Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Agent/Gen-Kryptik false positive?


  • Please log in to reply
9 replies to this topic

#1 helplessgeek

helplessgeek

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:11:33 AM

Posted 27 August 2012 - 09:59 AM

I started my computer up this morning and Super anti spyware updates and runs at every bootup. It scanned first thing and found nothing. I did some browsing with no alarm. Two hours later I walk in to do something on the computer and found that SAS had blocked Trojan.Agent/Gen-Kryptik and asked if I wanted to do a scan. So, I scanned with SAS and had the following results:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 08/27/2012 at 09:29 AM

Application Version : 5.5.1012

Core Rules Database Version : 9126
Trace Rules Database Version: 6938

Scan type : Quick Scan
Total Scan Time : 00:03:29

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 480
Memory threats detected : 7
Registry items scanned : 29590
Registry threats detected : 6
File items scanned : 7368
File threats detected : 19

Trojan.Agent/Gen-Kryptik
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10005.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10005.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10006.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10006.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10007.DLL
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10007.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10005.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10005.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10007.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10007.DLL
C:\PROGRAM FILES\LIBREOFFICE 3.5\PROGRAM\UNOPKG.EXE
HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\unopkg.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\unopkg.exe#Path
HKLM\System\CurrentControlSet\Services\CPUDRV
C:\PROGRAM FILES\SYSTEMREQUIREMENTSLAB\CPUDRV.SYS
HKLM\System\CurrentControlSet\Enum\Root\LEGACY_CPUDRV
HKLM\System\CurrentControlSet\Services\GIVEIO
C:\WINDOWS\SYSTEM32\GIVEIO.SYS
HKLM\System\CurrentControlSet\Enum\Root\LEGACY_GIVEIO
C:\WINDOWS\SYSTEM32\CNMVS5P.DLL
C:\PROGRAM FILES\GOOGLE\GOOGLE DESKTOP SEARCH\GZLIB.DLL
C:\PROGRAM FILES\GOOGLE\GOOGLE DESKTOP SEARCH\GZLIB.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10006.DLL
C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\SUPERANTISPYWARE.COM\SUPERANTISPYWARE\SDDLLS\SD10006.DLL
C:\WINDOWS\SYSTEM32\IVIRESIZE.DLL
C:\WINDOWS\SYSTEM32\RNBOVDD.DLL
C:\WINDOWS\SYSTEM\DVA.386
C:\WINDOWS\SYSTEM\WAVMIX16.DLL
C:\WINDOWS\SYSTEM\WING.DLL
C:\WINDOWS\SYSTEM\WINGDIB.DRV
C:\WINDOWS\SYSTEM\WINGPAL.WND
C:\DOCUMENTS AND SETTINGS\NEIL\LOCAL SETTINGS\TEMP\VSDRINST.EXE

But, before I had it take care of these things, I updated and ran Malwarebytes. Here is it's log:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.27.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.11
Administrator :: THINKPAD [administrator]

8/27/2012 9:29:45 AM
mbam-log-2012-08-27 (09-29-45).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 212014
Time elapsed: 6 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

I then scanned another computer on our network with SAS and it came up with the same trojan. I went to the third computer and manually updated SAS (after it had automatically updated and scanned at bootup two hours earlier) and immediately it said that it blocked this trojan in real-time.

Am I looking at false positives?

thanks

BC AdBot (Login to Remove)

 


#2 Heroic Robb

Heroic Robb

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 AM

Posted 27 August 2012 - 10:17 AM

I have the same issue here. I'm wondering if I have a false positive, because when I did a scan with SuperAntispyware, I had like 23 detections or so with a quick scan, then like close to 500 with a full rescue scan. I also scanned with Spybot and MalwareBytes. They didn't find anything.

EDIT: When I rebooted my computer when SuperAntispyware asked me, I did, but the first time, it was unsuccessful, though the second time, I chose to reboot windows normally and it did.

Edited by Heroic Robb, 27 August 2012 - 10:20 AM.


#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:33 AM

Posted 27 August 2012 - 10:43 AM

.

Edited by narenxp, 27 August 2012 - 10:52 AM.


#4 katiekins

katiekins

  • Members
  • 111 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:05:33 PM

Posted 27 August 2012 - 10:48 AM

If you go on SAS forum it appears to be a general enquiry ...... http://forums.superantispyware.com/index.php?/topic/7052-trojanagentgen-kryptik/

sorry if I shouldn't of posted a reply in here - I know it's really for the professionals, just wanted to share.

Edited by katiekins, 27 August 2012 - 10:49 AM.


#5 21tech

21tech

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:33 AM

Posted 27 August 2012 - 10:50 AM

Im having the same problem in this office. It happend on two computers with sas. AVG and malwarebytes have found nothing. I say its a false positive

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:33 AM

Posted 27 August 2012 - 10:52 AM

sorry if I shouldn't of posted a reply in here - I know it's really for the professionals, just wanted to share.


No issues.Thanks for sharing :thumbup2:

#7 Heroic Robb

Heroic Robb

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:10:33 AM

Posted 27 August 2012 - 11:26 AM

I found TR/Crypt.XPACK.Gen on AntiVir. Don't know if it is related.

(Will have log soon)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:33 AM

Posted 27 August 2012 - 11:31 AM

Do not post any logs here.Create a new topic to avoid confusion

Thanks

#9 helplessgeek

helplessgeek
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:11:33 AM

Posted 27 August 2012 - 12:25 PM

Thanks for replying.

