Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

services.exe problem


  • Please log in to reply
6 replies to this topic

#1 dustin.j.mueller

dustin.j.mueller

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 25 August 2012 - 10:24 PM

Hey,

AVG has white listed my services.exe file. I keep getting a popup every few minutes reminding me there is a threat. I have run ESET and Maleware bytes all turning up nothing. Any help with this would be great.

Thanks

-Dustin

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:38 AM

Posted 25 August 2012 - 10:24 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dustin.j.mueller

dustin.j.mueller
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 25 August 2012 - 10:31 PM

TDSS Log

22:25:59.0426 5572 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:26:00.0051 5572 ============================================================
22:26:00.0051 5572 Current date / time: 2012/08/25 22:26:00.0051
22:26:00.0051 5572 SystemInfo:
22:26:00.0051 5572
22:26:00.0051 5572 OS Version: 6.1.7601 ServicePack: 1.0
22:26:00.0051 5572 Product type: Workstation
22:26:00.0051 5572 ComputerName: BIGD-PC
22:26:00.0051 5572 UserName: Big D
22:26:00.0051 5572 Windows directory: C:\Windows
22:26:00.0051 5572 System windows directory: C:\Windows
22:26:00.0052 5572 Running under WOW64
22:26:00.0052 5572 Processor architecture: Intel x64
22:26:00.0052 5572 Number of processors: 2
22:26:00.0052 5572 Page size: 0x1000
22:26:00.0052 5572 Boot type: Normal boot
22:26:00.0052 5572 ============================================================
22:26:01.0127 5572 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:26:01.0132 5572 ============================================================
22:26:01.0133 5572 \Device\Harddisk0\DR0:
22:26:01.0133 5572 MBR partitions:
22:26:01.0133 5572 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2137278, BlocksNum 0xE8E4221
22:26:01.0149 5572 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x10A1C000, BlocksNum 0x29969800
22:26:01.0149 5572 ============================================================
22:26:01.0186 5572 C: <-> \Device\Harddisk0\DR0\Partition1
22:26:01.0223 5572 D: <-> \Device\Harddisk0\DR0\Partition2
22:26:01.0224 5572 ============================================================
22:26:01.0224 5572 Initialize success
22:26:01.0224 5572 ============================================================
22:26:20.0092 2572 ============================================================
22:26:20.0092 2572 Scan started
22:26:20.0092 2572 Mode: Manual; TDLFS;
22:26:20.0092 2572 ============================================================
22:26:21.0612 2572 ================ Scan system memory ========================
22:26:21.0612 2572 System memory - ok
22:26:21.0615 2572 ================ Scan services =============================
22:26:21.0788 2572 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:26:21.0852 2572 1394ohci - ok
22:26:21.0968 2572 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:26:22.0035 2572 ACPI - ok
22:26:22.0066 2572 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:26:22.0132 2572 AcpiPmi - ok
22:26:22.0242 2572 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:26:22.0246 2572 AdobeARMservice - ok
22:26:22.0379 2572 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:26:22.0384 2572 AdobeFlashPlayerUpdateSvc - ok
22:26:22.0447 2572 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:26:22.0478 2572 adp94xx - ok
22:26:22.0540 2572 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:26:22.0607 2572 adpahci - ok
22:26:22.0648 2572 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:26:22.0653 2572 adpu320 - ok
22:26:22.0780 2572 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
22:26:22.0788 2572 ADSMService - ok
22:26:22.0826 2572 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:26:22.0842 2572 AeLookupSvc - ok
22:26:22.0896 2572 [ FB2BE0BAE9B3F248080CDBF91EF16C7F ] AFBAgent C:\Windows\system32\FBAgent.exe
22:26:22.0936 2572 AFBAgent - ok
22:26:22.0992 2572 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:26:23.0000 2572 AFD - ok
22:26:23.0063 2572 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
22:26:23.0065 2572 AgereModemAudio - ok
22:26:23.0108 2572 [ 2173E070647AC68C16B8214FE5C05EC3 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
22:26:23.0197 2572 AgereSoftModem - ok
22:26:23.0242 2572 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:26:23.0251 2572 agp440 - ok
22:26:23.0287 2572 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:26:23.0290 2572 ALG - ok
22:26:23.0323 2572 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:26:23.0325 2572 aliide - ok
22:26:23.0380 2572 [ BE778D82B983BA8F8C700C007A04326F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:26:23.0384 2572 AMD External Events Utility - ok
22:26:23.0415 2572 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:26:23.0418 2572 amdide - ok
22:26:23.0455 2572 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:26:23.0491 2572 AmdK8 - ok
22:26:23.0511 2572 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:26:23.0539 2572 AmdPPM - ok
22:26:23.0579 2572 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:26:23.0582 2572 amdsata - ok
22:26:23.0604 2572 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:26:23.0608 2572 amdsbs - ok
22:26:23.0628 2572 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:26:23.0631 2572 amdxata - ok
22:26:23.0670 2572 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:26:23.0673 2572 AppID - ok
22:26:23.0699 2572 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:26:23.0711 2572 AppIDSvc - ok
22:26:23.0761 2572 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:26:23.0764 2572 Appinfo - ok
22:26:23.0832 2572 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:26:23.0881 2572 Apple Mobile Device - ok
22:26:23.0928 2572 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:26:23.0942 2572 arc - ok
22:26:23.0962 2572 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:26:24.0000 2572 arcsas - ok
22:26:24.0055 2572 [ 88FBC8BEBFD38566235EAA5E4DBC4E05 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
22:26:24.0088 2572 AsDsm - ok
22:26:24.0137 2572 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
22:26:24.0140 2572 ASLDRService - ok
22:26:24.0192 2572 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
22:26:24.0195 2572 ASMMAP64 - ok
22:26:24.0298 2572 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:26:24.0337 2572 aspnet_state - ok
22:26:24.0401 2572 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:26:24.0408 2572 AsyncMac - ok
22:26:24.0436 2572 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:26:24.0439 2572 atapi - ok
22:26:24.0491 2572 [ 0ACC06FCF46F64ED4F11E57EE461C1F4 ] athr C:\Windows\system32\DRIVERS\athrx.sys
22:26:24.0592 2572 athr - ok
22:26:24.0633 2572 [ 506934DF94E3197F4A1BBE8FBEAB0CCD ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
22:26:24.0652 2572 AtiHdmiService - ok
22:26:24.0803 2572 [ 74813BCD647B441DC9C9C0DB2833781D ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:26:24.0934 2572 atikmdag - ok
22:26:24.0947 2572 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
22:26:24.0949 2572 ATKGFNEXSrv - ok
22:26:24.0999 2572 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:26:25.0023 2572 AudioEndpointBuilder - ok
22:26:25.0055 2572 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:26:25.0060 2572 AudioSrv - ok
22:26:25.0206 2572 [ D67719BCFDE5798F5C30D14EFED3BCAF ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
22:26:25.0308 2572 AVGIDSAgent - ok
