddisk0\DR0\Partition1 - ok
09:55:21.0608 1864 [ F6C5719F8171020291983E525A3D8C32 ] \Device\Harddisk0\DR0\Partition2
09:55:21.0608 1864 \Device\Harddisk0\DR0\Partition2 - ok
09:55:21.0655 1864 [ 85DA4E92F62CECF646F84935468C9B97 ] \Device\Harddisk0\DR0\Partition3
09:55:21.0655 1864 \Device\Harddisk0\DR0\Partition3 - ok
09:55:21.0671 1864 [ 9E9C46F839EB13C1F2B54D20ABF01F88 ] \Device\Harddisk0\DR0\Partition4
09:55:21.0671 1864 \Device\Harddisk0\DR0\Partition4 - ok
09:55:21.0671 1864 ============================================================
09:55:21.0671 1864 Scan finished
09:55:21.0671 1864 ============================================================
09:55:21.0686 0904 Detected object count: 2
09:55:21.0686 0904 Actual detected object count: 2
09:55:51.0872 0904 Belkin Local Backup Service ( UnsignedFile.Multi.Generic ) - skipped by user
09:55:51.0872 0904 Belkin Local Backup Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:55:51.0872 0904 Belkin Network USB Helper ( UnsignedFile.Multi.Generic ) - skipped by user
09:55:51.0872 0904 Belkin Network USB Helper ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:55:57.0519 0868 Deinitialize success


aswMBR log:
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-21 10:57:04
-----------------------------
10:57:04.950 OS Version: Windows x64 6.1.7601 Service Pack 1
10:57:04.950 Number of processors: 4 586 0x2505
10:57:04.950 ComputerName: ELLIE-HP UserName: Ellie
10:57:06.120 Initialize success
11:01:49.806 AVAST engine defs: 12082100
11:03:07.824 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:03:07.824 Disk 0 Vendor: TOSHIBA_ GS00 Size: 610480MB BusType: 3
11:03:07.840 Disk 0 MBR read successfully
11:03:07.840 Disk 0 MBR scan
11:03:07.840 Disk 0 Windows 7 default MBR code
11:03:07.856 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
11:03:07.871 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 595959 MB offset 409600
11:03:07.902 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 14217 MB offset 1220933632
11:03:07.918 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 1250050048
11:03:07.965 Disk 0 scanning C:\Windows\system32\drivers
11:03:17.056 Service scanning
11:03:49.804 Modules scanning
11:03:49.812 Disk 0 trace - called modules:
11:03:49.874 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
11:03:49.878 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80051bd060]
11:03:49.883 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004f9a050]
11:03:50.921 AVAST engine scan C:\Windows
11:03:53.074 AVAST engine scan C:\Windows\system32
11:06:15.390 AVAST engine scan C:\Windows\system32\drivers
11:06:26.773 AVAST engine scan C:\Users\Ellie
11:18:37.151 AVAST engine scan C:\ProgramData
11:19:36.091 Scan finished successfully
11:20:04.996 Disk 0 MBR has been saved successfully to "C:\Users\Ellie\Documents\MBR.dat"
11:20:05.001 The log file has been saved successfully to "C:\Users\Ellie\Documents\aswMBR.txt"

ESET log:
C:\$Recycle.Bin\S-1-5-21-3541784099-2479178319-2776217604-1000\$RAZS42M.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Ellie\AppData\Local\Temp\ICReinstall\cnet2_FreeMP3Cutter_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Ellie\Downloads\openofficesuite-setup.exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:19 PM

Posted 21 August 2012 - 02:07 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users