Here is the TDSkiller log:

10:44:13.0531 5540 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
10:44:14.0296 5540 ============================================================
10:44:14.0296 5540 Current date / time: 2012/08/27 10:44:14.0296
10:44:14.0296 5540 SystemInfo:
10:44:14.0296 5540
10:44:14.0296 5540 OS Version: 5.1.2600 ServicePack: 3.0
10:44:14.0296 5540 Product type: Workstation
10:44:14.0296 5540 ComputerName: THINKPAD
10:44:14.0296 5540 UserName: Administrator
10:44:14.0296 5540 Windows directory: C:\WINDOWS
10:44:14.0296 5540 System windows directory: C:\WINDOWS
10:44:14.0296 5540 Processor architecture: Intel x86
10:44:14.0296 5540 Number of processors: 2
10:44:14.0296 5540 Page size: 0x1000
10:44:14.0296 5540 Boot type: Normal boot
10:44:14.0296 5540 ============================================================
10:44:16.0515 5540 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
10:44:16.0531 5540 ============================================================
10:44:16.0531 5540 \Device\Harddisk0\DR0:
10:44:16.0531 5540 MBR partitions:
10:44:16.0531 5540 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x21E7E121
10:44:16.0531 5540 ============================================================
10:44:16.0546 5540 C: <-> \Device\Harddisk0\DR0\Partition1
10:44:16.0546 5540 ============================================================
10:44:16.0546 5540 Initialize success
10:44:16.0546 5540 ============================================================
10:44:19.0671 5788 ============================================================
10:44:19.0671 5788 Scan started
10:44:19.0671 5788 Mode: Manual;
10:44:19.0671 5788 ============================================================
10:44:20.0609 5788 ================ Scan system memory ========================
10:44:23.0546 5788 System memory - ok
10:44:23.0546 5788 ================ Scan services =============================
10:44:23.0656 5788 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
10:44:23.0656 5788 !SASCORE - ok
10:44:23.0828 5788 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
10:44:23.0828 5788 Aavmker4 - ok
10:44:23.0828 5788 Abiosdsk - ok
10:44:23.0843 5788 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
10:44:23.0843 5788 abp480n5 - ok
10:44:23.0859 5788 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys
10:44:23.0859 5788 ac97intc - ok
10:44:23.0906 5788 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:44:23.0906 5788 ACPI - ok
10:44:23.0906 5788 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
10:44:23.0906 5788 ACPIEC - ok
10:44:23.0968 5788 [ 57E569B5123E984133769E287A25A819 ] acs C:\WINDOWS\system32\acs.exe
10:44:23.0984 5788 acs - ok
10:44:24.0031 5788 [ CA6D262E0E68DA7AC1E2EDB0A8324031 ] ADIHdAudAddService C:\WINDOWS\system32\drivers\ADIHdAud.sys
10:44:24.0031 5788 ADIHdAudAddService - ok
10:44:24.0093 5788 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:44:24.0093 5788 AdobeFlashPlayerUpdateSvc - ok
10:44:24.0125 5788 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
10:44:24.0140 5788 adpu160m - ok
10:44:24.0187 5788 [ B4AFCC2F911939A1C16A26E7EBA7F36B ] AEAudio C:\WINDOWS\system32\drivers\AEAudio.sys
10:44:24.0187 5788 AEAudio - ok
10:44:24.0218 5788 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
10:44:24.0218 5788 aec - ok
10:44:24.0265 5788 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
10:44:24.0265 5788 AFD - ok
10:44:24.0281 5788 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
10:44:24.0281 5788 agp440 - ok
10:44:24.0296 5788 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
10:44:24.0296 5788 agpCPQ - ok
10:44:24.0296 5788 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
10:44:24.0296 5788 Aha154x - ok
10:44:24.0312 5788 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
10:44:24.0312 5788 aic78u2 - ok
10:44:24.0312 5788 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
10:44:24.0328 5788 aic78xx - ok
10:44:24.0343 5788 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
10:44:24.0359 5788 Alerter - ok
10:44:24.0375 5788 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
10:44:24.0375 5788 ALG - ok
10:44:24.0375 5788 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
10:44:24.0390 5788 AliIde - ok
10:44:24.0390 5788 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
10:44:24.0390 5788 alim1541 - ok
10:44:24.0406 5788 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
10:44:24.0406 5788 amdagp - ok
10:44:24.0421 5788 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
10:44:24.0421 5788 amsint - ok
10:44:24.0515 5788 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:44:24.0531 5788 Apple Mobile Device - ok
10:44:24.0546 5788 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
10:44:24.0546 5788 AppMgmt - ok
10:44:24.0562 5788 AR5211 - ok
10:44:24.0625 5788 [ E0BDECF0EABD175E43DF5691AD540AA1 ] AR5416 C:\WINDOWS\system32\DRIVERS\athw.sys
10:44:24.0656 5788 AR5416 - ok
10:44:24.0671 5788 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
10:44:24.0671 5788 Arp1394 - ok
10:44:24.0671 5788 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
10:44:24.0671 5788 asc - ok
10:44:24.0687 5788 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
10:44:24.0687 5788 asc3350p - ok
10:44:24.0687 5788 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
10:44:24.0687 5788 asc3550 - ok
10:44:24.0828 5788 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
10:44:24.0828 5788 aspnet_state - ok
10:44:24.0859 5788 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
10:44:24.0859 5788 aswFsBlk - ok
10:44:24.0937 5788 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
10:44:24.0937 5788 aswMon2 - ok
10:44:24.0953 5788 [ B7D5E4486BA658ED08624D8084ABB830 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
10:44:24.0953 5788 aswRdr - ok
10:44:25.0000 5788 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
10:44:25.0015 5788 aswSnx - ok
10:44:25.0031 5788 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
10:44:25.0046 5788 aswSP - ok
10:44:25.0046 5788 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
10:44:25.0046 5788 aswTdi - ok
10:44:25.0062 5788 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:44:25.0062 5788 AsyncMac - ok
10:44:25.0062 5788 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
10:44:25.0078 5788 atapi - ok
10:44:25.0078 5788 Atdisk - ok
10:44:25.0093 5788 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:44:25.0093 5788 Atmarpc - ok