22:26:25.0333 2572 [ 1B2E9FCDC26DC7C81D4131430E2DC936 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:26:25.0358 2572 AVGIDSDriver - ok
22:26:25.0372 2572 [ 0F293406F64B48D5D2F0D3A1117F3A83 ] AVGIDSFilter C:\Windows\system32\DRIVERS\avgidsfiltera.sys
22:26:25.0381 2572 AVGIDSFilter - ok
22:26:25.0402 2572 [ CFFC3A4A638F462E0561CB368B9A7A3A ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
22:26:25.0404 2572 AVGIDSHA - ok
22:26:25.0431 2572 [ 59955B4C288DD2A8B9FD2CD5158355C5 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
22:26:25.0449 2572 Avgldx64 - ok
22:26:25.0476 2572 [ A6AEC362AAE5E2DDA7445E7690CB0F33 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
22:26:25.0478 2572 Avgmfx64 - ok
22:26:25.0502 2572 [ 645C7F0A0E39758A0024A9B1748273C0 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
22:26:25.0505 2572 Avgrkx64 - ok
22:26:25.0537 2572 [ 1BEE674AD792B1C63BB0DAC5FA724B23 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
22:26:25.0550 2572 Avgtdia - ok
22:26:25.0589 2572 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
22:26:25.0615 2572 avgwd - ok
22:26:25.0680 2572 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:26:25.0684 2572 AxInstSV - ok
22:26:25.0738 2572 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:26:25.0782 2572 b06bdrv - ok
22:26:25.0824 2572 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:26:25.0864 2572 b57nd60a - ok
22:26:25.0911 2572 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:26:25.0914 2572 BDESVC - ok
22:26:25.0941 2572 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:26:25.0943 2572 Beep - ok
22:26:26.0025 2572 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:26:26.0047 2572 BFE - ok
22:26:26.0136 2572 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:26:26.0197 2572 blbdrive - ok
22:26:26.0283 2572 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:26:26.0291 2572 Bonjour Service - ok
22:26:26.0316 2572 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:26:26.0320 2572 bowser - ok
22:26:26.0348 2572 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:26:26.0360 2572 BrFiltLo - ok
22:26:26.0381 2572 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:26:26.0383 2572 BrFiltUp - ok
22:26:26.0419 2572 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:26:26.0422 2572 BridgeMP - ok
22:26:26.0457 2572 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
22:26:26.0463 2572 Browser - ok
22:26:26.0493 2572 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:26:26.0499 2572 Brserid - ok
22:26:26.0515 2572 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:26:26.0519 2572 BrSerWdm - ok
22:26:26.0530 2572 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:26:26.0533 2572 BrUsbMdm - ok
22:26:26.0554 2572 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:26:26.0557 2572 BrUsbSer - ok
22:26:26.0576 2572 BTCFilterService - ok
22:26:26.0593 2572 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:26:26.0595 2572 BTHMODEM - ok
22:26:26.0635 2572 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:26:26.0639 2572 bthserv - ok
22:26:26.0660 2572 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:26:26.0663 2572 cdfs - ok
22:26:26.0697 2572 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:26:26.0728 2572 cdrom - ok
22:26:26.0768 2572 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:26:26.0772 2572 CertPropSvc - ok
22:26:26.0828 2572 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:26:26.0860 2572 circlass - ok
22:26:26.0905 2572 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:26:26.0912 2572 CLFS - ok
22:26:26.0975 2572 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:26:27.0034 2572 clr_optimization_v2.0.50727_32 - ok
22:26:27.0087 2572 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:26:27.0124 2572 clr_optimization_v2.0.50727_64 - ok
22:26:27.0349 2572 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:26:27.0434 2572 clr_optimization_v4.0.30319_32 - ok
22:26:27.0465 2572 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:26:27.0489 2572 clr_optimization_v4.0.30319_64 - ok
22:26:27.0520 2572 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:26:27.0523 2572 CmBatt - ok
22:26:27.0554 2572 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:26:27.0566 2572 cmdide - ok
22:26:27.0604 2572 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:26:27.0626 2572 CNG - ok
22:26:27.0671 2572 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:26:27.0690 2572 Compbatt - ok
22:26:27.0731 2572 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:26:27.0809 2572 CompositeBus - ok
22:26:27.0828 2572 COMSysApp - ok
22:26:27.0854 2572 cpuz135 - ok
22:26:27.0878 2572 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:26:27.0881 2572 crcdisk - ok
22:26:27.0920 2572 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:26:27.0926 2572 CryptSvc - ok
22:26:27.0958 2572 [ 7AF9DAC504FBD047CBC3E64AE52C92BF ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
22:26:27.0970 2572 dc3d - ok
22:26:28.0020 2572 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:26:28.0142 2572 DcomLaunch - ok
22:26:28.0181 2572 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:26:28.0189 2572 defragsvc - ok
22:26:28.0260 2572 [ 3430EAD65BBE8516572EB7C8B82ED8CD ] DeviceMonitorService C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
22:26:28.0265 2572 DeviceMonitorService - ok
22:26:28.0331 2572 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:26:28.0335 2572 DfsC - ok
22:26:28.0400 2572 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:26:28.0412 2572 Dhcp - ok
22:26:28.0459 2572 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:26:28.0462 2572 discache - ok
22:26:28.0558 2572 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:26:28.0563 2572 Disk - ok
22:26:28.0598 2572 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:26:28.0605 2572 Dnscache - ok
22:26:28.0649 2572 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:26:28.0656 2572 dot3svc - ok
22:26:28.0697 2572 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:26:28.0707 2572 DPS - ok
22:26:28.0758 2572 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:26:28.0772 2572 drmkaud - ok
22:26:28.0919 2572 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:26:28.0953 2572 DXGKrnl - ok
22:26:28.0988 2572 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:26:28.0994 2572 EapHost - ok
22:26:29.0083 2572 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:26:29.0182 2572 ebdrv - ok
22:26:29.0220 2572 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:26:29.0230 2572 EFS - ok
22:26:29.0395 2572 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:26:29.0457 2572 ehRecvr - ok
22:26:29.0486 2572 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:26:29.0533 2572 ehSched - ok
22:26:29.0614 2572 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:26:29.0650 2572 elxstor - ok
22:26:29.0673 2572 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:26:29.0701 2572 ErrDev - ok
22:26:29.0768 2572 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:26:29.0779 2572 EventSystem - ok
22:26:29.0815 2572 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:26:29.0822 2572 exfat - ok
22:26:29.0851 2572 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:26:29.0856 2572 fastfat - ok
22:26:29.0910 2572 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:26:29.0934 2572 Fax - ok
22:26:29.0963 2572 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:26:29.0968 2572 fdc - ok
22:26:30.0008 2572 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:26:30.0014 2572 fdPHost - ok
22:26:30.0025 2572 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:26:30.0033 2572 FDResPub - ok
22:26:30.0047 2572 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:26:30.0050 2572 FileInfo - ok
22:26:30.0241 2572 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
22:26:30.0242 2572 FileMonitor - ok
22:26:30.0260 2572 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:26:30.0263 2572 Filetrace - ok
22:26:30.0290 2572 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:26:30.0293 2572 flpydisk - ok
22:26:30.0325 2572 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:26:30.0331 2572 FltMgr - ok
22:26:30.0380 2572 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:26:30.0413 2572 FontCache - ok
22:26:30.0468 2572 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:26:30.0471 2572 FontCache3.0.0.0 - ok
22:26:30.0498 2572 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:26:30.0501 2572 FsDepends - ok
22:26:30.0545 2572 [ 5814011B2F6E088E29D689B5FCD49B8F ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
22:26:30.0586 2572 fssfltr - ok
22:26:30.0716 2572 [ F6717211C1EC2CDDAA81B97B0727C2E9 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
22:26:30.0719 2572 fsssvc - ok
22:26:30.0747 2572 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:26:30.0750 2572 Fs_Rec - ok
22:26:30.0818 2572 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:26:30.0822 2572 fvevol - ok
22:26:30.0899 2572 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:26:30.0906 2572 gagp30kx - ok
22:26:30.0985 2572 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:26:31.0028 2572 GEARAspiWDM - ok
22:26:31.0317 2572 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:26:31.0357 2572 gpsvc - ok
22:26:31.0439 2572 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
22:26:31.0455 2572 hamachi - ok
22:26:31.0482 2572 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:26:31.0519 2572 hcw85cir - ok
22:26:31.0583 2572 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:26:31.0726 2572 HdAudAddService - ok
22:26:31.0877 2572 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:26:31.0896 2572 HDAudBus - ok
22:26:31.0954 2572 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:26:31.0962 2572 HidBatt - ok
22:26:31.0982 2572 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:26:31.0989 2572 HidBth - ok
22:26:32.0011 2572 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:26:32.0014 2572 HidIr - ok
22:26:32.0060 2572 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:26:32.0065 2572 hidserv - ok
22:26:32.0161 2572 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:26:32.0191 2572 HidUsb - ok
22:26:32.0311 2572 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:26:32.0319 2572 hkmsvc - ok
22:26:32.0366 2572 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:26:32.0386 2572 HomeGroupListener - ok
22:26:32.0458 2572 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:26:32.0474 2572 HomeGroupProvider - ok
22:26:32.0544 2572 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:26:32.0547 2572 HpSAMD - ok
22:26:32.0644 2572 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:26:32.0692 2572 HTTP - ok
22:26:32.0761 2572 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:26:32.0767 2572 hwpolicy - ok
22:26:32.0818 2572 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:26:32.0832 2572 i8042prt - ok
22:26:32.0895 2572 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:26:32.0898 2572 iaStor - ok
22:26:33.0053 2572 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:26:33.0073 2572 iaStorV - ok
22:26:33.0216 2572 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:26:33.0219 2572 IDriverT - ok
22:26:33.0391 2572 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:26:33.0446 2572 idsvc - ok
22:26:33.0683 2572 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:26:33.0689 2572 iirsp - ok
22:26:33.0802 2572 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:26:33.0837 2572 IKEEXT - ok
22:26:34.0163 2572 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
22:26:34.0169 2572 IMFservice - ok
22:26:34.0663 2572 [ F26B0F42FA499677D8938B94C2CCE7DD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:26:35.0236 2572 IntcAzAudAddService - ok
22:26:35.0264 2572 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:26:35.0266 2572 intelide - ok
22:26:35.0358 2572 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:26:35.0369 2572 intelppm - ok
22:26:35.0464 2572 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:26:35.0472 2572 IPBusEnum - ok
22:26:35.0551 2572 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:26:35.0554 2572 IpFilterDriver - ok
22:26:35.0684 2572 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:26:35.0707 2572 iphlpsvc - ok
22:26:35.0733 2572 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:26:35.0736 2572 IPMIDRV - ok
22:26:35.0791 2572 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:26:35.0795 2572 IPNAT - ok
22:26:35.0931 2572 [ 755E4BA6DCE627A2683BB7640553C8D6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:26:36.0001 2572 iPod Service - ok
22:26:36.0424 2572 [ 02DEF37AB75E0032C50724646F708DE8 ] iPodDrv C:\Windows\system32\drivers\iPodDrv.sys
22:26:36.0853 2572 iPodDrv - ok
22:26:36.0906 2572 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:26:36.0908 2572 IRENUM - ok
22:26:36.0929 2572 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:26:36.0967 2572 isapnp - ok
22:26:37.0031 2572 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:26:37.0075 2572 iScsiPrt - ok
22:26:37.0163 2572 [ 9291643B494F87BFDAC95A524F69E737 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
22:26:37.0201 2572 itecir - ok
22:26:37.0258 2572 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:26:37.0267 2572 kbdclass - ok
22:26:37.0313 2572 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:26:37.0319 2572 kbdhid - ok
22:26:37.0343 2572 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
22:26:37.0372 2572 kbfiltr - ok
22:26:37.0396 2572 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:26:37.0406 2572 KeyIso - ok
22:26:37.0447 2572 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:26:37.0450 2572 KSecDD - ok
22:26:37.0487 2572 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:26:37.0498 2572 KSecPkg - ok
22:26:37.0553 2572 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:26:37.0563 2572 ksthunk - ok
22:26:37.0624 2572 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:26:37.0666 2572 KtmRm - ok
22:26:37.0723 2572 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:26:37.0789 2572 LanmanServer - ok
22:26:37.0858 2572 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:26:37.0880 2572 LanmanWorkstation - ok
22:26:37.0922 2572 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:26:37.0929 2572 lltdio - ok
22:26:37.0973 2572 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:26:37.0985 2572 lltdsvc - ok
22:26:38.0003 2572 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:26:38.0011 2572 lmhosts - ok
22:26:38.0059 2572 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:26:38.0064 2572 LSI_FC - ok
22:26:38.0091 2572 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:26:38.0102 2572 LSI_SAS - ok
22:26:38.0128 2572 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:26:38.0135 2572 LSI_SAS2 - ok
22:26:38.0157 2572 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:26:38.0164 2572 LSI_SCSI - ok
22:26:38.0185 2572 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:26:38.0196 2572 luafv - ok