10:44:25.0109 5788 [ DBF0D7E2DF33B469EB55406FEA759350 ] atmeltpm C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
10:44:25.0109 5788 atmeltpm - ok
10:44:25.0171 5788 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
10:44:25.0171 5788 AudioSrv - ok
10:44:25.0218 5788 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
10:44:25.0218 5788 audstub - ok
10:44:25.0296 5788 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
10:44:25.0312 5788 avast! Antivirus - ok
10:44:25.0312 5788 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:44:25.0312 5788 Beep - ok
10:44:25.0343 5788 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
10:44:25.0359 5788 BITS - ok
10:44:25.0421 5788 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:44:25.0421 5788 Bonjour Service - ok
10:44:25.0453 5788 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
10:44:25.0453 5788 Browser - ok
10:44:25.0484 5788 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
10:44:25.0484 5788 cbidf - ok
10:44:25.0484 5788 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
10:44:25.0500 5788 cbidf2k - ok
10:44:25.0500 5788 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
10:44:25.0500 5788 cd20xrnt - ok
10:44:25.0515 5788 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
10:44:25.0515 5788 Cdaudio - ok
10:44:25.0531 5788 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
10:44:25.0531 5788 Cdfs - ok
10:44:25.0546 5788 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:44:25.0546 5788 Cdrom - ok
10:44:25.0546 5788 Changer - ok
10:44:25.0578 5788 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
10:44:25.0578 5788 CiSvc - ok
10:44:25.0593 5788 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
10:44:25.0593 5788 ClipSrv - ok
10:44:25.0671 5788 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:44:25.0671 5788 clr_optimization_v2.0.50727_32 - ok
10:44:25.0703 5788 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:44:25.0718 5788 clr_optimization_v4.0.30319_32 - ok
10:44:25.0718 5788 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
10:44:25.0718 5788 CmBatt - ok
10:44:25.0843 5788 [ 907324001AE25AC5959C91EAA34CABAE ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
10:44:25.0890 5788 cmdAgent - ok
10:44:25.0906 5788 [ BEE235831F8E3F0BAACA18B39D285CF5 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
10:44:25.0921 5788 cmdGuard - ok
10:44:25.0937 5788 [ DE548946F36CAB62FEC2E6AA0149A619 ] cmdHlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
10:44:25.0937 5788 cmdHlp - ok
10:44:25.0937 5788 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
10:44:25.0953 5788 CmdIde - ok
10:44:25.0984 5788 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
10:44:25.0984 5788 Compbatt - ok
10:44:26.0000 5788 COMSysApp - ok
10:44:26.0015 5788 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
10:44:26.0015 5788 Cpqarray - ok
10:44:26.0078 5788 [ D01F685F8B4598D144B0CCE9FF95D8D5 ] cpudrv C:\Program Files\SystemRequirementsLab\cpudrv.sys
10:44:26.0078 5788 cpudrv - ok
10:44:26.0093 5788 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
10:44:26.0109 5788 CryptSvc - ok
10:44:26.0125 5788 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
10:44:26.0125 5788 dac2w2k - ok
10:44:26.0125 5788 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
10:44:26.0140 5788 dac960nt - ok
10:44:26.0187 5788 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:44:26.0203 5788 DcomLaunch - ok
10:44:26.0218 5788 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
10:44:26.0218 5788 Dhcp - ok
10:44:26.0218 5788 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
10:44:26.0218 5788 Disk - ok
10:44:26.0265 5788 [ 35CBC02546335EA41A5D516DA6626C8A ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
10:44:26.0281 5788 DLABOIOM - ok
10:44:26.0281 5788 [ EC6AE8BC9F773382D2EED49E4DFDAE2A ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
10:44:26.0281 5788 DLACDBHM - ok
10:44:26.0281 5788 [ 19E3DB16DE2BB3DB81B172A78D140B03 ] DLADResN C:\WINDOWS\system32\DLA\DLADResN.SYS
10:44:26.0281 5788 DLADResN - ok
10:44:26.0296 5788 [ E4859CA5BD8412A9A60D62067A653522 ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
10:44:26.0296 5788 DLAIFS_M - ok
10:44:26.0296 5788 [ 20C24A3D1CF0825487C93F806625805E ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
10:44:26.0296 5788 DLAOPIOM - ok
10:44:26.0312 5788 [ 8A530DA5DC81954BCF1966813F699B49 ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
10:44:26.0312 5788 DLAPoolM - ok
10:44:26.0312 5788 [ 0605B66052F82B6F07204DBDB61C13FF ] DLARTL_N C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
10:44:26.0312 5788 DLARTL_N - ok
10:44:26.0328 5788 [ 7EDA68AF6A91BF64AF6F301E39928EBF ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
10:44:26.0343 5788 DLAUDFAM - ok
10:44:26.0343 5788 [ A18423BBC6D92B01FDF3C51E7510EE70 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
10:44:26.0343 5788 DLAUDF_M - ok
10:44:26.0343 5788 dmadmin - ok
10:44:26.0390 5788 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
10:44:26.0406 5788 dmboot - ok
10:44:26.0421 5788 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
10:44:26.0437 5788 dmio - ok
10:44:26.0437 5788 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
10:44:26.0437 5788 dmload - ok
10:44:26.0453 5788 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
10:44:26.0453 5788 dmserver - ok
10:44:26.0468 5788 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
10:44:26.0468 5788 DMusic - ok
10:44:26.0515 5788 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:44:26.0515 5788 Dnscache - ok
10:44:26.0562 5788 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
10:44:26.0562 5788 Dot3svc - ok
10:44:26.0562 5788 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
10:44:26.0562 5788 dpti2o - ok
10:44:26.0671 5788 [ 64EE6EE123B81A5C3406EFA83E2447AF ] DragonUpdater C:\Program Files\Comodo\Dragon\dragon_updater.exe
10:44:26.0718 5788 DragonUpdater - ok
10:44:26.0734 5788 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:44:26.0734 5788 drmkaud - ok
10:44:26.0734 5788 [ 48C7008D23DCFCE0D0232F49307EFCED ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
10:44:26.0750 5788 DRVMCDB - ok
10:44:26.0750 5788 [ 05467E44A42C777DD1534BB4539B16D1 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
10:44:26.0750 5788 DRVNDDM - ok
10:44:26.0750 5788 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
10:44:26.0765 5788 E100B - ok
10:44:26.0796 5788 [ B1E9161BA28D5B826E49A1D0DED7FCC4 ] e1express C:\WINDOWS\system32\DRIVERS\e1e5132.sys
10:44:26.0812 5788 e1express - ok
10:44:26.0843 5788 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
10:44:26.0859 5788 EapHost - ok
10:44:26.0859 5788 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
10:44:26.0859 5788 ERSvc - ok
10:44:26.0890 5788 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
10:44:26.0906 5788 Eventlog - ok
10:44:26.0953 5788 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
10:44:26.0953 5788 EventSystem - ok
10:44:26.0968 5788 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
10:44:26.0968 5788 Fastfat - ok
10:44:27.0015 5788 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:44:27.0031 5788 FastUserSwitchingCompatibility - ok
10:44:27.0046 5788 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
10:44:27.0046 5788 Fdc - ok
10:44:27.0062 5788 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
10:44:27.0062 5788 Fips - ok
10:44:27.0078 5788 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
10:44:27.0078 5788 Flpydisk - ok
10:44:27.0125 5788 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
10:44:27.0140 5788 FltMgr - ok
10:44:27.0218 5788 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:44:27.0218 5788 FontCache3.0.0.0 - ok
10:44:27.0250 5788 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:44:27.0250 5788 Fs_Rec - ok
10:44:27.0265 5788 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:44:27.0265 5788 Ftdisk - ok
10:44:27.0296 5788 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:44:27.0312 5788 GEARAspiWDM - ok
10:44:27.0328 5788 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
10:44:27.0328 5788 giveio - ok
10:44:27.0390 5788 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
10:44:27.0390 5788 GoogleDesktopManager-051210-111108 - ok
10:44:27.0437 5788 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:44:27.0437 5788 Gpc - ok
10:44:27.0515 5788 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
10:44:27.0531 5788 gupdate - ok
10:44:27.0531 5788 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
10:44:27.0531 5788 gupdatem - ok
10:44:27.0578 5788 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:44:27.0578 5788 gusvc - ok
10:44:27.0609 5788 [ 1DB5002C16F4DF11FD062BD4A277AA24 ] hcmon C:\WINDOWS\system32\drivers\hcmon.sys
10:44:27.0609 5788 hcmon - ok
10:44:27.0625 5788 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:44:27.0656 5788 HDAudBus - ok
10:44:27.0734 5788 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:44:27.0734 5788 helpsvc - ok
10:44:27.0750 5788 HidServ - ok
10:44:27.0765 5788 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:44:27.0765 5788 HidUsb - ok
10:44:27.0796 5788 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
10:44:27.0812 5788 hkmsvc - ok
10:44:27.0828 5788 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
10:44:27.0828 5788 hpn - ok
10:44:27.0875 5788 [ 6A5C4732D6803F84E2987EDD8E4359CE ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
10:44:27.0890 5788 HSFHWAZL - ok
10:44:27.0906 5788 [ 21C31273C6CC4826E74BE8AE3B09D4A8 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
10:44:28.0218 5788 HSF_DPV - ok
10:44:28.0359 5788 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
10:44:28.0359 5788 HTTP - ok
10:44:28.0437 5788 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
10:44:28.0500 5788 HTTPFilter - ok
10:44:28.0500 5788 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
10:44:28.0500 5788 i2omgmt - ok
10:44:28.0578 5788 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
10:44:28.0625 5788 i2omp - ok
10:44:28.0671 5788 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:44:28.0703 5788 i8042prt - ok
10:44:28.0796 5788 [ C5DB546F9028CD00E64335091860D8F3 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
10:44:28.0859 5788 ialm - ok
10:44:28.0875 5788 [ FD7F9D74C2B35DBDA400804A3F5ED5D8 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
10:44:28.0875 5788 iaStor - ok
10:44:28.0921 5788 [ 293131C1DA5F53CB05F75D637739D79C ] IBMPMDRV C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
10:44:28.0921 5788 IBMPMDRV - ok
10:44:29.0015 5788 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
10:44:29.0015 5788 IDriverT - ok
10:44:29.0078 5788 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:44:29.0109 5788 idsvc - ok
10:44:29.0125 5788 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
10:44:29.0125 5788 Imapi - ok
10:44:29.0156 5788 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
10:44:29.0156 5788 ImapiService - ok
10:44:29.0171 5788 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
10:44:29.0171 5788 ini910u - ok
10:44:29.0187 5788 [ F89849CF13805EF49DA64A8A63193AF7 ] Inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
10:44:29.0203 5788 Inspect - ok
10:44:29.0203 5788 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
10:44:29.0203 5788 IntelIde - ok
10:44:29.0234 5788 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:44:29.0234 5788 intelppm - ok
10:44:29.0234 5788 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
10:44:29.0234 5788 Ip6Fw - ok
10:44:29.0250 5788 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:44:29.0265 5788 IpFilterDriver - ok
10:44:29.0265 5788 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:44:29.0265 5788 IpInIp - ok
10:44:29.0281 5788 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:44:29.0281 5788 IpNat - ok
10:44:29.0343 5788 [ 49918803B661367023BF325CF602AFDC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:44:29.0359 5788 iPod Service - ok
10:44:29.0390 5788 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:44:29.0390 5788 IPSec - ok
10:44:29.0406 5788 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
10:44:29.0406 5788 IRENUM - ok
10:44:29.0406 5788 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:44:29.0406 5788 isapnp - ok
10:44:29.0453 5788 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
10:44:29.0453 5788 IviRegMgr - ok
10:44:29.0515 5788 [ 4F2143570D2250CA4C4A4C98553C82CD ] JavaQuickStarterService C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
10:44:29.0515 5788 JavaQuickStarterService - ok
10:44:29.0515 5788 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:44:29.0531 5788 Kbdclass - ok
10:44:29.0578 5788 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