22:26:38.0221 2572 [ 085435AE1A124361304044029B5CC644 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
22:26:38.0223 2572 lullaby - ok
22:26:38.0258 2572 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:26:38.0266 2572 Mcx2Svc - ok
22:26:38.0285 2572 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:26:38.0306 2572 megasas - ok
22:26:38.0363 2572 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:26:38.0371 2572 MegaSR - ok
22:26:38.0548 2572 Microsoft SharePoint Workspace Audit Service - ok
22:26:38.0579 2572 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:26:38.0588 2572 MMCSS - ok
22:26:38.0602 2572 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:26:38.0605 2572 Modem - ok
22:26:38.0639 2572 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:26:38.0653 2572 monitor - ok
22:26:38.0677 2572 motccgp - ok
22:26:38.0687 2572 motccgpfl - ok
22:26:38.0717 2572 motmodem - ok
22:26:38.0796 2572 [ A8FD4605AACF006BBA3B2B90AC9565B2 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
22:26:38.0797 2572 Motorola Device Manager - ok
22:26:38.0806 2572 MotoSwitchService - ok
22:26:38.0811 2572 Motousbnet - ok
22:26:38.0838 2572 motusbdevice - ok
22:26:38.0861 2572 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:26:38.0863 2572 mouclass - ok
22:26:38.0899 2572 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:26:38.0921 2572 mouhid - ok
22:26:38.0968 2572 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:26:38.0979 2572 mountmgr - ok
22:26:39.0046 2572 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:26:39.0047 2572 MozillaMaintenance - ok
22:26:39.0077 2572 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:26:39.0103 2572 mpio - ok
22:26:39.0135 2572 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:26:39.0137 2572 mpsdrv - ok
22:26:39.0199 2572 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:26:39.0202 2572 MRxDAV - ok
22:26:39.0235 2572 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:26:39.0239 2572 mrxsmb - ok
22:26:39.0284 2572 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:26:39.0296 2572 mrxsmb10 - ok
22:26:39.0321 2572 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:26:39.0330 2572 mrxsmb20 - ok
22:26:39.0350 2572 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:26:39.0353 2572 msahci - ok
22:26:39.0425 2572 [ AAAC4B494DE45836121A40AEC980B631 ] MsDepSvc C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe
22:26:39.0436 2572 MsDepSvc - ok
22:26:39.0464 2572 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:26:39.0467 2572 msdsm - ok
22:26:39.0485 2572 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:26:39.0494 2572 MSDTC - ok
22:26:39.0528 2572 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:26:39.0535 2572 Msfs - ok
22:26:39.0579 2572 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:26:39.0583 2572 mshidkmdf - ok
22:26:39.0617 2572 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:26:39.0626 2572 msisadrv - ok
22:26:39.0667 2572 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:26:39.0689 2572 MSiSCSI - ok
22:26:39.0693 2572 msiserver - ok
22:26:39.0758 2572 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:26:39.0765 2572 MSKSSRV - ok
22:26:39.0806 2572 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:26:39.0810 2572 MSPCLOCK - ok
22:26:39.0830 2572 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:26:39.0841 2572 MSPQM - ok
22:26:39.0884 2572 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:26:39.0906 2572 MsRPC - ok
22:26:39.0935 2572 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:26:39.0949 2572 mssmbios - ok
22:26:40.0002 2572 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:26:40.0005 2572 MSTEE - ok
22:26:40.0025 2572 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:26:40.0036 2572 MTConfig - ok
22:26:40.0099 2572 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
22:26:40.0127 2572 MTsensor - ok
22:26:40.0173 2572 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:26:40.0178 2572 Mup - ok
22:26:40.0314 2572 MySQL - ok
22:26:40.0374 2572 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:26:40.0689 2572 napagent - ok
22:26:40.0815 2572 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:26:40.0834 2572 NativeWifiP - ok
22:26:41.0316 2572 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:26:41.0350 2572 NDIS - ok
22:26:41.0386 2572 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:26:41.0390 2572 NdisCap - ok
22:26:41.0433 2572 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:26:41.0441 2572 NdisTapi - ok
22:26:41.0540 2572 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:26:41.0542 2572 Ndisuio - ok
22:26:41.0627 2572 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:26:41.0633 2572 NdisWan - ok
22:26:41.0706 2572 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:26:41.0709 2572 NDProxy - ok
22:26:41.0747 2572 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:26:41.0752 2572 NetBIOS - ok
22:26:41.0814 2572 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:26:41.0818 2572 NetBT - ok
22:26:41.0830 2572 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:26:41.0837 2572 Netlogon - ok
22:26:41.0943 2572 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:26:42.0031 2572 Netman - ok
22:26:42.0331 2572 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:42.0738 2572 NetMsmqActivator - ok
22:26:42.0773 2572 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:42.0775 2572 NetPipeActivator - ok
22:26:42.0921 2572 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:26:42.0933 2572 netprofm - ok
22:26:43.0024 2572 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:43.0027 2572 NetTcpActivator - ok
22:26:43.0031 2572 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:43.0034 2572 NetTcpPortSharing - ok
22:26:43.0083 2572 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:26:43.0086 2572 nfrd960 - ok
22:26:43.0168 2572 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:26:43.0199 2572 NlaSvc - ok
22:26:43.0286 2572 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:26:43.0288 2572 Npfs - ok
22:26:43.0376 2572 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:26:43.0385 2572 nsi - ok
22:26:43.0400 2572 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:26:43.0403 2572 nsiproxy - ok
22:26:43.0555 2572 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:26:43.0643 2572 Ntfs - ok
22:26:43.0693 2572 [ 317020D31F1696334679B9D0416EB62E ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
22:26:43.0698 2572 NuidFltr - ok
22:26:43.0723 2572 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:26:43.0726 2572 Null - ok
22:26:43.0780 2572 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:26:43.0784 2572 nvraid - ok
22:26:43.0845 2572 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:26:43.0849 2572 nvstor - ok
22:26:43.0979 2572 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:26:43.0990 2572 nv_agp - ok
22:26:44.0041 2572 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:26:44.0046 2572 ohci1394 - ok
22:26:44.0175 2572 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:26:44.0186 2572 ose64 - ok
22:26:44.0587 2572 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:26:44.0710 2572 osppsvc - ok
22:26:44.0772 2572 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:26:44.0787 2572 p2pimsvc - ok
22:26:44.0837 2572 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:26:44.0879 2572 p2psvc - ok
22:26:44.0981 2572 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:26:44.0986 2572 Parport - ok
22:26:45.0142 2572 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:26:45.0146 2572 partmgr - ok
22:26:45.0199 2572 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:26:45.0220 2572 PcaSvc - ok
22:26:45.0244 2572 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:26:45.0249 2572 pci - ok
22:26:45.0272 2572 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:26:45.0275 2572 pciide - ok
22:26:45.0319 2572 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:26:45.0340 2572 pcmcia - ok
22:26:45.0542 2572 [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore C:\Windows\system32\drivers\PCTCore64.sys
22:26:45.0563 2572 PCTCore - ok
22:26:45.0675 2572 [ BA1F42A42F405F62CEFF6B69A2797F7C ] pctDS C:\Windows\system32\drivers\pctDS64.sys
22:26:45.0698 2572 pctDS - ok
22:26:45.0905 2572 [ 146CC91C93CED13E7FE40E8D8615BE39 ] pctEFA C:\Windows\system32\drivers\pctEFA64.sys
22:26:45.0948 2572 pctEFA - ok
22:26:45.0977 2572 [ C4775E7F54F3CC6307B73462B1B802C6 ] PCTSD C:\Windows\system32\Drivers\PCTSD64.sys
22:26:46.0013 2572 PCTSD - ok
22:26:46.0122 2572 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:26:46.0129 2572 pcw - ok
22:26:46.0306 2572 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:26:46.0373 2572 PEAUTH - ok
22:26:47.0507 2572 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:26:47.0515 2572 PerfHost - ok
22:26:47.0657 2572 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:26:47.0716 2572 pla - ok
22:26:47.0789 2572 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:26:48.0012 2572 PlugPlay - ok
22:26:48.0096 2572 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:26:48.0107 2572 PNRPAutoReg - ok
22:26:48.0157 2572 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:26:48.0171 2572 PNRPsvc - ok
22:26:48.0218 2572 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
22:26:48.0232 2572 Point64 - ok
22:26:48.0452 2572 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:26:48.0522 2572 PolicyAgent - ok
22:26:48.0556 2572 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:26:48.0570 2572 Power - ok
22:26:48.0644 2572 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:26:48.0648 2572 PptpMiniport - ok
22:26:48.0677 2572 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:26:48.0687 2572 Processor - ok
22:26:48.0711 2572 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:26:48.0721 2572 ProfSvc - ok
22:26:48.0742 2572 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:26:48.0750 2572 ProtectedStorage - ok
22:26:48.0813 2572 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:26:48.0817 2572 Psched - ok
22:26:48.0899 2572 [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
22:26:48.0901 2572 PST Service - ok
22:26:49.0058 2572 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:26:49.0113 2572 ql2300 - ok
22:26:49.0175 2572 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:26:49.0186 2572 ql40xx - ok
22:26:49.0224 2572 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:26:49.0267 2572 QWAVE - ok
22:26:49.0275 2572 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:26:49.0283 2572 QWAVEdrv - ok
22:26:49.0294 2572 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:26:49.0297 2572 RasAcd - ok
22:26:49.0361 2572 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:26:49.0364 2572 RasAgileVpn - ok
22:26:49.0402 2572 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:26:49.0412 2572 RasAuto - ok
22:26:49.0454 2572 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:26:49.0458 2572 Rasl2tp - ok
22:26:49.0491 2572 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:26:49.0514 2572 RasMan - ok
22:26:49.0545 2572 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:26:49.0548 2572 RasPppoe - ok
22:26:49.0571 2572 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:26:49.0574 2572 RasSstp - ok
22:26:49.0619 2572 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:26:49.0626 2572 rdbss - ok
22:26:49.0661 2572 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:26:49.0668 2572 rdpbus - ok
22:26:49.0678 2572 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:26:49.0683 2572 RDPCDD - ok
22:26:49.0787 2572 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:26:49.0790 2572 RDPENCDD - ok
22:26:49.0825 2572 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:26:49.0833 2572 RDPREFMP - ok
22:26:49.0881 2572 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:26:49.0885 2572 RDPWD - ok
22:26:49.0951 2572 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:26:49.0962 2572 rdyboost - ok
22:26:50.0086 2572 [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
22:26:50.0087 2572 RegFilter - ok
22:26:50.0184 2572 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:26:50.0193 2572 RemoteAccess - ok
22:26:50.0230 2572 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:26:50.0242 2572 RemoteRegistry - ok
22:26:50.0265 2572 [ 6FAF5B04BEDC66D300D9D233B2D222F0 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
22:26:50.0346 2572 rimmptsk - ok
22:26:50.0448 2572 [ 67F50C31713106FD1B0F286F86AA2B2E ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
22:26:50.0497 2572 rimsptsk - ok
22:26:50.0573 2572 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
22:26:50.0583 2572 RimUsb - ok
22:26:50.0637 2572 [ 4D7EF3D46346EC4C58784DB964B365DE ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
22:26:50.0736 2572 rismxdp - ok
22:26:50.0779 2572 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:26:50.0788 2572 RpcEptMapper - ok
22:26:50.0821 2572 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:26:50.0830 2572 RpcLocator - ok
22:26:50.0920 2572 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:26:50.0931 2572 RpcSs - ok
22:26:50.0971 2572 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:26:50.0983 2572 rspndr - ok
22:26:51.0041 2572 [ 483C537E69FA97C77F7FE0E2E1C1F102 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
22:26:51.0316 2572 RTHDMIAzAudService - ok
22:26:51.0349 2572 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:26:51.0658 2572 RTL8167 - ok
22:26:51.0680 2572 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:26:51.0688 2572 SamSs - ok
22:26:51.0720 2572 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:26:51.0724 2572 sbp2port - ok
22:26:51.0852 2572 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
22:26:51.0868 2572 SBSDWSCService - ok
22:26:51.0896 2572 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:26:51.0908 2572 SCardSvr - ok
22:26:51.0955 2572 [ 3AC948640421E3891A49AA83C6B77B7A ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
22:26:51.0982 2572 SCDEmu - ok
22:26:52.0045 2572 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:26:52.0056 2572 scfilter - ok
22:26:52.0168 2572 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:26:52.0219 2572 Schedule - ok
22:26:52.0320 2572 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:26:52.0323 2572 SCPolicySvc - ok
22:26:52.0501 2572 [ CFEB26A26452D5337C2F3AADD8218FC3 ] sdAuxService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsAuxs.exe
22:26:52.0505 2572 sdAuxService - ok
22:26:52.0544 2572 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
22:26:52.0549 2572 sdbus - ok
22:26:52.0644 2572 [ B906C04F469060F2DD7FCB84706B4493 ] sdCoreService C:\Program Files (x86)\PC Tools\PC Tools Security\pctsSvc.exe
22:26:52.0652 2572 sdCoreService - ok
22:26:52.0689 2572 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:26:52.0703 2572 SDRSVC - ok
22:26:52.0781 2572 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:26:52.0892 2572 secdrv - ok
22:26:52.0919 2572 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:26:52.0929 2572 seclogon - ok