10:44:29.0578 5788 kbdhid - ok
10:44:29.0593 5788 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
10:44:29.0593 5788 kmixer - ok
10:44:29.0625 5788 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
10:44:29.0625 5788 KSecDD - ok
10:44:29.0656 5788 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
10:44:29.0656 5788 lanmanserver - ok
10:44:29.0703 5788 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:44:29.0718 5788 lanmanworkstation - ok
10:44:29.0718 5788 lbrtfdc - ok
10:44:29.0750 5788 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
10:44:29.0765 5788 LmHosts - ok
10:44:29.0781 5788 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
10:44:29.0781 5788 mdmxsdk - ok
10:44:29.0812 5788 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
10:44:29.0812 5788 Messenger - ok
10:44:29.0828 5788 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
10:44:29.0828 5788 mnmdd - ok
10:44:29.0859 5788 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
10:44:29.0859 5788 mnmsrvc - ok
10:44:29.0890 5788 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
10:44:29.0890 5788 Modem - ok
10:44:29.0921 5788 [ C741717B0A18813DD7D12085937CEE72 ] motccgp C:\WINDOWS\system32\DRIVERS\motccgp.sys
10:44:29.0921 5788 motccgp - ok
10:44:29.0937 5788 [ B812DA6605CAF02641312F1F65C75419 ] motccgpfl C:\WINDOWS\system32\DRIVERS\motccgpfl.sys
10:44:29.0953 5788 motccgpfl - ok
10:44:29.0953 5788 [ E190ED75BCC7928143F8F2AF4C34D91D ] MotDev C:\WINDOWS\system32\DRIVERS\motodrv.sys
10:44:29.0968 5788 MotDev - ok
10:44:29.0984 5788 [ 0064B0A000D87A79E01331B8EC5A5CAB ] motmodem C:\WINDOWS\system32\DRIVERS\motmodem.sys
10:44:29.0984 5788 motmodem - ok
10:44:30.0000 5788 [ 0064B0A000D87A79E01331B8EC5A5CAB ] motport C:\WINDOWS\system32\DRIVERS\motport.sys
10:44:30.0000 5788 motport - ok
10:44:30.0015 5788 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:44:30.0015 5788 Mouclass - ok
10:44:30.0062 5788 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:44:30.0062 5788 mouhid - ok
10:44:30.0062 5788 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
10:44:30.0078 5788 MountMgr - ok
10:44:30.0109 5788 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:44:30.0109 5788 MozillaMaintenance - ok
10:44:30.0125 5788 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
10:44:30.0125 5788 mraid35x - ok
10:44:30.0156 5788 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:44:30.0156 5788 MRxDAV - ok
10:44:30.0203 5788 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:44:30.0218 5788 MRxSmb - ok
10:44:30.0250 5788 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
10:44:30.0265 5788 MSDTC - ok
10:44:30.0265 5788 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:44:30.0281 5788 Msfs - ok
10:44:30.0281 5788 MSIServer - ok
10:44:30.0281 5788 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:44:30.0281 5788 MSKSSRV - ok
10:44:30.0296 5788 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:44:30.0296 5788 MSPCLOCK - ok
10:44:30.0296 5788 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:44:30.0296 5788 MSPQM - ok
10:44:30.0328 5788 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:44:30.0328 5788 mssmbios - ok
10:44:30.0359 5788 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
10:44:30.0359 5788 Mup - ok
10:44:30.0390 5788 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
10:44:30.0406 5788 napagent - ok
10:44:30.0421 5788 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
10:44:30.0437 5788 NDIS - ok
10:44:30.0484 5788 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:44:30.0484 5788 NdisTapi - ok
10:44:30.0484 5788 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:44:30.0500 5788 Ndisuio - ok
10:44:30.0500 5788 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:44:30.0500 5788 NdisWan - ok
10:44:30.0531 5788 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:44:32.0218 5788 NDProxy - ok
10:44:32.0281 5788 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:44:32.0281 5788 NetBIOS - ok
10:44:32.0312 5788 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:44:32.0328 5788 NetBT - ok
10:44:32.0359 5788 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
10:44:32.0578 5788 NetDDE - ok
10:44:32.0609 5788 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
10:44:32.0625 5788 NetDDEdsdm - ok
10:44:32.0656 5788 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
10:44:32.0781 5788 Netlogon - ok
10:44:32.0828 5788 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
10:44:32.0828 5788 Netman - ok
10:44:32.0875 5788 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:44:32.0875 5788 NetTcpPortSharing - ok
10:44:32.0906 5788 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
10:44:32.0906 5788 NIC1394 - ok
10:44:32.0953 5788 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
10:44:32.0968 5788 Nla - ok
10:44:32.0968 5788 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:44:32.0968 5788 Npfs - ok
10:44:33.0000 5788 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:44:33.0109 5788 Ntfs - ok
10:44:33.0109 5788 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
10:44:33.0125 5788 NtLmSsp - ok
10:44:33.0187 5788 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
10:44:33.0203 5788 NtmsSvc - ok
10:44:33.0250 5788 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
10:44:33.0250 5788 Null - ok
10:44:33.0312 5788 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:44:33.0343 5788 nv - ok
10:44:33.0359 5788 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:44:33.0359 5788 NwlnkFlt - ok
10:44:33.0359 5788 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:44:33.0359 5788 NwlnkFwd - ok
10:44:33.0375 5788 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
10:44:33.0375 5788 ohci1394 - ok
10:44:33.0406 5788 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
10:44:33.0406 5788 Parport - ok
10:44:33.0406 5788 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
10:44:33.0421 5788 PartMgr - ok
10:44:33.0421 5788 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
10:44:33.0421 5788 ParVdm - ok
10:44:33.0437 5788 PcdrNdisuio - ok
10:44:33.0437 5788 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
10:44:33.0453 5788 PCI - ok
10:44:33.0453 5788 PCIDump - ok
10:44:33.0453 5788 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
10:44:33.0453 5788 PCIIde - ok
10:44:33.0468 5788 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