22:26:52.0951 2572 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:26:52.0961 2572 SENS - ok
22:26:52.0976 2572 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:26:52.0987 2572 SensrSvc - ok
22:26:53.0007 2572 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:26:53.0012 2572 Serenum - ok
22:26:53.0030 2572 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:26:53.0055 2572 Serial - ok
22:26:53.0111 2572 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:26:53.0117 2572 sermouse - ok
22:26:53.0197 2572 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:26:53.0209 2572 SessionEnv - ok
22:26:53.0255 2572 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:26:53.0262 2572 sffdisk - ok
22:26:53.0275 2572 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:26:53.0283 2572 sffp_mmc - ok
22:26:53.0292 2572 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:26:53.0295 2572 sffp_sd - ok
22:26:53.0317 2572 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:26:53.0323 2572 sfloppy - ok
22:26:53.0416 2572 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:26:53.0438 2572 ShellHWDetection - ok
22:26:53.0483 2572 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
22:26:53.0486 2572 SiSGbeLH - ok
22:26:53.0530 2572 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:26:53.0541 2572 SiSRaid2 - ok
22:26:53.0555 2572 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:26:53.0564 2572 SiSRaid4 - ok
22:26:53.0632 2572 [ 68EA68D03BF58389FE6AD2B38FAD798C ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:26:53.0633 2572 SkypeUpdate - ok
22:26:53.0675 2572 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:26:53.0681 2572 Smb - ok
22:26:53.0722 2572 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:26:53.0732 2572 SNMPTRAP - ok
22:26:53.0895 2572 [ 2D280B5799F9C143FA7D49E032FBCE46 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
22:26:53.0975 2572 SNP2UVC - ok
22:26:54.0000 2572 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:26:54.0004 2572 spldr - ok
22:26:54.0096 2572 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:26:54.0124 2572 Spooler - ok
22:26:54.0353 2572 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:26:54.0450 2572 sppsvc - ok
22:26:54.0489 2572 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:26:54.0501 2572 sppuinotify - ok
22:26:54.0658 2572 [ A6CFF1AF7664627A296B6A0A96CF876E ] sptd C:\Windows\System32\Drivers\sptd.sys
22:26:54.0659 2572 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: A6CFF1AF7664627A296B6A0A96CF876E
22:26:54.0661 2572 sptd ( LockedFile.Multi.Generic ) - warning
22:26:54.0661 2572 sptd - detected LockedFile.Multi.Generic (1)
22:26:54.0705 2572 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:26:54.0712 2572 srv - ok
22:26:54.0758 2572 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:26:54.0779 2572 srv2 - ok
22:26:54.0795 2572 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:26:54.0798 2572 srvnet - ok
22:26:54.0907 2572 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:26:54.0929 2572 SSDPSRV - ok
22:26:54.0950 2572 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:26:54.0964 2572 SstpSvc - ok
22:26:55.0061 2572 Steam Client Service - ok
22:26:55.0086 2572 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:26:55.0089 2572 stexstor - ok
22:26:55.0240 2572 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:26:55.0284 2572 stisvc - ok
22:26:55.0314 2572 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:26:55.0318 2572 swenum - ok
22:26:55.0376 2572 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:26:55.0404 2572 swprv - ok
22:26:55.0468 2572 [ 0FAA1933FBCF916C301FF94ACC623031 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:26:55.0483 2572 SynTP - ok
22:26:55.0627 2572 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:26:55.0684 2572 SysMain - ok
22:26:55.0722 2572 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:26:55.0734 2572 TabletInputService - ok
22:26:55.0832 2572 [ BCD6A90D6FD757CE9C29DDC850F7F231 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
22:26:55.0858 2572 tap0901 - ok
22:26:55.0948 2572 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:26:55.0966 2572 TapiSrv - ok
22:26:56.0034 2572 [ 927D0CDB3F96EFC1E98FB1A2C9FB67AD ] tapoas C:\Windows\system32\DRIVERS\tapoas.sys
22:26:56.0060 2572 tapoas - ok
22:26:56.0090 2572 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:26:56.0107 2572 TBS - ok
22:26:56.0287 2572 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:26:56.0354 2572 Tcpip - ok
22:26:56.0453 2572 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:26:56.0468 2572 TCPIP6 - ok
22:26:56.0531 2572 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:26:56.0536 2572 tcpipreg - ok
22:26:56.0563 2572 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:26:56.0571 2572 TDPIPE - ok
22:26:56.0606 2572 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:26:56.0611 2572 TDTCP - ok
22:26:56.0653 2572 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:26:56.0661 2572 tdx - ok
22:26:56.0680 2572 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:26:56.0688 2572 TermDD - ok
22:26:56.0822 2572 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:26:56.0865 2572 TermService - ok
22:26:56.0896 2572 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:26:56.0910 2572 Themes - ok
22:26:56.0957 2572 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:26:56.0964 2572 THREADORDER - ok
22:26:57.0046 2572 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:26:57.0059 2572 TrkWks - ok
22:26:57.0109 2572 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:26:57.0214 2572 TrustedInstaller - ok
22:26:57.0275 2572 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:26:57.0286 2572 tssecsrv - ok
22:26:57.0341 2572 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:26:57.0344 2572 TsUsbFlt - ok
22:26:57.0433 2572 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:26:57.0436 2572 tunnel - ok
22:26:57.0475 2572 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:26:57.0482 2572 uagp35 - ok
22:26:57.0559 2572 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:26:57.0579 2572 udfs - ok
22:26:57.0634 2572 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:26:57.0649 2572 UI0Detect - ok
22:26:57.0688 2572 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:26:57.0693 2572 uliagpkx - ok
22:26:57.0754 2572 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:26:57.0772 2572 umbus - ok
22:26:57.0797 2572 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:26:57.0803 2572 UmPass - ok
22:26:57.0868 2572 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:26:57.0899 2572 upnphost - ok
22:26:57.0954 2572 [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
22:26:57.0955 2572 UrlFilter - ok
22:26:57.0978 2572 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:26:58.0048 2572 usbccgp - ok
22:26:58.0141 2572 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:26:58.0175 2572 usbcir - ok
22:26:58.0200 2572 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:26:58.0203 2572 usbehci - ok
22:26:58.0258 2572 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:26:58.0298 2572 usbhub - ok
22:26:58.0317 2572 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:26:58.0327 2572 usbohci - ok
22:26:58.0376 2572 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:26:58.0385 2572 usbprint - ok
22:26:58.0427 2572 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:26:58.0445 2572 usbscan - ok
22:26:58.0478 2572 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:26:58.0498 2572 USBSTOR - ok