10:44:33.0468 5788 Pcmcia - ok
10:44:33.0468 5788 PDCOMP - ok
10:44:33.0484 5788 PDFRAME - ok
10:44:33.0484 5788 PDRELI - ok
10:44:33.0484 5788 PDRFRAME - ok
10:44:33.0500 5788 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
10:44:33.0500 5788 perc2 - ok
10:44:33.0500 5788 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
10:44:33.0515 5788 perc2hib - ok
10:44:33.0531 5788 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
10:44:33.0546 5788 PlugPlay - ok
10:44:33.0578 5788 [ DEDEF40E1D05842639491365CB2C069E ] pmem C:\WINDOWS\System32\drivers\pmemnt.sys
10:44:33.0593 5788 pmem - ok
10:44:33.0593 5788 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
10:44:33.0593 5788 PolicyAgent - ok
10:44:33.0609 5788 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:44:33.0609 5788 PptpMiniport - ok
10:44:33.0625 5788 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
10:44:33.0625 5788 Processor - ok
10:44:33.0640 5788 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:44:33.0640 5788 ProtectedStorage - ok
10:44:33.0687 5788 [ AAC08DEFB15AAAB00B30341C716EFA35 ] psadd C:\WINDOWS\system32\DRIVERS\psadd.sys
10:44:33.0703 5788 psadd - ok
10:44:33.0703 5788 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
10:44:33.0703 5788 PSched - ok
10:44:33.0718 5788 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:44:33.0718 5788 Ptilink - ok
10:44:33.0750 5788 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
10:44:33.0750 5788 PxHelp20 - ok
10:44:33.0750 5788 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
10:44:33.0750 5788 ql1080 - ok
10:44:33.0765 5788 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
10:44:33.0765 5788 Ql10wnt - ok
10:44:33.0796 5788 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
10:44:33.0796 5788 ql12160 - ok
10:44:33.0859 5788 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
10:44:33.0875 5788 ql1240 - ok
10:44:33.0906 5788 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
10:44:33.0953 5788 ql1280 - ok
10:44:34.0000 5788 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:44:34.0031 5788 RasAcd - ok
10:44:34.0062 5788 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:44:34.0062 5788 RasAuto - ok
10:44:34.0078 5788 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:44:34.0093 5788 Rasl2tp - ok
10:44:34.0109 5788 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:44:34.0125 5788 RasMan - ok
10:44:34.0125 5788 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:44:34.0125 5788 RasPppoe - ok
10:44:34.0140 5788 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
10:44:34.0140 5788 Raspti - ok
10:44:34.0171 5788 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:44:34.0171 5788 Rdbss - ok
10:44:34.0187 5788 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:44:34.0187 5788 RDPCDD - ok
10:44:34.0203 5788 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
10:44:34.0203 5788 rdpdr - ok
10:44:34.0250 5788 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:44:34.0265 5788 RDPWD - ok
10:44:34.0281 5788 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
10:44:34.0296 5788 RDSessMgr - ok
10:44:34.0328 5788 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
10:44:34.0328 5788 redbook - ok
10:44:34.0359 5788 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:44:34.0359 5788 RemoteAccess - ok
10:44:34.0390 5788 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:44:34.0390 5788 RemoteRegistry - ok
10:44:34.0421 5788 [ C35CA13D3627EBD9DD12A23CE781BC3D ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
10:44:34.0421 5788 rimmptsk - ok
10:44:34.0437 5788 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
10:44:34.0437 5788 rimsptsk - ok
10:44:34.0437 5788 RimUsb - ok
10:44:34.0453 5788 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
10:44:34.0453 5788 rismxdp - ok
10:44:34.0468 5788 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
10:44:34.0484 5788 RpcLocator - ok
10:44:34.0515 5788 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
10:44:34.0531 5788 RpcSs - ok
10:44:34.0562 5788 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
10:44:34.0578 5788 RSVP - ok
10:44:34.0593 5788 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
10:44:34.0609 5788 SamSs - ok
10:44:34.0640 5788 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
10:44:34.0640 5788 SASDIFSV - ok
10:44:34.0640 5788 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:44:34.0656 5788 SASKUTIL - ok
10:44:34.0671 5788 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
10:44:34.0687 5788 SCardSvr - ok
10:44:34.0703 5788 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:44:34.0718 5788 Schedule - ok
10:44:34.0765 5788 [ D1FACB3C7D12F439C18EF01AA88C2A9D ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
10:44:34.0765 5788 sdbus - ok
10:44:34.0812 5788 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:44:34.0812 5788 Secdrv - ok
10:44:34.0828 5788 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
10:44:34.0843 5788 seclogon - ok
10:44:34.0843 5788 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
10:44:34.0859 5788 SENS - ok
10:44:34.0890 5788 [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS
10:44:34.0890 5788 Sentinel - ok
10:44:34.0984 5788 [ 6C03A85AE13D8D0D95A1F1E050DCD6E2 ] SentinelKeysServer C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
10:44:35.0000 5788 SentinelKeysServer - ok
10:44:35.0015 5788 [ 4C9849A61DFE324170C807808D925D05 ] SentinelSecurityRuntime C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
10:44:35.0031 5788 SentinelSecurityRuntime - ok
10:44:35.0078 5788 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
10:44:35.0078 5788 serenum - ok
10:44:35.0093 5788 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
10:44:35.0093 5788 Serial - ok
10:44:35.0156 5788 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
10:44:35.0171 5788 Sfloppy - ok
10:44:35.0250 5788 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:44:35.0250 5788 SharedAccess - ok
10:44:35.0281 5788 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:44:35.0296 5788 ShellHWDetection - ok
10:44:35.0296 5788 Simbad - ok
10:44:35.0312 5788 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
10:44:35.0312 5788 sisagp - ok
10:44:35.0359 5788 [ 4CD88CD1891B63D0D84C1A0FA3786B47 ] SNTNLUSB C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
10:44:35.0359 5788 SNTNLUSB - ok
10:44:35.0406 5788 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
10:44:35.0406 5788 Sparrow - ok
10:44:35.0421 5788 [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan C:\WINDOWS\system32\speedfan.sys
10:44:35.0437 5788 speedfan - ok
10:44:35.0453 5788 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
10:44:35.0453 5788 splitter - ok
10:44:35.0468 5788 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
10:44:35.0484 5788 Spooler - ok
10:44:35.0500 5788 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
10:44:35.0500 5788 sr - ok
10:44:35.0500 5788 srescan - ok
10:44:35.0515 5788 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
10:44:35.0531 5788 srservice - ok
10:44:35.0546 5788 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:44:35.0562 5788 Srv - ok
10:44:35.0578 5788 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:44:35.0593 5788 SSDPSRV - ok
10:44:35.0640 5788 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
10:44:35.0640 5788 StillCam - ok
10:44:35.0656 5788 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
10:44:35.0687 5788 stisvc - ok
10:44:35.0703 5788 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
10:44:35.0703 5788 swenum - ok
10:44:35.0750 5788 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
10:44:35.0750 5788 swmidi - ok
10:44:35.0765 5788 SwPrv - ok
10:44:35.0781 5788 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
10:44:35.0781 5788 symc810 - ok
10:44:35.0781 5788 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
10:44:35.0781 5788 symc8xx - ok
10:44:35.0796 5788 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
10:44:35.0796 5788 sym_hi - ok
10:44:35.0812 5788 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
10:44:35.0812 5788 sym_u3 - ok
10:44:35.0859 5788 [ 1CDE0A5C0416187B9B89E03980C6E8DE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:44:35.0875 5788 SynTP - ok
10:44:35.0875 5788 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
10:44:35.0890 5788 sysaudio - ok
10:44:35.0906 5788 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
10:44:35.0921 5788 SysmonLog - ok
10:44:35.0937 5788 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:44:35.0953 5788 TapiSrv - ok
10:44:36.0031 5788 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:44:36.0093 5788 Tcpip - ok
10:44:36.0125 5788 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
10:44:36.0125 5788 TDPIPE - ok
10:44:36.0140 5788 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
10:44:36.0140 5788 TDTCP - ok
10:44:36.0140 5788 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
10:44:36.0156 5788 TermDD - ok
10:44:36.0218 5788 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
10:44:36.0218 5788 TermService - ok
10:44:36.0296 5788 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
10:44:36.0312 5788 Themes - ok
10:44:36.0390 5788 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
10:44:36.0390 5788 TlntSvr - ok
10:44:36.0437 5788 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
10:44:36.0437 5788 TosIde - ok
10:44:36.0484 5788 [ 542770C8925E13B29B1BA63F05898058 ] TPHKDRV C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
10:44:36.0484 5788 TPHKDRV - ok
10:44:36.0531 5788 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
10:44:36.0546 5788 TrkWks - ok
10:44:36.0578 5788 [ ED5E4CE36C54F55E7698642E94D32EC7 ] truecrypt C:\WINDOWS\system32\drivers\truecrypt.sys
10:44:36.0593 5788 truecrypt - ok
10:44:36.0625 5788 [ 8AB24D4B7DA715C2C80455137910E792 ] TVTI2C C:\WINDOWS\system32\DRIVERS\Tvti2c.sys
10:44:36.0625 5788 TVTI2C - ok
10:44:36.0625 5788 TVTPktFilter - ok
10:44:36.0640 5788 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
10:44:36.0656 5788 Udfs - ok
10:44:36.0718 5788 [ 3F2D08B07CF67CB37E669A93E59A508C ] ufad-ws60 C:\Program Files\VMware\VMware Player\vmware-ufad.exe
10:44:36.0734 5788 ufad-ws60 - ok
10:44:36.0734 5788 UIUSys - ok
10:44:36.0750 5788 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
10:44:36.0750 5788 ultra - ok
10:44:36.0781 5788 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
10:44:36.0796 5788 Update - ok
10:44:36.0828 5788 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
10:44:36.0843 5788 upnphost - ok
10:44:36.0859 5788 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
10:44:36.0859 5788 UPS - ok
10:44:36.0875 5788 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:44:36.0890 5788 usbccgp - ok
10:44:36.0906 5788 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:44:36.0906 5788 usbehci - ok
10:44:36.0953 5788 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:44:36.0953 5788 usbhub - ok
10:44:36.0968 5788 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:44:36.0968 5788 usbprint - ok
10:44:37.0000 5788 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:44:37.0000 5788 usbscan - ok
10:44:37.0078 5788 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:44:37.0093 5788 USBSTOR - ok
10:44:37.0125 5788 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:44:37.0140 5788 usbuhci - ok
10:44:37.0187 5788 [ 2AC3EC0AAF2329F4012A625FD29DB678 ] VBoxDrv C:\WINDOWS\system32\DRIVERS\VBoxDrv.sys
10:44:37.0187 5788 VBoxDrv - ok
10:44:37.0234 5788 [ BF69F5C6ECAF24CA5FF0D9394BAAD7B9 ] VBoxNetAdp C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
10:44:37.0234 5788 VBoxNetAdp - ok
10:44:37.0250 5788 [ C75785CB32F683924088040904CB544D ] VBoxNetFlt C:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys
10:44:37.0265 5788 VBoxNetFlt - ok
10:44:37.0265 5788 [ 80F6738AD80A1D7DC8D890CE156DC4AD ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
10:44:37.0281 5788 VBoxUSBMon - ok
10:44:37.0281 5788 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
10:44:37.0296 5788 VgaSave - ok
10:44:37.0296 5788 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
10:44:37.0312 5788 viaagp - ok
10:44:37.0328 5788 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
10:44:37.0328 5788 ViaIde - ok
10:44:37.0343 5788 [ 9AF896B739E3F34B9CD56EAFA84ABE60 ] VMAuthdService C:\Program Files\VMware\VMware Player\vmware-authd.exe
10:44:37.0343 5788 VMAuthdService - ok
10:44:37.0375 5788 [ 33C6F2E02662A7900CAC6AB2607E9F88 ] vmci C:\WINDOWS\system32\Drivers\vmci.sys
10:44:37.0375 5788 vmci - ok
10:44:37.0390 5788 [ 852D9499D01D75B024D497A306DBB76D ] vmkbd C:\WINDOWS\system32\drivers\VMkbd.sys
10:44:37.0390 5788 vmkbd - ok
10:44:37.0421 5788 [ E41704D8149992107B333CC7A52C07CC ] VMnetAdapter C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys
10:44:37.0421 5788 VMnetAdapter - ok
10:44:37.0437 5788 [ E887150BFEE294BFFEB28FB49698AE55 ] VMnetBridge C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys
10:44:37.0453 5788 VMnetBridge - ok
10:44:37.0484 5788 [ 1E9F6817BDD878E4C4E701C64F6352E7 ] VMnetDHCP C:\WINDOWS\system32\vmnetdhcp.exe
10:44:37.0500 5788 VMnetDHCP - ok
10:44:37.0531 5788 [ C3837C0C499AA62F2A2AC8DBF5015817 ] VMnetuserif C:\WINDOWS\system32\drivers\vmnetuserif.sys
10:44:37.0531 5788 VMnetuserif - ok
10:44:37.0531 5788 [ 5E3AF8A6B096FD934A96D32D97843A69 ] VMparport C:\WINDOWS\system32\Drivers\VMparport.sys
10:44:37.0546 5788 VMparport - ok
10:44:37.0578 5788 [ AFB10AD9AA91D2F70C9F0E6BDA0D119B ] vmusb C:\WINDOWS\system32\Drivers\vmusb.sys
10:44:37.0593 5788 vmusb - ok
10:44:37.0640 5788 [ F38F5E1D9DEC6CD1955A91AB141A88FB ] VMUSBArbService C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
10:44:37.0656 5788 VMUSBArbService - ok
10:44:37.0671 5788 [ 3FE2942910EACDC7271E40C8C037D63F ] VMware NAT Service C:\WINDOWS\system32\vmnat.exe
10:44:37.0703 5788 VMware NAT Service - ok
10:44:37.0734 5788 [ 4E53D280DE6D5D523E39FBBDDFF0E819 ] vmx86 C:\WINDOWS\system32\Drivers\vmx86.sys
10:44:37.0765 5788 vmx86 - ok
10:44:37.0765 5788 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
10:44:37.0781 5788 VolSnap - ok
10:44:37.0828 5788 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
10:44:37.0843 5788 VSS - ok
10:44:37.0859 5788 [ 476A052B3CE506ED63A94018F3E979D5 ] vstor2-ws60 C:\Program Files\VMware\VMware Player\vstor2-ws60.sys
10:44:37.0859 5788 vstor2-ws60 - ok
10:44:37.0890 5788 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
10:44:37.0906 5788 W32Time - ok
10:44:37.0921 5788 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:44:37.0921 5788 Wanarp - ok
10:44:37.0953 5788 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
10:44:37.0968 5788 Wdf01000 - ok
10:44:37.0968 5788 WDICA - ok
10:44:38.0000 5788 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
10:44:38.0000 5788 wdmaud - ok
10:44:38.0015 5788 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
10:44:38.0031 5788 WebClient - ok
10:44:38.0078 5788 [ 307D248F97835B6879BDD361086924FE ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
10:44:38.0109 5788 winachsf - ok
10:44:38.0187 5788 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:44:38.0187 5788 winmgmt - ok
10:44:38.0218 5788 [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
10:44:38.0218 5788 WmdmPmSN - ok
10:44:38.0265 5788 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
10:44:38.0281 5788 Wmi - ok
10:44:38.0296 5788 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
10:44:38.0296 5788 WmiAcpi - ok
10:44:38.0328 5788 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:44:38.0343 5788 WmiApSrv - ok
10:44:38.0421 5788 [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
10:44:38.0453 5788 WMPNetworkSvc - ok
10:44:38.0468 5788 [ C60DC16D4E406810FAD54B98DC92D5EC ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
10:44:38.0468 5788 WpdUsb - ok
10:44:38.0531 5788 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:44:38.0546 5788 WPFFontCache_v0400 - ok
10:44:38.0578 5788 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
10:44:38.0593 5788 wscsvc - ok
10:44:38.0625 5788 [ 21AC4F228F3D36876A42277C76A766C0 ] WSIMD C:\WINDOWS\system32\DRIVERS\wsimd.sys
10:44:38.0625 5788 WSIMD - ok
10:44:38.0656 5788 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
10:44:38.0656 5788 wuauserv - ok
10:44:38.0703 5788 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:44:38.0703 5788 WudfPf - ok
10:44:38.0718 5788 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:44:38.0718 5788 WudfRd - ok
10:44:38.0750 5788 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
10:44:38.0750 5788 WudfSvc - ok
10:44:38.0796 5788 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
10:44:38.0828 5788 WZCSVC - ok
10:44:38.0859 5788 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
10:44:38.0859 5788 xmlprov - ok
10:44:38.0875 5788 ================ Scan global ===============================
10:44:38.0906 5788 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
10:44:38.0953 5788 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:44:38.0984 5788 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:44:39.0000 5788 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
10:44:39.0000 5788 [Global] - ok
10:44:39.0000 5788 ================ Scan MBR ==================================
10:44:39.0031 5788 [ 304043D3086F609733116AD21C9D91E1 ] \Device\Harddisk0\DR0
10:44:39.0234 5788 \Device\Harddisk0\DR0 - ok
10:44:39.0234 5788 ================ Scan VBR ==================================
10:44:39.0250 5788 [ 17CAA864E32A0F05EECFDEBD309212A1 ] \Device\Harddisk0\DR0\Partition1
10:44:39.0250 5788 \Device\Harddisk0\DR0\Partition1 - ok
10:44:39.0250 5788 ============================================================
10:44:39.0250 5788 Scan finished
10:44:39.0250 5788 ============================================================
10:44:39.0265 4280 Detected object count: 0
10:44:39.0265 4280 Actual detected object count: 0

Here is the aswMBR log:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-27 10:47:04
-----------------------------
10:47:04.062 OS Version: Windows 5.1.2600 Service Pack 3
10:47:04.062 Number of processors: 2 586 0x1706
10:47:04.062 ComputerName: THINKPAD UserName:
10:47:14.765 Initialze error C0000034 - driver not loaded
10:47:19.484 AVAST engine defs: 12082700
10:47:22.156 Service scanning
10:47:42.937 Modules scanning
10:47:42.937 Disk 0 trace - called modules:
10:47:42.937
10:47:44.906 AVAST engine scan C:\WINDOWS
10:47:48.140 AVAST engine scan C:\WINDOWS\system32
10:49:29.531 AVAST engine scan C:\WINDOWS\system32\drivers
10:49:44.390 AVAST engine scan C:\Documents and Settings\Administrator
10:50:28.312 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

I ran the ESET scanner. However, I cannot find a list button to copy the results. It said that there were 0 infections found.

I think it was a false positive, for I rebooted one of the other computers and SAS updated and scanned and found no results. I figure they must have caught the problem.

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:33 AM

Posted 27 August 2012 - 12:27 PM

They fixed it soon.

safe surfing :thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users