22:26:58.0513 2572 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:26:58.0538 2572 usbuhci - ok
22:26:58.0615 2572 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:26:58.0680 2572 usbvideo - ok
22:26:58.0712 2572 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:26:58.0724 2572 UxSms - ok
22:26:58.0744 2572 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:26:58.0754 2572 VaultSvc - ok
22:26:58.0787 2572 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:26:58.0791 2572 vdrvroot - ok
22:26:58.0884 2572 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:26:58.0910 2572 vds - ok
22:26:58.0970 2572 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:26:58.0993 2572 vga - ok
22:26:59.0019 2572 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:26:59.0028 2572 VgaSave - ok
22:26:59.0078 2572 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:26:59.0084 2572 vhdmp - ok
22:26:59.0110 2572 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:26:59.0130 2572 viaide - ok
22:26:59.0152 2572 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:26:59.0160 2572 volmgr - ok
22:26:59.0247 2572 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:26:59.0269 2572 volmgrx - ok
22:26:59.0321 2572 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:26:59.0341 2572 volsnap - ok
22:26:59.0381 2572 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:26:59.0385 2572 vsmraid - ok
22:26:59.0507 2572 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:26:59.0572 2572 VSS - ok
22:26:59.0596 2572 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:26:59.0602 2572 vwifibus - ok
22:26:59.0656 2572 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:26:59.0662 2572 vwififlt - ok
22:26:59.0721 2572 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:26:59.0731 2572 vwifimp - ok
22:26:59.0801 2572 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:26:59.0833 2572 W32Time - ok
22:26:59.0854 2572 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:26:59.0863 2572 WacomPen - ok
22:26:59.0925 2572 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:26:59.0930 2572 WANARP - ok
22:26:59.0939 2572 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:26:59.0941 2572 Wanarpv6 - ok
22:27:00.0096 2572 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:27:00.0148 2572 WatAdminSvc - ok
22:27:00.0281 2572 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:27:00.0354 2572 wbengine - ok
22:27:00.0433 2572 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:27:00.0448 2572 WbioSrvc - ok
22:27:00.0517 2572 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:27:00.0548 2572 wcncsvc - ok
22:27:00.0588 2572 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:27:00.0604 2572 WcsPlugInService - ok
22:27:00.0650 2572 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:27:00.0658 2572 Wd - ok
22:27:00.0682 2572 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:27:00.0706 2572 Wdf01000 - ok
22:27:00.0742 2572 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:27:00.0757 2572 WdiServiceHost - ok
22:27:00.0766 2572 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:27:00.0781 2572 WdiSystemHost - ok
22:27:00.0845 2572 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:27:00.0866 2572 WebClient - ok
22:27:00.0958 2572 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:27:00.0974 2572 Wecsvc - ok
22:27:00.0999 2572 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:27:01.0015 2572 wercplsupport - ok
22:27:01.0057 2572 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:27:01.0071 2572 WerSvc - ok
22:27:01.0102 2572 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:27:01.0105 2572 WfpLwf - ok
22:27:01.0145 2572 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:27:01.0169 2572 WimFltr - ok
22:27:01.0199 2572 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:27:01.0207 2572 WIMMount - ok
22:27:01.0236 2572 WinHttpAutoProxySvc - ok
22:27:01.0284 2572 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:27:01.0339 2572 Winmgmt - ok
22:27:01.0345 2572 WinRing0_1_2_0 - ok
22:27:01.0499 2572 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:27:01.0555 2572 WinRM - ok
22:27:01.0606 2572 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:27:01.0610 2572 WinUsb - ok
22:27:01.0685 2572 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:27:01.0725 2572 Wlansvc - ok
22:27:01.0762 2572 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:27:01.0765 2572 WmiAcpi - ok
22:27:01.0827 2572 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:27:01.0833 2572 wmiApSrv - ok
22:27:01.0887 2572 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:27:01.0900 2572 WPCSvc - ok
22:27:01.0988 2572 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:27:02.0005 2572 WPDBusEnum - ok
22:27:02.0053 2572 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:27:02.0057 2572 ws2ifsl - ok
22:27:02.0099 2572 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:27:02.0114 2572 wscsvc - ok
22:27:02.0122 2572 WSearch - ok
22:27:02.0309 2572 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:27:02.0406 2572 wuauserv - ok
22:27:02.0435 2572 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:27:02.0440 2572 WudfPf - ok
22:27:02.0549 2572 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:27:02.0553 2572 WUDFRd - ok
22:27:02.0599 2572 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:27:02.0619 2572 wudfsvc - ok
22:27:02.0666 2572 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:27:02.0682 2572 WwanSvc - ok
22:27:02.0784 2572 ================ Scan global ===============================
22:27:02.0852 2572 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:27:02.0930 2572 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:27:02.0953 2572 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:27:02.0992 2572 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:27:03.0029 2572 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
22:27:03.0254 2572 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
22:27:03.0254 2572 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
22:27:03.0254 2572 ================ Scan MBR ==================================
22:27:03.0308 2572 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:27:04.0587 2572 \Device\Harddisk0\DR0 - ok
22:27:04.0591 2572 ================ Scan VBR ==================================
22:27:04.0626 2572 [ E8BC2CBD63478E69A738BB81BBF63FD8 ] \Device\Harddisk0\DR0\Partition1
22:27:04.0632 2572 \Device\Harddisk0\DR0\Partition1 - ok
22:27:04.0668 2572 [ 1781D36817C6F3ADBD56068B1BF6C128 ] \Device\Harddisk0\DR0\Partition2
22:27:04.0671 2572 \Device\Harddisk0\DR0\Partition2 - ok
22:27:04.0674 2572 ============================================================
22:27:04.0675 2572 Scan finished
22:27:04.0675 2572 ============================================================
22:27:04.0703 5612 Detected object count: 2
22:27:04.0703 5612 Actual detected object count: 2
22:27:36.0546 5612 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:27:36.0546 5612 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:27:36.0660 5612 C:\Windows\system32\services.exe - copied to quarantine
22:27:37.0914 5612 C:\Users\Big D\AppData\Local\{aaa0c3ba-688a-f78e-244d-5940ab84f236}\@ - copied to quarantine
22:27:46.0615 5612 Backup copy found, using it..
22:27:48.0116 5612 C:\Users\Big D\AppData\Local\{aaa0c3ba-688a-f78e-244d-5940ab84f236}\@ - will be deleted on reboot
22:27:48.0117 5612 C:\Windows\system32\services.exe - will be cured on reboot
22:27:48.0117 5612 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure

#4 dustin.j.mueller

dustin.j.mueller
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 25 August 2012 - 10:38 PM

MBR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-25 22:26:40
-----------------------------
22:26:40.241 OS Version: Windows x64 6.1.7601 Service Pack 1
22:26:40.241 Number of processors: 2 586 0x170A
22:26:40.242 ComputerName: BIGD-PC UserName: Big D
22:26:45.681 Initialize success
22:28:01.488 AVAST engine defs: 12082501
22:28:44.730 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:28:44.735 Disk 0 Vendor: ST950032 0003 Size: 476940MB BusType: 3
22:28:44.750 Disk 0 MBR read successfully
22:28:44.753 Disk 0 MBR scan
22:28:44.756 Disk 0 Windows 7 default MBR code
22:28:44.759 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 17006 MB offset 63
22:28:44.779 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 119240 MB offset 34828920
22:28:44.784 Disk 0 Partition - 00 0F Extended LBA 340692 MB offset 279033856
22:28:44.805 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 340691 MB offset 279035904
22:28:44.830 Disk 0 scanning C:\Windows\system32\drivers
22:29:01.906 Service scanning
22:29:02.822 Service 23979645 C:\Windows\system32\drivers\51841558.sys **HIDDEN**
22:29:54.243 Modules scanning
22:29:54.580 Disk 0 trace - called modules:
22:29:54.606 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys iaStor.sys sptd.sys hal.dll
22:29:54.611 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c61060]
22:29:54.615 3 CLASSPNP.SYS[fffff88001f6543f] -> nt!IofCallDriver -> [0xfffffa8004c60040]
22:29:54.620 5 PCTCore64.sys[fffff880014d7720] -> nt!IofCallDriver -> [0xfffffa800469e340]
22:29:54.626 7 ACPI.sys[fffff880011887a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004ad5050]
22:29:55.411 AVAST engine scan C:\Windows
22:29:58.978 AVAST engine scan C:\Windows\system32
22:33:11.154 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:33:15.304 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:35:47.748 AVAST engine scan C:\Windows\system32\drivers
22:36:17.197 AVAST engine scan C:\Users\Big D
22:37:24.699 Disk 0 MBR has been saved successfully to "C:\Users\Big D\Desktop\MBR.dat"
22:37:24.700 The log file has been saved successfully to "C:\Users\Big D\Desktop\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:38 AM

Posted 25 August 2012 - 10:40 PM

Restart the PC and run ASWMBR once again and post the new log

#6 dustin.j.mueller

dustin.j.mueller
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 25 August 2012 - 11:11 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-25 22:26:40
-----------------------------
22:26:40.241 OS Version: Windows x64 6.1.7601 Service Pack 1
22:26:40.241 Number of processors: 2 586 0x170A
22:26:40.242 ComputerName: BIGD-PC UserName: Big D
22:26:45.681 Initialize success
22:28:01.488 AVAST engine defs: 12082501
22:28:44.730 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:28:44.735 Disk 0 Vendor: ST950032 0003 Size: 476940MB BusType: 3
22:28:44.750 Disk 0 MBR read successfully
22:28:44.753 Disk 0 MBR scan
22:28:44.756 Disk 0 Windows 7 default MBR code
22:28:44.759 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 17006 MB offset 63
22:28:44.779 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 119240 MB offset 34828920
22:28:44.784 Disk 0 Partition - 00 0F Extended LBA 340692 MB offset 279033856
22:28:44.805 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 340691 MB offset 279035904
22:28:44.830 Disk 0 scanning C:\Windows\system32\drivers
22:29:01.906 Service scanning
22:29:02.822 Service 23979645 C:\Windows\system32\drivers\51841558.sys **HIDDEN**
22:29:54.243 Modules scanning
22:29:54.580 Disk 0 trace - called modules:
22:29:54.606 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys iaStor.sys sptd.sys hal.dll
22:29:54.611 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c61060]
22:29:54.615 3 CLASSPNP.SYS[fffff88001f6543f] -> nt!IofCallDriver -> [0xfffffa8004c60040]
22:29:54.620 5 PCTCore64.sys[fffff880014d7720] -> nt!IofCallDriver -> [0xfffffa800469e340]
22:29:54.626 7 ACPI.sys[fffff880011887a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004ad5050]
22:29:55.411 AVAST engine scan C:\Windows
22:29:58.978 AVAST engine scan C:\Windows\system32
22:33:11.154 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:33:15.304 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
22:35:47.748 AVAST engine scan C:\Windows\system32\drivers
22:36:17.197 AVAST engine scan C:\Users\Big D
22:37:24.699 Disk 0 MBR has been saved successfully to "C:\Users\Big D\Desktop\MBR.dat"
22:37:24.700 The log file has been saved successfully to "C:\Users\Big D\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-25 22:45:05
-----------------------------
22:45:05.896 OS Version: Windows x64 6.1.7601 Service Pack 1
22:45:05.896 Number of processors: 2 586 0x170A
22:45:05.896 ComputerName: BIGD-PC UserName: Big D
22:45:07.332 Initialize success
22:45:15.397 AVAST engine defs: 12082501
22:45:17.784 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:45:17.784 Disk 0 Vendor: ST950032 0003 Size: 476940MB BusType: 3
22:45:17.799 Disk 0 MBR read successfully
22:45:17.799 Disk 0 MBR scan
22:45:17.815 Disk 0 Windows 7 default MBR code
22:45:17.815 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 17006 MB offset 63
22:45:17.830 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 119240 MB offset 34828920
22:45:17.830 Disk 0 Partition - 00 0F Extended LBA 340692 MB offset 279033856
22:45:17.862 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 340691 MB offset 279035904
22:45:17.893 Disk 0 scanning C:\Windows\system32\drivers
22:45:43.571 Service scanning
22:47:11.087 Modules scanning
22:47:11.087 Disk 0 trace - called modules:
22:47:11.102 ntoskrnl.exe CLASSPNP.SYS disk.sys PCTCore64.sys ACPI.sys iaStor.sys sptd.sys hal.dll
22:47:11.118 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80057e1060]
22:47:11.118 3 CLASSPNP.SYS[fffff88001c5143f] -> nt!IofCallDriver -> [0xfffffa80057e0a80]
22:47:11.118 5 PCTCore64.sys[fffff8800143e720] -> nt!IofCallDriver -> [0xfffffa8004ad1b20]
22:47:11.118 7 ACPI.sys[fffff8800119f7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004ad6050]
22:47:12.974 AVAST engine scan C:\Windows
22:47:16.406 AVAST engine scan C:\Windows\system32
22:56:27.629 AVAST engine scan C:\Windows\system32\drivers
22:57:11.653 AVAST engine scan C:\Users\Big D
23:08:16.236 AVAST engine scan C:\ProgramData
23:10:03.042 Scan finished successfully
23:10:14.079 Disk 0 MBR has been saved successfully to "C:\Users\Big D\Desktop\MBR.dat"
23:10:14.096 The log file has been saved successfully to "C:\Users\Big D\Desktop\aswMBR.txt"

After using tdss and restarting I have yet to have a popup if that is worth anything

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:38 AM

Posted 26 August 2012 - 07:20 AM

ESET log?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users